last executing test programs:

32.695747059s ago: executing program 3 (id=321):
mount(0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000180)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)}, 0x0)
read$msr(r0, &(0x7f0000000040)=""/42, 0x2a)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r3, &(0x7f00000014c0), 0x0, 0x182, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2800000014001901000000000000000228"], 0x28}}, 0x0)
gettid()
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000, 0x0)
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000540), 0x1, 0x0)
sendfile(r6, r5, 0x0, 0x3)

31.427560548s ago: executing program 4 (id=326):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
getpgid(0x0)
r0 = getpid()
prctl$PR_SCHED_CORE(0x3e, 0x3, r0, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xd, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xa8}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

30.42083005s ago: executing program 3 (id=329):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000000c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r2, 0xffffffffffffffff, 0x0)
r4 = dup(r1)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
prctl$PR_SET_THP_DISABLE(0x44, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="850000002f000000840000000000000095000000000000008560fc2b2062f611fc2f864ef177d634e46e8dcfe61b4fb9f600344d592fee49e176fe6ad28fbcb1f9259bfc63e9030971917e30b6f42e8f9dd6ab0ce07312a135cd363aa7e5bcef8fd0e8c7d2082584156c52ebfd69e8e13b7a8b477abc86468e11b6242133ce882f05e16b91c37b3437347f6058b4489c759783b9d4dfb55d0085a26e41201a6d8c8ced33e10048e756a40538b32bf653fa3c831a4e60599ed7a0f999d18de9984522a7cdb6fc30015633a0132c9578b7da5bd7280a5f7e28fd858ba712020b23ef8a2785b6c146c48b48ca7e232d0489661396e9303b38aa5d26d06e2e676795fd2733f95da570bab301000000ffffffff2a2792a630d8fcdc"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000040)=r6, 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r7 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="120110017a953210ac0504c777620102030109022d0001080540040904270102fffd01000921e700070122b30409050c0200020103400905df02"], 0x0)
syz_usb_control_io$hid(r7, &(0x7f0000000bc0)={0x24, 0x0, &(0x7f0000000b00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x4ff}}, 0x0, 0x0}, 0x0)
syz_usb_control_io(r7, 0x0, &(0x7f0000000940)={0xe3, &(0x7f0000000580)={0x0, 0x12, 0x6, "c63284f8bbc0"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@posixacl}]}})
close_range(r0, r2, 0x0)

29.802655203s ago: executing program 1 (id=330):
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x11, 0x5, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x21c0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x8000, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x7, 0x0, 0x0, @multicast2, @private}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f3, &(0x7f0000001a80)={'syztnl0\x00', &(0x7f0000000140)={'gre0\x00', 0x0, 0x10, 0x20, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x27, 0x0, 0x0, 0x0, 0x0, @loopback, @empty}}}})
fanotify_init(0x5e, 0x0)
unlink(&(0x7f0000000380)='./file0/../file0\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000000085000000720000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket(0x10, 0x5, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0x0, {0xa}}, 0x26}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5886, 0x1, 0x2}, &(0x7f0000000000), 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), 0x8)

29.767392873s ago: executing program 4 (id=331):
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f00000003c0), 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000040)=0xd)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(0x0)
mount(&(0x7f0000000040)=@sr0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='cifs\x00', 0x10, 0x0)
iopl(0x3)
r2 = socket$pptp(0x18, 0x1, 0x2)
getsockname(r2, 0x0, &(0x7f00000000c0))
iopl(0x3)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$UHID_INPUT(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r3, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r4=>0x0, <r5=>0x0})
timerfd_settime(0xffffffffffffffff, 0x3, &(0x7f0000000200)={{}, {r4, r5+10000000}}, 0x0)
gettid()
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
setsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, &(0x7f0000000280)=0x4, 0x4)

28.165904392s ago: executing program 4 (id=333):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000050002000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a300000000008000540000000040c00098008000140ff"], 0x90}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r1=>0xffffffffffffffff, @ANYBLOB="0000000000000000b702000014000000b7030000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000600)=0x14)
socket(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYRESHEX=r1], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000bc0)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={<r9=>0xffffffffffffffff}, 0x13f, 0xc}}, 0x20)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r7, &(0x7f0000000080)={0xb, 0x10, 0xfa00, {0x0, r9, 0x6}}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$inet6(0xa, 0x2, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r12, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, [@call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bind$inet6(r11, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
sendmsg$nl_route(r10, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="900000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="8b04040000000000700012800b00010067656e657665000060000280050004"], 0x90}}, 0x4048084)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000030601010000000000000000000000000500010007"], 0x1c}}, 0x0)
syz_clone(0x400, &(0x7f0000000240)="2f8e1e70487def815baa505cba5b9ef3e3c8e3d0599a711c8fa9e5dbb09c4beb066a261606099f916684cae080dd1a7f7c1560b4040615cc8816cc72957c9a1b275c13a1931258012c3eb747d6cf5478050189f8063104f05d4dc78c6efba923e8d5ccb3922d27b166f18c69a80c835ffbd5295d010741936b62aa92e1b3e0d2fc26013666e57cc846a5b51f6f882a6db1cc57cbe626248dd9615d144a94ef9bddc0f9db5b2361787e3e71267d157d01382b766cda50e9584c1ade1f1bf16f83950c2f4c8d5b08db2d5dcb2212566e774ddfa0b5f107ad54ae2ce6a05b05e497b7a0880b8875", 0xe6, &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000000480)="dd677d368c1dd45ae71f78cb94e605fdf43571c666e39bcb1f96b77a5a67599f499fbd219b248b6da57e53792cb3a26b1c1b9d3228c109e0baff23dbebeacb9f2c547a28840610a4a5e5a082133fe7e21e3ca6c82cd38ab5609f681183af1a8b8e71004d78968f1214433eb702e570a8a34e102aef54d08c6d72a41597c2dbf07546a786c571b9cdbaf6a037ecd3a37af63a62176f66882cae9559451d77b3559e37bb1ca79a85b5531b32e794b6001d71b943278e0dbb6525781b9fa30809ec00ce6bd7d415c987e0")

27.920530596s ago: executing program 1 (id=335):
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
write$selinux_access(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="73797374656d5f04000000000000005f723a78ee29e06de1809b636f6e736f6c655f6465766963655f743a7330202f7573722f7362696e2f6375707364203030303030303030303030303030ebc9849e5190dd5dbf595f"], 0x4c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000340), r0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, 0x0, 0x40000)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
pipe(0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, 0x0, 0x0)
r5 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r5, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r5, 0xfffffffd)
r6 = accept4(r5, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000001000), 0x581, 0x40000000, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r6, 0x84, 0xb, &(0x7f00000002c0)={0x3, 0x1, 0x2, 0xff, 0xa4, 0x0, 0x1, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2, 0x20}, 0xe)
ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000440)={0x1, @sdr={0x41564e57, 0x9}})
r7 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff8)
add_key(&(0x7f0000000000)='pkcs7_test\x00', &(0x7f00000001c0)={'syz', 0x2}, &(0x7f0000000200)="baaad988", 0x4, r7)

27.865885401s ago: executing program 4 (id=336):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x12, 0x18}, [@ldst={0x4, 0x3, 0x5, 0x0, 0x2, 0x10}]}, &(0x7f0000003ff6)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r4 = syz_open_procfs(0x0, &(0x7f0000000380)='net/sctp\x00')
getdents64(r4, 0x0, 0x0)
getdents64(r4, 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000300)={0x0, 0x3}, 0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7c, &(0x7f00000000c0), &(0x7f0000000180)=0x8)

26.493090713s ago: executing program 1 (id=338):
r0 = syz_io_uring_setup(0x10d, &(0x7f00000006c0)={0x0, 0x5885, 0x0, 0x2}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x5, r0, 0x0, 0x0, 0x0, 0x80800})
io_uring_enter(r0, 0x3516, 0xc2de, 0x8, 0x0, 0x0)
io_uring_enter(r0, 0x6c73, 0x3853, 0x20, 0x0, 0x0)

26.332628164s ago: executing program 4 (id=339):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600))
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000062d14406d0470084761000000010902120001000000000904"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$uac1(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000440)={0x2c, &(0x7f0000000200)={0x0, 0x11, 0x31, {0x31, 0x2, "e29293c9f07462ce86194b14bbeb59f24894fa3299e5f49eb353ab064c84d5485e75bcee5e75d18d4eb9417eb54d78"}}, &(0x7f0000000240)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3801}}, &(0x7f0000000280)={0x0, 0xf, 0xc, {0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0xe, 0xd, 0xe, 0xfff}]}}, &(0x7f00000002c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x5, 0x2, 0x81, 0x3, "54751b2e", "c83d87f2"}}, &(0x7f0000000300)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1c, 0x2, 0x6, 0x4, 0x80, 0x22c8, 0x4}}}, &(0x7f0000000940)={0x84, &(0x7f0000000480)={0x0, 0x5, 0xa7, "28d225aeabf2e8aa73624999ab6664b1ab83cac4f756a9f98f2c959557a80c0888644a1b96093b19cd3b11e9435b5f3e4bf2915e65043aca57fea4c9e3bf6e096a4dd4addcc297fd25cad0de0f574591fd12561a0104ecc0c16d27725ee45168e1bdc3edd865d2cdd104da4a717afee06102171a4814615729d957abde99effbe8f30aa191b6fcb7111480e86a55fd813a90c9a020db2de10d485a08dd57ffcf714ed9f193911a"}, &(0x7f0000000540)={0x0, 0xa, 0x1, 0x6}, &(0x7f0000000580)={0x0, 0x8, 0x1, 0xe}, &(0x7f00000005c0)={0x20, 0x0, 0x4, {0x3, 0x1}}, &(0x7f0000000640)={0x20, 0x0, 0x4, {0x120, 0xb0}}, &(0x7f0000000680)={0x40, 0x7, 0x2, 0x3c8}, &(0x7f00000006c0)={0x40, 0x9, 0x1, 0x8}, &(0x7f0000000700)={0x40, 0xb, 0x2, "4295"}, &(0x7f0000000740)={0x40, 0xf, 0x2, 0x40}, &(0x7f0000000780)={0x40, 0x13, 0x6, @local}, &(0x7f00000007c0)={0x40, 0x17, 0x6}, &(0x7f0000000800)={0x40, 0x19, 0x2, "4f06"}, &(0x7f0000000840)={0x40, 0x1a, 0x2, 0x7ff}, &(0x7f0000000880)={0x40, 0x1c, 0x1, 0x17}, &(0x7f00000008c0)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000900)={0x40, 0x21, 0x1, 0x3}})
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$uac1(r1, 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000140)={0x4000000, 0x200})
ioctl$DRM_IOCTL_WAIT_VBLANK(r2, 0xc018643a, &(0x7f0000000040)={0x4000000})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r4 = socket$inet6(0xa, 0x3, 0x1)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@mcast2, @in6=@mcast2, 0x0, 0xf, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x200000000, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffff8}, {}, 0x2, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x17}, 0xfffffffd, 0x33}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x2}, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xfffffffe}}, 0xe8)
sendmmsg(r4, &(0x7f0000000480), 0x21, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="840000001200050100000000"], 0x84}, 0x1, 0x0, 0x0, 0x40}, 0x20040810)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000100)=0xffffffffffffffff, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000000a00)={0xa, 0x4e1f, 0x0, @mcast2}, 0x1c)
getsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r7, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r6, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x26)

25.700039477s ago: executing program 1 (id=340):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x10b001)
ioctl$SG_GET_VERSION_NUM(r0, 0x2282, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
io_setup(0x4, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000604000/0x1000)=nil, &(0x7f00004b7000/0x4000)=nil, &(0x7f00003ef000/0x3000)=nil, &(0x7f0000feb000/0x14000)=nil, &(0x7f00007cf000/0x3000)=nil, &(0x7f0000522000/0x3000)=nil, &(0x7f00004b8000/0x1000)=nil, &(0x7f00000ca000/0xe000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f000009e000/0x4000)=nil, &(0x7f00001a1000/0x4000)=nil, &(0x7f0000000280)="35da58397c446a559e52a5f9b72f5f198075807ccc3700f04fa3c0d7fb29a96732eed2c4d54e66546fedabe5910fd02049359246796c79b2e9fb42e7ab1ceea9c37ecee3d54c513773dca10fc3b3ec8c9c1fca03139f47b67739ce89445233b410035ae66e342f330a7b793611b40125988ffc00b73a199cbef6d604e9fffccf8ba8283eb55916e163f8fa8113121fcbbf04fb2c1b5138b6a5fd22fe6e2aa1c6b2f878acea5fdbbb2e51b6f0c52f14a3ad395f53b84727a123f804039a667fe60ccdc4373d702f74eff0a170", 0xcc, r2}, 0x68)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x18, 0x0, 0x0, 0x0, 0x0, 0xe0}}], 0x17fd147c801ae9ab, 0xff00)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
sendmmsg$inet(r3, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0xf00)
r4 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x0)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)=""/83, 0x53}], 0x1}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000140)={'full'}, 0xfffffdef)
syz_open_dev$usbfs(&(0x7f0000000000), 0x8, 0x80680)

25.615094919s ago: executing program 2 (id=341):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x18, 0x0, &(0x7f0000001080))
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = getpgid(0xffffffffffffffff)
fcntl$setown(r1, 0x8, r2)
pread64(r1, &(0x7f0000000040)=""/60, 0x3c, 0x7921)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket(0x10, 0x3, 0x0)
write(r6, 0x0, 0x0)
r7 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x3d0, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x200, 0x230, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x430)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
getsockname$llc(0xffffffffffffffff, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r7}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x1f, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000140)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(0xffffffffffffffff)

24.494095838s ago: executing program 2 (id=342):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
getpgid(0x0)
r0 = getpid()
prctl$PR_SCHED_CORE(0x3e, 0x3, r0, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0xd, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xa8}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

24.059087212s ago: executing program 3 (id=343):
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f00000003c0), 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000040)=0xd)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(0x0)
mount(&(0x7f0000000040)=@sr0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='cifs\x00', 0x10, 0x0)
iopl(0x3)
r2 = socket$pptp(0x18, 0x1, 0x2)
getsockname(r2, 0x0, &(0x7f00000000c0))
iopl(0x3)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$UHID_INPUT(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r3, 0x0)
clock_gettime(0x0, &(0x7f00000000c0))
timerfd_settime(0xffffffffffffffff, 0x3, 0x0, 0x0)
gettid()
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
setsockopt$bt_rfcomm_RFCOMM_LM(0xffffffffffffffff, 0x12, 0x3, &(0x7f0000000280)=0x4, 0x4)

23.866919956s ago: executing program 2 (id=344):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[], 0x48)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)={0x50, r3, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_TYPE={0x8}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "01959e56da"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4091}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = memfd_create(&(0x7f0000000c40)='prodM\xb0\xea\a\x06\xbe\xaen/\xce4\xb7\xc1\xef\xba!\x9d\rSt\xa24\t\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1dz\xd05\xe2e,\xb1\x84\xea\x91^%A\xe5\x9e\x13TdT\xc6^p\xb0#R\x04\x06\xae\xebA;Y\xeb\x8f\xec\xb4\xf9\x17\xb7\x04\xc2\xc0\xc6\xb4\v\xff\xfc\x88\x90\xabC\x02\x00\xf04\x03\x88\xae9\'>R^P{Vr!\xe2W\xc72\xea\xb7Wp\xc36\x96\xffZ\\A@\x00\x00\x00\xc9\xf3Y\xb8\x89#\xa1\xb1)Dk\xeb\xa1\t\x00{u[\xbd\x9d\xf4\xbf\\\xce\x02P\xf2MY\x05^\xffj\x9c\x14\xb7\xb6v\x1d*1>\x00 \x00\x00\x00\x00\x14C?]\x8c\xb4Y\xcf\x80\x85\xf8\x036\xc8~\xa8\f\x00\x00\xb5U\xec\xe06\xed\xe4\xfb\xdf\a\xd0lg\x13\xf9\x8b:s>\xd7s\xef\xb3\x9f#\x15)\xf9\xe10\xc7\xb262<k\xa8\x88\x01\x00fhD\xe7\xb6\x17\x80\x95\xa8\x1e\t\xb01KB\xcb\x00\x1e\x7fE\x7f\x02\x00\x00\x00y<nGR\x94\x99\xb8\x89\x9b\x8f\xd5\xe6\x02\xb5C\xad\"u\xf4>-\x00\x00\x00\x00\xc8X\xdaNz\x0eu\x8f\x01\x00\x00\x00\x00\x00\x00\xdd\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc3\xa7/\x0f\x9b`\xa5\x98\x81a\xeev\x00\x00\x00\x00\a\x10\x00m2\xf2\xd8,\x17\xf8\x8e\xae\xc8\xad\xed<\"\x8e\n\x9d\xb13\x8d\xef\x96\xd2I\"8=tg\xdfU\xd0q\x95/f\xec\xdc\xa3\xe1[\xc0\xaa\xefz\xc9\xf4[R\xc36b\xa2]\xed\xe8\xb0\xfd\"\xa2\xd27)\xd5yQ\xff}5\x94\x88\xa1\xdc\xa1g\xe0q\xc5:\xe4\xdf\x80\xb3,\xb9\xb2\xdc\x81\x9f6\x0f\x84WY\xbfSY`\xb8\a\x19\xb1\x058\xa4\xc3\xbb\xf8aB:\x84\x02?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf3o-GU\xb0\x00F\xb3o(aI[\xd6\x9fG\xaeI\x83\x93\x8cC\xc0#\xe0q\xd0Ex|\xdb\xa8\x16\xfe>:\t0\xfd\x8a\xc7\x84\xb5\xc7M-0A\xf0\x94\xf3\xcc\x8d\xbb3\\\"\x882\xb3\xa84\xac\x00\xdd}Ft\xc6\xcc\f}1X#\xe4\xe1\x94i\xce\xa1\xff\x95\x80\xb4T\x9c\x01\xf3\x1cL\x8aC\x81\x16tZ\xff\x9b\x066U\x8f-\x9c\xa3B\x94m(m\f\xbc\xebY\xa0\xf7\xf0\x9d\x10\xbd\x86\x1by\xe6\xdf\xc0\xc5\xb9\xb9\xbf\xdf~9\nC\xe9\xc5\x0e\xda\x9c(\x9b\"\xc7\x97\xfc\b\xd9\xc2T\xa7*}]\xc8\xb3 .\x9b\x89\x0f\xf8$\xdd>lU\x13EG\xbb1] \xda\x19\xc5\x9b\x15\x95\xc4\xfcw\xbb\x92\x91\xc4\xa6\x907XK\xfc\x17]\xfa\xff\'\xef\x92\x1c\xb8\x1fK\xb2o \xd1\xbd\xb2\x11+\xa3R\xefQ\xc2\xbdW\x05\xec\xb3=@\x03\xc6^\xa2\x15%\xb0\'D#\xb6Q\x8f\x82?S>\x00P\x9cE\x92{d\xe6\x9cj1\x87\xb3\x01\xde\xe8\x89\xc4s\xb7\x14~}\xaa\x8c\xc3\x95BAE\xf2.\x8f#;a\x94\"\xd1U\xff\xe8v\xd3\x84d\xf4\x134\xa6XI\xe5h\xaa\x15\x9a\xf7Z\xe3%\x88p\x90\xbb\x9dt\xa3\xe1\r\x8d\x94\"\x19\x8b\x17)\xea\xd5\x17\xeb\xe4\x1b\x0fBZ1\xbe\xee\xfa\x1c\xf9\xa6\x11\x94\x06\\P:\xaf\xcex\xc2\x82\x9a\x16\xfc\xa1\xf9q\x12\xe3\x1a\xdc\xb7\x12\xbba\b\xbb\xed\xb2\xd1W\xe2\x8b\x8d8}\x10W\xbd\xa60A\xc3\x03\xfa\x890\x86#\bQ\xcb)\xf6]\x9e\x14\xd2\xea\x82\xa8\xb7ZG\x15r\xf1n 1\x8d \xc1\xaf\x19\\\x91\x13\x1b8\xe1\xc3\xa4\v\x94\xbfJ\xb5\xde\x95\x82\x00]B|\xe2[%\xe3\xf0\x04\xba\xed\xdb\xf5\x7f\x9d\xfe>\xf6m$M&\x7fq]\xe4\xf6\x82\xc3\x00x}Y\xa3T\xb1zg}\x99E\xa4\x19\xe9\x1a4a\xd75D-k\x84\xa6\x12+\xebk\xa1\xfek\x89\xef\x18\xc1)6\xa65\xe2D\xbe\xe1\xdfq\xdd68\xf37g\xab9m\xe7\xddO\v?\xe0\xbe}\xa9U\xc7{\xd3\x16W\xbb\xe5\xd2\x93\xfe\xa4\x9d\r$\xe91c8`\x86\xbc)\xe29\xc3}\xb9P\xd5F\xc6\x12\x8c_x\xa8\xfa\xb5K\x03\x85\x93k\xe1\x8e\x1f)\".\xcc\'\v\xa6\x1bj\\\n\xe98yA\xd8T\x85\x80A\xcbo\x99\x99\xeb)r\x1a\xce\x18(\x185LL\xbcOeO\'\xe2\x86&\xe4\xe2\xe7~\x92\xa2\xb2\x1b\xc3\x00\x85\xce\xad7\x87\xa8\xfcc\xf5\xf8\xaf\v,q\xd4\x18\xbdM\x1a\xde\xba*L\x05m6\xecH\xd0T\xb8m\xdb\b\xa6\x02\xfb\x13\xac\x91\x8a\x8d\x94\x93\x8d=\xb1\x84\x9c\x9b\xe5\xc7\xab\xc9Q\xc1eUc\xcc\x180^\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01|&\"a\xd1\x91\xb9\xb1\xa9\x11\x91\x86\x92\xd8\xd5\x02~\x9b\x83\xc70\xd1)y\xd2V\x97\xfe\xcf\xffj\x1ey\x89E<K5\x95\xc9\xba\x11\n\xde\xfe#\x00V\n\xc2L\xf7Q\x97)\xc2\xa4*\x8c\x10W\xcdi\x82\xb1\x103\x03Y\x91/\x84\xf1ud<z\xd6<\xfe\xe1{\xd4\x98/\xf4\xee0\x17\x03J\xc4\xa6\xb7\xd7\xe6\x90\x13\xac\x02\xc6dD\xceT\xd3\xad\xef\x99\x11\xe5\xaf\xa5\xdbb\xe5\xc1\xd5\x058|2\x80\x88M1K\xe3\x8d\x1b\x03\xa8;(\x9d%\xecq\xe5iN\x9b\xb0ZD[\xce\x1f\x8d\xb6/\x83i\xd9K\x86.\xe6\\\rh\xe4\xd9\xd7\x92Ys\xfd\r\x9c\xf2\xa2\xbe\xa3\x1dlM\r\xdf\xd0\x89\x0e\x16k/Z\xea\xe4\x94\xf8//\xe8\xac\x8eu8T\xf7\tt\xc8\xfb\xa2\bS\xf2>\x97\xa9\xef\xectKAL\\\xb8\t\xf8\x1b\xc5y@\xc0', 0x6)
fcntl$addseals(r7, 0x409, 0x12)
fcntl$setstatus(r7, 0x4, 0x40000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r7, 0x0)
r8 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r6)
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01002bbd7000ffdbdf2501000000080001000000000008000200020005"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x4000)
readv(r2, &(0x7f0000000240)=[{&(0x7f0000000140)=""/201, 0x20}], 0x6)
mremap(&(0x7f0000638000/0x1000)=nil, 0x6aa000, 0x2000, 0x3, &(0x7f00005c0000/0x2000)=nil)

22.768104545s ago: executing program 3 (id=345):
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f00000006c0)={0x2c, &(0x7f0000000140)=ANY=[@ANYBLOB="00000040000000fd87"], 0x0, 0x0, 0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000000c0)=ANY=[@ANYBLOB], 0x24}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x234a3000)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)

22.466027584s ago: executing program 0 (id=346):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = socket$kcm(0xa, 0x6, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0)
listen(r1, 0x4)
setsockopt$sock_attach_bpf(r1, 0x10d, 0xa, &(0x7f0000000000)=r2, 0x4)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
eventfd(0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0xc, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r3 = socket(0x2, 0x80805, 0x0)
mkdir(&(0x7f0000001c00)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x800400, &(0x7f0000000100)={[{@usrquota}]})
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)
getsockopt$bt_hci(r3, 0x84, 0x82, &(0x7f0000000000)=""/4102, &(0x7f0000001080)=0x1006)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
lsetxattr$security_selinux(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000940), &(0x7f0000000980)='system_u:object_r:semanage_exec_t:s0\x00', 0xffd7, 0x1)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r5=>0x0})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x35, 0x1, 0x4, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r5, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}}, 0x0)
socket(0x10, 0x803, 0x0)

22.345884497s ago: executing program 2 (id=347):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000300)='tracefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast2, 0x2}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="84010000100001"], 0x184}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0xffcf, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r7, 0xc01864c6, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r8=>0xffffffffffffffff})
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r6, r8, 0x5, 0x0, @void}, 0x10)
sendmsg$DEVLINK_CMD_RATE_GET(r8, 0x0, 0x40001)
syz_usb_connect(0x0, 0x24, &(0x7f0000000600)=ANY=[@ANYBLOB="316a3f260102030109021200010000008f0000689334000000000000000000"], 0x0)

21.699224258s ago: executing program 1 (id=348):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xf7fe, 0x3}, 0x6)
write(r0, &(0x7f0000000140)='$\x00\x00\x00', 0x4)
syz_usb_connect(0x0, 0x34, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x92, 0xaf, 0xef, 0x20, 0x10c4, 0x8665, 0xf4d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x22, 0x1, 0x5, 0x60, 0x80, 0x1, [{{0x9, 0x4, 0x48, 0x3, 0x1, 0xd5, 0xf6, 0xf5, 0x9, [], [{{0x9, 0x5, 0x2, 0x10, 0x400, 0xc, 0xfa, 0x91, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x80, 0x6}]}}]}}]}}]}}, &(0x7f0000000100)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x300, 0x1, 0x8, 0xd, 0x20, 0xa}, 0x5, &(0x7f00000000c0)={0x5, 0xf, 0x5}})
syz_usb_connect$cdc_ecm(0x1, 0x14f, &(0x7f0000000180)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x13d, 0x1, 0x1, 0x7, 0x40, 0x0, [{{0x9, 0x4, 0x0, 0xf9, 0x3, 0x2, 0x6, 0x0, 0x6, {{0xb, 0x24, 0x6, 0x0, 0x0, "fffcbc360cef"}, {0x5, 0x24, 0x0, 0xfff}, {0xd, 0x24, 0xf, 0x1, 0xfffffffe, 0x1, 0x7, 0x2}, [@call_mgmt={0x5, 0x24, 0x1, 0x0, 0xd}, @country_functional={0x6, 0x24, 0x7, 0x8, 0xbb}, @acm={0x4, 0x24, 0x2, 0x3}, @obex={0x5, 0x24, 0x15, 0x907}, @mdlm_detail={0xe3, 0x24, 0x13, 0xf4, "eb2117ca3cc9e590c99bc1272ff3dc3ae7e021834ac27eae5c9ea38968b96dec3192b51dc13ddc7ab12ed94381cc9ec0c84ba8be09f5d40853b2d20c957601844f54807a0bf75379c5d29e96c188d2e31e6d709d78312c736e39ae6ffe82b6d2f7e21a430a16bec8704231a679098bf0080fe45624f4567cecd2dda47c0500a774edeb802471e865961ce99495d50b82ffade093f9ef9c9379c4a86dd4e77943c7e0c4a17644a581a72fd3bbbabffa2b3f6a2e4109777f04eabd1fbe0bf3305e5920ae7261ed953ee57e6e73465b70e4c36b0731151bce4232e53dea35006b"}, @call_mgmt={0x5, 0x24, 0x1, 0x3, 0x6}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x20, 0x2, 0x7, 0x8f}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x9, 0x9, 0x4}}}}}]}}]}}, &(0x7f0000000400)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x310, 0x8, 0x1, 0x3, 0x40}, 0x4e, &(0x7f0000000340)={0x5, 0xf, 0x4e, 0x4, [@ss_container_id={0x14, 0x10, 0x4, 0x6f, "2e12baf6c63319867b0a33fe22504b32"}, @ext_cap={0x7, 0x10, 0x2, 0x6, 0x6, 0xe, 0xff}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x5, 0x6, 0xfd}, @ssp_cap={0x24, 0x10, 0xa, 0x9, 0x6, 0x3, 0x0, 0xfffe, [0xc0, 0xc000, 0xff003f, 0x0, 0xff3f00, 0x3f0f]}]}, 0x1, [{0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x423}}]})

21.139211177s ago: executing program 0 (id=349):
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
write$selinux_access(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="73797374656d5f04000000000000005f723a78ee29e06de1809b636f6e736f6c655f6465766963655f743a7330202f7573722f7362696e2f6375707364203030303030303030303030303030ebc9849e5190dd5dbf595f"], 0x4c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000340), r0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, 0x0, 0x40000)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
pipe(0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r4, 0x0, 0x0)
r5 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r5, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r5, 0xfffffffd)
r6 = accept4(r5, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000001000), 0x581, 0x40000000, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r6, 0x84, 0xb, &(0x7f00000002c0)={0x3, 0x1, 0x2, 0xff, 0xa4, 0x0, 0x1, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2, 0x20}, 0xe)
r7 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff8)
add_key(&(0x7f0000000000)='pkcs7_test\x00', &(0x7f00000001c0)={'syz', 0x2}, &(0x7f0000000200)="baaad988", 0x4, r7)
r8 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r8, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

21.081714548s ago: executing program 4 (id=350):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd63"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x101802, 0x124)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x0, &(0x7f00000000c0)})
write$cgroup_int(r1, &(0x7f00000002c0)=0xec10, 0x12)
listen(0xffffffffffffffff, 0x20000005)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={<r4=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r7)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r8, 0x1, 0x123, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}]}, 0x1c}}, 0x40000)
write$nci(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB="400403e8090304"], 0x7)
write$RDMA_USER_CM_CMD_BIND_IP(r3, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @mcast2, 0x4}, r4}}, 0x30)
r9 = getpid()
close_range(r0, 0xffffffffffffffff, 0x0)
syz_pidfd_open(r9, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0xb4}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)

20.084935436s ago: executing program 0 (id=351):
syz_open_dev$dri(&(0x7f0000000000), 0x880, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
umount2(0x0, 0x7)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x2}, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
unshare(0x400)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x6, 0x1, &(0x7f0000000180)=@gcm_128={{0x304}, "f6269077ab12f37d", "2c891f7af8e13648c1b0fb23ccb4cbdd", "7b0437de", "0e8f883e5f138c8b"}, 0x28)
ioctl$int_in(r2, 0x5421, &(0x7f0000000140)=0x1)
writev(r2, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa014101, 0x4e21, 0x3, 'nq\x00', 0x4, 0x3, 0x10075}, {@rand_addr=0x64010102, 0x4e1f, 0x0, 0x4, 0x13d5f, 0x7}}, 0x44)
ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000100))

19.183676208s ago: executing program 0 (id=352):
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$kcm(0x11, 0x5, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x21c0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x8000, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x7, 0x0, 0x0, @multicast2, @private}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f3, &(0x7f0000001a80)={'syztnl0\x00', &(0x7f0000000140)={'gre0\x00', 0x0, 0x10, 0x20, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x27, 0x0, 0x0, 0x0, 0x0, @loopback, @empty}}}})
fanotify_init(0x5e, 0x0)
unlink(&(0x7f0000000380)='./file0/../file0\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000000085000000720000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket(0x10, 0x5, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0x0, {0xa}}, 0x26}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x1)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5886, 0x1, 0x2}, &(0x7f0000000000), 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000), 0x8)

19.131476744s ago: executing program 3 (id=353):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000000c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r2, 0xffffffffffffffff, 0x0)
r4 = dup(r1)
write$FUSE_BMAP(r4, &(0x7f0000000100)={0x18}, 0x18)
prctl$PR_SET_THP_DISABLE(0x44, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000040)=r6, 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r7 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="120110017a953210ac0504c777620102030109022d0001080540040904270102fffd01000921e700070122b30409050c0200020103400905df02"], 0x0)
syz_usb_control_io$hid(r7, &(0x7f0000000bc0)={0x24, 0x0, &(0x7f0000000b00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x4ff}}, 0x0, 0x0}, 0x0)
syz_usb_control_io(r7, 0x0, &(0x7f0000000940)={0xe3, &(0x7f0000000580)={0x0, 0x12, 0x6, "c63284f8bbc0"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@posixacl}]}})
close_range(r0, r2, 0x0)

18.556066193s ago: executing program 2 (id=354):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = socket$kcm(0xa, 0x6, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0)
listen(r1, 0x4)
setsockopt$sock_attach_bpf(r1, 0x10d, 0xa, &(0x7f0000000000)=r2, 0x4)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
eventfd(0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0xc, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
r3 = socket(0x2, 0x80805, 0x0)
mkdir(&(0x7f0000001c00)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x800400, 0x0)
chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0)
getsockopt$bt_hci(r3, 0x84, 0x82, &(0x7f0000000000)=""/4102, &(0x7f0000001080)=0x1006)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
lsetxattr$security_selinux(&(0x7f0000000000)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000940), &(0x7f0000000980)='system_u:object_r:semanage_exec_t:s0\x00', 0xffd7, 0x1)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r5=>0x0})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x35, 0x1, 0x4, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r5, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}}, 0x0)
socket(0x10, 0x803, 0x0)

18.136801796s ago: executing program 3 (id=355):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd63"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x101802, 0x124)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x0, &(0x7f00000000c0)})
write$cgroup_int(r1, &(0x7f00000002c0)=0xec10, 0x12)
listen(0xffffffffffffffff, 0x20000005)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={<r4=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r7)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r8, 0x1, 0x123, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}]}, 0x1c}}, 0x40000)
write$nci(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB="400403e8090304"], 0x7)
write$RDMA_USER_CM_CMD_BIND_IP(r3, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @mcast2, 0x4}, r4}}, 0x30)
r9 = getpid()
close_range(r0, 0xffffffffffffffff, 0x0)
syz_pidfd_open(r9, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0xb4}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)

18.088285001s ago: executing program 0 (id=356):
r0 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sndpcmp(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x179)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000580)=ANY=[])
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000240)={0x8, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000480)={0x8, {{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x20}, 0x5000)
sendmsg$key(r0, 0x0, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x100, &(0x7f0000001dc0)={0xf, 0x0, 0x100000}, 0xfffffffffffffdee)
r5 = gettid()
getpid()
rt_tgsigqueueinfo(r5, r5, 0x12, &(0x7f00000000c0)={0x22, 0x3, 0x1})

16.609996151s ago: executing program 1 (id=357):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x5, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x24}}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe000030a}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x48}}, 0x0)
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090582020002"], 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0x4, &(0x7f0000000180)=ANY=[])
socket$alg(0x26, 0x5, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pipe2$watch_queue(&(0x7f00000000c0)={<r4=>0xffffffffffffffff}, 0x80)
close_range(r4, r4, 0x2)
tkill(0x0, 0x12)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0xa, 0x200000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x5)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r7, 0x84, 0x80, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r7, 0x84, 0x5, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @multicast2}}}, 0x84)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x2, 0x0)

16.508706056s ago: executing program 0 (id=358):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x5, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x24}}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe000030a}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x48}}, 0x0)
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090582020002"], 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0x4, &(0x7f0000000180)=ANY=[])
socket$alg(0x26, 0x5, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pipe2$watch_queue(&(0x7f00000000c0)={<r4=>0xffffffffffffffff}, 0x80)
close_range(r4, r4, 0x2)
tkill(0x0, 0x12)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0xa, 0x200000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r6, 0x84, 0x80, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r6, 0x84, 0x5, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @multicast2}}}, 0x84)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x2, 0x0)

16.47921084s ago: executing program 2 (id=359):
r0 = syz_io_uring_setup(0x117, &(0x7f0000000540)={0x0, 0xfffffffc, 0x800, 0x0, 0x3a6}, &(0x7f00000004c0)=<r1=>0x0, &(0x7f0000000500)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff}) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000000)="660f113d66b8a60000000f23d80f21f86635400000a00f23f8baf80c66b8de541a8466efbafc0cec0f090f783d0f454a003626f30fc7fe360f01cf6766c7442400c77000006766c7442402199b00006766c744240600000000670f011c242ef20f35", 0x62}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
write$nbd(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="674466980100000057ea2a3e0300000038803a76b5362bcd8a71e0e58ef558c81a8ceb22b5426fb6ab2af5083e93463529da70893ec77fbf4d3d776e76c8446d288fc388ef2ee27caf9bbd2287d36a43d0bac8d2006c0fb6000482806718194f20aa"], 0x62)
socket$nl_generic(0x10, 0x3, 0x10) (async)
unshare(0x20000400)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@mcast1, 0x0, 0x1, 0x1, 0x1}, 0x20) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
close(r8)
socket$nl_audit(0x10, 0x3, 0x9) (async)
write$tun(r8, 0x0, 0x1ef) (async)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_BT_SECURITY(r9, 0x112, 0x4, &(0x7f0000000080)={0x4}, 0x1f) (async)
socketpair(0x2e, 0x5, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff}) (async)
connect$bt_l2cap(r9, &(0x7f0000000040)={0x1f, 0xa43, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newtaction={0x118, 0x30, 0x1, 0x0, 0x0, {}, [{0x104, 0x1, [@m_vlan={0x40, 0x1, 0x0, 0x0, {{0x9}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x0, 0x3, 0x8fc}, @TCA_VLAN_PUSH_VLAN_ID={0x6}]}, {0x4}, {0xc}, {0xc}}}, @m_vlan={0xc0, 0xf, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}]}, {0xffffffffffffffe8, 0x6, "bb2c24a666c5f37c1021803c48d1f1c615ecc8b2a459629379b2fb205857627c7a1a2edc8d385b6673f30ff5cfe6ab04604b527a3f2731961cffd3fd8782783ebd5cc7fca935bfa61a57fc8859c5b85612d948904fcbc986f3725575880bf4aa558da4ed46cd9c0729d7f1d71b3e761a79ce70d9c06f60aa016a56d22fc31fa9f15fd69870517b49"}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x118}}, 0x0) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)

4.523685463s ago: executing program 32 (id=350):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd63"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x101802, 0x124)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x0, &(0x7f00000000c0)})
write$cgroup_int(r1, &(0x7f00000002c0)=0xec10, 0x12)
listen(0xffffffffffffffff, 0x20000005)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={<r4=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r7)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r8, 0x1, 0x123, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}]}, 0x1c}}, 0x40000)
write$nci(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB="400403e8090304"], 0x7)
write$RDMA_USER_CM_CMD_BIND_IP(r3, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @mcast2, 0x4}, r4}}, 0x30)
r9 = getpid()
close_range(r0, 0xffffffffffffffff, 0x0)
syz_pidfd_open(r9, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0xb4}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)

2.024002298s ago: executing program 33 (id=355):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd63"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x101802, 0x124)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x0, &(0x7f00000000c0)})
write$cgroup_int(r1, &(0x7f00000002c0)=0xec10, 0x12)
listen(0xffffffffffffffff, 0x20000005)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={<r4=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
r5 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r5, 0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r7)
sendmsg$NFC_CMD_DEV_UP(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r8, 0x1, 0x123, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}]}, 0x1c}}, 0x40000)
write$nci(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB="400403e8090304"], 0x7)
write$RDMA_USER_CM_CMD_BIND_IP(r3, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @mcast2, 0x4}, r4}}, 0x30)
r9 = getpid()
close_range(r0, 0xffffffffffffffff, 0x0)
syz_pidfd_open(r9, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[], 0xb4}, 0x1, 0x0, 0x0, 0x40}, 0x40000)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)

531.155188ms ago: executing program 34 (id=357):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x5, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x24}}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe000030a}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x48}}, 0x0)
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090582020002"], 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0x4, &(0x7f0000000180)=ANY=[])
socket$alg(0x26, 0x5, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pipe2$watch_queue(&(0x7f00000000c0)={<r4=>0xffffffffffffffff}, 0x80)
close_range(r4, r4, 0x2)
tkill(0x0, 0x12)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0xa, 0x200000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x5)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r7, 0x84, 0x80, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r7, 0x84, 0x5, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @multicast2}}}, 0x84)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x2, 0x0)

26.234492ms ago: executing program 35 (id=358):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth1_to_hsr\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0xcf, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x5, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x24}}, @IFLA_GRE_REMOTE={0x8, 0x7, @multicast1=0xe000030a}]}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x48}}, 0x0)
r3 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090582020002"], 0x0)
syz_usb_ep_write$ath9k_ep1(r3, 0x82, 0x4, &(0x7f0000000180)=ANY=[])
socket$alg(0x26, 0x5, 0x0)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8801, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pipe2$watch_queue(&(0x7f00000000c0)={<r4=>0xffffffffffffffff}, 0x80)
close_range(r4, r4, 0x2)
tkill(0x0, 0x12)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0xa, 0x200000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r6, 0x84, 0x80, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r6, 0x84, 0x5, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @multicast2}}}, 0x84)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x2, 0x0)

0s ago: executing program 36 (id=359):
r0 = syz_io_uring_setup(0x117, &(0x7f0000000540)={0x0, 0xfffffffc, 0x800, 0x0, 0x3a6}, &(0x7f00000004c0)=<r1=>0x0, &(0x7f0000000500)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47f6, 0x80ffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff}) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000000)="660f113d66b8a60000000f23d80f21f86635400000a00f23f8baf80c66b8de541a8466efbafc0cec0f090f783d0f454a003626f30fc7fe360f01cf6766c7442400c77000006766c7442402199b00006766c744240600000000670f011c242ef20f35", 0x62}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
write$nbd(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="674466980100000057ea2a3e0300000038803a76b5362bcd8a71e0e58ef558c81a8ceb22b5426fb6ab2af5083e93463529da70893ec77fbf4d3d776e76c8446d288fc388ef2ee27caf9bbd2287d36a43d0bac8d2006c0fb6000482806718194f20aa"], 0x62)
socket$nl_generic(0x10, 0x3, 0x10) (async)
unshare(0x20000400)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@mcast1, 0x0, 0x1, 0x1, 0x1}, 0x20) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
close(r8)
socket$nl_audit(0x10, 0x3, 0x9) (async)
write$tun(r8, 0x0, 0x1ef) (async)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_BT_SECURITY(r9, 0x112, 0x4, &(0x7f0000000080)={0x4}, 0x1f) (async)
socketpair(0x2e, 0x5, 0x1, &(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff}) (async)
connect$bt_l2cap(r9, &(0x7f0000000040)={0x1f, 0xa43, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newtaction={0x118, 0x30, 0x1, 0x0, 0x0, {}, [{0x104, 0x1, [@m_vlan={0x40, 0x1, 0x0, 0x0, {{0x9}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x0, 0x3, 0x8fc}, @TCA_VLAN_PUSH_VLAN_ID={0x6}]}, {0x4}, {0xc}, {0xc}}}, @m_vlan={0xc0, 0xf, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x8100}]}, {0xffffffffffffffe8, 0x6, "bb2c24a666c5f37c1021803c48d1f1c615ecc8b2a459629379b2fb205857627c7a1a2edc8d385b6673f30ff5cfe6ab04604b527a3f2731961cffd3fd8782783ebd5cc7fca935bfa61a57fc8859c5b85612d948904fcbc986f3725575880bf4aa558da4ed46cd9c0729d7f1d71b3e761a79ce70d9c06f60aa016a56d22fc31fa9f15fd69870517b49"}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x118}}, 0x0) (async)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

'hsr' already present!
[   55.902201][ T5819] Cannot create hsr debugfs directory
[   56.002331][ T5815] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   56.022061][ T5815] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   56.047094][ T5815] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   56.061538][ T5815] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   56.085892][ T5818] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.116058][ T5818] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.126000][ T5818] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.142904][ T5818] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.176692][ T5817] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.186446][ T5817] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.227266][ T5817] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.251555][ T5817] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.286572][ T5816] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   56.297358][ T5816] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   56.313409][ T5816] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   56.330494][ T5815] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.338577][ T5816] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   56.369360][ T5815] 8021q: adding VLAN 0 to HW filter on device team0
[   56.417210][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.424545][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.444474][ T5819] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.456724][ T5819] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.480906][ T3558] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.487965][ T3558] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.496734][ T5819] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   56.509514][ T5819] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   56.539949][ T5818] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.578876][ T5817] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.598888][ T5818] 8021q: adding VLAN 0 to HW filter on device team0
[   56.616359][ T5817] 8021q: adding VLAN 0 to HW filter on device team0
[   56.636556][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.643648][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.653492][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.660659][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.670790][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.677933][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.715828][ T5816] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.724259][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.731377][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.748678][   T29] kauditd_printk_skb: 13 callbacks suppressed
[   56.748691][   T29] audit: type=1400 audit(1740217752.501:111): avc:  denied  { sys_module } for  pid=5815 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   56.779056][ T5816] 8021q: adding VLAN 0 to HW filter on device team0
[   56.830418][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.837501][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.852685][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.859831][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.919186][ T5817] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   56.935890][ T5817] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.964569][ T5816] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   56.981763][ T5816] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.004866][ T5815] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.035683][ T5819] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.068341][ T5819] 8021q: adding VLAN 0 to HW filter on device team0
[   57.108557][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.115703][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.178859][ T5818] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.193022][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.200139][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.327573][ T5818] veth0_vlan: entered promiscuous mode
[   57.356846][ T5818] veth1_vlan: entered promiscuous mode
[   57.397434][ T5816] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.435791][ T5817] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.452694][ T5818] veth0_macvtap: entered promiscuous mode
[   57.485481][ T5818] veth1_macvtap: entered promiscuous mode
[   57.509223][ T5815] veth0_vlan: entered promiscuous mode
[   57.535011][ T5815] veth1_vlan: entered promiscuous mode
[   57.550221][ T5819] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.560102][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.581190][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.603961][ T5818] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.613391][ T5818] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.622775][ T5818] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.631611][ T5818] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.648060][ T5815] veth0_macvtap: entered promiscuous mode
[   57.671948][ T5817] veth0_vlan: entered promiscuous mode
[   57.684097][ T5815] veth1_macvtap: entered promiscuous mode
[   57.701050][ T5817] veth1_vlan: entered promiscuous mode
[   57.717029][ T5816] veth0_vlan: entered promiscuous mode
[   57.733794][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   57.751011][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   57.764099][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.788288][ T5817] veth0_macvtap: entered promiscuous mode
[   57.810674][ T5820] Bluetooth: hci2: command tx timeout
[   57.811557][ T5822] Bluetooth: hci4: command tx timeout
[   57.833112][ T5815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   57.844157][ T5815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   57.855566][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.864061][ T5817] veth1_macvtap: entered promiscuous mode
[   57.871502][ T5816] veth1_vlan: entered promiscuous mode
[   57.886584][ T5815] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.895876][ T5822] Bluetooth: hci1: command tx timeout
[   57.896211][ T5820] Bluetooth: hci0: command tx timeout
[   57.901330][ T5822] Bluetooth: hci3: command tx timeout
[   57.915544][ T5815] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.924321][ T5815] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.933418][ T5815] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.947193][ T3558] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.956439][ T3558] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.984571][ T5819] veth0_vlan: entered promiscuous mode
[   58.011041][ T3536] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.023675][ T5819] veth1_vlan: entered promiscuous mode
[   58.034121][ T5817] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.034541][ T3536] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.046356][ T5817] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.062942][ T5817] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.074663][ T5817] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.085702][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.116375][   T29] audit: type=1400 audit(1740217753.861:112): avc:  denied  { mounton } for  pid=5818 comm="syz-executor" path="/root/syzkaller.nBjjog/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   58.133480][ T5817] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.141812][   T29] audit: type=1400 audit(1740217753.861:113): avc:  denied  { mount } for  pid=5818 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   58.156873][ T5817] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.186694][ T5817] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.189325][   T29] audit: type=1400 audit(1740217753.871:114): avc:  denied  { mounton } for  pid=5818 comm="syz-executor" path="/root/syzkaller.nBjjog/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   58.197213][ T5817] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.198441][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.230956][   T29] audit: type=1400 audit(1740217753.871:115): avc:  denied  { mount } for  pid=5818 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   58.263288][ T5816] veth0_macvtap: entered promiscuous mode
[   58.288773][   T29] audit: type=1400 audit(1740217753.871:116): avc:  denied  { mounton } for  pid=5818 comm="syz-executor" path="/root/syzkaller.nBjjog/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   58.320925][   T29] audit: type=1400 audit(1740217753.871:117): avc:  denied  { mounton } for  pid=5818 comm="syz-executor" path="/root/syzkaller.nBjjog/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=6766 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   58.352905][ T5817] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.366085][ T5817] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.366797][ T5818] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.384642][ T5817] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.398445][ T5817] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.414283][ T5819] veth0_macvtap: entered promiscuous mode
[   58.421504][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.428772][   T29] audit: type=1400 audit(1740217753.871:118): avc:  denied  { unmount } for  pid=5818 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   58.451985][   T29] audit: type=1400 audit(1740217754.031:119): avc:  denied  { mounton } for  pid=5818 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2728 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   58.457009][ T5816] veth1_macvtap: entered promiscuous mode
[   58.475334][   T29] audit: type=1400 audit(1740217754.031:120): avc:  denied  { mount } for  pid=5818 comm="syz-executor" name="/" dev="gadgetfs" ino=7416 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   58.487470][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.528420][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.546678][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.557525][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.574596][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.583551][ T5898] overlayfs: failed to resolve './file1': -2
[   58.585770][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.601184][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.612324][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.626277][ T5819] veth1_macvtap: entered promiscuous mode
[   58.643995][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.655722][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.666123][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.677043][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.687762][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.710027][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.730603][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.774556][ T3558] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.786369][ T5816] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.798921][ T3558] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.804350][ T5816] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.820815][ T5816] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.829521][ T5816] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.844668][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.860328][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.870786][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.881472][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.891665][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.902591][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.916313][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.927487][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.942406][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.076720][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.092994][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.106945][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.117744][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.130424][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.143065][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.154128][ T5819] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.165354][ T5819] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.184125][ T5869] IPVS: starting estimator thread 0...
[   59.191556][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.233819][ T5819] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.245822][ T5819] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.258518][ T5819] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.271721][ T5819] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.280659][ T5908] IPVS: using max 45 ests per chain, 108000 per kthread
[   59.390201][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   59.444231][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.495142][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.564105][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.576313][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.693576][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.716714][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.771478][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.848841][ T5916] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5'.
[   59.890621][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   59.932833][ T5917] Zero length message leads to an empty skb
[   59.954147][ T5917] =======================================================
[   59.954147][ T5917] WARNING: The mand mount option has been deprecated and
[   59.954147][ T5917]          and is ignored by this kernel. Remove the mand
[   59.954147][ T5917]          option from the mount to silence this warning.
[   59.954147][ T5917] =======================================================
[   59.990664][ T5917] 9pnet_fd: Insufficient options for proto=fd
[   60.005549][ T5822] Bluetooth: hci4: command tx timeout
[   60.011218][ T5822] Bluetooth: hci2: command tx timeout
[   60.017259][ T5820] Bluetooth: hci0: command tx timeout
[   60.023305][ T5822] Bluetooth: hci1: command tx timeout
[   60.029218][ T5827] Bluetooth: hci3: command tx timeout
[   60.080284][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   60.089352][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   60.187607][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   60.222199][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.243954][ T5916] IPv6: sit1: Disabled Multicast RS
[   60.305329][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.339429][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.402401][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.415008][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.011173][ T5928] Bluetooth: MGMT ver 1.23
[   62.054057][ T5827] Bluetooth: hci1: command tx timeout
[   62.079839][ T5827] Bluetooth: hci0: command tx timeout
[   62.079871][ T5827] Bluetooth: hci2: command tx timeout
[   62.079923][ T5827] Bluetooth: hci4: command tx timeout
[   62.080290][   T29] kauditd_printk_skb: 35 callbacks suppressed
[   62.080317][   T29] audit: type=1400 audit(1740217757.751:156): avc:  denied  { create } for  pid=5931 comm="syz.2.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   62.080435][   T29] audit: type=1400 audit(1740217757.811:157): avc:  denied  { setopt } for  pid=5931 comm="syz.2.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   62.100092][ T5830] Bluetooth: hci3: command tx timeout
[   62.191861][ T5944] netlink: 148 bytes leftover after parsing attributes in process `syz.0.11'.
[   62.660248][   T29] audit: type=1400 audit(1740217757.921:158): avc:  denied  { mount } for  pid=5940 comm="syz.0.11" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[   62.720104][   T29] audit: type=1400 audit(1740217757.921:159): avc:  denied  { name_bind } for  pid=5940 comm="syz.0.11" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   62.720275][   T29] audit: type=1400 audit(1740217757.941:160): avc:  denied  { create } for  pid=5940 comm="syz.0.11" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   62.720371][   T29] audit: type=1400 audit(1740217757.951:161): avc:  denied  { write } for  pid=5940 comm="syz.0.11" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   62.720466][   T29] audit: type=1400 audit(1740217757.951:162): avc:  denied  { nlmsg_write } for  pid=5940 comm="syz.0.11" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   62.720560][   T29] audit: type=1400 audit(1740217757.951:163): avc:  denied  { read } for  pid=5940 comm="syz.0.11" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   62.720660][   T29] audit: type=1400 audit(1740217757.961:164): avc:  denied  { open } for  pid=5940 comm="syz.0.11" path="/dev/dri/card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   62.720755][   T29] audit: type=1400 audit(1740217757.971:165): avc:  denied  { ioctl } for  pid=5940 comm="syz.0.11" path="/dev/dri/card1" dev="devtmpfs" ino=628 ioctlcmd=0x64c6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   62.811422][ T5866] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   62.909648][ T5913] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   62.959763][   T45] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   63.250095][ T5913] usb 5-1: Using ep0 maxpacket: 16
[   63.257775][ T5913] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[   63.279141][ T5913] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   63.295025][ T5913] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   63.309881][ T5913] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   63.318052][ T5913] usb 5-1: Product: syz
[   63.722509][   T45] usb 1-1: device descriptor read/64, error -71
[   63.733339][ T5913] usb 5-1: Manufacturer: syz
[   63.742621][ T5913] usb 5-1: SerialNumber: syz
[   64.255701][ T5866] usb 4-1: Using ep0 maxpacket: 8
[   64.646592][ T5913] usb 5-1: config 0 descriptor??
[   64.657551][ T5913] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   64.666983][ T5913] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class)
[   64.695463][ T5866] usb 4-1: unable to read config index 0 descriptor/all
[   64.702948][ T5866] usb 4-1: can't read configurations, error -71
[   64.780582][   T45] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   64.812867][ T5913] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[   64.851302][ T5913] em28xx 5-1:0.0: Config register raw data: 0xfffffffb
[   64.870034][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   64.968760][    T0] NOHZ tick-stop error: local softirq work is pending, handler #41!!!
[   65.120043][ T5913] em28xx 5-1:0.0: AC97 chip type couldn't be determined
[   65.125174][ T5959] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   65.160003][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   65.169020][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   65.177534][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   65.339660][ T5913] em28xx 5-1:0.0: No AC97 audio processor
[   65.877177][ T5913] usb 5-1: USB disconnect, device number 2
[   65.907128][ T5913] em28xx 5-1:0.0: Disconnecting em28xx
[   65.941840][ T5913] em28xx 5-1:0.0: Freeing device
[   65.997642][ T5966] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16'.
[   66.041347][    C1] vcan0: j1939_session_tx_dat: 0xffff88805866fc00: queue data error: -100
[   67.293987][   T29] kauditd_printk_skb: 25 callbacks suppressed
[   67.294031][   T29] audit: type=1400 audit(1740217763.031:191): avc:  denied  { setopt } for  pid=5969 comm="syz.0.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   67.652299][   T29] audit: type=1400 audit(1740217763.411:192): avc:  denied  { create } for  pid=5989 comm="syz.1.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   67.675064][ T5990] openvswitch: netlink: Key 17 has unexpected len 8 expected 4
[   67.709819][   T29] audit: type=1400 audit(1740217763.411:193): avc:  denied  { connect } for  pid=5989 comm="syz.1.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   67.785213][   T29] audit: type=1400 audit(1740217763.451:194): avc:  denied  { accept } for  pid=5989 comm="syz.1.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   67.959259][ T5996] fuse: Unknown parameter 'group_i'
[   68.456865][   T29] audit: type=1400 audit(1740217764.211:195): avc:  denied  { connect } for  pid=6001 comm="syz.0.24" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   68.531250][   T29] audit: type=1400 audit(1740217764.211:196): avc:  denied  { name_connect } for  pid=6001 comm="syz.0.24" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   68.551149][    C1] vkms_vblank_simulate: vblank timer overrun
[   68.589799][   T25] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   68.673490][   T29] audit: type=1400 audit(1740217764.211:197): avc:  denied  { write } for  pid=6001 comm="syz.0.24" lport=60393 faddr=fc01:: scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   68.920754][   T29] audit: type=1400 audit(1740217764.671:198): avc:  denied  { shutdown } for  pid=6001 comm="syz.0.24" lport=60393 faddr=fc01:: scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   69.390321][   T25] usb 4-1: Using ep0 maxpacket: 16
[   69.396878][   T29] audit: type=1400 audit(1740217764.671:199): avc:  denied  { getopt } for  pid=6001 comm="syz.0.24" lport=60393 faddr=fc01:: scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   69.430260][   T25] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   69.444713][   T29] audit: type=1400 audit(1740217765.141:200): avc:  denied  { create } for  pid=5993 comm="syz.2.22" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   69.464405][ T6006] Non-string source
[   69.474370][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   69.775799][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   70.063004][   T25] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   70.080761][   T25] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   70.096824][   T25] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   70.165177][   T25] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   70.213742][   T25] usb 4-1: Manufacturer: syz
[   70.242935][   T25] usb 4-1: config 0 descriptor??
[   70.758957][ T6033] 9pnet_fd: Insufficient options for proto=fd
[   71.563422][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[   71.570040][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[   72.414229][   T25] rc_core: IR keymap rc-hauppauge not found
[   72.448282][   T25] Registered IR keymap rc-empty
[   72.458935][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   72.480003][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   72.501863][   T25] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[   72.589460][   T25] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input5
[   72.663741][   T29] kauditd_printk_skb: 12 callbacks suppressed
[   72.663756][   T29] audit: type=1400 audit(1740217768.422:213): avc:  denied  { read write } for  pid=6050 comm="syz.2.36" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   72.692999][ T5861] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   72.718700][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   72.751060][   T29] audit: type=1400 audit(1740217768.462:214): avc:  denied  { read } for  pid=5178 comm="acpid" name="event4" dev="devtmpfs" ino=2740 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   72.801745][   T29] audit: type=1400 audit(1740217768.462:215): avc:  denied  { open } for  pid=5178 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2740 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   72.830267][   T29] audit: type=1400 audit(1740217768.462:216): avc:  denied  { ioctl } for  pid=5178 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2740 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   72.866121][ T6057] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   72.877224][   T29] audit: type=1400 audit(1740217768.462:217): avc:  denied  { open } for  pid=6050 comm="syz.2.36" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   72.901077][ T5861] usb 1-1: Using ep0 maxpacket: 16
[   72.960010][ T5861] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   72.972557][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   72.979517][ T6058] omfs: Invalid superblock (0)
[   72.989965][   T29] audit: type=1400 audit(1740217768.472:218): avc:  denied  { ioctl } for  pid=6050 comm="syz.2.36" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   73.646179][ T5861] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   73.655632][ T5861] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   73.730320][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   73.761066][ T5861] usb 1-1: Product: syz
[   73.778791][   T29] audit: type=1400 audit(1740217768.682:219): avc:  denied  { write } for  pid=6048 comm="syz.3.37" name="video2" dev="devtmpfs" ino=932 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   73.813307][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   73.813901][ T5861] usb 1-1: Manufacturer: syz
[   73.830070][ T5869] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[   73.843086][ T5861] usb 1-1: SerialNumber: syz
[   73.861097][   T29] audit: type=1400 audit(1740217768.732:220): avc:  denied  { mounton } for  pid=6048 comm="syz.3.37" path="/syzcgroup/unified/syz3" dev="cgroup2" ino=125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   73.894655][ T5861] usb 1-1: config 0 descriptor??
[   73.919909][ T5861] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   73.931094][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   73.931813][ T5861] em28xx 1-1:0.0: DVB interface 0 found: bulk
[   73.944745][   T29] audit: type=1400 audit(1740217769.522:221): avc:  denied  { ioctl } for  pid=6048 comm="syz.3.37" path="socket:[8048]" dev="sockfs" ino=8048 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   73.977384][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   73.992643][ T5869] usb 3-1: config 0 has an invalid interface number: 133 but max is 0
[   74.000018][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   74.009267][   T29] audit: type=1400 audit(1740217769.572:222): avc:  denied  { setopt } for  pid=6048 comm="syz.3.37" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   74.031924][ T5869] usb 3-1: config 0 has no interface number 0
[   74.038108][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   74.049910][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   74.052861][ T5869] usb 3-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[   74.067481][ T5869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.082012][ T5869] usb 3-1: Product: syz
[   74.118414][ T5869] usb 3-1: Manufacturer: syz
[   74.119813][   T25] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[   74.129862][ T5869] usb 3-1: SerialNumber: syz
[   74.137902][ T5869] usb 3-1: config 0 descriptor??
[   74.194561][   T25] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[   74.212365][   T25] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[   74.266007][   T25] usb 4-1: USB disconnect, device number 4
[   74.409867][    T8] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   74.534422][ T6041] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.565573][ T6041] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.579870][    T8] usb 5-1: Using ep0 maxpacket: 32
[   74.597754][    T8] usb 5-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[   74.612405][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.621026][ T5861] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[   74.650930][    T8] usb 5-1: config 0 descriptor??
[   74.690625][    T8] gspca_main: sunplus-2.14.0 probing 041e:400b
[   74.708337][ T5869] keyspan 3-1:0.133: Keyspan 1 port adapter converter detected
[   74.751137][ T5869] keyspan 3-1:0.133: found no endpoint descriptor for endpoint 81
[   74.780071][ T5869] keyspan 3-1:0.133: found no endpoint descriptor for endpoint 1
[   74.789665][ T5869] keyspan 3-1:0.133: found no endpoint descriptor for endpoint 2
[   74.838359][ T5869] usb 3-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[   75.200103][ T5822] Bluetooth: hci0: command tx timeout
[   75.504050][    T8] gspca_sunplus: reg_w_riv err -110
[   75.609964][    T8] sunplus 5-1:0.0: probe with driver sunplus failed with error -110
[   75.706849][    T8] usb 3-1: USB disconnect, device number 2
[   75.987973][    T8] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[   76.011160][ T5861] em28xx 1-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[   76.028321][    T8] keyspan 3-1:0.133: device disconnected
[   76.054608][ T5861] em28xx 1-1:0.0: board has no eeprom
[   76.179928][ T5861] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[   76.311123][ T6064] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   76.329508][ T6064] netlink: 12 bytes leftover after parsing attributes in process `syz.4.40'.
[   76.458215][ T6080] netlink: 'syz.1.44': attribute type 10 has an invalid length.
[   76.470290][ T6080] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.478723][ T6080] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   76.853969][ T6064] syz.4.40 (6064): drop_caches: 2
[   76.861996][    T9] cfg80211: failed to load regulatory.db
[   76.874837][ T5861] em28xx 1-1:0.0: dvb set to bulk mode.
[   76.924356][    T8] em28xx 1-1:0.0: Binding DVB extension
[   76.945115][ T5861] usb 1-1: USB disconnect, device number 4
[   77.032230][ T5861] em28xx 1-1:0.0: Disconnecting em28xx
[   77.209417][ T5869] usb 5-1: USB disconnect, device number 3
[   77.457092][    T8] em28xx 1-1:0.0: Registering input extension
[   77.468990][ T5861] em28xx 1-1:0.0: Closing input extension
[   77.528293][ T5861] em28xx 1-1:0.0: Freeing device
[   78.591113][ T6098] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[   78.617522][ T6098] CIFS mount error: No usable UNC path provided in device string!
[   78.617522][ T6098] 
[   78.630052][ T6098] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[   79.112749][   T29] kauditd_printk_skb: 11 callbacks suppressed
[   79.112765][   T29] audit: type=1400 audit(1740217774.872:234): avc:  denied  { getopt } for  pid=6099 comm="syz.4.51" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   79.635817][   T29] audit: type=1400 audit(1740217775.392:235): avc:  denied  { create } for  pid=6106 comm="syz.1.54" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   79.805921][   T45] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   80.604108][    T8] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[   80.635069][   T29] audit: type=1400 audit(1740217775.392:236): avc:  denied  { write } for  pid=6106 comm="syz.1.54" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   81.390746][   T45] usb 4-1: Using ep0 maxpacket: 32
[   81.400047][   T45] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[   81.410326][   T45] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.484919][   T45] usb 4-1: config 0 descriptor??
[   81.609873][ T5861] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   81.720284][ T6113] netlink: 148 bytes leftover after parsing attributes in process `syz.2.55'.
[   81.784864][    T8] usb 5-1: config 0 has an invalid interface number: 115 but max is 0
[   81.849890][ T5861] usb 1-1: Using ep0 maxpacket: 16
[   81.862935][   T45] gspca_main: sunplus-2.14.0 probing 041e:400b
[   81.908019][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   81.919623][    T8] usb 5-1: config 0 has no interface number 0
[   81.930153][ T5861] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[   81.965484][    T8] usb 5-1: too many endpoints for config 0 interface 115 altsetting 99: 111, using maximum allowed: 30
[   81.996704][ T5861] usb 1-1: config 0 interface 0 has no altsetting 0
[   82.024268][ T6114] netlink: 12 bytes leftover after parsing attributes in process `syz.3.50'.
[   82.110334][   T25] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   82.114266][ T5861] usb 1-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[   82.150339][ T6114] syz.3.50 (6114): drop_caches: 2
[   82.196302][    T8] usb 5-1: config 0 interface 115 altsetting 99 has 0 endpoint descriptors, different from the interface descriptor's value: 111
[   82.242054][   T25] usb 3-1: device descriptor read/64, error -71
[   82.267749][ T5861] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.319728][    T8] usb 5-1: config 0 interface 115 has no altsetting 0
[   82.386160][   T45] gspca_sunplus: reg_w_riv err -110
[   82.455710][   T45] sunplus 4-1:0.0: probe with driver sunplus failed with error -110
[   82.500735][ T5861] usb 1-1: config 0 descriptor??
[   82.536566][ T1200] usb 4-1: USB disconnect, device number 5
[   82.549508][ T5861] usb 1-1: can't set config #0, error -71
[   82.574523][    T8] usb 5-1: string descriptor 0 read error: -71
[   82.581544][ T5861] usb 1-1: USB disconnect, device number 5
[   82.587480][   T25] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   82.602092][    T8] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   82.627864][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.644540][    T8] usb 5-1: config 0 descriptor??
[   82.663645][    T8] usb 5-1: can't set config #0, error -71
[   82.673970][    T8] usb 5-1: USB disconnect, device number 4
[   82.763542][   T25] usb 3-1: device descriptor read/64, error -71
[   82.880672][   T25] usb usb3-port1: attempt power cycle
[   83.113834][ T6128] CIFS mount error: No usable UNC path provided in device string!
[   83.113834][ T6128] 
[   83.124192][ T6128] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[   84.929259][ T6148] Non-string source
[   85.414223][ T1200] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[   85.650271][   T25] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   85.719841][ T1200] usb 4-1: config index 0 descriptor too short (expected 72, got 10)
[   85.727971][ T1200] usb 4-1: config 1 descriptor has 1 excess byte, ignoring
[   85.919766][   T29] audit: type=1400 audit(1740217781.542:237): avc:  denied  { mount } for  pid=6159 comm="syz.1.68" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   85.930746][   T25] usb 1-1: Using ep0 maxpacket: 32
[   85.941399][    C0] vkms_vblank_simulate: vblank timer overrun
[   85.941610][ T1200] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[   85.963664][   T25] usb 1-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[   86.005032][ T1200] usb 4-1: string descriptor 0 read error: -71
[   86.009776][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.029478][ T1200] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   86.049059][ T1200] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.431944][ T1200] usb 4-1: can't set config #1, error -71
[   86.450634][   T25] usb 1-1: config 0 descriptor??
[   86.465480][   T25] gspca_main: sunplus-2.14.0 probing 041e:400b
[   86.483195][ T1200] usb 4-1: USB disconnect, device number 6
[   86.778249][ T6177] netlink: 12 bytes leftover after parsing attributes in process `syz.0.67'.
[   86.810213][ T6177] syz.0.67 (6177): drop_caches: 2
[   86.907002][ T5823] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   87.024538][   T25] gspca_sunplus: reg_w_riv err -110
[   87.147915][   T25] sunplus 1-1:0.0: probe with driver sunplus failed with error -110
[   87.172216][ T6170] netlink: 20 bytes leftover after parsing attributes in process `syz.1.72'.
[   87.247047][   T29] audit: type=1400 audit(1740217783.002:238): avc:  denied  { create } for  pid=6169 comm="syz.1.72" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   87.300027][ T5823] usb 3-1: Using ep0 maxpacket: 32
[   87.347602][ T5823] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[   87.377206][ T5823] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.420494][ T5823] usb 3-1: config 0 descriptor??
[   87.434417][ T5861] usb 1-1: USB disconnect, device number 6
[   87.442311][ T5823] gspca_main: sunplus-2.14.0 probing 041e:400b
[   88.389553][ T5823] gspca_sunplus: reg_w_riv err -110
[   88.400017][ T5823] sunplus 3-1:0.0: probe with driver sunplus failed with error -110
[   88.524230][ T6190] netlink: 12 bytes leftover after parsing attributes in process `syz.2.73'.
[   88.658610][ T6191] syz.2.73 (6191): drop_caches: 2
[   88.777200][ T6181] syzkaller0: entered allmulticast mode
[   88.965497][ T6193] Non-string source
[   89.795742][   T25] libceph: connect (1)[c::]:6789 error -101
[   89.823843][ T6200] ceph: No mds server is up or the cluster is laggy
[   89.835806][   T25] libceph: mon0 (1)[c::]:6789 connect error
[   92.547378][ T5823] usb 3-1: USB disconnect, device number 6
[   92.709714][   T29] audit: type=1400 audit(1740217788.462:239): avc:  denied  { ioctl } for  pid=6223 comm="syz.4.86" path="socket:[10327]" dev="sockfs" ino=10327 ioctlcmd=0x7459 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   92.773763][   T29] audit: type=1400 audit(1740217788.462:240): avc:  denied  { setopt } for  pid=6223 comm="syz.4.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   92.889890][   T29] audit: type=1400 audit(1740217788.462:241): avc:  denied  { getopt } for  pid=6223 comm="syz.4.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   92.919394][   T29] audit: type=1400 audit(1740217788.462:242): avc:  denied  { getopt } for  pid=6223 comm="syz.4.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   93.293059][ T5915] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   93.770913][   T29] audit: type=1400 audit(1740217788.462:243): avc:  denied  { open } for  pid=6223 comm="syz.4.86" path="/dev/ptyqd" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[   93.837836][   T29] audit: type=1400 audit(1740217788.472:244): avc:  denied  { ioctl } for  pid=6223 comm="syz.4.86" path="/dev/ptyqd" dev="devtmpfs" ino=132 ioctlcmd=0x4b3a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[   93.959794][ T5915] usb 1-1: device descriptor read/64, error -71
[   94.126963][   T29] audit: type=1400 audit(1740217789.862:245): avc:  denied  { create } for  pid=6239 comm="syz.2.90" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   94.223775][ T5915] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[   94.556621][ T6246] Non-string source
[   94.573217][ T5915] usb 1-1: device descriptor read/64, error -71
[   94.772472][ T5915] usb usb1-port1: attempt power cycle
[   94.971945][   T29] audit: type=1400 audit(1740217790.722:246): avc:  denied  { ioctl } for  pid=6239 comm="syz.2.90" path="socket:[10349]" dev="sockfs" ino=10349 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   95.306090][ T6254] netlink: 'syz.3.95': attribute type 32 has an invalid length.
[   95.329799][ T5822] Bluetooth: hci4: command tx timeout
[   95.349929][ T5915] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[   95.357498][ T6254] netlink: 40 bytes leftover after parsing attributes in process `syz.3.95'.
[   95.435986][ T5915] usb 1-1: device descriptor read/8, error -71
[   95.749807][ T5915] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[   95.999765][ T5915] usb 1-1: device not accepting address 10, error -71
[   96.015672][ T5915] usb usb1-port1: unable to enumerate USB device
[   96.599518][ T6269] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   96.622044][   T29] audit: type=1400 audit(1740217792.382:247): avc:  denied  { setopt } for  pid=6255 comm="syz.4.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   96.882224][   T29] audit: type=1400 audit(1740217792.432:248): avc:  denied  { name_connect } for  pid=6265 comm="syz.0.97" dest=65532 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   97.147629][ T6281] ufs: You didn't specify the type of your ufs filesystem
[   97.147629][ T6281] 
[   97.147629][ T6281] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[   97.147629][ T6281] 
[   97.147629][ T6281] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[   97.213222][ T6281] ufs: ufstype=old is supported read-only
[   97.232812][ T6281] ufs: ufs_fill_super(): bad magic number
[   98.207859][   T29] kauditd_printk_skb: 2 callbacks suppressed
[   98.207874][   T29] audit: type=1400 audit(1740217793.962:251): avc:  denied  { accept } for  pid=6283 comm="syz.1.104" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   98.440100][   T29] audit: type=1400 audit(1740217793.962:252): avc:  denied  { read } for  pid=6283 comm="syz.1.104" path="socket:[10424]" dev="sockfs" ino=10424 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   98.464026][    T8] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[   99.349459][   T29] audit: type=1400 audit(1740217794.532:253): avc:  denied  { write } for  pid=6283 comm="syz.1.104" path="socket:[10424]" dev="sockfs" ino=10424 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  101.274024][   T29] audit: type=1400 audit(1740217797.022:254): avc:  denied  { sys_module } for  pid=6288 comm="syz.4.103" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  101.364161][ T6304] netlink: 56 bytes leftover after parsing attributes in process `syz.2.107'.
[  101.402772][ T6304] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  101.415652][ T6304] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  101.880811][ T6304] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  101.905232][ T6304] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  102.779241][   T29] audit: type=1400 audit(1740217798.532:255): avc:  denied  { unmount } for  pid=5815 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  103.275789][ T6334] FAULT_INJECTION: forcing a failure.
[  103.275789][ T6334] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  103.288996][ T6334] CPU: 1 UID: 0 PID: 6334 Comm: syz.1.115 Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  103.289019][ T6334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.289030][ T6334] Call Trace:
[  103.289036][ T6334]  <TASK>
[  103.289047][ T6334]  dump_stack_lvl+0x16c/0x1f0
[  103.289075][ T6334]  should_fail_ex+0x50a/0x650
[  103.289105][ T6334]  _copy_from_user+0x2e/0xd0
[  103.289124][ T6334]  copy_msghdr_from_user+0x99/0x160
[  103.289148][ T6334]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  103.289185][ T6334]  ___sys_sendmsg+0xff/0x1e0
[  103.289208][ T6334]  ? __pfx____sys_sendmsg+0x10/0x10
[  103.289242][ T6334]  ? __pfx_lock_release+0x10/0x10
[  103.289266][ T6334]  ? trace_lock_acquire+0x14e/0x1f0
[  103.289296][ T6334]  ? __fget_files+0x206/0x3a0
[  103.289321][ T6334]  __sys_sendmsg+0x16e/0x220
[  103.289345][ T6334]  ? __pfx___sys_sendmsg+0x10/0x10
[  103.289385][ T6334]  do_syscall_64+0xcd/0x250
[  103.289408][ T6334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.289432][ T6334] RIP: 0033:0x7f4b2838d169
[  103.289454][ T6334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.289474][ T6334] RSP: 002b:00007f4b2918a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  103.289491][ T6334] RAX: ffffffffffffffda RBX: 00007f4b285a6160 RCX: 00007f4b2838d169
[  103.289503][ T6334] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000008
[  103.289514][ T6334] RBP: 00007f4b2918a090 R08: 0000000000000000 R09: 0000000000000000
[  103.289525][ T6334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.289535][ T6334] R13: 0000000000000000 R14: 00007f4b285a6160 R15: 00007ffdd556ce48
[  103.289561][ T6334]  </TASK>
[  103.532466][   T29] audit: type=1400 audit(1740217799.222:256): avc:  denied  { write } for  pid=6327 comm="syz.1.115" name="001" dev="devtmpfs" ino=745 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  104.089497][   T29] audit: type=1400 audit(1740217799.842:257): avc:  denied  { read } for  pid=6337 comm="syz.1.117" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  104.137479][   T29] audit: type=1400 audit(1740217799.852:258): avc:  denied  { open } for  pid=6337 comm="syz.1.117" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  104.800188][   T29] audit: type=1400 audit(1740217800.562:259): avc:  denied  { setopt } for  pid=6342 comm="syz.2.118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  104.849545][   T29] audit: type=1400 audit(1740217800.592:260): avc:  denied  { accept } for  pid=6342 comm="syz.2.118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  104.883698][   T29] audit: type=1400 audit(1740217800.602:261): avc:  denied  { block_suspend } for  pid=6342 comm="syz.2.118" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  104.973579][   T29] audit: type=1400 audit(1740217800.662:262): avc:  denied  { create } for  pid=6342 comm="syz.2.118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  105.864072][ T6350] trusted_key: encrypted_key: insufficient parameters specified
[  106.209758][ T5822] Bluetooth: hci0: command 0x0c1a tx timeout
[  106.215846][ T6340] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  106.972504][ T6340] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  106.988756][ T6340] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  106.998779][ T6340] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  107.006842][ T6340] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  107.018602][ T6340] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  107.026472][ T6340] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  107.034635][ T6340] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  107.042898][ T6340] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  107.051221][ T6340] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  107.058472][ T6340] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  107.065740][ T6340] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  107.072944][ T6340] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  107.079596][ T6340] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  107.088513][ T6340] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  107.100899][ T6340] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  107.111158][ T6340] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  107.500400][ T1200] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  107.552357][ T6363] netlink: 148 bytes leftover after parsing attributes in process `syz.0.124'.
[  107.649893][ T1200] usb 3-1: Using ep0 maxpacket: 8
[  107.680708][ T1200] usb 3-1: config 0 has an invalid interface number: 52 but max is 0
[  107.757115][ T1200] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  107.790031][   T25] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  107.865210][ T1200] usb 3-1: config 0 has no interface number 0
[  107.922146][    T8] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  108.006251][ T1200] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  108.055505][ T1200] usb 3-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  108.082532][   T29] audit: type=1400 audit(1740217803.832:263): avc:  denied  { read write } for  pid=6365 comm="syz.4.126" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  108.110079][ T1200] usb 3-1: config 0 interface 52 has no altsetting 0
[  108.120491][   T29] audit: type=1400 audit(1740217803.832:264): avc:  denied  { open } for  pid=6365 comm="syz.4.126" path="/dev/ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  108.153160][    T8] usb 1-1: device descriptor read/64, error -71
[  108.159823][ T1200] usb 3-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  108.263198][ T1200] usb 3-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  108.273628][ T1200] usb 3-1: Product: syz
[  108.278538][   T29] audit: type=1400 audit(1740217803.872:265): avc:  denied  { ioctl } for  pid=6365 comm="syz.4.126" path="/dev/ppp" dev="devtmpfs" ino=709 ioctlcmd=0x7459 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  108.292409][ T5822] Bluetooth: hci0: command 0x0c1a tx timeout
[  108.311795][ T6367] kAFS: No cell specified
[  108.322538][ T1200] usb 3-1: SerialNumber: syz
[  108.427011][ T1200] usb 3-1: config 0 descriptor??
[  108.509975][    T8] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  108.810504][    T8] usb 1-1: device descriptor read/64, error -71
[  109.149560][    T8] usb usb1-port1: attempt power cycle
[  109.155064][ T5822] Bluetooth: hci1: command 0x0c1a tx timeout
[  109.161148][ T5822] Bluetooth: hci3: command 0x0c1a tx timeout
[  109.167181][ T5822] Bluetooth: hci2: command 0x0c1a tx timeout
[  109.173331][ T5822] Bluetooth: hci4: command 0x0c1a tx timeout
[  109.226066][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  109.226082][   T29] audit: type=1400 audit(1740217804.962:267): avc:  denied  { create } for  pid=6351 comm="syz.2.121" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  109.304895][   T29] audit: type=1400 audit(1740217804.972:268): avc:  denied  { ioctl } for  pid=6351 comm="syz.2.121" path="socket:[10055]" dev="sockfs" ino=10055 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  109.392416][   T29] audit: type=1400 audit(1740217805.052:269): avc:  denied  { read write } for  pid=6359 comm="syz.1.125" name="uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  109.480065][   T29] audit: type=1400 audit(1740217805.052:270): avc:  denied  { open } for  pid=6359 comm="syz.1.125" path="/dev/uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  109.569842][    T8] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  109.577716][   T29] audit: type=1400 audit(1740217805.052:271): avc:  denied  { ioctl } for  pid=6359 comm="syz.1.125" path="/dev/uinput" dev="devtmpfs" ino=920 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  109.580055][   T25] usb 3-1: USB disconnect, device number 8
[  109.625296][    T8] usb 1-1: device descriptor read/8, error -71
[  109.768826][   T29] audit: type=1400 audit(1740217805.182:272): avc:  denied  { bind } for  pid=6359 comm="syz.1.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  109.929838][    T8] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  110.161028][    T8] usb 1-1: device descriptor read/8, error -71
[  110.309845][    T8] usb usb1-port1: unable to enumerate USB device
[  110.399992][ T5830] Bluetooth: hci0: command 0x0c1a tx timeout
[  110.511368][   T29] audit: type=1400 audit(1740217806.262:273): avc:  denied  { create } for  pid=6381 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  111.224883][   T29] audit: type=1400 audit(1740217806.892:274): avc:  denied  { bind } for  pid=6381 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  111.250015][ T5830] Bluetooth: hci2: command 0x0c1a tx timeout
[  111.256190][ T5827] Bluetooth: hci3: command 0x0c1a tx timeout
[  111.263333][ T5830] Bluetooth: hci1: command 0x0c1a tx timeout
[  111.269590][ T5822] Bluetooth: hci4: command 0x0c1a tx timeout
[  111.469838][   T29] audit: type=1400 audit(1740217806.892:275): avc:  denied  { write } for  pid=6381 comm="syz.3.130" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  112.725118][ T5820] Bluetooth: hci0: command 0x0c1a tx timeout
[  113.189009][ T6404] Illegal XDP return value 38 on prog  (id 24) dev syz_tun, expect packet loss!
[  113.219095][ T6414] CUSE: info not properly terminated
[  113.338179][ T5820] Bluetooth: hci4: command 0x0c1a tx timeout
[  113.346665][ T5820] Bluetooth: hci1: command 0x0c1a tx timeout
[  113.352888][ T5820] Bluetooth: hci3: command 0x0c1a tx timeout
[  113.359043][ T5820] Bluetooth: hci2: command 0x0c1a tx timeout
[  113.971673][ T6428] netlink: 148 bytes leftover after parsing attributes in process `syz.1.140'.
[  115.257783][   T29] audit: type=1400 audit(1740217811.012:276): avc:  denied  { write } for  pid=6431 comm="syz.0.142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  115.360291][    T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  115.410026][ T5822] Bluetooth: hci4: command 0x0c1a tx timeout
[  115.631746][    T9] usb 2-1: device descriptor read/64, error -71
[  115.885314][   T25] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  116.683360][   T29] audit: type=1400 audit(1740217812.442:277): avc:  denied  { mount } for  pid=6447 comm="syz.3.147" name="/" dev="configfs" ino=1237 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  116.714000][    T9] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  116.718499][   T25] usb 1-1: config 1 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.732476][   T25] usb 1-1: config 1 interface 0 has no altsetting 0
[  116.742967][   T25] usb 1-1: New USB device found, idVendor=0c70, idProduct=f011, bcdDevice= 0.40
[  116.752218][   T25] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.761439][   T25] usb 1-1: Product: syz
[  116.766185][   T25] usb 1-1: Manufacturer: �
[  116.774919][ T6449] CUSE: info not properly terminated
[  116.787001][   T25] usb 1-1: SerialNumber: syz
[  116.826867][   T29] audit: type=1400 audit(1740217812.472:278): avc:  denied  { setattr } for  pid=6447 comm="syz.3.147" name="/" dev="configfs" ino=1237 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  117.083307][ T5866] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  117.115236][   T29] audit: type=1400 audit(1740217812.872:279): avc:  denied  { rename } for  pid=5175 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  117.144455][   T29] audit: type=1400 audit(1740217812.872:280): avc:  denied  { unlink } for  pid=5175 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  117.186797][   T29] audit: type=1400 audit(1740217812.872:281): avc:  denied  { create } for  pid=5175 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  117.234042][   T25] usbhid 1-1:1.0: can't add hid device: -71
[  117.258268][   T25] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[  117.548870][   T25] usb 1-1: USB disconnect, device number 15
[  117.653940][ T5808] udevd[5808]: setting owner of /dev/bus/usb/001/015 to uid=0, gid=0 failed: No such file or directory
[  117.656051][ T5866] usb 4-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  117.698246][ T5866] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.728752][ T5866] usb 4-1: Product: syz
[  117.741491][ T5866] usb 4-1: Manufacturer: syz
[  117.746158][ T5866] usb 4-1: SerialNumber: syz
[  117.906133][ T5866] usb 4-1: config 0 descriptor??
[  118.408813][ T5866] i2c-tiny-usb 4-1:0.0: version 6d.cc found at bus 004 address 007
[  118.973638][ T5866]  (null): failure setting delay to 10us
[  119.001100][ T5866] i2c-tiny-usb 4-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  119.020067][ T5866] usb 4-1: USB disconnect, device number 7
[  119.038946][   T29] audit: type=1400 audit(1740217814.792:282): avc:  denied  { bind } for  pid=6470 comm="syz.2.156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  119.118170][   T29] audit: type=1400 audit(1740217814.842:283): avc:  denied  { name_bind } for  pid=6470 comm="syz.2.156" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  119.182311][   T29] audit: type=1400 audit(1740217814.842:284): avc:  denied  { node_bind } for  pid=6470 comm="syz.2.156" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[  119.210735][   T29] audit: type=1400 audit(1740217814.972:285): avc:  denied  { connect } for  pid=6470 comm="syz.2.156" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  120.364529][ T6487] netlink: 148 bytes leftover after parsing attributes in process `syz.3.159'.
[  120.760329][ T5913] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  120.997897][ T5913] usb 4-1: device descriptor read/64, error -71
[  121.072258][ T6493] Cannot find set identified by id 0 to match
[  121.121835][ T5823] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  121.264848][ T5913] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  121.394877][ T5823] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  121.456263][ T6495] 9pnet_fd: Insufficient options for proto=fd
[  121.509899][ T5913] usb 4-1: device descriptor read/64, error -71
[  121.529396][ T5823] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 4
[  121.557267][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  121.557281][   T29] audit: type=1400 audit(1740217817.302:287): avc:  denied  { write } for  pid=6494 comm="syz.1.162" name="igmp6" dev="proc" ino=4026532890 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  121.619231][ T5823] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  121.704658][ T5913] usb usb4-port1: attempt power cycle
[  121.717829][ T5823] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.763908][ T5823] usb 3-1: Product: syz
[  121.768346][ T5823] usb 3-1: Manufacturer: syz
[  121.792029][ T5823] usb 3-1: SerialNumber: syz
[  121.844540][ T5823] usb 3-1: config 0 descriptor??
[  122.102316][ T5823] em28xx 3-1:0.0: New device syz syz @ 12 Mbps (2040:0264, interface 0, class 0)
[  122.159965][ T5913] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  122.181082][ T5913] usb 4-1: device descriptor read/8, error -71
[  122.204058][ T5823] em28xx 3-1:0.0: Device initialization failed.
[  122.220654][ T5823] em28xx 3-1:0.0: Device must be connected to a high-speed USB 2.0 port.
[  122.370064][ T5866] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  122.419964][ T5913] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  122.476146][ T5913] usb 4-1: device descriptor read/8, error -71
[  122.597529][   T29] audit: type=1400 audit(1740217818.242:288): avc:  denied  { connect } for  pid=6506 comm="syz.4.166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  122.637637][   T29] audit: type=1400 audit(1740217818.352:289): avc:  denied  { bind } for  pid=6506 comm="syz.4.166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  122.659379][ T5913] usb usb4-port1: unable to enumerate USB device
[  122.691479][ T5866] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  122.701124][ T5866] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.722188][ T5866] usb 1-1: config 0 descriptor??
[  123.701368][ T6523] netem: change failed
[  123.820612][ T5866] ath6kl: Failed to submit usb control message: -110
[  123.827411][ T5866] ath6kl: unable to send the bmi data to the device: -110
[  123.851329][ T5866] ath6kl: Unable to send get target info: -110
[  123.904337][ T5866] ath6kl: Failed to init ath6kl core: -110
[  123.931807][ T5866] ath6kl_usb 1-1:0.0: probe with driver ath6kl_usb failed with error -110
[  124.029087][ T6532] overlayfs: missing 'lowerdir'
[  124.057419][ T6528] lo speed is unknown, defaulting to 1000
[  124.073727][ T6528] lo speed is unknown, defaulting to 1000
[  125.120507][ T5822] Bluetooth: hci0: command 0x0c1a tx timeout
[  125.134863][ T6528] lo speed is unknown, defaulting to 1000
[  125.147979][ T5866] usb 1-1: USB disconnect, device number 16
[  125.178499][ T6528] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  125.193368][ T6528] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  126.172371][    T9] usb 3-1: USB disconnect, device number 9
[  126.209987][   T29] audit: type=1400 audit(1740217821.262:290): avc:  denied  { create } for  pid=6527 comm="syz.0.173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  126.229305][    C1] vkms_vblank_simulate: vblank timer overrun
[  126.384719][ T6528] lo speed is unknown, defaulting to 1000
[  126.567513][ T6528] lo speed is unknown, defaulting to 1000
[  126.614703][   T29] audit: type=1400 audit(1740217821.292:291): avc:  denied  { getopt } for  pid=6527 comm="syz.0.173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  126.625659][ T6528] lo speed is unknown, defaulting to 1000
[  126.698299][ T6528] lo speed is unknown, defaulting to 1000
[  126.705155][ T6528] lo speed is unknown, defaulting to 1000
[  126.722256][ T6539] FAULT_INJECTION: forcing a failure.
[  126.722256][ T6539] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.789358][ T6539] CPU: 0 UID: 0 PID: 6539 Comm: syz.2.175 Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  126.789383][ T6539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  126.789393][ T6539] Call Trace:
[  126.789398][ T6539]  <TASK>
[  126.789405][ T6539]  dump_stack_lvl+0x16c/0x1f0
[  126.789430][ T6539]  should_fail_ex+0x50a/0x650
[  126.789459][ T6539]  _copy_from_user+0x2e/0xd0
[  126.789478][ T6539]  udmabuf_ioctl+0x21b/0x310
[  126.789497][ T6539]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  126.789525][ T6539]  ? selinux_file_ioctl+0xb4/0x270
[  126.789552][ T6539]  ? __pfx_udmabuf_ioctl+0x10/0x10
[  126.789571][ T6539]  __x64_sys_ioctl+0x190/0x200
[  126.789598][ T6539]  do_syscall_64+0xcd/0x250
[  126.789620][ T6539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.789644][ T6539] RIP: 0033:0x7f9e4ff8d169
[  126.789658][ T6539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.789675][ T6539] RSP: 002b:00007f9e50df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  126.789691][ T6539] RAX: ffffffffffffffda RBX: 00007f9e501a5fa0 RCX: 00007f9e4ff8d169
[  126.789707][ T6539] RDX: 0000400000000640 RSI: 0000000040087543 RDI: 0000000000000003
[  126.789717][ T6539] RBP: 00007f9e50df6090 R08: 0000000000000000 R09: 0000000000000000
[  126.789726][ T6539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.789735][ T6539] R13: 0000000000000000 R14: 00007f9e501a5fa0 R15: 00007ffe7211b3c8
[  126.789757][ T6539]  </TASK>
[  126.968619][   T29] audit: type=1400 audit(1740217822.722:292): avc:  denied  { unmount } for  pid=5818 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  127.072568][ T6545] bpf: Bad value for 'uid'
[  127.103985][ T6544] tmpfs: Unknown parameter 'nŸÍ'
[  127.146278][   T29] audit: type=1400 audit(1740217822.862:293): avc:  denied  { remount } for  pid=6541 comm="syz.1.177" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  127.430037][   T29] audit: type=1400 audit(1740217822.862:294): avc:  denied  { listen } for  pid=6540 comm="syz.3.174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  127.873848][   T29] audit: type=1400 audit(1740217822.862:295): avc:  denied  { accept } for  pid=6540 comm="syz.3.174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  127.995299][   T29] audit: type=1400 audit(1740217823.662:296): avc:  denied  { write } for  pid=6554 comm="syz.2.179" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  128.283973][ T6562] netlink: 148 bytes leftover after parsing attributes in process `syz.3.180'.
[  128.570059][    T8] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  128.740514][    T8] usb 4-1: device descriptor read/64, error -71
[  129.030210][    T8] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  129.170956][    T8] usb 4-1: device descriptor read/64, error -71
[  129.276428][   T29] audit: type=1400 audit(1740217825.032:297): avc:  denied  { bind } for  pid=6574 comm="syz.4.184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  129.301078][    T8] usb usb4-port1: attempt power cycle
[  129.365192][   T29] audit: type=1400 audit(1740217825.052:298): avc:  denied  { listen } for  pid=6574 comm="syz.4.184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  129.457332][ T6579] lo speed is unknown, defaulting to 1000
[  129.670051][    T8] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  129.690383][    T8] usb 4-1: device descriptor read/8, error -71
[  129.748490][ T6586] overlayfs: missing 'lowerdir'
[  129.929805][    T8] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  129.955060][    T8] usb 4-1: device descriptor read/8, error -71
[  130.070013][ T6579] netlink: 'syz.0.178': attribute type 12 has an invalid length.
[  130.080915][   T29] audit: type=1400 audit(1740217825.842:299): avc:  denied  { create } for  pid=6589 comm="syz.1.188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  130.101683][    T8] usb usb4-port1: unable to enumerate USB device
[  130.995182][   T29] audit: type=1400 audit(1740217826.752:300): avc:  denied  { ioctl } for  pid=6589 comm="syz.1.188" path="socket:[11661]" dev="sockfs" ino=11661 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  131.272208][ T5820] Bluetooth: hci4: command 0x0c1a tx timeout
[  131.820226][ T6597] ceph: No mds server is up or the cluster is laggy
[  131.827287][ T5913] libceph: connect (1)[c::]:6789 error -101
[  131.864817][ T5913] libceph: mon0 (1)[c::]:6789 connect error
[  132.670029][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  132.670070][   T29] audit: type=1400 audit(1740217828.422:304): avc:  denied  { read write } for  pid=6607 comm="syz.3.192" name="cgroup.procs" dev="cgroup" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:semanage_exec_t:s0"
[  132.703359][    C1] vkms_vblank_simulate: vblank timer overrun
[  132.810976][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  132.818091][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  132.829571][   T29] audit: type=1400 audit(1740217828.472:305): avc:  denied  { open } for  pid=6607 comm="syz.3.192" path="/syzcgroup/cpu/syz3/cgroup.procs" dev="cgroup" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:semanage_exec_t:s0"
[  133.165272][ T6624] overlayfs: missing 'lowerdir'
[  133.188693][ T6626] FAULT_INJECTION: forcing a failure.
[  133.188693][ T6626] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.206688][ T6626] CPU: 1 UID: 0 PID: 6626 Comm: syz.1.195 Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  133.206704][ T6626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.206710][ T6626] Call Trace:
[  133.206714][ T6626]  <TASK>
[  133.206718][ T6626]  dump_stack_lvl+0x16c/0x1f0
[  133.206736][ T6626]  should_fail_ex+0x50a/0x650
[  133.206754][ T6626]  _copy_from_user+0x2e/0xd0
[  133.206765][ T6626]  copy_msghdr_from_user+0x99/0x160
[  133.206780][ T6626]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  133.206801][ T6626]  ___sys_sendmsg+0xff/0x1e0
[  133.206815][ T6626]  ? __pfx____sys_sendmsg+0x10/0x10
[  133.206834][ T6626]  ? __pfx_lock_release+0x10/0x10
[  133.206849][ T6626]  ? trace_lock_acquire+0x14e/0x1f0
[  133.206865][ T6626]  ? __fget_files+0x206/0x3a0
[  133.206879][ T6626]  __sys_sendmsg+0x16e/0x220
[  133.206893][ T6626]  ? __pfx___sys_sendmsg+0x10/0x10
[  133.206915][ T6626]  do_syscall_64+0xcd/0x250
[  133.206929][ T6626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.206944][ T6626] RIP: 0033:0x7f4b2838d169
[  133.206952][ T6626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.206962][ T6626] RSP: 002b:00007f4b2925d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  133.206972][ T6626] RAX: ffffffffffffffda RBX: 00007f4b285a5fa0 RCX: 00007f4b2838d169
[  133.206978][ T6626] RDX: 0000000020000000 RSI: 0000400000000180 RDI: 0000000000000003
[  133.206984][ T6626] RBP: 00007f4b2925d090 R08: 0000000000000000 R09: 0000000000000000
[  133.206990][ T6626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.206996][ T6626] R13: 0000000000000000 R14: 00007f4b285a5fa0 R15: 00007ffdd556ce48
[  133.207009][ T6626]  </TASK>
[  133.385084][    C1] vkms_vblank_simulate: vblank timer overrun
[  133.851744][ T6630] netlink: 148 bytes leftover after parsing attributes in process `syz.0.199'.
[  135.613221][ T5913] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  136.027096][ T5823] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  136.034974][   T29] audit: type=1400 audit(1740217831.412:306): avc:  denied  { accept } for  pid=6632 comm="syz.4.198" lport=47046 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  136.160419][   T29] audit: type=1400 audit(1740217831.412:307): avc:  denied  { read } for  pid=6632 comm="syz.4.198" lport=47046 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  136.199737][   T29] audit: type=1400 audit(1740217831.482:308): avc:  denied  { setopt } for  pid=6632 comm="syz.4.198" lport=47046 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  136.422110][ T5913] usb 1-1: device descriptor read/64, error -71
[  136.451013][ T5823] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  136.460237][ T5823] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.491574][ T5823] usb 4-1: config 0 descriptor??
[  136.857107][   T29] audit: type=1400 audit(1740217832.612:309): avc:  denied  { read write } for  pid=6661 comm="syz.0.207" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  137.551280][   T29] audit: type=1400 audit(1740217832.612:310): avc:  denied  { open } for  pid=6661 comm="syz.0.207" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  137.583498][ T5823] ath6kl: Failed to submit usb control message: -110
[  137.590399][ T5823] ath6kl: unable to send the bmi data to the device: -110
[  137.597664][ T5823] ath6kl: Unable to send get target info: -110
[  137.720159][   T29] audit: type=1400 audit(1740217833.282:311): avc:  denied  { read write } for  pid=6659 comm="syz.4.206" name="rdma_cm" dev="devtmpfs" ino=1271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  137.725820][ T5822] Bluetooth: hci2: command 0x0c1a tx timeout
[  137.768536][ T5823] ath6kl: Failed to init ath6kl core: -110
[  137.795214][ T5823] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -110
[  138.390089][ T6668] overlayfs: missing 'lowerdir'
[  138.391719][   T29] audit: type=1400 audit(1740217833.282:312): avc:  denied  { open } for  pid=6659 comm="syz.4.206" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  138.464132][   T29] audit: type=1400 audit(1740217834.132:313): avc:  denied  { read write } for  pid=6648 comm="syz.1.204" name="ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  139.026139][ T6658] kexec: Could not allocate control_code_buffer
[  139.045390][ T5913] usb 4-1: USB disconnect, device number 16
[  139.121116][   T29] audit: type=1400 audit(1740217834.132:314): avc:  denied  { open } for  pid=6648 comm="syz.1.204" path="/dev/ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  139.782661][ T5822] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:0'
[  139.792659][ T5822] CPU: 1 UID: 0 PID: 5822 Comm: kworker/u9:3 Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  139.792686][ T5822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  139.792699][ T5822] Workqueue: hci4 hci_rx_work
[  139.792730][ T5822] Call Trace:
[  139.792736][ T5822]  <TASK>
[  139.792745][ T5822]  dump_stack_lvl+0x16c/0x1f0
[  139.792773][ T5822]  sysfs_warn_dup+0x7f/0xa0
[  139.792804][ T5822]  sysfs_create_dir_ns+0x24d/0x2b0
[  139.792830][ T5822]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  139.792860][ T5822]  ? preempt_schedule_thunk+0x1a/0x30
[  139.792893][ T5822]  kobject_add_internal+0x2c8/0x990
[  139.792923][ T5822]  kobject_add+0x16f/0x240
[  139.792947][ T5822]  ? __pfx_kobject_add+0x10/0x10
[  139.792977][ T5822]  ? kobject_put+0xab/0x5a0
[  139.793010][ T5822]  device_add+0x289/0x1a70
[  139.793035][ T5822]  ? __pfx_dev_set_name+0x10/0x10
[  139.793061][ T5822]  ? __pfx_device_add+0x10/0x10
[  139.793086][ T5822]  ? mgmt_send_event_skb+0x2f2/0x460
[  139.793123][ T5822]  hci_conn_add_sysfs+0x17e/0x230
[  139.793160][ T5822]  le_conn_complete_evt+0x107f/0x1da0
[  139.793196][ T5822]  ? __pfx_lock_release+0x10/0x10
[  139.793224][ T5822]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  139.793253][ T5822]  ? __mutex_lock+0x1cc/0xb10
[  139.793276][ T5822]  ? irqentry_exit+0x3b/0x90
[  139.793308][ T5822]  hci_le_conn_complete_evt+0x23c/0x370
[  139.793342][ T5822]  hci_le_meta_evt+0x2e2/0x5d0
[  139.793368][ T5822]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  139.793402][ T5822]  hci_event_packet+0x666/0x1180
[  139.793428][ T5822]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  139.793456][ T5822]  ? __pfx_hci_event_packet+0x10/0x10
[  139.793487][ T5822]  ? kcov_remote_start+0x3df/0x6e0
[  139.793522][ T5822]  hci_rx_work+0x2c5/0x16b0
[  139.793550][ T5822]  ? process_one_work+0x921/0x1ba0
[  139.793579][ T5822]  process_one_work+0x9c5/0x1ba0
[  139.793614][ T5822]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  139.793640][ T5822]  ? __pfx_process_one_work+0x10/0x10
[  139.793674][ T5822]  ? assign_work+0x1a0/0x250
[  139.793701][ T5822]  worker_thread+0x6c8/0xf00
[  139.793735][ T5822]  ? __kthread_parkme+0x148/0x220
[  139.793755][ T5822]  ? __pfx_worker_thread+0x10/0x10
[  139.793781][ T5822]  kthread+0x3af/0x750
[  139.793805][ T5822]  ? __pfx_kthread+0x10/0x10
[  139.793826][ T5822]  ? lock_acquire+0x2f/0xb0
[  139.793855][ T5822]  ? __pfx_kthread+0x10/0x10
[  139.793879][ T5822]  ret_from_fork+0x45/0x80
[  139.793902][ T5822]  ? __pfx_kthread+0x10/0x10
[  139.793926][ T5822]  ret_from_fork_asm+0x1a/0x30
[  139.793963][ T5822]  </TASK>
[  139.794314][ T5822] kobject: kobject_add_internal failed for hci4:0 with -EEXIST, don't try to register things with the same name in the same directory.
[  140.542504][ T5822] Bluetooth: hci4: failed to register connection device
[  141.220430][ T6696] netlink: 148 bytes leftover after parsing attributes in process `syz.3.217'.
[  141.731838][   T29] audit: type=1400 audit(1740217836.752:315): avc:  denied  { mount } for  pid=6687 comm="syz.1.212" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  141.800168][   T29] audit: type=1400 audit(1740217837.002:316): avc:  denied  { ioctl } for  pid=6692 comm="syz.3.217" path="/dev/raw-gadget" dev="devtmpfs" ino=820 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  141.968593][   T29] audit: type=1400 audit(1740217837.672:317): avc:  denied  { mounton } for  pid=6690 comm="syz.4.213" path="/proc/169/cgroup" dev="proc" ino=12343 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  142.009789][ T5823] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  142.057946][   T29] audit: type=1400 audit(1740217837.682:318): avc:  denied  { name_bind } for  pid=6699 comm="syz.0.218" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  142.159958][ T5823] usb 4-1: device descriptor read/64, error -71
[  142.299233][   T29] audit: type=1400 audit(1740217837.682:319): avc:  denied  { node_bind } for  pid=6699 comm="syz.0.218" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  143.020527][ T5820] Bluetooth: hci4: command 0x0c1a tx timeout
[  143.043266][   T29] audit: type=1400 audit(1740217837.682:320): avc:  denied  { watch watch_reads } for  pid=6699 comm="syz.0.218" path="/36/file1" dev="tmpfs" ino=234 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  143.136273][   T29] audit: type=1400 audit(1740217838.222:321): avc:  denied  { connect } for  pid=6702 comm="syz.2.219" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  143.162646][ T5823] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  143.331097][ T5823] usb 4-1: device descriptor read/64, error -71
[  143.382101][   T29] audit: type=1400 audit(1740217838.222:322): avc:  denied  { name_connect } for  pid=6702 comm="syz.2.219" dest=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  143.917061][ T5823] usb usb4-port1: attempt power cycle
[  144.094290][ T6712] FAULT_INJECTION: forcing a failure.
[  144.094290][ T6712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.107919][ T6712] CPU: 1 UID: 0 PID: 6712 Comm: syz.0.221 Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  144.107940][ T6712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  144.107950][ T6712] Call Trace:
[  144.107956][ T6712]  <TASK>
[  144.107963][ T6712]  dump_stack_lvl+0x16c/0x1f0
[  144.107989][ T6712]  should_fail_ex+0x50a/0x650
[  144.108019][ T6712]  _copy_to_user+0x32/0xd0
[  144.108040][ T6712]  simple_read_from_buffer+0xd0/0x160
[  144.108067][ T6712]  proc_fail_nth_read+0x198/0x270
[  144.108093][ T6712]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.108119][ T6712]  ? rw_verify_area+0xcf/0x680
[  144.108143][ T6712]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.108166][ T6712]  vfs_read+0x1df/0xbf0
[  144.108191][ T6712]  ? __fget_files+0x1fc/0x3a0
[  144.108209][ T6712]  ? __pfx___mutex_lock+0x10/0x10
[  144.108230][ T6712]  ? __pfx_vfs_read+0x10/0x10
[  144.108263][ T6712]  ? __fget_files+0x206/0x3a0
[  144.108288][ T6712]  ksys_read+0x12b/0x250
[  144.108312][ T6712]  ? __pfx_ksys_read+0x10/0x10
[  144.108345][ T6712]  do_syscall_64+0xcd/0x250
[  144.108369][ T6712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.108392][ T6712] RIP: 0033:0x7fa41538bb7c
[  144.108407][ T6712] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  144.108423][ T6712] RSP: 002b:00007fa41614b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  144.108440][ T6712] RAX: ffffffffffffffda RBX: 00007fa4155a6080 RCX: 00007fa41538bb7c
[  144.108451][ T6712] RDX: 000000000000000f RSI: 00007fa41614b0a0 RDI: 0000000000000007
[  144.108462][ T6712] RBP: 00007fa41614b090 R08: 0000000000000000 R09: 0000000000000000
[  144.108472][ T6712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.108482][ T6712] R13: 0000000000000000 R14: 00007fa4155a6080 R15: 00007fff23bcc448
[  144.108508][ T6712]  </TASK>
[  144.387445][ T6720] netlink: 112 bytes leftover after parsing attributes in process `syz.3.224'.
[  144.765443][ T6726] Malformed UNC in devname
[  144.765443][ T6726] 
[  144.774552][ T6726] CIFS: VFS: Malformed UNC in devname
[  145.439151][ T6729] Malformed UNC in devname
[  145.439151][ T6729] 
[  145.445852][ T6729] CIFS: VFS: Malformed UNC in devname
[  145.866347][   T29] audit: type=1400 audit(1740217841.612:323): avc:  denied  { read } for  pid=6731 comm="syz.3.229" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  146.023758][   T29] audit: type=1400 audit(1740217841.742:324): avc:  denied  { shutdown } for  pid=6731 comm="syz.3.229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  146.043223][    C0] vkms_vblank_simulate: vblank timer overrun
[  146.103660][ T5869] IPVS: starting estimator thread 0...
[  146.129819][   T29] audit: type=1400 audit(1740217841.752:325): avc:  denied  { create } for  pid=6731 comm="syz.3.229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  146.199842][ T6742] IPVS: using max 26 ests per chain, 62400 per kthread
[  146.216113][   T29] audit: type=1400 audit(1740217841.842:326): avc:  denied  { write } for  pid=6731 comm="syz.3.229" path="socket:[12393]" dev="sockfs" ino=12393 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  146.469742][ T6743] sp0: Synchronizing with TNC
[  146.519471][ T6747] FAULT_INJECTION: forcing a failure.
[  146.519471][ T6747] name failslab, interval 1, probability 0, space 0, times 1
[  146.566432][   T29] audit: type=1400 audit(1740217842.122:327): avc:  denied  { associate } for  pid=6745 comm="syz.2.233" name="cgroup.procs" dev="cgroup" ino=294 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:semanage_exec_t:s0"
[  146.594567][    C0] vkms_vblank_simulate: vblank timer overrun
[  147.229844][ T5869] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  147.247669][ T6747] CPU: 0 UID: 0 PID: 6747 Comm: syz.1.232 Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  147.247694][ T6747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  147.247703][ T6747] Call Trace:
[  147.247709][ T6747]  <TASK>
[  147.247716][ T6747]  dump_stack_lvl+0x16c/0x1f0
[  147.247743][ T6747]  should_fail_ex+0x50a/0x650
[  147.247768][ T6747]  ? fs_reclaim_acquire+0xae/0x150
[  147.247795][ T6747]  ? cgroup_show_path+0xb2/0x740
[  147.247812][ T6747]  should_failslab+0xc2/0x120
[  147.247831][ T6747]  __kmalloc_cache_noprof+0x68/0x410
[  147.247855][ T6747]  ? seq_printf+0x11c/0x250
[  147.247885][ T6747]  ? __pfx_cgroup_show_path+0x10/0x10
[  147.247902][ T6747]  cgroup_show_path+0xb2/0x740
[  147.247923][ T6747]  ? __pfx_cgroup_show_path+0x10/0x10
[  147.247944][ T6747]  kernfs_sop_show_path+0x12b/0x1b0
[  147.247968][ T6747]  ? __pfx_kernfs_sop_show_path+0x10/0x10
[  147.247992][ T6747]  show_path+0x9b/0x100
[  147.248012][ T6747]  show_mountinfo+0x1d5/0x830
[  147.248035][ T6747]  ? __pfx_show_mountinfo+0x10/0x10
[  147.248067][ T6747]  seq_read_iter+0xb19/0x12b0
[  147.248104][ T6747]  vfs_read+0x886/0xbf0
[  147.248135][ T6747]  ? __pfx_vfs_read+0x10/0x10
[  147.248181][ T6747]  ksys_read+0x12b/0x250
[  147.248205][ T6747]  ? __pfx_ksys_read+0x10/0x10
[  147.248240][ T6747]  do_syscall_64+0xcd/0x250
[  147.248263][ T6747]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.248287][ T6747] RIP: 0033:0x7f4b2838d169
[  147.248301][ T6747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.248317][ T6747] RSP: 002b:00007f4b2925d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  147.248334][ T6747] RAX: ffffffffffffffda RBX: 00007f4b285a5fa0 RCX: 00007f4b2838d169
[  147.248346][ T6747] RDX: 0000000000002020 RSI: 0000400000000f00 RDI: 0000000000000005
[  147.248357][ T6747] RBP: 00007f4b2925d090 R08: 0000000000000000 R09: 0000000000000000
[  147.248368][ T6747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.248379][ T6747] R13: 0000000000000000 R14: 00007f4b285a5fa0 R15: 00007ffdd556ce48
[  147.248405][ T6747]  </TASK>
[  147.458101][    C0] vkms_vblank_simulate: vblank timer overrun
[  147.479911][   T29] audit: type=1400 audit(1740217842.302:328): avc:  denied  { search } for  pid=5487 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  147.501398][   T29] audit: type=1400 audit(1740217842.302:329): avc:  denied  { read } for  pid=5487 comm="dhcpcd" name="n100" dev="tmpfs" ino=2714 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  147.869769][ T5869] usb 1-1: Using ep0 maxpacket: 32
[  147.876470][ T5869] usb 1-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  147.885773][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.999121][ T5869] usb 1-1: config 0 descriptor??
[  148.031888][ T5869] gspca_main: sunplus-2.14.0 probing 041e:400b
[  148.235064][ T6761] netlink: 148 bytes leftover after parsing attributes in process `syz.1.235'.
[  149.050106][ T5913] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  149.107894][ T6762] netlink: 12 bytes leftover after parsing attributes in process `syz.0.227'.
[  149.269977][ T5913] usb 2-1: device descriptor read/64, error -71
[  149.446056][ T6762] syz.0.227 (6762): drop_caches: 2
[  149.499749][ T5869] gspca_sunplus: reg_w_riv err -110
[  149.515222][ T5869] sunplus 1-1:0.0: probe with driver sunplus failed with error -110
[  149.701645][ T5913] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  149.801123][ T5823] usb 1-1: USB disconnect, device number 19
[  149.879956][ T5913] usb 2-1: device descriptor read/64, error -71
[  149.990136][ T5913] usb usb2-port1: attempt power cycle
[  150.077616][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  150.077630][   T29] audit: type=1400 audit(1740217845.832:332): avc:  denied  { create } for  pid=6771 comm="syz.3.239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  150.078326][ T6772] warning: `syz.3.239' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  150.083787][   T29] audit: type=1400 audit(1740217845.832:333): avc:  denied  { ioctl } for  pid=6771 comm="syz.3.239" path="socket:[12465]" dev="sockfs" ino=12465 ioctlcmd=0x8b36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  150.719815][ T5913] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  150.749372][ T5913] usb 2-1: device descriptor read/8, error -71
[  150.930450][   T29] audit: type=1400 audit(1740217846.682:334): avc:  denied  { sqpoll } for  pid=6776 comm="syz.3.242" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  151.291359][ T6783] lo speed is unknown, defaulting to 1000
[  151.475464][   T29] audit: type=1400 audit(1740217846.712:335): avc:  denied  { read write } for  pid=6776 comm="syz.3.242" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  151.549769][ T5913] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  151.726322][   T29] audit: type=1400 audit(1740217846.712:336): avc:  denied  { open } for  pid=6776 comm="syz.3.242" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  151.760053][ T5913] usb 2-1: device not accepting address 7, error -71
[  151.799518][ T5913] usb usb2-port1: unable to enumerate USB device
[  152.189730][   T29] audit: type=1400 audit(1740217846.712:337): avc:  denied  { ioctl } for  pid=6776 comm="syz.3.242" path="/dev/fb0" dev="devtmpfs" ino=629 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  152.629931][   T29] audit: type=1400 audit(1740217846.732:338): avc:  denied  { create } for  pid=6778 comm="syz.0.243" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  152.719812][   T29] audit: type=1400 audit(1740217847.022:339): avc:  denied  { read } for  pid=6778 comm="syz.0.243" name="usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  152.859530][   T29] audit: type=1400 audit(1740217847.022:340): avc:  denied  { open } for  pid=6778 comm="syz.0.243" path="/dev/usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  152.889941][   T29] audit: type=1400 audit(1740217847.092:341): avc:  denied  { write } for  pid=6778 comm="syz.0.243" name="file0" dev="tmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  152.919903][ T5866] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  153.003076][ T6802] netlink: 112 bytes leftover after parsing attributes in process `syz.2.249'.
[  153.086062][ T5866] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  153.109876][ T5866] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.136093][ T5866] usb 2-1: config 0 descriptor??
[  153.199785][ T5823] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  153.522574][ T5823] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  153.539820][ T5823] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.547841][ T5823] usb 1-1: Product: syz
[  153.552924][ T5823] usb 1-1: Manufacturer: syz
[  153.557540][ T5823] usb 1-1: SerialNumber: syz
[  154.329771][ T5866] ath6kl: Failed to submit usb control message: -71
[  154.336451][ T5866] ath6kl: unable to send the bmi data to the device: -71
[  154.343568][ T5866] ath6kl: Unable to send get target info: -71
[  154.408292][ T5866] ath6kl: Failed to init ath6kl core: -71
[  154.410544][ T5823] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  154.450871][ T5915] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  154.454009][ T5866] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[  154.551263][ T5866] usb 2-1: USB disconnect, device number 8
[  155.146644][ T5823] usb 1-1: USB disconnect, device number 20
[  155.515503][ T5915] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  155.515957][ T5915] ath9k_htc: Failed to initialize the device
[  155.529841][ T5823] usb 1-1: ath9k_htc: USB layer deinitialized
[  155.640385][ T6820] netlink: 12 bytes leftover after parsing attributes in process `syz.1.252'.
[  155.949332][ T6825] netlink: 148 bytes leftover after parsing attributes in process `syz.2.255'.
[  156.590643][ T5915] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  156.740031][ T5915] usb 3-1: device descriptor read/64, error -71
[  156.839913][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  156.839956][   T29] audit: type=1400 audit(1740217852.552:346): avc:  denied  { create } for  pid=6834 comm="syz.4.259" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  157.069956][ T5915] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  157.239084][   T29] audit: type=1400 audit(1740217852.722:347): avc:  denied  { ioctl } for  pid=6834 comm="syz.4.259" path="socket:[12088]" dev="sockfs" ino=12088 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  157.359854][ T5915] usb 3-1: device descriptor read/64, error -71
[  157.470757][ T5915] usb usb3-port1: attempt power cycle
[  157.849912][ T5915] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  158.128005][ T5915] usb 3-1: device descriptor read/8, error -71
[  158.377297][ T6836] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  158.399866][ T5915] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  158.428535][ T6850] netlink: 112 bytes leftover after parsing attributes in process `syz.3.261'.
[  158.469209][ T5915] usb 3-1: device descriptor read/8, error -71
[  158.580183][ T5915] usb usb3-port1: unable to enumerate USB device
[  159.222150][    T8] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  159.434698][    T8] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  159.462592][    T8] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  159.475332][    T8] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  159.484453][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.562097][ T6857] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  160.097641][    T8] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  160.800062][ T6499] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  160.994103][   T29] audit: type=1326 audit(1740217856.642:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.020742][   T29] audit: type=1326 audit(1740217856.642:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.043959][    C1] vkms_vblank_simulate: vblank timer overrun
[  161.112754][   T29] audit: type=1326 audit(1740217856.642:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.156079][   T29] audit: type=1326 audit(1740217856.642:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.179332][    C1] vkms_vblank_simulate: vblank timer overrun
[  161.186914][ T6499] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  161.196261][ T6499] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.231182][ T6499] usb 2-1: Product: syz
[  161.235377][ T6499] usb 2-1: Manufacturer: syz
[  161.244265][ T6499] usb 2-1: SerialNumber: syz
[  161.249300][   T29] audit: type=1326 audit(1740217856.642:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.333805][ T6499] usb 2-1: config 0 descriptor??
[  161.454935][   T29] audit: type=1326 audit(1740217856.642:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.478067][    C1] vkms_vblank_simulate: vblank timer overrun
[  161.648409][   T29] audit: type=1326 audit(1740217856.642:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.695892][ T6499] usb-storage 2-1:0.0: USB Mass Storage device detected
[  161.867217][   T29] audit: type=1326 audit(1740217856.642:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  161.941912][   T29] audit: type=1326 audit(1740217856.642:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  162.178578][   T29] audit: type=1326 audit(1740217856.642:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  162.219069][   T29] audit: type=1326 audit(1740217856.642:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  162.261321][ T6499] usb 2-1: USB disconnect, device number 9
[  162.283942][ T5866] usb 1-1: USB disconnect, device number 21
[  162.341665][   T29] audit: type=1326 audit(1740217856.752:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  162.422841][   T29] audit: type=1326 audit(1740217856.752:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  162.545659][   T29] audit: type=1326 audit(1740217856.782:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  162.583233][   T29] audit: type=1326 audit(1740217856.782:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  162.686443][ T5823] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  163.116758][   T29] audit: type=1326 audit(1740217856.782:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  163.224787][   T29] audit: type=1326 audit(1740217856.782:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6881 comm="syz.4.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f179458d169 code=0x7ffc0000
[  163.319843][ T5823] usb 5-1: Using ep0 maxpacket: 32
[  163.427781][ T5823] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  163.447733][ T5823] usb 5-1: config 0 has no interface number 0
[  163.566749][ T6907] netlink: 148 bytes leftover after parsing attributes in process `syz.0.276'.
[  163.852125][    T8] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  163.955514][ T6906] netlink: 112 bytes leftover after parsing attributes in process `syz.1.277'.
[  164.017289][ T5823] usb 5-1: config 0 interface 184 has no altsetting 0
[  164.026642][ T5823] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  164.036415][ T5823] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.044529][ T5823] usb 5-1: Product: syz
[  164.048820][ T5823] usb 5-1: Manufacturer: syz
[  164.053781][ T5823] usb 5-1: SerialNumber: syz
[  164.079800][    T8] usb 1-1: device descriptor read/64, error -71
[  164.253647][ T5823] usb 5-1: config 0 descriptor??
[  164.271044][ T5823] smsc75xx v1.0.0
[  164.274980][ T5823] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  164.287281][ T5823] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -22
[  164.339889][    T8] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  165.039849][    T8] usb 1-1: device descriptor read/64, error -71
[  165.073504][ T6898] process 'syz.4.275' launched './file0' with NULL argv: empty string added
[  165.170580][    T8] usb usb1-port1: attempt power cycle
[  165.271750][ T6920] capability: warning: `syz.4.275' uses deprecated v2 capabilities in a way that may be insecure
[  165.314228][ T5823] usb 5-1: USB disconnect, device number 6
[  165.979122][    T8] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  166.814057][    T8] usb 1-1: device not accepting address 24, error -71
[  166.960636][    T9] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  167.038330][   T29] kauditd_printk_skb: 29 callbacks suppressed
[  167.038345][   T29] audit: type=1400 audit(1740217862.792:394): avc:  denied  { write } for  pid=6922 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1707 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  167.117842][ T6898] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  167.279818][ T6898] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  167.334402][    T9] usb 4-1: Using ep0 maxpacket: 32
[  167.531753][ T6898] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  167.589822][   T29] audit: type=1400 audit(1740217862.822:395): avc:  denied  { add_name } for  pid=6922 comm="dhcpcd-run-hook" name="resolv.conf.lapb4.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  167.609882][ T6898] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  167.613128][    T9] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  167.638304][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.660338][   T29] audit: type=1400 audit(1740217862.822:396): avc:  denied  { create } for  pid=6922 comm="dhcpcd-run-hook" name="resolv.conf.lapb4.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  167.685482][   T29] audit: type=1400 audit(1740217862.822:397): avc:  denied  { write } for  pid=6922 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.lapb4.link" dev="tmpfs" ino=2935 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  167.712534][ T6898] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  167.712809][    T9] usb 4-1: config 0 descriptor??
[  167.728316][    T9] gspca_main: sunplus-2.14.0 probing 041e:400b
[  167.748068][ T6898] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  167.800025][   T29] audit: type=1400 audit(1740217862.822:398): avc:  denied  { append } for  pid=6922 comm="dhcpcd-run-hook" name="resolv.conf.lapb4.link" dev="tmpfs" ino=2935 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  167.825456][   T29] audit: type=1400 audit(1740217863.432:399): avc:  denied  { remove_name } for  pid=6950 comm="rm" name="resolv.conf.lapb4.link" dev="tmpfs" ino=2935 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  167.849769][   T29] audit: type=1400 audit(1740217863.432:400): avc:  denied  { unlink } for  pid=6950 comm="rm" name="resolv.conf.lapb4.link" dev="tmpfs" ino=2935 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  168.250664][    T9] gspca_sunplus: reg_w_riv err -110
[  168.250722][    T9] sunplus 4-1:0.0: probe with driver sunplus failed with error -110
[  168.377849][ T6898] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  168.377890][ T6898] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  168.429355][ T6898] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  168.429377][ T6898] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  168.666743][ T6959] netlink: 12 bytes leftover after parsing attributes in process `syz.3.283'.
[  169.157112][   T29] audit: type=1400 audit(1740217864.912:401): avc:  denied  { read } for  pid=6961 comm="syz.1.286" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  169.169100][   T29] audit: type=1400 audit(1740217864.922:402): avc:  denied  { open } for  pid=6961 comm="syz.1.286" path="/60/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  169.169139][   T29] audit: type=1400 audit(1740217864.922:403): avc:  denied  { ioctl } for  pid=6961 comm="syz.1.286" path="/60/file0/file0" dev="fuse" ino=0 ioctlcmd=0x70c8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  169.169206][ T6963] sd 0:0:1:0: PR command failed: 1026
[  169.169251][ T6963] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  169.169292][ T6963] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  169.235703][ T6960] syz.3.283 (6960): drop_caches: 2
[  169.301510][    C1] vkms_vblank_simulate: vblank timer overrun
[  169.353064][    C1] vkms_vblank_simulate: vblank timer overrun
[  169.601297][ T5915] usb 4-1: USB disconnect, device number 20
[  169.984124][ T6983] snd_dummy snd_dummy.0: control 3:184:1024:syz1:2107285500 is already present
[  170.302769][ T6995] netlink: 112 bytes leftover after parsing attributes in process `syz.2.290'.
[  170.693045][ T7005] netlink: 148 bytes leftover after parsing attributes in process `syz.4.291'.
[  171.308292][ T7006] block device autoloading is deprecated and will be removed.
[  171.459790][ T5823] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  172.078109][ T5823] usb 5-1: device descriptor read/64, error -71
[  172.549021][ T7030] CUSE: info not properly terminated
[  172.707190][ T5823] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  173.326748][ T5823] usb 5-1: device descriptor read/64, error -71
[  173.583498][ T5823] usb usb5-port1: attempt power cycle
[  174.121294][ T7044] md2: using deprecated bitmap file support
[  174.128058][ T7044] md2: error: bitmap file must be a regular file
[  174.169948][ T1200] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  174.212374][ T7051] tipc: Started in network mode
[  174.217470][ T7051] tipc: Node identity aaaaaaaaaa35, cluster identity 4711
[  174.225142][ T7051] tipc: Enabled bearer <eth:macvlan1>, priority 10
[  174.316741][ T7057] Malformed UNC in devname
[  174.316741][ T7057] 
[  174.379893][ T1200] usb 4-1: Using ep0 maxpacket: 32
[  174.406518][ T1200] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  174.436881][ T7057] CIFS: VFS: Malformed UNC in devname
[  174.535698][ T1200] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.564494][ T1200] usb 4-1: config 0 descriptor??
[  174.609081][ T1200] gspca_main: sunplus-2.14.0 probing 041e:400b
[  175.120981][ T7071] netlink: 12 bytes leftover after parsing attributes in process `syz.3.302'.
[  175.170513][ T1200] gspca_sunplus: reg_w_riv err -110
[  175.227461][ T7071] syz.3.302 (7071): drop_caches: 2
[  175.269641][ T5869] tipc: Node number set to 10463914
[  175.299053][ T1200] sunplus 4-1:0.0: probe with driver sunplus failed with error -110
[  175.434232][ T7072] netlink: 84 bytes leftover after parsing attributes in process `syz.0.305'.
[  175.825169][ T5869] usb 4-1: USB disconnect, device number 21
[  177.506181][ T7101] netlink: 148 bytes leftover after parsing attributes in process `syz.0.309'.
[  177.559482][ T7100] netlink: 148 bytes leftover after parsing attributes in process `syz.2.310'.
[  178.187829][ T5869] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  178.262681][ T1200] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  178.335065][ T5869] usb 1-1: device descriptor read/64, error -71
[  178.345352][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  178.345367][   T29] audit: type=1400 audit(1740217873.954:407): avc:  denied  { ioctl } for  pid=7108 comm="syz.3.313" path="socket:[13763]" dev="sockfs" ino=13763 ioctlcmd=0x4942 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  179.075440][ T1200] usb 3-1: device descriptor read/64, error -71
[  179.162183][ T5869] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  179.342498][ T5869] usb 1-1: device descriptor read/64, error -71
[  179.348899][ T1200] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  179.515570][ T5869] usb usb1-port1: attempt power cycle
[  179.584845][ T1200] usb 3-1: device descriptor read/64, error -71
[  179.738840][ T1200] usb usb3-port1: attempt power cycle
[  179.877410][ T5861] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  180.059241][ T5869] usb usb1-port1: Cannot enable. Maybe the USB cable is bad?
[  180.067261][ T5861] usb 4-1: Using ep0 maxpacket: 8
[  180.094486][ T5861] usb 4-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=2a.d5
[  180.140966][ T5861] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.194397][ T5861] usb 4-1: config 0 descriptor??
[  180.240623][ T5869] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  180.285968][ T5869] usb 1-1: Using ep0 maxpacket: 32
[  180.308129][ T5869] usb 1-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  180.335842][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.368903][ T5869] usb 1-1: config 0 descriptor??
[  180.386266][ T5869] gspca_main: sunplus-2.14.0 probing 041e:400b
[  180.967380][ T5869] gspca_sunplus: reg_w_riv err -110
[  180.972647][ T5869] sunplus 1-1:0.0: probe with driver sunplus failed with error -110
[  181.096288][ T7138] netlink: 12 bytes leftover after parsing attributes in process `syz.0.316'.
[  181.218731][ T7138] syz.0.316 (7138): drop_caches: 2
[  181.406597][ T5861] usb 4-1: string descriptor 0 read error: -71
[  181.438086][ T5861] usb 4-1: Found UVC 0.00 device <unnamed> (2833:0201)
[  181.469911][ T5861] usb 4-1: No valid video chain found.
[  181.497268][ T5861] usb 4-1: USB disconnect, device number 22
[  181.949807][ T7144] netlink: 84 bytes leftover after parsing attributes in process `syz.1.319'.
[  182.046846][ T5915] usb 1-1: USB disconnect, device number 29
[  182.843329][   T29] audit: type=1400 audit(1740217878.164:408): avc:  denied  { write } for  pid=7150 comm="syz.3.321" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  183.355199][   T29] audit: type=1400 audit(1740217878.285:409): avc:  denied  { write } for  pid=7150 comm="syz.3.321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  183.726039][   T29] audit: type=1400 audit(1740217878.295:410): avc:  denied  { nlmsg_read } for  pid=7150 comm="syz.3.321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  184.949010][ T7177] netlink: 148 bytes leftover after parsing attributes in process `syz.2.327'.
[  185.233137][ T5915] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  185.628656][ T5915] usb 3-1: device descriptor read/64, error -71
[  185.938510][ T5869] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  185.949605][ T5915] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  186.177450][ T5915] usb 3-1: device descriptor read/64, error -71
[  186.504138][ T5915] usb usb3-port1: attempt power cycle
[  186.516050][ T5869] usb 4-1: Using ep0 maxpacket: 16
[  186.592557][ T7192] Malformed UNC in devname
[  186.592557][ T7192] 
[  186.599313][ T7192] CIFS: VFS: Malformed UNC in devname
[  186.894046][ T5869] usb 4-1: config 8 has an invalid interface number: 39 but max is 0
[  186.902668][ T5869] usb 4-1: config 8 has no interface number 0
[  186.908871][ T5869] usb 4-1: config 8 interface 39 altsetting 1 has an endpoint descriptor with address 0xDF, changing to 0x8F
[  186.965408][ T5915] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  187.103794][ T5869] usb 4-1: config 8 interface 39 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0
[  187.113651][ T5869] usb 4-1: config 8 interface 39 altsetting 1 bulk endpoint 0x8F has invalid maxpacket 0
[  187.132280][ T5915] usb 3-1: device descriptor read/8, error -71
[  187.205857][ T5869] usb 4-1: config 8 interface 39 has no altsetting 0
[  187.223772][ T5869] usb 4-1: New USB device found, idVendor=05ac, idProduct=c704, bcdDevice=62.77
[  187.228444][ T7195] netlink: 84 bytes leftover after parsing attributes in process `syz.4.333'.
[  187.243998][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.252008][ T5869] usb 4-1: Product: syz
[  187.285525][ T5869] usb 4-1: Manufacturer: syz
[  187.290238][ T5869] usb 4-1: SerialNumber: syz
[  187.413885][ T5915] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  187.457492][ T5915] usb 3-1: device descriptor read/8, error -71
[  187.577912][ T5915] usb usb3-port1: unable to enumerate USB device
[  189.186474][ T5869] ipheth 4-1:8.39: ipheth_enable_ncm: usb_control_msg: -71
[  189.413053][ T5861] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  189.477087][ T5869] ipheth 4-1:8.39: Apple iPhone USB Ethernet device attached
[  189.506244][ T5869] usb 4-1: USB disconnect, device number 23
[  189.620656][ T5861] usb 5-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  189.657637][ T5861] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.703255][ T5869] ipheth 4-1:8.39: Apple iPhone USB Ethernet now disconnected
[  189.714047][ T5861] usb 5-1: config 0 descriptor??
[  189.754608][ T5861] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  189.759064][   T29] audit: type=1400 audit(1740217884.637:411): avc:  denied  { write } for  pid=7215 comm="syz.1.340" name="sg0" dev="devtmpfs" ino=755 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  189.935970][   T29] audit: type=1400 audit(1740217884.665:412): avc:  denied  { open } for  pid=7215 comm="syz.1.340" path="/dev/sg0" dev="devtmpfs" ino=755 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  189.965128][   T29] audit: type=1400 audit(1740217884.796:413): avc:  denied  { ioctl } for  pid=7215 comm="syz.1.340" path="/dev/sg0" dev="devtmpfs" ino=755 ioctlcmd=0x2282 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  191.768788][ T7227] Malformed UNC in devname
[  191.768788][ T7227] 
[  191.775433][ T7227] CIFS: VFS: Malformed UNC in devname
[  192.660158][ T7213] netlink: 116 bytes leftover after parsing attributes in process `syz.4.339'.
[  192.711437][ T5861] usb 5-1: USB disconnect, device number 10
[  192.735018][   T29] audit: type=1400 audit(1740217887.340:414): avc:  denied  { bind } for  pid=7212 comm="syz.4.339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  192.798250][   T29] audit: type=1400 audit(1740217887.340:415): avc:  denied  { nlmsg_read } for  pid=7212 comm="syz.4.339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  193.208786][   T29] audit: type=1400 audit(1740217887.377:416): avc:  denied  { getopt } for  pid=7212 comm="syz.4.339" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  193.633835][ T7241] netlink: 148 bytes leftover after parsing attributes in process `syz.2.347'.
[  194.001138][   T25] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  194.148993][   T25] usb 3-1: device descriptor read/64, error -71
[  195.160563][   T25] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  195.185680][ T5915] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  195.400188][   T25] usb 3-1: device descriptor read/64, error -71
[  195.478086][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  195.484654][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  195.506805][ T5915] usb 2-1: Using ep0 maxpacket: 32
[  195.526863][   T25] usb usb3-port1: attempt power cycle
[  195.565758][ T5915] usb 2-1: config 5 has an invalid interface number: 72 but max is 0
[  195.604856][ T5915] usb 2-1: config 5 has no interface number 0
[  195.645069][ T5915] usb 2-1: config 5 interface 72 altsetting 3 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  195.704771][ T5915] usb 2-1: config 5 interface 72 has no altsetting 0
[  195.773093][ T5915] usb 2-1: New USB device found, idVendor=10c4, idProduct=8665, bcdDevice= f.4d
[  195.818462][ T5915] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.859883][ T5915] usb 2-1: Product: syz
[  195.878635][ T5915] usb 2-1: Manufacturer: syz
[  195.908952][ T5915] usb 2-1: SerialNumber: syz
[  195.945302][   T25] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  196.012740][   T25] usb 3-1: device descriptor read/8, error -71
[  196.276589][   T25] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  196.294618][ T7244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.362938][   T25] usb 3-1: device descriptor read/8, error -71
[  196.387182][ T7244] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.544487][   T25] usb usb3-port1: unable to enumerate USB device
[  196.601676][ T5915] cp210x 2-1:5.72: cp210x converter detected
[  196.707552][ T5915] cp210x 2-1:5.72: failed to get vendor val 0x370b size 1: -71
[  196.715665][ T5915] cp210x 2-1:5.72: querying part number failed
[  196.725821][ T5915] usb 2-1: cp210x converter now attached to ttyUSB0
[  196.737550][ T5915] usb 2-1: USB disconnect, device number 10
[  196.750781][ T5915] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  196.758869][ T5915] cp210x 2-1:5.72: device disconnected
[  261.149277][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  261.155599][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  264.697646][ T5193] udevd[5193]: worker [6065] /devices/virtual/nfc/nfc3 is taking a long time
[  326.832272][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  326.838668][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  369.250675][   T30] INFO: task syz-executor:5815 blocked for more than 143 seconds.
[  369.258544][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  369.271319][   T30]       Blocked by coredump.
[  369.275995][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  369.284701][   T30] task:syz-executor    state:D stack:22048 pid:5815  tgid:5815  ppid:1      task_flags:0x40054c flags:0x00004006
[  369.296737][   T30] Call Trace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  369.300013][   T30]  <TASK>
[  369.303113][   T30]  __schedule+0xf43/0x5890
[  369.308138][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  369.313619][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  369.318925][   T30]  ? __pfx___schedule+0x10/0x10
[  369.323806][   T30]  ? schedule+0x298/0x350
[  369.328240][   T30]  ? __pfx_lock_release+0x10/0x10
[  369.368125][   T30]  ? __mutex_trylock_common+0x78/0x250
[  369.373649][   T30]  ? lock_acquire+0x2f/0xb0
[  369.378178][   T30]  ? schedule+0x1fd/0x350
[  369.395342][   T30]  schedule+0xe7/0x350
[  369.399448][   T30]  schedule_preempt_disabled+0x13/0x30
[  369.404965][   T30]  __mutex_lock+0x6bd/0xb10
[  369.409470][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  369.414701][   T30]  ? rfkill_unregister+0xde/0x2c0
[  369.419727][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  369.424863][   T30]  ? device_del+0x6b6/0x9f0
[  369.429372][   T30]  ? __pfx_device_del+0x10/0x10
[  369.434282][   T30]  ? _raw_read_unlock+0x28/0x50
[  369.439135][   T30]  ? rfkill_unregister+0xde/0x2c0
[  369.444202][   T30]  rfkill_unregister+0xde/0x2c0
[  369.449058][   T30]  hci_unregister_dev+0x323/0x620
[  369.454118][   T30]  ? __pfx_vhci_release+0x10/0x10
[  369.459142][   T30]  vhci_release+0x79/0xf0
[  369.463454][   T30]  __fput+0x3ff/0xb70
[  369.467483][   T30]  task_work_run+0x14e/0x250
[  369.472073][   T30]  ? __pfx_task_work_run+0x10/0x10
[  369.477230][   T30]  do_exit+0xad8/0x2d70
[  369.481391][   T30]  ? get_signal+0x8f7/0x26c0
[  369.486198][   T30]  ? __pfx_do_exit+0x10/0x10
[  369.490796][   T30]  ? do_raw_spin_lock+0x12d/0x2c0
[  369.495806][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  369.501251][   T30]  do_group_exit+0xd3/0x2a0
[  369.505776][   T30]  get_signal+0x24ed/0x26c0
[  369.510372][   T30]  ? __pfx_child_wait_callback+0x10/0x10
[  369.516020][   T30]  ? __pfx_get_signal+0x10/0x10
[  369.520907][   T30]  ? __do_sys_wait4+0xd2/0x170
[  369.525680][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  369.531300][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  369.537467][   T30]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[  369.543299][   T30]  syscall_exit_to_user_mode+0x150/0x2a0
[  369.548942][   T30]  do_syscall_64+0xda/0x250
[  369.553491][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.559389][   T30] RIP: 0033:0x7f17945833d7
[  369.563831][   T30] RSP: 002b:00007ffc98fc08e0 EFLAGS: 00000293 ORIG_RAX: 000000000000003d
[  369.572287][   T30] RAX: fffffffffffffe00 RBX: 0000000000000101 RCX: 00007f17945833d7
[  369.580254][   T30] RDX: 0000000040000000 RSI: 00007ffc98fc094c RDI: 00000000ffffffff
[  369.588239][   T30] RBP: 00007ffc98fc094c R08: 0000000000000000 R09: 0000000000000000
[  369.596284][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000004e
[  369.604413][   T30] R13: 0000555556813590 R14: 000000000002f6cf R15: 00007ffc98fc09a0
[  369.612396][   T30]  </TASK>
[  369.615497][   T30] INFO: task syz-executor:5816 blocked for more than 143 seconds.
[  369.623292][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  369.631023][   T30]       Blocked by coredump.
[  369.635663][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  369.644330][   T30] task:syz-executor    state:D stack:23568 pid:5816  tgid:5816  ppid:1      task_flags:0x40054c flags:0x00004006
[  369.656311][   T30] Call Trace:
[  369.659647][   T30]  <TASK>
[  369.662594][   T30]  __schedule+0xf43/0x5890
[  369.667020][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  369.672356][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  369.677573][   T30]  ? __pfx___schedule+0x10/0x10
[  369.682504][   T30]  ? schedule+0x298/0x350
[  369.686844][   T30]  ? __pfx_lock_release+0x10/0x10
[  369.691899][   T30]  ? __mutex_trylock_common+0x78/0x250
[  369.697364][   T30]  ? lock_acquire+0x2f/0xb0
[  369.701917][   T30]  ? schedule+0x1fd/0x350
[  369.706246][   T30]  schedule+0xe7/0x350
[  369.710357][   T30]  schedule_preempt_disabled+0x13/0x30
[  369.715813][   T30]  __mutex_lock+0x6bd/0xb10
[  369.720310][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  369.725690][   T30]  ? rfkill_unregister+0xde/0x2c0
[  369.730728][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  369.735802][   T30]  ? device_del+0x6b6/0x9f0
[  369.740310][   T30]  ? __pfx_device_del+0x10/0x10
[  369.745209][   T30]  ? _raw_read_unlock+0x28/0x50
[  369.750061][   T30]  ? rfkill_unregister+0xde/0x2c0
[  369.755138][   T30]  rfkill_unregister+0xde/0x2c0
[  369.759990][   T30]  hci_unregister_dev+0x323/0x620
[  369.765080][   T30]  ? __pfx_vhci_release+0x10/0x10
[  369.770106][   T30]  vhci_release+0x79/0xf0
[  369.774472][   T30]  __fput+0x3ff/0xb70
[  369.778468][   T30]  task_work_run+0x14e/0x250
[  369.783078][   T30]  ? __pfx_task_work_run+0x10/0x10
[  369.788269][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  369.793473][   T30]  do_exit+0xad8/0x2d70
[  369.797655][   T30]  ? get_signal+0x8f7/0x26c0
[  369.802265][   T30]  ? __pfx_do_exit+0x10/0x10
[  369.806905][   T30]  ? do_raw_spin_lock+0x12d/0x2c0
[  369.811929][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  369.817339][   T30]  do_group_exit+0xd3/0x2a0
[  369.821847][   T30]  get_signal+0x24ed/0x26c0
[  369.826336][   T30]  ? __pfx_child_wait_callback+0x10/0x10
[  369.832028][   T30]  ? __pfx_get_signal+0x10/0x10
[  369.836887][   T30]  ? __do_sys_wait4+0xd2/0x170
[  369.841801][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  369.847363][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  369.854596][   T30]  syscall_exit_to_user_mode+0x150/0x2a0
[  369.860297][   T30]  do_syscall_64+0xda/0x250
[  369.864805][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.870743][   T30] RIP: 0033:0x7fda93f833d7
[  369.875164][   T30] RSP: 002b:00007ffd46b0b740 EFLAGS: 00000293 ORIG_RAX: 000000000000003d
[  369.883621][   T30] RAX: fffffffffffffe00 RBX: 00000000000000f1 RCX: 00007fda93f833d7
[  369.891594][   T30] RDX: 0000000040000000 RSI: 00007ffd46b0b7ac RDI: 00000000ffffffff
[  369.899668][   T30] RBP: 00007ffd46b0b7ac R08: 0000000000000000 R09: 0000000000000000
[  369.907680][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000044
[  369.915725][   T30] R13: 00005555769b8590 R14: 00000000000302ab R15: 00007ffd46b0b800
[  369.923706][   T30]  </TASK>
[  369.926786][   T30] INFO: task kworker/0:3:5861 blocked for more than 143 seconds.
[  369.934497][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  369.942158][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  369.950860][   T30] task:kworker/0:3     state:D stack:22096 pid:5861  tgid:5861  ppid:2      task_flags:0x4208060 flags:0x00004000
[  369.963006][   T30] Workqueue: events rfkill_global_led_trigger_worker
[  369.969752][   T30] Call Trace:
[  369.973012][   T30]  <TASK>
[  369.975922][   T30]  __schedule+0xf43/0x5890
[  369.980404][   T30]  ? __pfx_mark_lock+0x10/0x10
[  369.985172][   T30]  ? mark_held_locks+0x9f/0xe0
[  369.989959][   T30]  ? __pfx___schedule+0x10/0x10
[  369.994809][   T30]  ? schedule+0x298/0x350
[  369.999180][   T30]  ? __pfx_lock_release+0x10/0x10
[  370.004210][   T30]  ? _raw_spin_unlock_irq+0x29/0x50
[  370.009405][   T30]  schedule+0xe7/0x350
[  370.013506][   T30]  schedule_preempt_disabled+0x13/0x30
[  370.018959][   T30]  __mutex_lock+0x6bd/0xb10
[  370.023531][   T30]  ? lock_acquire+0x2f/0xb0
[  370.028038][   T30]  ? rfkill_global_led_trigger_worker+0x1b/0x160
[  370.034419][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  370.039476][   T30]  ? rcu_is_watching+0x12/0xc0
[  370.044305][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  370.049522][   T30]  ? rfkill_global_led_trigger_worker+0x1b/0x160
[  370.055925][   T30]  rfkill_global_led_trigger_worker+0x1b/0x160
[  370.062111][   T30]  process_one_work+0x9c5/0x1ba0
[  370.067095][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  370.072733][   T30]  ? __pfx_process_one_work+0x10/0x10
[  370.078277][   T30]  ? assign_work+0x1a0/0x250
[  370.082876][   T30]  worker_thread+0x6c8/0xf00
[  370.087535][   T30]  ? __kthread_parkme+0x148/0x220
[  370.092582][   T30]  ? __pfx_worker_thread+0x10/0x10
[  370.097719][   T30]  kthread+0x3af/0x750
[  370.101790][   T30]  ? __pfx_kthread+0x10/0x10
[  370.106444][   T30]  ? lock_acquire+0x2f/0xb0
[  370.110964][   T30]  ? __pfx_kthread+0x10/0x10
[  370.115579][   T30]  ret_from_fork+0x45/0x80
[  370.120026][   T30]  ? __pfx_kthread+0x10/0x10
[  370.124616][   T30]  ret_from_fork_asm+0x1a/0x30
[  370.129434][   T30]  </TASK>
[  370.132485][   T30] INFO: task kworker/0:7:5869 blocked for more than 144 seconds.
[  370.141018][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  370.148713][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  370.157392][   T30] task:kworker/0:7     state:D stack:22384 pid:5869  tgid:5869  ppid:2      task_flags:0x4208060 flags:0x00004000
[  370.169433][   T30] Workqueue: events rfkill_sync_work
[  370.174833][   T30] Call Trace:
[  370.178119][   T30]  <TASK>
[  370.181115][   T30]  __schedule+0xf43/0x5890
[  370.185532][   T30]  ? __pfx___schedule+0x10/0x10
[  370.190366][   T30]  ? __pfx_mark_lock+0x10/0x10
[  370.195333][   T30]  ? mark_held_locks+0x9f/0xe0
[  370.200136][   T30]  ? __pfx___schedule+0x10/0x10
[  370.205020][   T30]  ? schedule+0x298/0x350
[  370.209360][   T30]  ? __pfx_lock_release+0x10/0x10
[  370.214445][   T30]  ? _raw_spin_unlock_irq+0x45/0x50
[  370.219646][   T30]  schedule+0xe7/0x350
[  370.223755][   T30]  schedule_preempt_disabled+0x13/0x30
[  370.229216][   T30]  __mutex_lock+0x6bd/0xb10
[  370.233711][   T30]  ? nfc_dev_down+0x2d/0x2e0
[  370.238336][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  370.243386][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  370.248718][   T30]  ? rfkill_set_block+0x198/0x560
[  370.253760][   T30]  ? __pfx_lock_release+0x10/0x10
[  370.258865][   T30]  ? nfc_dev_down+0x2d/0x2e0
[  370.263456][   T30]  nfc_dev_down+0x2d/0x2e0
[  370.267906][   T30]  nfc_rfkill_set_block+0x39/0xe0
[  370.272935][   T30]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  370.278709][   T30]  rfkill_set_block+0x203/0x560
[  370.283577][   T30]  rfkill_sync+0x10a/0x1c0
[  370.288069][   T30]  rfkill_sync_work+0x27/0x40
[  370.292768][   T30]  process_one_work+0x9c5/0x1ba0
[  370.297735][   T30]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  370.303428][   T30]  ? __pfx_process_one_work+0x10/0x10
[  370.308968][   T30]  ? assign_work+0x1a0/0x250
[  370.313569][   T30]  worker_thread+0x6c8/0xf00
[  370.318234][   T30]  ? __kthread_parkme+0x148/0x220
[  370.323340][   T30]  ? __pfx_worker_thread+0x10/0x10
[  370.328479][   T30]  kthread+0x3af/0x750
[  370.332588][   T30]  ? __pfx_kthread+0x10/0x10
[  370.337181][   T30]  ? lock_acquire+0x2f/0xb0
[  370.341748][   T30]  ? __pfx_kthread+0x10/0x10
[  370.346340][   T30]  ret_from_fork+0x45/0x80
[  370.350740][   T30]  ? __pfx_kthread+0x10/0x10
[  370.355467][   T30]  ret_from_fork_asm+0x1a/0x30
[  370.360241][   T30]  </TASK>
[  370.363386][   T30] INFO: task udevd:6065 blocked for more than 144 seconds.
[  370.370573][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  370.378239][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  370.386951][   T30] task:udevd           state:D stack:26176 pid:6065  tgid:6065  ppid:5193   task_flags:0x400140 flags:0x00000002
[  370.398925][   T30] Call Trace:
[  370.402217][   T30]  <TASK>
[  370.405198][   T30]  __schedule+0xf43/0x5890
[  370.409615][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  370.414815][   T30]  ? __pfx___schedule+0x10/0x10
[  370.419742][   T30]  ? schedule+0x298/0x350
[  370.424082][   T30]  ? __pfx_lock_release+0x10/0x10
[  370.429317][   T30]  ? __mutex_trylock_common+0x78/0x250
[  370.434794][   T30]  ? lock_acquire+0x2f/0xb0
[  370.439368][   T30]  ? schedule+0x1fd/0x350
[  370.443699][   T30]  schedule+0xe7/0x350
[  370.447804][   T30]  schedule_preempt_disabled+0x13/0x30
[  370.453426][   T30]  __mutex_lock+0x6bd/0xb10
[  370.458097][   T30]  ? uevent_show+0x188/0x3b0
[  370.462833][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  370.467871][   T30]  ? uevent_show+0x188/0x3b0
[  370.472510][   T30]  uevent_show+0x188/0x3b0
[  370.476930][   T30]  ? __pfx_uevent_show+0x10/0x10
[  370.481926][   T30]  dev_attr_show+0x53/0xe0
[  370.486344][   T30]  ? __pfx_dev_attr_show+0x10/0x10
[  370.491516][   T30]  sysfs_kf_seq_show+0x23e/0x410
[  370.496457][   T30]  seq_read_iter+0x4f4/0x12b0
[  370.501131][   T30]  kernfs_fop_read_iter+0x414/0x580
[  370.506389][   T30]  ? rw_verify_area+0xcf/0x680
[  370.511170][   T30]  vfs_read+0x886/0xbf0
[  370.515394][   T30]  ? __pfx_vfs_read+0x10/0x10
[  370.520091][   T30]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  370.525759][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  370.530966][   T30]  ksys_read+0x12b/0x250
[  370.535281][   T30]  ? __pfx_ksys_read+0x10/0x10
[  370.540072][   T30]  do_syscall_64+0xcd/0x250
[  370.544754][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.550658][   T30] RIP: 0033:0x7f0cbe716b6a
[  370.555135][   T30] RSP: 002b:00007fffcd95a358 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  370.563573][   T30] RAX: ffffffffffffffda RBX: 000055a393fdc570 RCX: 00007f0cbe716b6a
[  370.571593][   T30] RDX: 0000000000001000 RSI: 000055a394021460 RDI: 0000000000000008
[  370.579612][   T30] RBP: 000055a393fdc570 R08: 0000000000000008 R09: 0000000000080000
[  370.587634][   T30] R10: 000000000000010f R11: 0000000000000246 R12: 0000000000000000
[  370.595599][   T30] R13: 0000000000003fff R14: 00007fffcd95a838 R15: 000000000000000a
[  370.603635][   T30]  </TASK>
[  370.606664][   T30] INFO: task syz.4.350:7248 blocked for more than 144 seconds.
[  370.614248][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  370.622282][   T30]       Blocked by coredump.
[  370.626859][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  370.636608][   T30] task:syz.4.350       state:D stack:27520 pid:7248  tgid:7247  ppid:5815   task_flags:0x40054c flags:0x00004002
[  370.648592][   T30] Call Trace:
[  370.651900][   T30]  <TASK>
[  370.654828][   T30]  __schedule+0xf43/0x5890
[  370.659239][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  370.664644][   T30]  ? __pfx___schedule+0x10/0x10
[  370.669502][   T30]  ? schedule+0x298/0x350
[  370.673876][   T30]  ? __pfx_lock_release+0x10/0x10
[  370.678908][   T30]  ? lock_acquire+0x2f/0xb0
[  370.683475][   T30]  ? schedule+0x1fd/0x350
[  370.687808][   T30]  schedule+0xe7/0x350
[  370.691858][   T30]  schedule_timeout+0x244/0x280
[  370.696790][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  370.702194][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  370.707469][   T30]  __wait_for_common+0x3e1/0x600
[  370.712417][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  370.717854][   T30]  ? __pfx___wait_for_common+0x10/0x10
[  370.723401][   T30]  ? lock_acquire+0x2f/0xb0
[  370.727948][   T30]  ? __flush_work+0x4db/0xcd0
[  370.732630][   T30]  ? __flush_work+0x4db/0xcd0
[  370.737356][   T30]  __flush_work+0x7d8/0xcd0
[  370.741862][   T30]  ? nfc_unregister_device+0x60/0x330
[  370.747333][   T30]  ? __pfx___flush_work+0x10/0x10
[  370.752372][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  370.757649][   T30]  ? __pfx___might_resched+0x10/0x10
[  370.762982][   T30]  __cancel_work_sync+0x10c/0x130
[  370.768009][   T30]  rfkill_unregister+0x95/0x2c0
[  370.772904][   T30]  nfc_unregister_device+0x94/0x330
[  370.778101][   T30]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  370.783973][   T30]  virtual_ncidev_close+0x4b/0xa0
[  370.789009][   T30]  __fput+0x3ff/0xb70
[  370.793081][   T30]  task_work_run+0x14e/0x250
[  370.797677][   T30]  ? __pfx_task_work_run+0x10/0x10
[  370.802849][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  370.808052][   T30]  do_exit+0xad8/0x2d70
[  370.812308][   T30]  ? get_signal+0x8f7/0x26c0
[  370.817099][   T30]  ? __pfx_do_exit+0x10/0x10
[  370.821677][   T30]  ? do_raw_spin_lock+0x12d/0x2c0
[  370.826749][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  370.832124][   T30]  do_group_exit+0xd3/0x2a0
[  370.836710][   T30]  get_signal+0x24ed/0x26c0
[  370.841242][   T30]  ? __pfx_get_signal+0x10/0x10
[  370.846132][   T30]  ? task_work_add+0x1d6/0x370
[  370.850912][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  370.856530][   T30]  ? __fget_files+0x206/0x3a0
[  370.861215][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  370.867435][   T30]  ? ksys_read+0x1ba/0x250
[  370.871857][   T30]  ? __pfx_ksys_read+0x10/0x10
[  370.876724][   T30]  syscall_exit_to_user_mode+0x150/0x2a0
[  370.882373][   T30]  do_syscall_64+0xda/0x250
[  370.886932][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.892828][   T30] RIP: 0033:0x7f179458d169
[  370.897437][   T30] RSP: 002b:00007f179542e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  370.905855][   T30] RAX: 0000000000018ff8 RBX: 00007f17947a5fa0 RCX: 00007f179458d169
[  370.913879][   T30] RDX: 0000000000018ff8 RSI: 0000400000002700 RDI: 0000000000000003
[  370.921894][   T30] RBP: 00007f179460e2a0 R08: 0000000000000000 R09: 0000000000000000
[  370.929925][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  370.937900][   T30] R13: 0000000000000000 R14: 00007f17947a5fa0 R15: 00007ffc98fc0588
[  370.945939][   T30]  </TASK>
[  370.948965][   T30] INFO: task syz.3.355:7275 blocked for more than 144 seconds.
[  370.956569][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  370.964768][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  370.974133][   T30] task:syz.3.355       state:D stack:26480 pid:7275  tgid:7272  ppid:5816   task_flags:0x400040 flags:0x00004004
[  370.986173][   T30] Call Trace:
[  370.989529][   T30]  <TASK>
[  370.992443][   T30]  __schedule+0xf43/0x5890
[  370.997079][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  371.002299][   T30]  ? __pfx___schedule+0x10/0x10
[  371.007167][   T30]  ? schedule+0x298/0x350
[  371.011497][   T30]  ? __pfx_lock_release+0x10/0x10
[  371.016658][   T30]  ? __mutex_trylock_common+0x78/0x250
[  371.022125][   T30]  ? lock_acquire+0x2f/0xb0
[  371.026648][   T30]  ? schedule+0x1fd/0x350
[  371.030975][   T30]  schedule+0xe7/0x350
[  371.035020][   T30]  schedule_preempt_disabled+0x13/0x30
[  371.040544][   T30]  __mutex_lock+0x6bd/0xb10
[  371.045051][   T30]  ? __pfx___debug_object_init+0x10/0x10
[  371.051342][   T30]  ? rfkill_register+0x3a/0xb40
[  371.056211][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  371.061381][   T30]  ? __init_waitqueue_head+0xca/0x150
[  371.066762][   T30]  ? rfkill_register+0x3a/0xb40
[  371.071638][   T30]  rfkill_register+0x3a/0xb40
[  371.076318][   T30]  nfc_register_device+0x11f/0x3c0
[  371.081471][   T30]  nci_register_device+0x7f4/0xb80
[  371.086589][   T30]  ? __pfx_nci_register_device+0x10/0x10
[  371.092274][   T30]  virtual_ncidev_open+0x141/0x220
[  371.097396][   T30]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  371.103128][   T30]  misc_open+0x35a/0x420
[  371.107388][   T30]  ? __pfx_misc_open+0x10/0x10
[  371.112208][   T30]  chrdev_open+0x237/0x6a0
[  371.116627][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  371.121606][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  371.128376][   T30]  do_dentry_open+0x735/0x1c40
[  371.133152][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  371.138086][   T30]  ? inode_permission+0xdd/0x5f0
[  371.143108][   T30]  vfs_open+0x82/0x3f0
[  371.147181][   T30]  ? may_open+0x1f2/0x400
[  371.151501][   T30]  path_openat+0x1e88/0x2d80
[  371.156134][   T30]  ? __pfx_path_openat+0x10/0x10
[  371.161067][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  371.166353][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  371.171644][   T30]  ? find_held_lock+0x2d/0x110
[  371.176434][   T30]  do_filp_open+0x20c/0x470
[  371.180933][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  371.186055][   T30]  ? find_held_lock+0x2d/0x110
[  371.190828][   T30]  ? alloc_fd+0x41f/0x760
[  371.195140][   T30]  do_sys_openat2+0x17a/0x1e0
[  371.199854][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  371.205060][   T30]  __x64_sys_openat+0x175/0x210
[  371.209941][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  371.215318][   T30]  do_syscall_64+0xcd/0x250
[  371.220037][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.225947][   T30] RIP: 0033:0x7fda93f8d169
[  371.230468][   T30] RSP: 002b:00007fda94d25038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  371.238970][   T30] RAX: ffffffffffffffda RBX: 00007fda941a6160 RCX: 00007fda93f8d169
[  371.246950][   T30] RDX: 0000000000000002 RSI: 0000400000000080 RDI: ffffffffffffff9c
[  371.254958][   T30] RBP: 00007fda9400e2a0 R08: 0000000000000000 R09: 0000000000000000
[  371.263076][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  371.271152][   T30] R13: 0000000000000000 R14: 00007fda941a6160 R15: 00007ffd46b0b3e8
[  371.279129][   T30]  </TASK>
[  371.282275][   T30] INFO: task syz.1.357:7288 blocked for more than 145 seconds.
[  371.289827][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  371.298171][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  371.306954][   T30] task:syz.1.357       state:D stack:27312 pid:7288  tgid:7287  ppid:5817   task_flags:0x400140 flags:0x00000004
[  371.318961][   T30] Call Trace:
[  371.322229][   T30]  <TASK>
[  371.325221][   T30]  __schedule+0xf43/0x5890
[  371.329635][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  371.334830][   T30]  ? __pfx___schedule+0x10/0x10
[  371.339714][   T30]  ? schedule+0x298/0x350
[  371.344046][   T30]  ? __pfx_lock_release+0x10/0x10
[  371.349122][   T30]  ? __mutex_trylock_common+0x78/0x250
[  371.354590][   T30]  ? lock_acquire+0x2f/0xb0
[  371.359158][   T30]  ? schedule+0x1fd/0x350
[  371.363500][   T30]  schedule+0xe7/0x350
[  371.367602][   T30]  schedule_preempt_disabled+0x13/0x30
[  371.373063][   T30]  __mutex_lock+0x6bd/0xb10
[  371.377571][   T30]  ? misc_open+0x63/0x420
[  371.381936][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  371.386956][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  371.396024][   T30]  ? chrdev_open+0x10e/0x6a0
[  371.400705][   T30]  ? __pfx_lock_release+0x10/0x10
[  371.405733][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  371.411417][   T30]  ? __pfx_misc_open+0x10/0x10
[  371.416184][   T30]  ? misc_open+0x63/0x420
[  371.420504][   T30]  misc_open+0x63/0x420
[  371.424671][   T30]  ? __pfx_misc_open+0x10/0x10
[  371.429436][   T30]  chrdev_open+0x237/0x6a0
[  371.433904][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  371.438841][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  371.445674][   T30]  do_dentry_open+0x735/0x1c40
[  371.450435][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  371.455423][   T30]  ? inode_permission+0xdd/0x5f0
[  371.460375][   T30]  vfs_open+0x82/0x3f0
[  371.464488][   T30]  ? may_open+0x1f2/0x400
[  371.468821][   T30]  path_openat+0x1e88/0x2d80
[  371.473404][   T30]  ? __pfx_path_openat+0x10/0x10
[  371.478848][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  371.484069][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  371.489448][   T30]  ? find_held_lock+0x2d/0x110
[  371.494226][   T30]  do_filp_open+0x20c/0x470
[  371.498799][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  371.503834][   T30]  ? find_held_lock+0x2d/0x110
[  371.508670][   T30]  ? alloc_fd+0x41f/0x760
[  371.513003][   T30]  do_sys_openat2+0x17a/0x1e0
[  371.517710][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  371.522910][   T30]  ? do_user_addr_fault+0xe50/0x13f0
[  371.528289][   T30]  ? __pfx_lock_release+0x10/0x10
[  371.533346][   T30]  __x64_sys_openat+0x175/0x210
[  371.538231][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  371.543604][   T30]  ? do_user_addr_fault+0x83d/0x13f0
[  371.548923][   T30]  do_syscall_64+0xcd/0x250
[  371.553427][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.559314][   T30] RIP: 0033:0x7f4b2838bad0
[  371.563828][   T30] RSP: 002b:00007f4b2925aef0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  371.572335][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f4b2838bad0
[  371.580311][   T30] RDX: 0000000000000002 RSI: 00007f4b2840df84 RDI: 00000000ffffff9c
[  371.588310][   T30] RBP: 00007f4b2840df84 R08: 0000000000000000 R09: 0000000000000000
[  371.596334][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  371.604352][   T30] R13: 000000000000002d R14: 0000400000000040 R15: 00007ffdd556ce48
[  371.612329][   T30]  </TASK>
[  371.615420][   T30] INFO: task syz.0.358:7290 blocked for more than 145 seconds.
[  371.622966][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  371.630722][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  371.639460][   T30] task:syz.0.358       state:D stack:27312 pid:7290  tgid:7289  ppid:5818   task_flags:0x400140 flags:0x00000004
[  371.651426][   T30] Call Trace:
[  371.654697][   T30]  <TASK>
[  371.657661][   T30]  __schedule+0xf43/0x5890
[  371.662076][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  371.667335][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  371.672544][   T30]  ? __pfx___schedule+0x10/0x10
[  371.677423][   T30]  ? schedule+0x298/0x350
[  371.681751][   T30]  ? __pfx_lock_release+0x10/0x10
[  371.686765][   T30]  ? __mutex_trylock_common+0x78/0x250
[  371.692285][   T30]  ? lock_acquire+0x2f/0xb0
[  371.696788][   T30]  ? schedule+0x1fd/0x350
[  371.701147][   T30]  schedule+0xe7/0x350
[  371.705215][   T30]  schedule_preempt_disabled+0x13/0x30
[  371.710708][   T30]  __mutex_lock+0x6bd/0xb10
[  371.715214][   T30]  ? misc_open+0x63/0x420
[  371.719541][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  371.724604][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  371.729897][   T30]  ? chrdev_open+0x10e/0x6a0
[  371.734534][   T30]  ? __pfx_lock_release+0x10/0x10
[  371.739556][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  371.745213][   T30]  ? __pfx_misc_open+0x10/0x10
[  371.749983][   T30]  ? misc_open+0x63/0x420
[  371.754357][   T30]  misc_open+0x63/0x420
[  371.758529][   T30]  ? __pfx_misc_open+0x10/0x10
[  371.763344][   T30]  chrdev_open+0x237/0x6a0
[  371.767770][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  371.772708][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  371.779507][   T30]  do_dentry_open+0x735/0x1c40
[  371.784346][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  371.789281][   T30]  ? inode_permission+0xdd/0x5f0
[  371.794229][   T30]  vfs_open+0x82/0x3f0
[  371.798320][   T30]  ? may_open+0x1f2/0x400
[  371.802658][   T30]  path_openat+0x1e88/0x2d80
[  371.807344][   T30]  ? __pfx_path_openat+0x10/0x10
[  371.812284][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  371.817665][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  371.822954][   T30]  ? find_held_lock+0x2d/0x110
[  371.827802][   T30]  do_filp_open+0x20c/0x470
[  371.832312][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  371.837331][   T30]  ? find_held_lock+0x2d/0x110
[  371.842134][   T30]  ? alloc_fd+0x41f/0x760
[  371.846467][   T30]  do_sys_openat2+0x17a/0x1e0
[  371.851170][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  371.856379][   T30]  ? do_user_addr_fault+0xe50/0x13f0
[  371.861698][   T30]  ? __pfx_lock_release+0x10/0x10
[  371.866730][   T30]  __x64_sys_openat+0x175/0x210
[  371.871640][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  371.877045][   T30]  ? do_user_addr_fault+0x83d/0x13f0
[  371.882380][   T30]  do_syscall_64+0xcd/0x250
[  371.886895][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.892852][   T30] RIP: 0033:0x7fa41538bad0
[  371.897275][   T30] RSP: 002b:00007fa416169ef0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  371.905886][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa41538bad0
[  371.913898][   T30] RDX: 0000000000000002 RSI: 00007fa41540df84 RDI: 00000000ffffff9c
[  371.921850][   T30] RBP: 00007fa41540df84 R08: 0000000000000000 R09: 0000000000000000
[  371.929889][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  371.937892][   T30] R13: 000000000000002d R14: 0000400000000040 R15: 00007fff23bcc448
[  371.945921][   T30]  </TASK>
[  371.948963][   T30] INFO: task syz.2.359:7293 blocked for more than 145 seconds.
[  371.956525][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  371.964131][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  371.972821][   T30] task:syz.2.359       state:D stack:28416 pid:7293  tgid:7291  ppid:5819   task_flags:0x400040 flags:0x00000004
[  371.984769][   T30] Call Trace:
[  371.988091][   T30]  <TASK>
[  371.991033][   T30]  __schedule+0xf43/0x5890
[  371.995448][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.000681][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.005887][   T30]  ? __pfx___schedule+0x10/0x10
[  372.010766][   T30]  ? schedule+0x298/0x350
[  372.015129][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.020205][   T30]  ? __mutex_trylock_common+0x78/0x250
[  372.025695][   T30]  ? lock_acquire+0x2f/0xb0
[  372.030279][   T30]  ? schedule+0x1fd/0x350
[  372.034628][   T30]  schedule+0xe7/0x350
[  372.038691][   T30]  schedule_preempt_disabled+0x13/0x30
[  372.044194][   T30]  __mutex_lock+0x6bd/0xb10
[  372.048717][   T30]  ? misc_open+0x63/0x420
[  372.053083][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  372.058108][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  372.063431][   T30]  ? chrdev_open+0x10e/0x6a0
[  372.068045][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.073117][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  372.078865][   T30]  ? __pfx_misc_open+0x10/0x10
[  372.083778][   T30]  ? misc_open+0x63/0x420
[  372.088133][   T30]  misc_open+0x63/0x420
[  372.092289][   T30]  ? __pfx_misc_open+0x10/0x10
[  372.097110][   T30]  chrdev_open+0x237/0x6a0
[  372.101525][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  372.106516][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  372.113293][   T30]  do_dentry_open+0x735/0x1c40
[  372.118118][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  372.123058][   T30]  ? inode_permission+0xdd/0x5f0
[  372.128039][   T30]  vfs_open+0x82/0x3f0
[  372.132106][   T30]  ? may_open+0x1f2/0x400
[  372.136428][   T30]  path_openat+0x1e88/0x2d80
[  372.141061][   T30]  ? __pfx_path_openat+0x10/0x10
[  372.146032][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.151290][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  372.156594][   T30]  ? find_held_lock+0x2d/0x110
[  372.161415][   T30]  do_filp_open+0x20c/0x470
[  372.165915][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  372.170982][   T30]  ? find_held_lock+0x2d/0x110
[  372.175755][   T30]  ? alloc_fd+0x41f/0x760
[  372.180130][   T30]  do_sys_openat2+0x17a/0x1e0
[  372.184823][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  372.190104][   T30]  ? do_user_addr_fault+0xe50/0x13f0
[  372.195420][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.200452][   T30]  __x64_sys_openat+0x175/0x210
[  372.205329][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  372.210718][   T30]  ? do_user_addr_fault+0x83d/0x13f0
[  372.216043][   T30]  do_syscall_64+0xcd/0x250
[  372.220550][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.226486][   T30] RIP: 0033:0x7f9e4ff8d169
[  372.230894][   T30] RSP: 002b:00007f9e50dc8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  372.239360][   T30] RAX: ffffffffffffffda RBX: 00007f9e501a6080 RCX: 00007f9e4ff8d169
[  372.247373][   T30] RDX: 0000000000000000 RSI: 0000400000000340 RDI: ffffffffffffff9c
[  372.255377][   T30] RBP: 00007f9e5000e2a0 R08: 0000000000000000 R09: 0000000000000000
[  372.263345][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  372.271375][   T30] R13: 0000000000000001 R14: 00007f9e501a6080 R15: 00007ffe7211b3c8
[  372.279389][   T30]  </TASK>
[  372.282404][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  372.291456][   T30] INFO: task syz-executor:7297 blocked for more than 146 seconds.
[  372.299348][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  372.306975][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  372.315691][   T30] task:syz-executor    state:D stack:28416 pid:7297  tgid:7297  ppid:1      task_flags:0x400040 flags:0x00000000
[  372.327666][   T30] Call Trace:
[  372.331329][   T30]  <TASK>
[  372.334278][   T30]  __schedule+0xf43/0x5890
[  372.338702][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.344001][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.349209][   T30]  ? __pfx___schedule+0x10/0x10
[  372.354176][   T30]  ? schedule+0x298/0x350
[  372.358509][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.363570][   T30]  ? __mutex_trylock_common+0x78/0x250
[  372.369050][   T30]  ? lock_acquire+0x2f/0xb0
[  372.373601][   T30]  ? schedule+0x1fd/0x350
[  372.377950][   T30]  schedule+0xe7/0x350
[  372.382014][   T30]  schedule_preempt_disabled+0x13/0x30
[  372.387563][   T30]  __mutex_lock+0x6bd/0xb10
[  372.392084][   T30]  ? misc_open+0x63/0x420
[  372.396459][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  372.401485][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  372.406789][   T30]  ? chrdev_open+0x10e/0x6a0
[  372.411382][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.416443][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  372.422087][   T30]  ? __pfx_misc_open+0x10/0x10
[  372.426959][   T30]  ? misc_open+0x63/0x420
[  372.431305][   T30]  misc_open+0x63/0x420
[  372.435464][   T30]  ? __pfx_misc_open+0x10/0x10
[  372.440276][   T30]  chrdev_open+0x237/0x6a0
[  372.444689][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  372.449671][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  372.456440][   T30]  do_dentry_open+0x735/0x1c40
[  372.461233][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  372.466256][   T30]  ? inode_permission+0xdd/0x5f0
[  372.471283][   T30]  vfs_open+0x82/0x3f0
[  372.475352][   T30]  ? may_open+0x1f2/0x400
[  372.479711][   T30]  path_openat+0x1e88/0x2d80
[  372.484303][   T30]  ? __pfx_path_openat+0x10/0x10
[  372.489222][   T30]  ? handle_mm_fault+0x497/0xaa0
[  372.494224][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.499426][   T30]  do_filp_open+0x20c/0x470
[  372.504153][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  372.509190][   T30]  ? find_held_lock+0x2d/0x110
[  372.514097][   T30]  ? alloc_fd+0x41f/0x760
[  372.518447][   T30]  do_sys_openat2+0x17a/0x1e0
[  372.523187][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  372.528388][   T30]  ? fd_install+0x242/0x750
[  372.532935][   T30]  __x64_sys_openat+0x175/0x210
[  372.537806][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  372.544524][   T30]  do_syscall_64+0xcd/0x250
[  372.549043][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.554996][   T30] RIP: 0033:0x7fb06718ba51
[  372.559409][   T30] RSP: 002b:00007fff15eade70 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  372.567934][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fb06718ba51
[  372.575992][   T30] RDX: 0000000000000002 RSI: 00007fb06720ec76 RDI: 00000000ffffff9c
[  372.583964][   T30] RBP: 00007fb06720ec76 R08: 0000000000000000 R09: 00007fb067edd6c0
[  372.592040][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  372.600036][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  372.608078][   T30]  </TASK>
[  372.611109][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  372.620166][   T30] INFO: task syz-executor:7299 blocked for more than 146 seconds.
[  372.627945][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  372.635603][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  372.644282][   T30] task:syz-executor    state:D stack:28328 pid:7299  tgid:7299  ppid:1      task_flags:0x400040 flags:0x00000000
[  372.656258][   T30] Call Trace:
[  372.659529][   T30]  <TASK>
[  372.662705][   T30]  __schedule+0xf43/0x5890
[  372.667148][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.672424][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.677676][   T30]  ? __pfx___schedule+0x10/0x10
[  372.682587][   T30]  ? schedule+0x298/0x350
[  372.686923][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.691949][   T30]  ? __mutex_trylock_common+0x78/0x250
[  372.697485][   T30]  ? lock_acquire+0x2f/0xb0
[  372.701991][   T30]  ? schedule+0x1fd/0x350
[  372.706366][   T30]  schedule+0xe7/0x350
[  372.710435][   T30]  schedule_preempt_disabled+0x13/0x30
[  372.715962][   T30]  __mutex_lock+0x6bd/0xb10
[  372.720487][   T30]  ? misc_open+0x63/0x420
[  372.724813][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  372.729893][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  372.735179][   T30]  ? chrdev_open+0x10e/0x6a0
[  372.739807][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.744834][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  372.750510][   T30]  ? __pfx_misc_open+0x10/0x10
[  372.755278][   T30]  ? misc_open+0x63/0x420
[  372.759642][   T30]  misc_open+0x63/0x420
[  372.763803][   T30]  ? __pfx_misc_open+0x10/0x10
[  372.768612][   T30]  chrdev_open+0x237/0x6a0
[  372.773030][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  372.777955][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  372.784895][   T30]  do_dentry_open+0x735/0x1c40
[  372.789722][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  372.794660][   T30]  ? inode_permission+0xdd/0x5f0
[  372.799587][   T30]  vfs_open+0x82/0x3f0
[  372.803712][   T30]  ? may_open+0x1f2/0x400
[  372.808041][   T30]  path_openat+0x1e88/0x2d80
[  372.812711][   T30]  ? __pfx_path_openat+0x10/0x10
[  372.817653][   T30]  ? handle_mm_fault+0x497/0xaa0
[  372.822637][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.827858][   T30]  do_filp_open+0x20c/0x470
[  372.832426][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  372.837464][   T30]  ? find_held_lock+0x2d/0x110
[  372.842226][   T30]  ? alloc_fd+0x41f/0x760
[  372.846621][   T30]  do_sys_openat2+0x17a/0x1e0
[  372.851312][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  372.856562][   T30]  ? fd_install+0x242/0x750
[  372.861064][   T30]  __x64_sys_openat+0x175/0x210
[  372.865983][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  372.871368][   T30]  do_syscall_64+0xcd/0x250
[  372.875931][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.881828][   T30] RIP: 0033:0x7f1135d8ba51
[  372.886287][   T30] RSP: 002b:00007ffdbc1f6ce0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  372.894699][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f1135d8ba51
[  372.902838][   T30] RDX: 0000000000000002 RSI: 00007f1135e0ec76 RDI: 00000000ffffff9c
[  372.910877][   T30] RBP: 00007f1135e0ec76 R08: 0000000000000000 R09: 00007f1136add6c0
[  372.918889][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  372.926866][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  372.934891][   T30]  </TASK>
[  372.937902][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  372.946975][   T30] INFO: task syz-executor:7301 blocked for more than 146 seconds.
[  372.954832][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  372.962499][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  372.971251][   T30] task:syz-executor    state:D stack:28416 pid:7301  tgid:7301  ppid:1      task_flags:0x400040 flags:0x00000000
[  372.983238][   T30] Call Trace:
[  372.986515][   T30]  <TASK>
[  372.989438][   T30]  __schedule+0xf43/0x5890
[  372.993934][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  372.999144][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.004384][   T30]  ? __pfx___schedule+0x10/0x10
[  373.009235][   T30]  ? schedule+0x298/0x350
[  373.013789][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.018824][   T30]  ? __mutex_trylock_common+0x78/0x250
[  373.024317][   T30]  ? lock_acquire+0x2f/0xb0
[  373.028820][   T30]  ? schedule+0x1fd/0x350
[  373.033131][   T30]  schedule+0xe7/0x350
[  373.037308][   T30]  schedule_preempt_disabled+0x13/0x30
[  373.042785][   T30]  __mutex_lock+0x6bd/0xb10
[  373.047330][   T30]  ? misc_open+0x63/0x420
[  373.051664][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  373.056773][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  373.062066][   T30]  ? chrdev_open+0x10e/0x6a0
[  373.066640][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.071717][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  373.077357][   T30]  ? __pfx_misc_open+0x10/0x10
[  373.082216][   T30]  ? misc_open+0x63/0x420
[  373.086551][   T30]  misc_open+0x63/0x420
[  373.090744][   T30]  ? __pfx_misc_open+0x10/0x10
[  373.095510][   T30]  chrdev_open+0x237/0x6a0
[  373.100036][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  373.104974][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  373.111799][   T30]  do_dentry_open+0x735/0x1c40
[  373.116568][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  373.121603][   T30]  ? inode_permission+0xdd/0x5f0
[  373.126558][   T30]  vfs_open+0x82/0x3f0
[  373.130634][   T30]  ? may_open+0x1f2/0x400
[  373.135139][   T30]  path_openat+0x1e88/0x2d80
[  373.139739][   T30]  ? __pfx_path_openat+0x10/0x10
[  373.144772][   T30]  ? handle_mm_fault+0x497/0xaa0
[  373.149712][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.154964][   T30]  do_filp_open+0x20c/0x470
[  373.159464][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  373.164568][   T30]  ? find_held_lock+0x2d/0x110
[  373.169340][   T30]  ? alloc_fd+0x41f/0x760
[  373.173656][   T30]  do_sys_openat2+0x17a/0x1e0
[  373.178380][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  373.183581][   T30]  ? fd_install+0x242/0x750
[  373.189035][   T30]  __x64_sys_openat+0x175/0x210
[  373.193899][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  373.199323][   T30]  do_syscall_64+0xcd/0x250
[  373.203827][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.209829][   T30] RIP: 0033:0x7f67b298ba51
[  373.214239][   T30] RSP: 002b:00007ffc58a1e870 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  373.222666][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f67b298ba51
[  373.230705][   T30] RDX: 0000000000000002 RSI: 00007f67b2a0ec76 RDI: 00000000ffffff9c
[  373.238733][   T30] RBP: 00007f67b2a0ec76 R08: 0000000000000000 R09: 00007f67b36dd6c0
[  373.246697][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  373.254864][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  373.262902][   T30]  </TASK>
[  373.265922][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  373.275023][   T30] INFO: task syz-executor:7304 blocked for more than 147 seconds.
[  373.282849][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  373.290465][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  373.299173][   T30] task:syz-executor    state:D stack:28416 pid:7304  tgid:7304  ppid:1      task_flags:0x400040 flags:0x00000000
[  373.311145][   T30] Call Trace:
[  373.314488][   T30]  <TASK>
[  373.317424][   T30]  __schedule+0xf43/0x5890
[  373.321837][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.327076][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.332290][   T30]  ? __pfx___schedule+0x10/0x10
[  373.337177][   T30]  ? schedule+0x298/0x350
[  373.341503][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.346566][   T30]  ? __mutex_trylock_common+0x78/0x250
[  373.352028][   T30]  ? lock_acquire+0x2f/0xb0
[  373.356654][   T30]  ? schedule+0x1fd/0x350
[  373.360985][   T30]  schedule+0xe7/0x350
[  373.365030][   T30]  schedule_preempt_disabled+0x13/0x30
[  373.370650][   T30]  __mutex_lock+0x6bd/0xb10
[  373.375163][   T30]  ? misc_open+0x63/0x420
[  373.379566][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  373.384588][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  373.389941][   T30]  ? chrdev_open+0x10e/0x6a0
[  373.394530][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.399688][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  373.405323][   T30]  ? __pfx_misc_open+0x10/0x10
[  373.410129][   T30]  ? misc_open+0x63/0x420
[  373.414468][   T30]  misc_open+0x63/0x420
[  373.418631][   T30]  ? __pfx_misc_open+0x10/0x10
[  373.423458][   T30]  chrdev_open+0x237/0x6a0
[  373.427870][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  373.432852][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  373.439619][   T30]  do_dentry_open+0x735/0x1c40
[  373.444562][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  373.449510][   T30]  ? inode_permission+0xdd/0x5f0
[  373.454500][   T30]  vfs_open+0x82/0x3f0
[  373.458585][   T30]  ? may_open+0x1f2/0x400
[  373.462958][   T30]  path_openat+0x1e88/0x2d80
[  373.467551][   T30]  ? __pfx_path_openat+0x10/0x10
[  373.472463][   T30]  ? handle_mm_fault+0x497/0xaa0
[  373.477426][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.482629][   T30]  do_filp_open+0x20c/0x470
[  373.487318][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  373.492334][   T30]  ? find_held_lock+0x2d/0x110
[  373.497168][   T30]  ? alloc_fd+0x41f/0x760
[  373.501497][   T30]  do_sys_openat2+0x17a/0x1e0
[  373.506208][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  373.511407][   T30]  ? fd_install+0x242/0x750
[  373.515906][   T30]  __x64_sys_openat+0x175/0x210
[  373.520810][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  373.526186][   T30]  do_syscall_64+0xcd/0x250
[  373.530788][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.536684][   T30] RIP: 0033:0x7f5ee638ba51
[  373.541138][   T30] RSP: 002b:00007fff94e45df0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  373.549603][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f5ee638ba51
[  373.557571][   T30] RDX: 0000000000000002 RSI: 00007f5ee640ec76 RDI: 00000000ffffff9c
[  373.566213][   T30] RBP: 00007f5ee640ec76 R08: 0000000000000000 R09: 00007f5ee70dd6c0
[  373.574252][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  373.582291][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  373.590271][   T30]  </TASK>
[  373.593332][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  373.602527][   T30] INFO: task syz-executor:7305 blocked for more than 147 seconds.
[  373.610317][   T30]       Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  373.617989][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  373.626679][   T30] task:syz-executor    state:D stack:28416 pid:7305  tgid:7305  ppid:1      task_flags:0x400040 flags:0x00000000
[  373.638674][   T30] Call Trace:
[  373.641946][   T30]  <TASK>
[  373.644910][   T30]  __schedule+0xf43/0x5890
[  373.649329][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.654517][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.659784][   T30]  ? __pfx___schedule+0x10/0x10
[  373.664631][   T30]  ? schedule+0x298/0x350
[  373.668973][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.673997][   T30]  ? __mutex_trylock_common+0x78/0x250
[  373.679548][   T30]  ? lock_acquire+0x2f/0xb0
[  373.684075][   T30]  ? schedule+0x1fd/0x350
[  373.688474][   T30]  schedule+0xe7/0x350
[  373.692554][   T30]  schedule_preempt_disabled+0x13/0x30
[  373.698088][   T30]  __mutex_lock+0x6bd/0xb10
[  373.702609][   T30]  ? misc_open+0x63/0x420
[  373.706964][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  373.712142][   T30]  ? lock_acquire.part.0+0x11b/0x380
[  373.717434][   T30]  ? chrdev_open+0x10e/0x6a0
[  373.722190][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.727237][   T30]  ? kobject_get_unless_zero+0x157/0x1e0
[  373.732929][   T30]  ? __pfx_misc_open+0x10/0x10
[  373.737696][   T30]  ? misc_open+0x63/0x420
[  373.742090][   T30]  misc_open+0x63/0x420
[  373.746248][   T30]  ? __pfx_misc_open+0x10/0x10
[  373.750998][   T30]  chrdev_open+0x237/0x6a0
[  373.755454][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  373.760395][   T30]  ? file_set_fsnotify_mode_from_watchers+0x163/0x640
[  373.767201][   T30]  do_dentry_open+0x735/0x1c40
[  373.771962][   T30]  ? __pfx_chrdev_open+0x10/0x10
[  373.776934][   T30]  ? inode_permission+0xdd/0x5f0
[  373.781870][   T30]  vfs_open+0x82/0x3f0
[  373.786077][   T30]  ? may_open+0x1f2/0x400
[  373.790415][   T30]  path_openat+0x1e88/0x2d80
[  373.795055][   T30]  ? __pfx_path_openat+0x10/0x10
[  373.799985][   T30]  ? handle_mm_fault+0x497/0xaa0
[  373.804977][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  373.810179][   T30]  do_filp_open+0x20c/0x470
[  373.814665][   T30]  ? __pfx_do_filp_open+0x10/0x10
[  373.819752][   T30]  ? find_held_lock+0x2d/0x110
[  373.824542][   T30]  ? alloc_fd+0x41f/0x760
[  373.828955][   T30]  do_sys_openat2+0x17a/0x1e0
[  373.833646][   T30]  ? __pfx_do_sys_openat2+0x10/0x10
[  373.839060][   T30]  ? fd_install+0x242/0x750
[  373.843575][   T30]  __x64_sys_openat+0x175/0x210
[  373.848494][   T30]  ? __pfx___x64_sys_openat+0x10/0x10
[  373.853874][   T30]  do_syscall_64+0xcd/0x250
[  373.858433][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.864328][   T30] RIP: 0033:0x7f6fa158ba51
[  373.868844][   T30] RSP: 002b:00007fff25b94580 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  373.877259][   T30] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f6fa158ba51
[  373.885244][   T30] RDX: 0000000000000002 RSI: 00007f6fa160ec76 RDI: 00000000ffffff9c
[  373.893236][   T30] RBP: 00007f6fa160ec76 R08: 0000000000000000 R09: 00007f6fa22dd6c0
[  373.901255][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  373.909242][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  373.917261][   T30]  </TASK>
[  373.920276][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  373.929357][   T30] 
[  373.929357][   T30] Showing all locks held in the system:
[  373.937147][   T30] 1 lock held by khungtaskd/30:
[  373.941980][   T30]  #0: ffffffff8e1bcc80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390
[  373.951876][   T30] 2 locks held by getty/5574:
[  373.956757][   T30]  #0: ffff888031c540a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  373.966612][   T30]  #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480
[  373.976793][   T30] 1 lock held by syz-executor/5815:
[  373.981984][   T30]  #0: ffffffff9039a848 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xde/0x2c0
[  373.992126][   T30] 1 lock held by syz-executor/5816:
[  373.997374][   T30]  #0: ffffffff9039a848 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xde/0x2c0
[  374.007499][   T30] 3 locks held by kworker/0:3/5861:
[  374.012733][   T30]  #0: ffff88801b078d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[  374.023216][   T30]  #1: ffffc90002f27d18 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[  374.036127][   T30]  #2: ffffffff9039a848 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x1b/0x160
[  374.047635][   T30] 4 locks held by kworker/0:7/5869:
[  374.052938][   T30]  #0: ffff88801b078d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0
[  374.063505][   T30]  #1: ffffc900044efd18 ((work_completion)(&rfkill->sync_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0
[  374.075400][   T30]  #2: ffffffff9039a848 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_sync_work+0x1b/0x40
[  374.085404][   T30]  #3: ffff888025470100 (&dev->mutex){....}-{4:4}, at: nfc_dev_down+0x2d/0x2e0
[  374.094436][   T30] 4 locks held by udevd/6065:
[  374.099098][   T30]  #0: ffff888030fb00a0 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0
[  374.108050][   T30]  #1: ffff88805c76f888 (&of->mutex#2){+.+.}-{4:4}, at: kernfs_seq_start+0x4d/0x240
[  374.117523][   T30]  #2: ffff888027c0d2d8 (kn->active#5){++++}-{0:0}, at: kernfs_seq_start+0x71/0x240
[  374.127024][   T30]  #3: ffff8880346ad100 (&dev->mutex){....}-{4:4}, at: uevent_show+0x188/0x3b0
[  374.136068][   T30] 1 lock held by syz.4.350/7248:
[  374.141003][   T30]  #0: ffff888025470100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x60/0x330
[  374.150827][   T30] 3 locks held by syz.3.355/7275:
[  374.155837][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.164335][   T30]  #1: ffff8880346ad100 (&dev->mutex){....}-{4:4}, at: nfc_register_device+0x9a/0x3c0
[  374.173964][   T30]  #2: ffffffff9039a848 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40
[  374.183897][   T30] 1 lock held by syz.1.357/7288:
[  374.188823][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.197444][   T30] 1 lock held by syz.0.358/7290:
[  374.202403][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.210903][   T30] 1 lock held by syz.2.359/7293:
[  374.215882][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.224481][   T30] 1 lock held by syz-executor/7297:
[  374.229670][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.238273][   T30] 1 lock held by syz-executor/7299:
[  374.243500][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.251972][   T30] 1 lock held by syz-executor/7301:
[  374.257209][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.265718][   T30] 1 lock held by syz-executor/7304:
[  374.270903][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.279415][   T30] 1 lock held by syz-executor/7305:
[  374.284609][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.293143][   T30] 1 lock held by syz-executor/7311:
[  374.298663][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.307376][   T30] 1 lock held by syz-executor/7313:
[  374.312575][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.321125][   T30] 1 lock held by syz-executor/7315:
[  374.326314][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.334789][   T30] 1 lock held by syz-executor/7318:
[  374.340060][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.348525][   T30] 1 lock held by syz-executor/7319:
[  374.353776][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.362273][   T30] 1 lock held by syz-executor/7321:
[  374.367444][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.375951][   T30] 1 lock held by syz-executor/7323:
[  374.381138][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.389660][   T30] 1 lock held by syz-executor/7325:
[  374.394900][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.403426][   T30] 1 lock held by syz-executor/7328:
[  374.408621][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.417140][   T30] 1 lock held by syz-executor/7329:
[  374.422335][   T30]  #0: ffffffff8eec2ba8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  374.430886][   T30] 
[  374.433197][   T30] =============================================
[  374.433197][   T30] 
[  374.441716][   T30] NMI backtrace for cpu 1
[  374.441727][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  374.441746][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  374.441755][   T30] Call Trace:
[  374.441760][   T30]  <TASK>
[  374.441767][   T30]  dump_stack_lvl+0x116/0x1f0
[  374.441790][   T30]  nmi_cpu_backtrace+0x27b/0x390
[  374.441816][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  374.441841][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  374.441869][   T30]  watchdog+0xf62/0x12b0
[  374.441899][   T30]  ? __pfx_watchdog+0x10/0x10
[  374.441921][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  374.441943][   T30]  ? __kthread_parkme+0x148/0x220
[  374.441963][   T30]  ? __pfx_watchdog+0x10/0x10
[  374.441988][   T30]  kthread+0x3af/0x750
[  374.442010][   T30]  ? __pfx_kthread+0x10/0x10
[  374.442041][   T30]  ? __pfx_kthread+0x10/0x10
[  374.442062][   T30]  ret_from_fork+0x45/0x80
[  374.442084][   T30]  ? __pfx_kthread+0x10/0x10
[  374.442106][   T30]  ret_from_fork_asm+0x1a/0x30
[  374.442138][   T30]  </TASK>
[  374.442145][   T30] Sending NMI from CPU 1 to CPUs 0:
[  374.553863][    C0] NMI backtrace for cpu 0
[  374.553875][    C0] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  374.553896][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  374.553908][    C0] Workqueue: bat_events batadv_nc_worker
[  374.553936][    C0] RIP: 0010:lock_release+0x1a5/0x6f0
[  374.553962][    C0] Code: 48 c7 c7 60 ef 6c 8b e8 69 ac c0 09 48 89 ea 83 e5 07 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 83 c5 03 65 ff 05 03 eb 6b 7e <c7> 44 24 40 01 00 00 00 c7 44 24 50 00 00 00 00 0f b6 04 02 65 4c
[  374.553980][    C0] RSP: 0018:ffffc900001179f0 EFLAGS: 00000002
[  374.553993][    C0] RAX: dffffc0000000000 RBX: 1ffff92000022f40 RCX: ffffffff81969fc9
[  374.554005][    C0] RDX: 1ffffffff20c5106 RSI: ffffffff8b6cef60 RDI: ffffffff8bd35600
[  374.554017][    C0] RBP: 0000000000000007 R08: 0000000000000000 R09: fffffbfff20c4aa2
[  374.554028][    C0] R10: ffffffff90625517 R11: 0000000000000002 R12: ffffffff8e1bcc80
[  374.554040][    C0] R13: ffff888079eb58a8 R14: ffff88801c2fc880 R15: ffffffff8b25aa30
[  374.554052][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  374.554069][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  374.554081][    C0] CR2: 000055e549ef50a8 CR3: 000000000df80000 CR4: 00000000003526f0
[  374.554093][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  374.554103][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  374.554114][    C0] Call Trace:
[  374.554119][    C0]  <NMI>
[  374.554125][    C0]  ? nmi_cpu_backtrace+0x1d8/0x390
[  374.554154][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  374.554177][    C0]  ? nmi_handle+0x1ac/0x5d0
[  374.554204][    C0]  ? lock_release+0x1a5/0x6f0
[  374.554227][    C0]  ? default_do_nmi+0x6a/0x160
[  374.554257][    C0]  ? exc_nmi+0x170/0x1e0
[  374.554283][    C0]  ? end_repeat_nmi+0xf/0x53
[  374.554308][    C0]  ? __pfx_batadv_nc_fwd_flush+0x10/0x10
[  374.554334][    C0]  ? lock_release+0xa9/0x6f0
[  374.554358][    C0]  ? lock_release+0x1a5/0x6f0
[  374.554382][    C0]  ? lock_release+0x1a5/0x6f0
[  374.554406][    C0]  ? lock_release+0x1a5/0x6f0
[  374.554431][    C0]  </NMI>
[  374.554436][    C0]  <TASK>
[  374.554441][    C0]  ? batadv_nc_process_nc_paths.part.0+0x215/0x3e0
[  374.554467][    C0]  ? __pfx_lock_release+0x10/0x10
[  374.554491][    C0]  ? trace_lock_acquire+0x14e/0x1f0
[  374.554512][    C0]  ? mark_held_locks+0x9f/0xe0
[  374.554535][    C0]  ? batadv_nc_process_nc_paths.part.0+0xde/0x3e0
[  374.554561][    C0]  ? lock_acquire+0x2f/0xb0
[  374.554584][    C0]  ? batadv_nc_process_nc_paths.part.0+0xde/0x3e0
[  374.554611][    C0]  ? __pfx_batadv_nc_fwd_flush+0x10/0x10
[  374.554633][    C0]  batadv_nc_process_nc_paths.part.0+0x21a/0x3e0
[  374.554662][    C0]  batadv_nc_worker+0xcc8/0x1060
[  374.554688][    C0]  ? __pfx_batadv_nc_worker+0x10/0x10
[  374.554712][    C0]  ? rcu_is_watching+0x12/0xc0
[  374.554731][    C0]  ? trace_lock_acquire+0x14e/0x1f0
[  374.554751][    C0]  ? process_one_work+0x921/0x1ba0
[  374.554775][    C0]  ? lock_acquire+0x2f/0xb0
[  374.554798][    C0]  ? process_one_work+0x921/0x1ba0
[  374.554823][    C0]  process_one_work+0x9c5/0x1ba0
[  374.554850][    C0]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  374.554874][    C0]  ? __pfx_process_one_work+0x10/0x10
[  374.554902][    C0]  ? assign_work+0x1a0/0x250
[  374.554924][    C0]  worker_thread+0x6c8/0xf00
[  374.554951][    C0]  ? __pfx_worker_thread+0x10/0x10
[  374.554974][    C0]  kthread+0x3af/0x750
[  374.554995][    C0]  ? __pfx_kthread+0x10/0x10
[  374.555015][    C0]  ? lock_acquire+0x2f/0xb0
[  374.555040][    C0]  ? __pfx_kthread+0x10/0x10
[  374.555062][    C0]  ret_from_fork+0x45/0x80
[  374.555085][    C0]  ? __pfx_kthread+0x10/0x10
[  374.555106][    C0]  ret_from_fork_asm+0x1a/0x30
[  374.555131][    C0]  </TASK>
[  374.555939][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  374.921782][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc3-syzkaller-00267-gff202c5028a1 #0
[  374.932262][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  374.942300][   T30] Call Trace:
[  374.945563][   T30]  <TASK>
[  374.948478][   T30]  dump_stack_lvl+0x3d/0x1f0
[  374.953061][   T30]  panic+0x71d/0x800
[  374.956940][   T30]  ? __pfx_panic+0x10/0x10
[  374.961338][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  374.966699][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  374.972664][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  374.978024][   T30]  ? watchdog+0xdcc/0x12b0
[  374.982428][   T30]  ? watchdog+0xdbf/0x12b0
[  374.986833][   T30]  watchdog+0xddd/0x12b0
[  374.991069][   T30]  ? __pfx_watchdog+0x10/0x10
[  374.995731][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  375.000912][   T30]  ? __kthread_parkme+0x148/0x220
[  375.005918][   T30]  ? __pfx_watchdog+0x10/0x10
[  375.010581][   T30]  kthread+0x3af/0x750
[  375.014635][   T30]  ? __pfx_kthread+0x10/0x10
[  375.019210][   T30]  ? __pfx_kthread+0x10/0x10
[  375.023781][   T30]  ret_from_fork+0x45/0x80
[  375.028185][   T30]  ? __pfx_kthread+0x10/0x10
[  375.032761][   T30]  ret_from_fork_asm+0x1a/0x30
[  375.037515][   T30]  </TASK>
[  375.040718][   T30] Kernel Offset: disabled
[  375.045019][   T30] Rebooting in 86400 seconds..