last executing test programs:

9m3.923688711s ago: executing program 0 (id=1672):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

8m55.039271359s ago: executing program 0 (id=1688):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_dev$dri(0x0, 0x1, 0xc0000)
close(0xffffffffffffffff)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=@updpolicy={0xb8, 0x19, 0x1, 0xfffffffc, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x2c}, @in6=@local, 0x4f22, 0x0, 0x4e24, 0x0, 0xa, 0x0, 0x60}, {0x0, 0xbec1, 0xfffffffffffffffe, 0x40000000, 0x0, 0x1a, 0x1, 0xfffffffffffffffe}, {0x7a, 0x5, 0x0, 0x7fff}, 0x8, 0x0, 0x1, 0x1, 0x3}}, 0xb8}}, 0x0)
sendto$inet6(r3, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c)

8m53.914265507s ago: executing program 0 (id=1692):
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48850}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r1 = dup(r0)
write$FUSE_BMAP(r1, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r1, &(0x7f00000004c0)={0x18}, 0x18)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x4, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0x69}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}], {0x95, 0x0, 0x5a5}}, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000200)={0x50, 0x0, r3, {0x7, 0x29, 0x20200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x50)
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r4, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)

8m51.456371041s ago: executing program 0 (id=1698):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_init_net_socket$ax25(0x3, 0x2, 0x7)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)

8m50.481520864s ago: executing program 0 (id=1702):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x693, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000005700)={{r3}, &(0x7f0000005680), &(0x7f00000056c0)}, 0x20)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000009040), r4)

8m49.242754405s ago: executing program 0 (id=1703):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0xff, r4}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
r5 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0)

8m48.858793896s ago: executing program 32 (id=1703):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@ipv4_newaddr={0x20, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0xff, r4}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0)
r5 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local}, 0xc)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0)

4m30.98977727s ago: executing program 4 (id=2327):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
pread64(0xffffffffffffffff, &(0x7f0000001240)=""/102400, 0x19000, 0x2000000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000006600000008000300", @ANYRES32=r7], 0x2c}}, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)

4m29.932101025s ago: executing program 4 (id=2330):
r0 = socket(0x11, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000000)={'team0\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@multicast, @random="4894826645f8", @val={@void}, {@arp={0x806, @ether_ipv4={0x6, 0x500, 0x6, 0x4, 0x0, @random="46d588477cc4", @dev, @link_local, @loopback}}}}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x6c, r3}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000140)={&(0x7f00000000c0), &(0x7f0000000100)=""/15, &(0x7f0000000300), &(0x7f00000006c0)="cee10804cd4a5c7bf7fd751bb94b2578c427d53d864006614aa6845f53c9fd9ceffa1ffee2109d2bb3f7abaa644276720df4fe688f7dd400703a32764dd066c1b84df049f1bc030ab47485f6976312fc0fb33c17eae4c2c2dcb770a374ba21aeffdb6d00fe8d7aeb3b8318451ce5f976fae5949ad2300bcff8b6ede21b5e3a7cf5090d9e5f1a7a8b2f6defb5572bd37637eb9fccc034a426eddbd727ed53e475675225c823ad16655fbc80e92ecd3fe55d95013d46323178d658978bd6aff75969bc5a58177fc9100271c80117051d4e1987ea99", 0x7, r3, 0x4}, 0x38)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
bind$packet(r0, &(0x7f00000001c0)={0x11, 0x0, r2, 0x1, 0x2, 0x6, @broadcast}, 0x14)
r5 = socket$inet(0x2, 0xa, 0x4)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newlink={0x20, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}}, 0x20}}, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000002c0)="2e00000010008188040f80ec59acbc0413010048100000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

4m29.402762767s ago: executing program 4 (id=2332):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0x1, "5660359c3245d1c42317afad7d48ed51000000000000000100", <r2=>0xffffffffffffffff})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sched_switch\x00', r3, 0x0, 0xfffffffffffffffc}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x20000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x5, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27", <r7=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r2, 0xc0303e03, &(0x7f00000000c0)={"3c2486910284ed923431d4c5d5fbf514fd00", r7, <r8=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000040)=0xa45)
ioctl$SYNC_IOC_MERGE(r7, 0xc0303e03, &(0x7f0000000180)={"1322030de361dd494234901b30ca190b6505c85c0e8c361eb4b7a5331d24bb0d", r8})
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

4m28.330255265s ago: executing program 4 (id=2336):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$sock(r0, &(0x7f0000001a00)=[{{&(0x7f0000000940)=@in6={0xa, 0x4e24, 0xff, @dev={0xfe, 0x80, '\x00', 0x3e}}, 0x80, 0x0}}, {{&(0x7f0000000240)=@in6={0xa, 0x4e22, 0xc2cd, @mcast1, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000140)=[@txtime={{0x18, 0x1, 0x24, 0x6}}], 0x18}}], 0x2, 0x0)

4m27.369015865s ago: executing program 4 (id=2338):
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
r3 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/netstat\x00')
pread64(r3, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
r4 = socket$netlink(0x10, 0x3, 0x0)
userfaultfd(0x0)
keyctl$restrict_keyring(0x1d, 0x0, 0x0, 0x0)
writev(r4, &(0x7f0000000040), 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
setresuid(0xee00, 0x0, 0x0)
ioprio_set$uid(0x3, 0xee00, 0x0)

4m26.420805807s ago: executing program 4 (id=2339):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r1, 0xc0045009, &(0x7f00000000c0)=0x6)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f00000000c0)=0x2)
preadv(r2, &(0x7f0000000740)=[{&(0x7f00000004c0)=""/88, 0x58}, {&(0x7f0000000540)=""/215, 0xd7}, {&(0x7f00000007c0)=""/218, 0xda}], 0x3, 0x80000001, 0x3f7a)
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
sync()
r4 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r4, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
r5 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r5, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
accept4$unix(r4, 0x0, 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000220edf104c05c10687c20102030109022400010000ae0009040000024f69960009050f029d8229720009058202"], 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000440)=0x3)

4m10.488510934s ago: executing program 33 (id=2339):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r1, 0xc0045009, &(0x7f00000000c0)=0x6)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f00000000c0)=0x2)
preadv(r2, &(0x7f0000000740)=[{&(0x7f00000004c0)=""/88, 0x58}, {&(0x7f0000000540)=""/215, 0xd7}, {&(0x7f00000007c0)=""/218, 0xda}], 0x3, 0x80000001, 0x3f7a)
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
sync()
r4 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r4, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
r5 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r5, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
accept4$unix(r4, 0x0, 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000220edf104c05c10687c20102030109022400010000ae0009040000024f69960009050f029d8229720009058202"], 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000440)=0x3)

3m6.329984046s ago: executing program 5 (id=2503):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
gettid()
timer_create(0x8, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
memfd_create(&(0x7f0000000480)='!.\x00', 0x1)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)

3m4.695150768s ago: executing program 5 (id=2508):
openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
socket$alg(0x26, 0x5, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x22020400)
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x69c780})
io_uring_enter(r4, 0x3516, 0x4, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000380)=[@in6={0xa, 0x4e20, 0x5, @mcast1, 0x7}]}, &(0x7f0000000240)=0xc)

3m3.154779181s ago: executing program 5 (id=2512):
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)={'sit0\x00'})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001d40)={&(0x7f00000009c0)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
keyctl$read(0xb, 0x0, &(0x7f0000000380)=""/40, 0x28)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r4, 0x560a, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x4})
socket$inet6(0xa, 0x80002, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000002e80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=""/108, 0x6c}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)=""/99, 0x63}}, {{0x0, 0x0, &(0x7f0000001e40)=[{0x0}, {0x0}, {&(0x7f0000000340)=""/181, 0xb5}], 0x3, &(0x7f0000001e80)=""/4096, 0x1000}}], 0x3, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)

2m53.650460997s ago: executing program 5 (id=2533):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
gettid()
timer_create(0x8, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
memfd_create(&(0x7f0000000480)='!.\x00', 0x1)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

2m49.777942378s ago: executing program 5 (id=2539):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r4, &(0x7f0000002140)={0x2020}, 0x2020)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(r1, 0x1, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
mount(0x0, &(0x7f0000000500)='./bus\x00', &(0x7f0000000540)='virtiofs\x00', 0x80c000, &(0x7f0000000580)='dax=always')
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0x400})

2m48.662796639s ago: executing program 5 (id=2542):
syz_open_dev$dri(0x0, 0x0, 0x0)
r0 = inotify_init1(0x0)
splice(r0, 0x0, r0, 0x0, 0x99, 0x5)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x803341)
r2 = dup(r1)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0x80)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
sendto$inet_nvme_pdu(0xffffffffffffffff, &(0x7f00000000c0)=@data_c2h={{0x7, 0x0, 0x18, 0x1, 0x8}, 0x5, 0xb30b, 0x3, 0x80000000, "2ae7064a"}, 0x80, 0x0, 0x0, 0x0)
shmat(0x0, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xc, &(0x7f0000000240)=@assoc_value, 0x0)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f00007b1000/0x1000)=nil)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002700)=""/102392, 0x18ff8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
write(r2, &(0x7f00000000c0)="2400000058001f0014f9f407002304000afff511080001000f1f47f19a5ea46c01000000267e6638892ca02830a4769b", 0x30)

2m32.593263825s ago: executing program 34 (id=2542):
syz_open_dev$dri(0x0, 0x0, 0x0)
r0 = inotify_init1(0x0)
splice(r0, 0x0, r0, 0x0, 0x99, 0x5)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x803341)
r2 = dup(r1)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0x80)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
sendto$inet_nvme_pdu(0xffffffffffffffff, &(0x7f00000000c0)=@data_c2h={{0x7, 0x0, 0x18, 0x1, 0x8}, 0x5, 0xb30b, 0x3, 0x80000000, "2ae7064a"}, 0x80, 0x0, 0x0, 0x0)
shmat(0x0, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xc, &(0x7f0000000240)=@assoc_value, 0x0)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f00007b1000/0x1000)=nil)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002700)=""/102392, 0x18ff8)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x8)
write(r2, &(0x7f00000000c0)="2400000058001f0014f9f407002304000afff511080001000f1f47f19a5ea46c01000000267e6638892ca02830a4769b", 0x30)

17.756075048s ago: executing program 3 (id=2898):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000001840)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1b}}, {}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x5}, {0x3, 0x3, 0x6, 0xa, 0xa}, {0x5, 0x1, 0xb, 0x8, 0xa, 0x4}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x0}, {}, {0x18, 0x2}, {0x7, 0x0, 0xb, 0x2}, {0x46, 0x0, 0x0, 0x76}}], {{}, {0x6, 0x0, 0xb, 0x8}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x480, @void, @value}, 0x90)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0x0, 0x60, &(0x7f0000001600)={'filter\x00', 0xb001, 0x4, 0x3f8, 0x110, 0x110, 0x0, 0x110, 0x310, 0x310, 0x7fffffe, 0x0, {[{{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@link_local, @private=0xa010100, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x7, 0xffffffff}}}, {{@uncond, 0xc0, 0x110, 0x0, {0x0, 0x1e03}}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@local, @rand_addr=0x64010102, @local, 0x2, 0xfffffffe}}}, {{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x10b, 0x0, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x448)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\n'], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r6, 0xffff0000, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x0, 0xffff0000}, 0x48)
pidfd_getfd(0xffffffffffffffff, r6, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000240)={0x400, 0x30, 0xf00, 0x0, 0x0, 0x1f, 0x0, 0x0, {}, {}, {}, {0xffffffff, 0x3}, 0x0, 0x40, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0x4000, 0x2, 0x0, 0x0, 0x16, 0x0, 0x0, 0x5})

16.621062105s ago: executing program 3 (id=2901):
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f00000001c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$swradio(0x0, 0x1, 0x2)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0)
r3 = openat$sndseq(0xffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r3, 0x40505330, &(0x7f0000000000)={{0x0, 0x1}, {0xe}, 0x0, 0x1})
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0x10, &(0x7f0000000040)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = getpgid(r0)
kcmp(r0, r5, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)

15.167428116s ago: executing program 3 (id=2904):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_DELETE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x20000010)

13.040842239s ago: executing program 2 (id=2908):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x80d02, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x48, 0x0, &(0x7f00007d0000))
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="180000001600010a2dbd70ac000000000000000002300000", @ANYRES8=r1], 0x18}}, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r3, 0xc10c5541, &(0x7f0000000000)=0x2)

11.458163932s ago: executing program 2 (id=2911):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x2200, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x5885}, &(0x7f0000000340), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000300), 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r6, 0x84, 0x1, 0x0, &(0x7f0000000080))
write(r1, 0x0, 0x0)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_mtu(r7, 0x0, 0xa, 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_RLIMIT_MODE(r0, 0x3b87, &(0x7f0000000080)={0x18, 0x0, 0x0, 0x0, 0x0, 0x3})

9.634692148s ago: executing program 2 (id=2914):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
io_setup(0x1fc, &(0x7f0000000380))
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000000c0)={0x7, 0xffffffffffffffff, 0x80000})
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = socket(0x40000000015, 0x5, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, 0x0, 0x0, 0x0)
r3 = gettid()
tkill(r3, 0xb)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x8000000003, &(0x7f0000000000), 0x111, 0xa}}, 0x20)
socket$kcm(0x2, 0x3, 0x84)
getsockopt$CAN_RAW_JOIN_FILTERS(r1, 0x65, 0x6, 0x0, 0x0)

9.606076557s ago: executing program 7 (id=2915):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
io_setup(0x1fc, &(0x7f0000000380))
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000000c0)={0x7, 0xffffffffffffffff, 0x80000})
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = socket(0x40000000015, 0x5, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, 0x0, 0x0, 0x0)
r3 = gettid()
tkill(r3, 0xb)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x8000000003, &(0x7f0000000000), 0x111, 0xa}}, 0x20)
socket$kcm(0x2, 0x3, 0x84)
getsockopt$CAN_RAW_JOIN_FILTERS(r1, 0x65, 0x6, 0x0, 0x0)

8.332012064s ago: executing program 6 (id=2918):
socket$phonet_pipe(0x23, 0x5, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
ftruncate(r3, 0x2008002)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$sock_SIOCOUTQ(r4, 0x5411, &(0x7f0000001c80))

8.329405444s ago: executing program 2 (id=2919):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_DELETE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x20000010)

8.232024305s ago: executing program 3 (id=2920):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
open(&(0x7f00000003c0)='./file0\x00', 0x10241, 0x0)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c00000002060104db406e3e0004000200000000100003006269746d61703a706f72740005000400000000000900020073797a32000000000500050000006c000500010006000000240007800800"], 0x6c}}, 0x0)
r5 = add_key(&(0x7f0000000240)='cifs.spnego\x00', &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
setreuid(0xffffffffffffffff, 0xee00)
keyctl$setperm(0x5, r5, 0x220c)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0xfffffe00, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc3}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe)

8.165337881s ago: executing program 7 (id=2921):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
close_range(r1, 0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
io_uring_setup(0x7d2, &(0x7f0000000580)={0x0, 0xddf9, 0x2, 0xfffffffe, 0x338})
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_io_uring_setup(0x109, &(0x7f0000000580)={0x0, 0x1161, 0x80, 0x3}, &(0x7f0000000640)=<r5=>0x0, &(0x7f0000000600)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
clock_nanosleep(0x9, 0x0, &(0x7f0000000340)={0x0, 0x3938700}, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)=ANY=[@ANYRES32=r4], 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000a40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, 0x0, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x14, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x20004060)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r4, r7, 0x4, 0x0, 0x0, @void, @value}, 0x10)

6.835452037s ago: executing program 1 (id=2922):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='fib6_table_lookup\x00', r0}, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$alg(0x26, 0x5, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0xce}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)}}], 0x1, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYRES16=r2, @ANYRES16=r1], 0x1000f)

6.610587977s ago: executing program 3 (id=2923):
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
dup(r0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_GET_MSRS(r4, 0xc048aeca, &(0x7f0000000200))

6.3079616s ago: executing program 7 (id=2924):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xd)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x7)
sendto$inet6(r0, 0x0, 0x0, 0x24000000, 0x0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000100)={@local, @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "92c01f", 0x8, 0x2f, 0x0, @remote, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21}, {}, {0x8, 0x88be, 0x4305000f}}}}}}}, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
setregid(0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r4, 0xc0045002, &(0x7f0000000180))
write$dsp(r4, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
sendmmsg$sock(r1, &(0x7f0000001a00)=[{{&(0x7f0000000940)=@in6={0xa, 0x4e24, 0xff, @dev={0xfe, 0x80, '\x00', 0x3e}}, 0x80, 0x0}}, {{&(0x7f0000000240)=@in6={0xa, 0x4e22, 0xc2cd, @mcast1, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000140)=[@txtime={{0x18, 0x1, 0x24, 0x6}}], 0x18}}], 0x2, 0x0)

6.240194205s ago: executing program 6 (id=2925):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r7, 0x8933, &(0x7f00000000c0)={'wg1\x00', <r9=>0x0})
sendmsg$WG_CMD_SET_DEVICE(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001640)=ANY=[@ANYBLOB='D\n\x00\x00', @ANYRES16=r8, @ANYBLOB="05002abd7000fddbdf2501000000060006004e240000fc0908802804008024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0004098070000080060001000a00000014000200fe80000000000000000000000000000a0500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030001000000060001000a00000014000200fe8000000000000000000000000000aa0500030003000000a0000080060001000a0000001400020000000000000000000000ffff640101010500030000000000060001000a00000014000200fe8000000000000000000000000000bb0500030002000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fc00000000000000000000000000000105000300020000000600010002000000080002000a0101020500030001000000d0000080060001000200000008000200ac1e01010500030000000000060001000a00000014000200000000000000000000000000000000000500030000000000060001000200000008000200ac1414bb0500030006000000060001000a00000014000200fe8000000000000000000000000000420500030001000000060001000a00000014000200fc02000000000000000000000000000105000300020000000600010002000000080002007f0000010500030002000000060001000200000008000200000000000500030002000000ac000080060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fc00000000000000000000000000000005000300020000000600010002000000080002000a01010105000300000000000600010002000000080002007f0000010500030001000000060001000200000008000200e00000010500030001000000060001000a0000001400020020010000000000000000000000000001050003000200000064000080060001000a00000014000200fe8000000000000000000000000000bb0500030001000000060001000a00000014000200ff0100000000000000000000000000010500030002000000060001000200000008000200ac1414aa05000300000000000c010080060001000200000008000200000000000500030001000000060001000a00000014000200fe8000000000000000000000000000410500030003000000060001000a00000014000200ff0100000000000000000000000000010500030000000000060001000a00000014000200fc0100000000000000000000000000010500030000000000060001000a00000014000200fc0200000000000000000000000000000500030003000000060001000200000008000200ac1414aa0500030003000000060001000a00000014000200fc0200000000000000000000000000010500030001000000060001000a00000014000200fe80000000000000000000000000002b050003000200000040000080080003000000000008000a000100000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b392208000300030000008c00008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c24000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b392208000a000100000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b1400040002004e22000000000000000000000000040500807002098094000080060001000a00000014000200000000000000000000000000000000000500030002000000060001000200000008000200ffffffff0500030000000000060001000200000008000200e000000105000300020000000600010002000000080002007f0000010500030002000000060001000a000000140002000000000000000000000000000000000105000300010000004c000080060001000200000008000200ac1414bb0500030002000000060001000200000008000200640100fe0500030001000000060001000200000008000200ac1414bb0500030002000000e8000080060001000a00000014000200200100000000000000000000000000010500030000000000060001000200000008000200e000000205000300020000000600010002000000080002006401010005000300020000000600010002000000080002007f00000105000300010000000600010002000000080002007f0000010500030001000000060001000a00000014000200fe8000000000000000000000000000bb0500030002000000060001000200000008000200e00000010500030003000000060001000a00000014000200200100000000000000000000000000020500030001000000880000800600010002000000080002000000000005000300000000000600010002000000080002006401010205000300000000000600010002000000080002007f0000010500030003000000060001000a00000014000200200100000000000000000000000000000500030001000000060001000200000008000200ac14142d05000300010000001c000080060001000200000008000200ffffffff0500030003000000080003000200000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b39221c02098058000080060001000200000008000200000000000500030003000000060001000200000008000200ac1414aa0500030001000000060001000a00000014000200fe880000000000000000000000000101050003000100000040000080060001000200000008000200ac1e00010500030001000000060001000a0000001400020000000000000000000000ffff0a010102050003000300000000010080060001000200000008000200ac1e00010500030000000000060001000a00000014000200fe8800000000000000000000000000010500030003000000060001000200000008000200000000000500030002000000060001000200000008000200ffffffff0500030000000000060001000a00000014000200ff0200000000000000000000000000010500030000000000060001000a00000014000200200100000000000000000000000000010500030003000000060001000200000008000200e000000105000300000000000600010002000000080002007f00000105000300020000000600010002000000080002000a010100050003000000000064000080060001000200000008000200ac1414aa0500030000000000060001000a00000014000200fe8000000000000000000000000000aa0500030000000000060001000a000000140002002001000000000000000000000000000205000300010000001c000080060001000200000008000200ac141416050003000100000024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b240002000f1b8b82264208ab1a2dce776c03b9f348f500ef8e7606466943f5ba2ae2881e08000100", @ANYRES32=r9, @ANYBLOB="240003"], 0xa44}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@mcast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0x32}, 0x0, @in6=@empty, 0x0, 0x4}}, 0xe8)
close_range(r5, 0xffffffffffffffff, 0x0)

6.207575315s ago: executing program 1 (id=2926):
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x18b801, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_setup(0x8, &(0x7f00000000c0))
sched_setattr(0x0, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
socket$netlink(0x10, 0x3, 0xa)
r3 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000100)={@multicast2, @local}, 0xc)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e28, @empty}, 0x10)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
io_setup(0x3ff, &(0x7f0000000500))
socket$inet6_udp(0xa, 0x2, 0x0)
io_submit(0x0, 0x4, &(0x7f0000001b40)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x6, 0x8000, r1, &(0x7f00000003c0), 0x0, 0x7, 0x0, 0x2}, 0x0, 0x0, 0x0])
r4 = syz_open_dev$usbfs(0x0, 0x76, 0x101301)
ioctl$USBDEVFS_GET_CAPABILITIES(r4, 0x8004551a, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.680540481s ago: executing program 6 (id=2927):
syz_open_procfs(0x0, &(0x7f0000000080)='smaps_rollup\x00')
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0xb}, 0x0, &(0x7f00000002c0)={0x1ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
openat$dlm_control(0xffffffffffffff9c, 0x0, 0x111001, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
lsm_set_self_attr(0x67, &(0x7f0000000040)={0x65, 0x0, 0x20}, 0x20, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

4.154115629s ago: executing program 3 (id=2928):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xd)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
timerfd_create(0x8, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001e40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a09040000000000000000020000000900020073797a32000000000900010073797a30000000002400048020000180080001006c6f6700140002800800064000008801080005400000000814000000110001"], 0x78}}, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
dup2(r5, r4)

3.444916898s ago: executing program 2 (id=2929):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
gettid()
timer_create(0x8, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

3.337561086s ago: executing program 1 (id=2930):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x20000010)

3.301838812s ago: executing program 6 (id=2931):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
io_setup(0x1fc, &(0x7f0000000380))
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000000c0)={0x7, 0xffffffffffffffff, 0x80000})
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = socket(0x40000000015, 0x5, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, 0x0, 0x0, 0x0)
r3 = gettid()
tkill(r3, 0xb)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x8000000003, &(0x7f0000000000), 0x111, 0xa}}, 0x20)
socket$kcm(0x2, 0x3, 0x84)
getsockopt$CAN_RAW_JOIN_FILTERS(r1, 0x65, 0x6, 0x0, 0x0)

3.022962s ago: executing program 1 (id=2932):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd93, 0x0, 0x0, 0x10, 0x38, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f0000000680)=ANY=[], 0x0, 0x8, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x2000003, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x37, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0xc0145401, &(0x7f0000000100)={0x2, 0x0, 0x5, 0x3})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0xea5, './file0\x00'}})
write$dsp(0xffffffffffffffff, &(0x7f00000001c0)="5cba", 0x2)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0xa031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x2, 0x0)
r5 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, &(0x7f0000000100), &(0x7f0000000280))
io_uring_enter(r5, 0x25e4, 0x731b, 0x48, 0x0, 0x0)

2.481826037s ago: executing program 7 (id=2933):
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
dup(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000000)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000000000)={0x0, 0x8f, 0x7, &(0x7f00000000c0)={0x4, "070000f82e44e2a65eb73c4d0ee95d04002c8dfdf41300000000000200"}})
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'\x00', 0x52d35ce30131f272})
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454c9, 0x13)
socket$phonet_pipe(0x23, 0x5, 0x2)

2.314863184s ago: executing program 2 (id=2934):
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
gettid()
timer_create(0x8, 0x0, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
memfd_create(&(0x7f0000000480)='!.\x00', 0x1)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

1.127669459s ago: executing program 7 (id=2935):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
io_setup(0x1fc, &(0x7f0000000380))
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000000c0)={0x7, 0xffffffffffffffff, 0x80000})
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
r1 = socket(0x40000000015, 0x5, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, 0x0, 0x0, 0x0)
gettid()
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x8000000003, &(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x111, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x7fe, @loopback, 0x1}, {0xa, 0x4e20, 0x5a807add, @remote, 0x5}, r4, 0xb}}, 0x48)
socket$kcm(0x2, 0x3, 0x84)
getsockopt$CAN_RAW_JOIN_FILTERS(r1, 0x65, 0x6, 0x0, 0x0)

750.101629ms ago: executing program 1 (id=2936):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='fib6_table_lookup\x00', r0}, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$alg(0x26, 0x5, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0xce}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)=[{0x0}], 0x1}}], 0x1, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYRES16=r2, @ANYRES16=r1], 0x1000f)

703.80332ms ago: executing program 6 (id=2937):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r1 = accept$alg(r0, 0x0, 0x0)
dup(r1)
r2 = open(0x0, 0x145142, 0x0)
ftruncate(r2, 0x2007ffc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x44}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

255.304717ms ago: executing program 1 (id=2938):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x70)
timerfd_create(0x9, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r1}, 0x18)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000ff8000/0x2000)=nil, 0x2000, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000600)={0x1, <r2=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1c, 0x2, &(0x7f0000000180)=@raw=[@cb_func={0x18, 0xb, 0x4, 0x0, 0x6}], 0x0, 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2f, r0, 0x8, &(0x7f0000000380)={0x6, 0x2}, 0x8, 0x10, 0x0, 0x0, r2, r1, 0x7, &(0x7f0000000680)=[r0], &(0x7f00000006c0)=[{0x0, 0x4, 0x5, 0x1}, {0x1, 0x1, 0xb, 0x1}, {0x3, 0x3, 0x1, 0x8}, {0x0, 0x4, 0x6}, {0x4, 0x2, 0x0, 0x7}, {0x3, 0x3, 0xc, 0x2}, {0x3, 0x2, 0x1, 0x4}], 0x10, 0xfffffffa, @void, @value}, 0x94)
clock_settime(0x0, &(0x7f0000000040)={0x77359400})

157.556056ms ago: executing program 6 (id=2939):
openat$kvm(0x0, 0x0, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$sw_sync(0xffffffffffffff9c, 0x0, 0x80b02, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r5, 0xc0285700, &(0x7f0000000080)={0x359, "0600000000000000c64c3b6e6ff82a75e5318fca4288c2ffbdbec772020acd2c"})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000200)={0x0, &(0x7f0000000140)=[<r6=>0x0], &(0x7f0000000180)=[<r7=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f00000002c0)={0x0, 0x0, r6, 0x0, 0x80, 0x5, 0x9, 0x0, {0x9, 0xd6, 0x1c, 0xd, 0x5, 0x401, 0xfff5, 0xa, 0x0, 0x52, 0x8000, 0x7e9, 0x401, 0x9aa1, "cb630dab3a0338057401a192419598961f50dc45c87d55a52a28b8f01c0e0e7a"}})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f00000003c0)={&(0x7f0000000280)=[r6, r7], 0x2})
close_range(r0, 0xffffffffffffffff, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)

0s ago: executing program 7 (id=2940):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000000}, 0x40000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000000)='debugfs\x00', 0x200000, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0x20002078)

kernel console output (not intermixed with test programs):

sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  583.902757][T12077] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  583.917143][   T30] audit: type=1326 audit(1742726511.142:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  584.073264][T12077] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  584.089851][   T30] audit: type=1326 audit(1742726511.152:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  584.093004][ T5827] Bluetooth: hci1: command tx timeout
[  584.849109][   T30] audit: type=1326 audit(1742726511.152:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  584.893134][   T30] audit: type=1326 audit(1742726511.152:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  585.303861][   T30] audit: type=1326 audit(1742726512.702:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  585.926297][   T30] audit: type=1326 audit(1742726512.702:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  586.023578][   T30] audit: type=1326 audit(1742726512.702:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  586.372246][   T30] audit: type=1326 audit(1742726512.702:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  586.511096][   T30] audit: type=1326 audit(1742726512.702:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  586.535118][   T30] audit: type=1326 audit(1742726512.702:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  586.569513][   T30] audit: type=1326 audit(1742726512.702:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  586.578780][T12077] 8021q: adding VLAN 0 to HW filter on device batadv0
[  587.189504][   T30] audit: type=1326 audit(1742726512.702:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  587.261805][ T6655] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  587.275011][   T30] audit: type=1326 audit(1742726512.702:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  587.317509][   T30] audit: type=1326 audit(1742726512.712:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.3.1730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  589.425260][T12240] mac80211_hwsim hwsim6 wlan1: entered allmulticast mode
[  590.211912][T12240] team0: left allmulticast mode
[  590.216816][T12240] team_slave_0: left allmulticast mode
[  590.227970][T12240] team_slave_1: left allmulticast mode
[  590.245342][T12240] team0: left promiscuous mode
[  590.250300][T12240] team_slave_0: left promiscuous mode
[  590.255866][T12240] team_slave_1: left promiscuous mode
[  590.261749][T12246] netlink: 'syz.1.1743': attribute type 10 has an invalid length.
[  590.269952][T12240] bridge0: port 3(team0) entered disabled state
[  590.300419][T12249] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1745'.
[  590.370504][T12240] bridge_slave_0: left allmulticast mode
[  590.377958][T12240] bridge_slave_0: left promiscuous mode
[  590.386436][T12240] bridge0: port 1(bridge_slave_0) entered disabled state
[  590.422014][T12240] bridge_slave_1: left allmulticast mode
[  590.461221][T12240] bridge_slave_1: left promiscuous mode
[  590.468341][T12240] bridge0: port 2(bridge_slave_1) entered disabled state
[  590.762420][T12240] bond0: (slave bond_slave_0): Releasing backup interface
[  590.808045][T12240] bond0: (slave bond_slave_1): Releasing backup interface
[  590.842111][T12240] team0: Port device team_slave_0 removed
[  590.871081][T12240] team0: Port device team_slave_1 removed
[  590.882907][T12240] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  590.899473][T12240] batman_adv: batadv0: Removing interface: batadv_slave_0
[  590.925708][T12240] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  590.959563][T12240] batman_adv: batadv0: Removing interface: batadv_slave_1
[  591.014890][T12240] bond1: (slave veth3): Releasing backup interface
[  591.049217][T12077] veth0_vlan: entered promiscuous mode
[  591.058745][T12246] mac80211_hwsim hwsim6 wlan1: left allmulticast mode
[  591.112301][T12246] 8021q: adding VLAN 0 to HW filter on device bond0
[  591.165817][T12246] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  591.184870][T12257] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1747'.
[  591.199539][T12257] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1747'.
[  591.208493][T12257] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1747'.
[  591.260244][T12257] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1747'.
[  591.356652][T12077] veth1_vlan: entered promiscuous mode
[  591.436158][T12077] veth0_macvtap: entered promiscuous mode
[  591.451640][T12077] veth1_macvtap: entered promiscuous mode
[  591.476915][T12077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  591.528819][T12077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  591.539724][T12077] batman_adv: batadv0: Interface activated: batadv_slave_0
[  591.548785][T12077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  591.562248][T12077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  591.573336][T12077] batman_adv: batadv0: Interface activated: batadv_slave_1
[  591.600056][T12077] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  591.608760][T12077] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  591.769822][T12077] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  591.885533][T12077] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  592.400526][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  592.400586][   T30] audit: type=1400 audit(1742726519.882:964): avc:  denied  { map } for  pid=12263 comm="syz.2.1749" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=727 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  592.594657][ T6661] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  592.623389][T12119] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  592.651242][ T6661] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  592.776026][T12272] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1750'.
[  593.309278][T12271] 
: renamed from bond0 (while UP)
[  593.328597][T12126] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  593.370564][T12126] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  593.499398][   T30] audit: type=1400 audit(1742726520.982:965): avc:  denied  { mounton } for  pid=12077 comm="syz-executor" path="/root/syzkaller.Hpnbc4/syz-tmp" dev="sda1" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  593.564947][   T30] audit: type=1400 audit(1742726521.022:966): avc:  denied  { mount } for  pid=12077 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  593.895708][   T30] audit: type=1400 audit(1742726521.022:967): avc:  denied  { mounton } for  pid=12077 comm="syz-executor" path="/root/syzkaller.Hpnbc4/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  593.924443][   T30] audit: type=1400 audit(1742726521.022:968): avc:  denied  { mounton } for  pid=12077 comm="syz-executor" path="/root/syzkaller.Hpnbc4/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=32274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  594.042708][ T6661] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  594.486412][   T30] audit: type=1400 audit(1742726521.042:969): avc:  denied  { mounton } for  pid=12077 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2728 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  594.519584][   T30] audit: type=1400 audit(1742726521.042:970): avc:  denied  { mount } for  pid=12077 comm="syz-executor" name="/" dev="gadgetfs" ino=6653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  595.005003][   T30] audit: type=1400 audit(1742726521.972:971): avc:  denied  { mounton } for  pid=12077 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  595.153164][ T5868] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  595.439637][ T5868] usb 5-1: config 0 has an invalid interface number: 217 but max is 0
[  595.449408][ T5868] usb 5-1: config 0 has no interface number 0
[  595.569502][ T5868] usb 5-1: config 0 interface 217 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  595.749846][ T5868] usb 5-1: config 0 interface 217 altsetting 0 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  595.775221][ T5868] usb 5-1: config 0 interface 217 altsetting 0 has an endpoint descriptor with address 0x46, changing to 0x6
[  595.817456][ T5868] usb 5-1: config 0 interface 217 altsetting 0 has a duplicate endpoint with address 0x6, skipping
[  595.859487][ T5868] usb 5-1: config 0 interface 217 altsetting 0 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  595.878931][ T5868] usb 5-1: config 0 interface 217 altsetting 0 has a duplicate endpoint with address 0x6, skipping
[  595.911255][   T30] audit: type=1400 audit(1742726523.392:972): avc:  denied  { ioctl } for  pid=12294 comm="syz.3.1757" path="/dev/sg0" dev="devtmpfs" ino=747 ioctlcmd=0x2275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  595.948937][ T5868] usb 5-1: config 0 interface 217 altsetting 0 has 8 endpoint descriptors, different from the interface descriptor's value: 7
[  596.013511][ T5868] usb 5-1: New USB device found, idVendor=045e, idProduct=044f, bcdDevice=16.7e
[  596.049680][ T5868] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  596.050889][T12299] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1759'.
[  596.088626][ T5868] usb 5-1: config 0 descriptor??
[  596.205513][T12302] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  596.230194][T12285] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  596.689965][   T30] audit: type=1400 audit(1742726524.172:973): avc:  denied  { read } for  pid=12309 comm="syz.5.1761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  597.452703][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  597.452719][   T30] audit: type=1400 audit(1742726524.942:975): avc:  denied  { connect } for  pid=12318 comm="syz.2.1763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  597.775792][T12321] (syz.2.1763,12321,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  597.784979][T12321] (syz.2.1763,12321,0):ocfs2_fill_super:1177 ERROR: status = -22
[  597.976820][ T5901] usb 5-1: USB disconnect, device number 13
[  598.388881][T10224] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  598.854904][T12339] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1767'.
[  598.864312][T12339] netlink: 'syz.2.1767': attribute type 1 has an invalid length.
[  599.961926][T12119] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  602.885016][   T30] audit: type=1400 audit(1742726530.352:976): avc:  denied  { execute } for  pid=12357 comm="syz.4.1772" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=32364 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  602.911172][    C1] vkms_vblank_simulate: vblank timer overrun
[  604.051927][   T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  605.093013][T12119] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  605.538451][T12393] tipc: New replicast peer: 255.255.255.255
[  605.709368][T12393] tipc: Enabled bearer <udp:syz2>, priority 10
[  609.398753][T12418] syz.5.1786 (12418): drop_caches: 2
[  609.592030][   T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  610.553972][T12126] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  610.746350][T12432] syz.2.1791: attempt to access beyond end of device
[  610.746350][T12432] nbd2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  610.760050][T12432] SQUASHFS error: Failed to read block 0x0: -5
[  610.766413][T12432] unable to read squashfs_super_block
[  611.523392][T12438] input: syz0 as /devices/virtual/input/input19
[  614.057683][T12462] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1798'.
[  614.068375][T12462] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1798'.
[  614.139581][T12462] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1798'.
[  614.165886][T12462] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1798'.
[  614.513318][T12474] netfs: Couldn't get user pages (rc=-14)
[  616.402599][   T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  616.414174][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  616.949176][T12484] netdevsim netdevsim3: Direct firmware load for ./file0 failed with error -2
[  616.958448][T12484] netdevsim netdevsim3: Falling back to sysfs fallback for: ./file0
[  618.537867][T12497] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  618.549639][T12497] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  618.563886][   T30] audit: type=1400 audit(1742726545.322:977): avc:  denied  { mount } for  pid=12493 comm="syz.4.1807" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  618.676493][T12497] overlayfs: failed to look up (tracing) for ino (-66)
[  620.447085][T12509] netlink: 'syz.1.1811': attribute type 3 has an invalid length.
[  621.243801][   T30] audit: type=1400 audit(1742726548.732:978): avc:  denied  { unmount } for  pid=5829 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  622.313507][T12126] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  622.324290][T10201] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  622.324386][   T30] audit: type=1400 audit(1742726549.282:979): avc:  denied  { read } for  pid=12528 comm="syz.2.1816" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  622.728757][T12541] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1819'.
[  624.080175][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  624.086548][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  626.513977][T12569] selinux_netlink_send: 55 callbacks suppressed
[  626.513990][T12569] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2579 sclass=netlink_route_socket pid=12569 comm=syz.5.1827
[  626.608308][T12575] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1829'.
[  626.629870][   T30] audit: type=1400 audit(1742726554.112:980): avc:  denied  { connect } for  pid=12568 comm="syz.5.1827" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  626.759357][   T30] audit: type=1400 audit(1742726554.172:981): avc:  denied  { write } for  pid=12543 comm="syz.3.1822" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  626.895316][   T30] audit: type=1400 audit(1742726554.182:982): avc:  denied  { getopt } for  pid=12573 comm="syz.4.1829" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  626.914777][    C0] vkms_vblank_simulate: vblank timer overrun
[  627.014297][ T5869] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  627.453298][T12589] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1833'.
[  627.529452][ T5869] usb 5-1: Using ep0 maxpacket: 32
[  627.538958][ T5869] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 14385, setting to 64
[  627.561275][ T5869] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[  627.572973][ T5869] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  627.811654][T10201] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  627.828420][T12126] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  628.147937][ T5869] usb 5-1: Product: syz
[  628.152487][ T5869] usb 5-1: Manufacturer: syz
[  628.157200][ T5869] usb 5-1: SerialNumber: syz
[  628.166302][ T5869] usb 5-1: config 0 descriptor??
[  628.198343][ T5869] usb 5-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  629.746524][T12126] usb 5-1: Failed to submit usb control message: -110
[  629.753674][T12126] usb 5-1: unable to send the bmi data to the device: -110
[  629.797150][T12126] usb 5-1: unable to get target info from device
[  629.814437][T12126] usb 5-1: could not get target info (-110)
[  629.840512][T12126] usb 5-1: could not probe fw (-110)
[  629.874665][ T5901] usb 5-1: USB disconnect, device number 14
[  632.506372][   T30] audit: type=1400 audit(1742726559.972:983): avc:  denied  { bind } for  pid=12621 comm="syz.5.1843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  633.011316][T12642] fuse: Bad value for 'fd'
[  633.044040][T12642] netfs: Couldn't get user pages (rc=-14)
[  633.309816][   T30] audit: type=1400 audit(1742726560.762:984): avc:  denied  { map } for  pid=12643 comm="syz.3.1847" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  634.580964][T12652] lo speed is unknown, defaulting to 1000
[  634.925806][   T30] audit: type=1400 audit(1742726562.412:985): avc:  denied  { load_policy } for  pid=12664 comm="syz.4.1854" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  634.948631][T12665] SELinux:  policydb magic number 0x7665642f does not match expected magic number 0xf97cff8c
[  634.988063][T12665] SELinux: failed to load policy
[  636.320956][T12680] fuse: Bad value for 'fd'
[  643.408507][T12736] hub 1-0:1.0: USB hub found
[  643.417438][T12736] hub 1-0:1.0: 1 port detected
[  645.039332][   T30] audit: type=1400 audit(1742726571.862:986): avc:  denied  { setopt } for  pid=12742 comm="syz.2.1874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  645.376262][T12754] vlan2: entered allmulticast mode
[  645.616953][T12754] macsec0: entered allmulticast mode
[  645.645466][T12754] veth1_macvtap: entered allmulticast mode
[  645.653233][T12754] bridge0: port 3(vlan2) entered blocking state
[  646.662185][T12754] bridge0: port 3(vlan2) entered disabled state
[  646.682060][T12754] vlan2: entered promiscuous mode
[  646.687223][T12754] macsec0: entered promiscuous mode
[  646.693557][T12754] bridge0: port 3(vlan2) entered blocking state
[  646.700260][T12754] bridge0: port 3(vlan2) entered forwarding state
[  650.136803][   T30] audit: type=1400 audit(1742726577.622:987): avc:  denied  { unmount } for  pid=12077 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  655.876074][   T30] audit: type=1400 audit(1742726583.362:988): avc:  denied  { ioctl } for  pid=12843 comm="syz.3.1901" path="socket:[33348]" dev="sockfs" ino=33348 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  659.777808][T12872] bad cache= option: none

[  659.777808][T12872] 
[  659.784728][T12872] CIFS: VFS: bad cache= option: none

[  662.914197][    T9] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  664.093282][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  664.126204][    T9] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  664.254537][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  664.262977][    T9] usb 3-1: Product: syz
[  664.267144][    T9] usb 3-1: Manufacturer: syz
[  664.272076][    T9] usb 3-1: SerialNumber: syz
[  664.278241][    T9] usb 3-1: config 0 descriptor??
[  665.471698][T12928] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  665.527319][T12936] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  665.584004][    T9] usb 3-1: USB disconnect, device number 22
[  665.769200][T12937] netlink: 7084 bytes leftover after parsing attributes in process `syz.4.1928'.
[  670.398345][T12990] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12990 comm=syz.5.1944
[  671.289440][  T118] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  671.833335][T13001] infiniband syz1: set active
[  671.838021][T13001] infiniband syz1: added team_slave_0
[  671.843588][  T118] usb 5-1: Using ep0 maxpacket: 32
[  671.853139][  T118] usb 5-1: config 4 has an invalid interface number: 128 but max is 0
[  671.866510][  T118] usb 5-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  671.877013][  T118] usb 5-1: config 4 has no interface number 0
[  671.883217][  T118] usb 5-1: config 4 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  671.896404][  T118] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  671.905660][  T118] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  671.915063][T13001] RDS/IB: syz1: added
[  671.919139][T13001] smc: adding ib device syz1 with port count 1
[  671.925521][T13001] smc:    ib device syz1 port 1 has pnetid 
[  672.219804][  T118] hub 5-1:4.128: bad descriptor, ignoring hub
[  672.226086][  T118] hub 5-1:4.128: probe with driver hub failed with error -5
[  672.235160][  T118] usbhid 5-1:4.128: couldn't find an input interrupt endpoint
[  675.349713][  T118] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  675.647496][T13017] lo speed is unknown, defaulting to 1000
[  675.662439][    T9] usb 5-1: USB disconnect, device number 15
[  675.722156][  T118] usb 3-1: Using ep0 maxpacket: 32
[  675.766006][  T118] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  675.805050][  T118] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  675.846240][  T118] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  675.893676][  T118] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  675.920726][T13032] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  675.928269][T13032] IPv6: NLM_F_CREATE should be set when creating new route
[  675.935480][T13032] IPv6: NLM_F_CREATE should be set when creating new route
[  675.946016][  T118] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  675.988734][  T118] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  676.027299][  T118] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  676.042425][  T118] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.053626][  T118] usb 3-1: config 0 descriptor??
[  676.123002][T13037] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1956'.
[  676.323433][  T118] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 23 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  676.349495][  T118] usb 3-1: USB disconnect, device number 23
[  676.361737][  T118] usblp0: removed
[  676.458046][    T9] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  676.521601][T13034] lo speed is unknown, defaulting to 1000
[  676.591290][T13042] overlayfs: failed to clone upperpath
[  676.740636][    T9] usb 5-1: Using ep0 maxpacket: 16
[  676.754783][    T9] usb 5-1: config 0 has an invalid interface number: 214 but max is 0
[  677.345612][  T118] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  677.379964][    T9] usb 5-1: config 0 has no interface number 0
[  677.394549][    T9] usb 5-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  677.435398][    T9] usb 5-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  677.449325][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  677.459495][    T9] usb 5-1: Product: syz
[  677.463660][    T9] usb 5-1: Manufacturer: syz
[  677.489728][    T9] usb 5-1: SerialNumber: syz
[  677.519622][    T9] usb 5-1: config 0 descriptor??
[  677.589510][  T118] usb 3-1: Using ep0 maxpacket: 32
[  677.664333][  T118] usb 3-1: device descriptor read/all, error -71
[  677.940985][T13037] netlink: 168 bytes leftover after parsing attributes in process `syz.4.1956'.
[  677.950352][    T9] usbtouchscreen 5-1:0.214: Failed to read FW rev: -32
[  677.957942][    T9] usbtouchscreen 5-1:0.214: probe with driver usbtouchscreen failed with error -32
[  679.124450][T13057] xt_CT: You must specify a L4 protocol and not use inversions on it
[  679.803035][ T5901] usb 5-1: USB disconnect, device number 16
[  681.071507][T13072] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  681.078666][T13072] overlayfs: failed to set xattr on upper
[  681.084454][T13072] overlayfs: ...falling back to redirect_dir=nofollow.
[  681.091488][T13072] overlayfs: ...falling back to index=off.
[  681.097281][T13072] overlayfs: ...falling back to uuid=null.
[  681.103139][T13072] overlayfs: maximum fs stacking depth exceeded
[  681.154895][   T30] audit: type=1400 audit(1742726608.552:989): avc:  denied  { mounton } for  pid=13065 comm="syz.3.1963" path="/382/file1/bus" dev="hugetlbfs" ino=34527 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  684.328418][T13100] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1972'.
[  684.479731][    T9] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  685.357795][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  685.397676][    T9] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  685.411217][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  685.418243][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  685.573012][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  685.602504][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  685.639551][    T9] usb 4-1: SerialNumber: syz
[  688.372588][T13128] netlink: 10 bytes leftover after parsing attributes in process `syz.4.1978'.
[  688.808531][T13129] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  688.839492][T13129] batman_adv: batadv0: Adding interface: ip6gretap1
[  688.846254][T13129] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  688.874134][T13129] batman_adv: batadv0: Interface activated: ip6gretap1
[  689.245209][  T118] usb 4-1: USB disconnect, device number 14
[  690.106475][T10199] Bluetooth: hci5: Frame reassembly failed (-84)
[  691.799468][ T5827] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  692.397034][T13156] 9pnet_fd: Insufficient options for proto=fd
[  692.976034][T13162] lo speed is unknown, defaulting to 1000
[  694.047535][T13172] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1991'.
[  695.116015][T13185] No control pipe specified
[  695.138359][   T30] audit: type=1400 audit(1742726622.622:990): avc:  denied  { read } for  pid=13177 comm="syz.5.1993" name="btrfs-control" dev="devtmpfs" ino=1311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  695.178040][   T30] audit: type=1400 audit(1742726622.622:991): avc:  denied  { open } for  pid=13177 comm="syz.5.1993" path="/dev/btrfs-control" dev="devtmpfs" ino=1311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  695.202758][   T30] audit: type=1400 audit(1742726622.622:992): avc:  denied  { ioctl } for  pid=13177 comm="syz.5.1993" path="/dev/btrfs-control" dev="devtmpfs" ino=1311 ioctlcmd=0x9405 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  695.797547][T13194] trusted_key: encrypted_key: master key parameter '�H' is invalid
[  695.963316][   T30] audit: type=1400 audit(1742726623.452:993): avc:  denied  { accept } for  pid=13195 comm="syz.5.1996" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  696.012834][T13199] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  696.438642][T13201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1997'.
[  696.670701][   T30] audit: type=1400 audit(1742726623.922:994): avc:  denied  { accept } for  pid=13197 comm="syz.2.1997" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  698.035650][T13219] program syz.5.2002 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  698.227392][   T30] audit: type=1400 audit(1742726625.652:995): avc:  denied  { map } for  pid=13214 comm="syz.2.2001" path="socket:[34990]" dev="sockfs" ino=34990 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  700.778042][T13253] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  702.799967][T13264] devtmpfs: Unknown parameter 'f��'
[  703.882246][T13279] input input21: cannot allocate more than FF_MAX_EFFECTS effects
[  709.847445][T13332] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  710.889463][T13137] Bluetooth: hci5: command 0x1003 tx timeout
[  710.903308][ T5827] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  711.114656][T13344] sctp: [Deprecated]: syz.3.2025 (pid 13344) Use of struct sctp_assoc_value in delayed_ack socket option.
[  711.114656][T13344] Use struct sctp_sack_info instead
[  712.082949][T13362] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2037'.
[  713.994409][T13385] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2043'.
[  714.555296][   T30] audit: type=1326 audit(1742726641.882:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13368 comm="syz.5.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  714.589375][   T30] audit: type=1326 audit(1742726641.882:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13368 comm="syz.5.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  714.769152][T13397] syz.3.2047: attempt to access beyond end of device
[  714.769152][T13397] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  714.782997][T13397] syz.3.2047: attempt to access beyond end of device
[  714.782997][T13397] nbd3: rw=0, sector=120, nr_sectors = 8 limit=0
[  714.796139][T13397] Mount JFS Failure: -5
[  715.191846][   T30] audit: type=1326 audit(1742726642.672:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13368 comm="syz.5.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=75 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  715.244825][   T30] audit: type=1326 audit(1742726642.672:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13368 comm="syz.5.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  715.269432][   T30] audit: type=1326 audit(1742726642.672:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13368 comm="syz.5.2041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  716.283066][T13412] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  716.290923][T13412] UDF-fs: Scanning with blocksize 512 failed
[  716.298595][T13412] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  716.306268][T13412] UDF-fs: Scanning with blocksize 1024 failed
[  716.313441][T13412] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  716.321036][T13412] UDF-fs: Scanning with blocksize 2048 failed
[  716.328094][T13412] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  716.335672][T13412] UDF-fs: Scanning with blocksize 4096 failed
[  717.017873][   T30] audit: type=1400 audit(1742726644.502:1001): avc:  denied  { unmount } for  pid=5820 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  719.471508][T13447] 9pnet_fd: Insufficient options for proto=fd
[  720.887440][T13467] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2066'.
[  721.269386][ T5868] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  721.439337][ T5868] usb 6-1: Using ep0 maxpacket: 8
[  721.457755][ T5868] usb 6-1: unable to get BOS descriptor or descriptor too short
[  721.498479][ T5868] usb 6-1: New USB device found, idVendor=0423, idProduct=000c, bcdDevice=2e.bf
[  721.513246][ T5868] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  721.563379][ T5868] usb 6-1: Product: syz
[  721.575816][ T5867] IPVS: starting estimator thread 0...
[  721.581467][ T5868] usb 6-1: Manufacturer: syz
[  721.587590][T13471] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  721.607191][ T5868] usb 6-1: SerialNumber: syz
[  721.669350][T13479] IPVS: using max 31 ests per chain, 74400 per kthread
[  721.853182][ T5868] usb 6-1: selecting invalid altsetting 1
[  721.858948][ T5868] catc 6-1:8.0: Can't set altsetting 1.
[  721.877917][ T5868] catc 6-1:8.0: probe with driver catc failed with error -5
[  721.908334][ T5868] usb 6-1: USB disconnect, device number 2
[  723.084777][T13499] netlink: 188 bytes leftover after parsing attributes in process `syz.2.2074'.
[  723.093915][T13499] netlink: 'syz.2.2074': attribute type 1 has an invalid length.
[  723.886697][T13497] 9pnet_fd: Insufficient options for proto=fd
[  724.312519][T13517] overlayfs: failed to resolve './file1': -2
[  724.574914][T13503] lo speed is unknown, defaulting to 1000
[  724.675879][T13524] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  724.683547][T13524] UDF-fs: Scanning with blocksize 512 failed
[  724.692909][T13524] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  724.700480][T13524] UDF-fs: Scanning with blocksize 1024 failed
[  724.708875][T13524] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  724.716907][T13524] UDF-fs: Scanning with blocksize 2048 failed
[  724.724920][T13524] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  724.732554][T13524] UDF-fs: Scanning with blocksize 4096 failed
[  726.180840][T13534] =======================================================
[  726.180840][T13534] WARNING: The mand mount option has been deprecated and
[  726.180840][T13534]          and is ignored by this kernel. Remove the mand
[  726.180840][T13534]          option from the mount to silence this warning.
[  726.180840][T13534] =======================================================
[  727.043739][   T30] audit: type=1800 audit(1742726654.522:1002): pid=13537 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.5.2085" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  727.130534][T13541] 9pnet_fd: Insufficient options for proto=fd
[  728.549338][T13563] 9pnet_fd: Insufficient options for proto=fd
[  730.624950][T13577] kvm: kvm [13575]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  730.769898][ T5901] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  731.531258][T13577] kvm: kvm [13575]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  731.542620][T13577] kvm: kvm [13575]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  731.553345][T13577] kvm: kvm [13575]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  731.564224][T13577] kvm: kvm [13575]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  731.574905][T13577] kvm: kvm [13575]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  731.585400][T13577] kvm: kvm [13575]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  731.596565][T13579] 9pnet_fd: Insufficient options for proto=fd
[  731.653576][T13589] : entered promiscuous mode
[  731.790779][ T5901] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  731.801073][ T5901] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  731.810347][ T5901] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.819148][ T5901] usb 3-1: config 0 descriptor??
[  731.834095][ T5901] pwc: Askey VC010 type 2 USB webcam detected.
[  731.850171][T13592] 9pnet_fd: Insufficient options for proto=fd
[  732.293612][ T5901] pwc: recv_control_msg error -32 req 02 val 2b00
[  732.301477][ T5901] pwc: recv_control_msg error -32 req 02 val 2700
[  732.328621][ T5901] pwc: recv_control_msg error -32 req 02 val 2c00
[  732.336382][ T5901] pwc: recv_control_msg error -32 req 04 val 1000
[  732.356330][ T5901] pwc: recv_control_msg error -32 req 04 val 1300
[  733.049356][ T5901] pwc: recv_control_msg error -32 req 04 val 1400
[  733.062464][ T5901] pwc: recv_control_msg error -32 req 02 val 2000
[  733.070849][ T5901] pwc: recv_control_msg error -32 req 02 val 2100
[  733.082056][ T5901] pwc: recv_control_msg error -32 req 04 val 1500
[  733.100049][ T5901] pwc: recv_control_msg error -32 req 02 val 2500
[  733.107364][ T5901] pwc: recv_control_msg error -32 req 02 val 2400
[  733.114864][ T5901] pwc: recv_control_msg error -32 req 02 val 2600
[  733.215094][ T5901] pwc: recv_control_msg error -32 req 02 val 2900
[  733.222893][ T5901] pwc: recv_control_msg error -32 req 02 val 2800
[  733.483624][ T5901] pwc: Registered as video103.
[  733.530293][ T5901] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input22
[  733.772704][ T5901] usb 3-1: USB disconnect, device number 26
[  734.480255][T13616] 9pnet_fd: Insufficient options for proto=fd
[  735.499674][   T30] audit: type=1400 audit(1742726662.982:1003): avc:  denied  { mount } for  pid=13606 comm="syz.5.2104" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  736.981533][T13643] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  739.606294][T13669] xt_hashlimit: max too large, truncated to 1048576
[  740.327880][ T5901] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  740.488529][ T5901] usb 6-1: Using ep0 maxpacket: 32
[  740.640156][ T5901] usb 6-1: config 0 has an invalid interface number: 35 but max is 0
[  740.668533][ T5901] usb 6-1: config 0 has no interface number 0
[  741.256303][ T5901] usb 6-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  741.267364][ T5901] usb 6-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  741.285172][ T5901] usb 6-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[  741.369404][ T5901] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  741.429420][ T5901] usb 6-1: Product: syz
[  741.433670][ T5901] usb 6-1: Manufacturer: syz
[  741.438260][ T5901] usb 6-1: SerialNumber: syz
[  741.449784][ T5901] usb 6-1: config 0 descriptor??
[  741.662122][ T5901] radio-si470x 6-1:0.35: this is not a si470x device.
[  741.779591][  T118] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  742.284067][T13686] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  742.318672][ T5901] radio-raremono 6-1:0.35: this is not Thanko's Raremono.
[  742.376041][T13686] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  742.469275][  T118] usb 4-1: Using ep0 maxpacket: 16
[  743.161797][  T118] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  743.206127][  T118] usb 4-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  743.239381][  T118] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  743.295282][ T5868] usb 6-1: USB disconnect, device number 3
[  743.296167][  T118] usb 4-1: config 0 descriptor??
[  743.699586][   T30] audit: type=1400 audit(1742726671.132:1004): avc:  denied  { getopt } for  pid=13693 comm="syz.4.2126" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  744.347316][  T118] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[  744.374992][  T118] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[  744.395849][  T118] hid-steam 0003:28DE:1102.0004: : USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.3-1/input0
[  744.579466][  T118] hid-steam 0003:28DE:1102.0004: Steam Controller 'XXXXXXXXXX' connected
[  744.589933][  T118] input: Steam Controller as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:28DE:1102.0004/input/input23
[  745.327746][   T30] audit: type=1400 audit(1742726672.422:1005): avc:  denied  { override_creds } for  pid=13698 comm="syz.1.2128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  745.356326][  T118] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[  745.369326][  T118] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[  745.464476][  T118] hid-steam 0003:28DE:1102.0005: hidraw0: USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.3-1/input0
[  745.779333][ T5901] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  745.932598][ T5901] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  745.977310][ T5901] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  746.288650][    T9] usb 4-1: USB disconnect, device number 15
[  746.308424][ T5901] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  746.358494][T13700] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  746.368395][ T5901] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  746.516361][    T9] hid-steam 0003:28DE:1102.0004: Steam Controller 'XXXXXXXXXX' disconnected
[  747.122561][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  747.165615][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  747.221149][   T30] audit: type=1400 audit(1742726674.032:1006): avc:  denied  { read } for  pid=13719 comm="syz.3.2135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  748.120480][  T118] usb 5-1: USB disconnect, device number 17
[  748.387129][T13733] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13733 comm=syz.1.2138
[  748.968764][T13740] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2141'.
[  748.977998][T13740] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2141'.
[  750.508919][   T30] audit: type=1400 audit(1742726677.822:1007): avc:  denied  { setopt } for  pid=13750 comm="syz.2.2145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  751.350309][    T9] libceph: connect (1)[c::]:6789 error -101
[  751.356349][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  751.371662][T13756] ceph: No mds server is up or the cluster is laggy
[  751.531632][T13764] input: syz0 as /devices/virtual/input/input24
[  751.748372][    T9] IPVS: starting estimator thread 0...
[  752.619305][T13766] IPVS: using max 28 ests per chain, 67200 per kthread
[  752.797565][T13772] lo speed is unknown, defaulting to 1000
[  752.826502][T13772] lo speed is unknown, defaulting to 1000
[  752.838887][T13772] lo speed is unknown, defaulting to 1000
[  753.457637][T13783] ������7: renamed from lo (while UP)
[  753.497078][T13785] set match dimension is over the limit!
[  754.383063][T13793] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2153'.
[  754.892877][T13772] infiniband s
z1: set active
[  754.897661][ T5868] ������7 speed is unknown, defaulting to 1000
[  754.979501][T13772] infiniband s
z1: added ������7
[  755.032181][T13772] s
z1: rxe_create_cq: returned err = -12
[  755.062939][T13772] infiniband s
z1: Couldn't create ib_mad CQ
[  755.084023][T13772] infiniband s
z1: Couldn't open port 1
[  755.162053][T13772] RDS/IB: s
z1: added
[  755.202856][T13772] smc: adding ib device s
z1 with port count 1
[  755.241474][T13772] smc:    ib device s
z1 port 1 has pnetid 
[  755.823637][ T5868] ������7 speed is unknown, defaulting to 1000
[  755.881920][T13772] ������7 speed is unknown, defaulting to 1000
[  756.255020][T13809] netlink: 165 bytes leftover after parsing attributes in process `syz.4.2158'.
[  756.955015][T13772] ������7 speed is unknown, defaulting to 1000
[  758.789378][T13772] ������7 speed is unknown, defaulting to 1000
[  759.104466][T13826] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  759.112642][T13826] CPU: 1 UID: 0 PID: 13826 Comm: syz.4.2163 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[  759.112666][T13826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  759.112678][T13826] Call Trace:
[  759.112684][T13826]  <TASK>
[  759.112691][T13826]  dump_stack_lvl+0x16c/0x1f0
[  759.112724][T13826]  sysfs_warn_dup+0x7f/0xa0
[  759.112750][T13826]  sysfs_do_create_link_sd+0x124/0x140
[  759.112781][T13826]  sysfs_create_link+0x61/0xc0
[  759.112809][T13826]  device_add+0x62e/0x1a70
[  759.112838][T13826]  ? __pfx_device_add+0x10/0x10
[  759.112861][T13826]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  759.112892][T13826]  ? ieee80211_set_bitrate_flags+0x249/0x6a0
[  759.112922][T13826]  wiphy_register+0x1cab/0x2860
[  759.112949][T13826]  ? __pfx__dev_printk+0x10/0x10
[  759.112975][T13826]  ? __pfx_wiphy_register+0x10/0x10
[  759.113011][T13826]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  759.113040][T13826]  ieee80211_register_hw+0x2455/0x4060
[  759.113077][T13826]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  759.113113][T13826]  ? __asan_memset+0x23/0x50
[  759.113140][T13826]  ? __hrtimer_init+0x106/0x2c0
[  759.113170][T13826]  mac80211_hwsim_new_radio+0x304e/0x54e0
[  759.113213][T13826]  ? __kmalloc_node_track_caller_noprof+0x240/0x510
[  759.113234][T13826]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  759.113259][T13826]  ? hwsim_new_radio_nl+0x9ff/0x12b0
[  759.113285][T13826]  ? __asan_memcpy+0x3c/0x60
[  759.113316][T13826]  hwsim_new_radio_nl+0xb42/0x12b0
[  759.113343][T13826]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  759.113378][T13826]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  759.113409][T13826]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  759.113445][T13826]  genl_family_rcv_msg_doit+0x202/0x2f0
[  759.113476][T13826]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  759.113515][T13826]  ? bpf_lsm_capable+0x9/0x10
[  759.113536][T13826]  ? security_capable+0x7e/0x260
[  759.113560][T13826]  ? ns_capable+0xd7/0x110
[  759.113595][T13826]  genl_rcv_msg+0x565/0x800
[  759.113620][T13826]  ? __pfx_genl_rcv_msg+0x10/0x10
[  759.113639][T13826]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  759.113669][T13826]  ? __pfx___lock_acquire+0x10/0x10
[  759.113702][T13826]  netlink_rcv_skb+0x16b/0x440
[  759.113730][T13826]  ? __pfx_genl_rcv_msg+0x10/0x10
[  759.113750][T13826]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  759.113791][T13826]  ? down_read+0xc9/0x330
[  759.113818][T13826]  ? __pfx_down_read+0x10/0x10
[  759.113846][T13826]  ? netlink_deliver_tap+0x1ae/0xd30
[  759.113870][T13826]  ? netlink_unicast+0x507/0x7f0
[  759.113898][T13826]  genl_rcv+0x28/0x40
[  759.113923][T13826]  netlink_unicast+0x53c/0x7f0
[  759.113952][T13826]  ? __pfx_netlink_unicast+0x10/0x10
[  759.113980][T13826]  ? netlink_sendmsg+0x863/0xd70
[  759.114010][T13826]  netlink_sendmsg+0x8b8/0xd70
[  759.114041][T13826]  ? __pfx_netlink_sendmsg+0x10/0x10
[  759.114078][T13826]  ____sys_sendmsg+0xaaf/0xc90
[  759.114100][T13826]  ? copy_msghdr_from_user+0x10b/0x160
[  759.114127][T13826]  ? __pfx_____sys_sendmsg+0x10/0x10
[  759.114162][T13826]  ___sys_sendmsg+0x135/0x1e0
[  759.114186][T13826]  ? preempt_schedule_common+0x44/0xc0
[  759.114211][T13826]  ? __pfx____sys_sendmsg+0x10/0x10
[  759.114250][T13826]  ? __pfx_lock_release+0x10/0x10
[  759.114273][T13826]  ? trace_lock_acquire+0x14e/0x1f0
[  759.114305][T13826]  ? __fget_files+0x206/0x3a0
[  759.114331][T13826]  __sys_sendmsg+0x16e/0x220
[  759.114357][T13826]  ? __pfx___sys_sendmsg+0x10/0x10
[  759.114384][T13826]  ? __x64_sys_futex+0x1e1/0x4c0
[  759.114425][T13826]  do_syscall_64+0xcd/0x250
[  759.114452][T13826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  759.114477][T13826] RIP: 0033:0x7f8ec598d169
[  759.114491][T13826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  759.114509][T13826] RSP: 002b:00007f8ec6868038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  759.114526][T13826] RAX: ffffffffffffffda RBX: 00007f8ec5ba6160 RCX: 00007f8ec598d169
[  759.114538][T13826] RDX: 0000000000000800 RSI: 0000200000000100 RDI: 0000000000000007
[  759.114548][T13826] RBP: 00007f8ec5a0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  759.114559][T13826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  759.114569][T13826] R13: 0000000000000000 R14: 00007f8ec5ba6160 R15: 00007ffe6e3d0bc8
[  759.114600][T13826]  </TASK>
[  759.741906][T13772] ������7 speed is unknown, defaulting to 1000
[  760.195455][T13838] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2166'.
[  760.695825][T13837] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2165'.
[  760.704989][T13837] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2165'.
[  761.550096][T13772] ������7 speed is unknown, defaulting to 1000
[  762.874118][T13772] ������7 speed is unknown, defaulting to 1000
[  762.905825][T13850] kvm: kvm [13847]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[  767.117524][T13892] 9pnet_rdma: rdma_create_trans (13892): problem binding to privport: 13
[  769.615013][T13914] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2187'.
[  769.786529][T13918] loop6: detected capacity change from 0 to 63
[  769.806944][   T30] audit: type=1400 audit(1742726697.292:1008): avc:  denied  { map } for  pid=13917 comm="syz.2.2189" path="/dev/loop6" dev="devtmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  769.830884][    C1] vkms_vblank_simulate: vblank timer overrun
[  769.849109][T13921] sch_tbf: burst 7710 is lower than device lo mtu (65550) !
[  769.872356][    C0] blk_print_req_error: 8 callbacks suppressed
[  769.872371][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 8 prio class 3
[  769.872386][   T30] audit: type=1400 audit(1742726697.292:1009): avc:  denied  { execute } for  pid=13917 comm="syz.2.2189" path="/dev/loop6" dev="devtmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  769.879466][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  769.906624][   T30] audit: type=1400 audit(1742726697.352:1010): avc:  denied  { map } for  pid=13917 comm="syz.2.2189" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  769.912137][    C0] buffer_io_error: 8 callbacks suppressed
[  769.912148][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  769.941674][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  769.944288][    C1] vkms_vblank_simulate: vblank timer overrun
[  769.972986][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  770.013151][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  770.022376][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  770.032015][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  770.041176][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  770.051458][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  770.060612][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  771.424241][T13938] geneve2: entered promiscuous mode
[  771.480992][T13938] geneve2: entered allmulticast mode
[  773.651091][    T9] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  774.492823][    T9] usb 3-1: Using ep0 maxpacket: 16
[  774.513082][    T9] usb 3-1: config 64 has an invalid interface number: 122 but max is 1
[  774.607452][    T9] usb 3-1: config 64 has 3 interfaces, different from the descriptor's value: 2
[  774.648326][    T9] usb 3-1: config 64 has no interface number 2
[  774.665933][    T9] usb 3-1: config 64 interface 122 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  774.704049][    T9] usb 3-1: config 64 interface 1 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 7
[  774.839279][    T9] usb 3-1: config 64 interface 122 has no altsetting 0
[  774.846171][    T9] usb 3-1: config 64 interface 1 has no altsetting 0
[  775.838563][    T9] usb 3-1: string descriptor 0 read error: -71
[  775.849735][    T9] usb 3-1: New USB device found, idVendor=0e8d, idProduct=0003, bcdDevice=1e.8b
[  775.858851][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  775.874744][    T9] usb 3-1: can't set config #64, error -71
[  776.110377][    T9] usb 3-1: USB disconnect, device number 27
[  777.085308][T13991] syz.2.2205: attempt to access beyond end of device
[  777.085308][T13991] loop2: rw=0, sector=2, nr_sectors = 2 limit=0
[  777.098953][T13991] MINIX-fs: unable to read superblock
[  779.068831][T14013] openvswitch: netlink: Actions may not be safe on all matching packets
[  780.502680][  T118] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  781.522322][   T30] audit: type=1326 audit(1742726708.772:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14019 comm="syz.2.2217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7db18d169 code=0x7fc00000
[  781.646690][  T118] usb 6-1: Using ep0 maxpacket: 16
[  781.902498][  T118] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  782.043244][  T118] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 768, setting to 64
[  782.056272][  T118] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  782.065822][  T118] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  782.074099][  T118] usb 6-1: Product: syz
[  782.078347][  T118] usb 6-1: Manufacturer: syz
[  782.088715][  T118] usb 6-1: SerialNumber: syz
[  782.099435][  T118] usb 6-1: config 0 descriptor??
[  782.108494][  T118] em28xx 6-1:0.0: error: skipping audio endpoint 0x83, because it uses bulk transfers !
[  782.754454][T14024] lo speed is unknown, defaulting to 1000
[  783.086187][T14024] ������7 speed is unknown, defaulting to 1000
[  783.700649][   T30] audit: type=1326 audit(1742726711.182:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  783.939414][   T30] audit: type=1326 audit(1742726711.182:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  784.554953][ T5901] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  784.589059][   T30] audit: type=1326 audit(1742726711.192:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  784.612764][   T30] audit: type=1326 audit(1742726711.192:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  784.636243][    C0] vkms_vblank_simulate: vblank timer overrun
[  784.669819][   T30] audit: type=1326 audit(1742726711.192:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  784.702792][   T30] audit: type=1326 audit(1742726711.192:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  784.943586][T14054] openvswitch: netlink: IPv4 tun info is not correct
[  784.953365][ T5901] usb 3-1: Using ep0 maxpacket: 16
[  784.957983][T13137] Bluetooth: hci1: command 0x0406 tx timeout
[  784.967663][   T30] audit: type=1326 audit(1742726711.192:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  784.995225][   T30] audit: type=1326 audit(1742726711.192:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  785.018705][    C0] vkms_vblank_simulate: vblank timer overrun
[  785.025100][   T30] audit: type=1326 audit(1742726711.192:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14010 comm="syz.5.2214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd6b618d169 code=0x7ffc0000
[  785.029151][ T5901] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 1024
[  785.071440][ T5868] usb 6-1: USB disconnect, device number 4
[  785.237730][ T5901] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xF has invalid maxpacket 1024
[  785.266295][ T5901] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  785.277981][ T5901] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  785.295965][ T5901] usb 3-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  785.306077][ T5901] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  785.314844][ T5901] usb 3-1: Product: syz
[  785.319634][ T5901] usb 3-1: Manufacturer: syz
[  785.348694][ T5901] usb 3-1: SerialNumber: syz
[  785.727839][T14060] ceph: No mds server is up or the cluster is laggy
[  785.734675][ T5902] libceph: connect (1)[c::]:6789 error -101
[  785.741468][ T5902] libceph: mon0 (1)[c::]:6789 connect error
[  785.750969][ T5901] usb 3-1: config 0 descriptor??
[  785.818860][T14049] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  785.930139][ T5901] usb 3-1: can't set config #0, error -71
[  786.107541][ T5901] usb 3-1: USB disconnect, device number 28
[  786.721771][T14076] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  787.265900][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  787.265916][   T30] audit: type=1400 audit(1742726714.752:1030): avc:  denied  { map } for  pid=14077 comm="syz.2.2231" path="socket:[38094]" dev="sockfs" ino=38094 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  787.659392][ T5901] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  788.225618][ T5901] usb 3-1: Using ep0 maxpacket: 32
[  788.253579][T14089] ptrace attach of "./syz-executor exec"[5814] was attempted by "./syz-executor exec"[14089]
[  788.288422][ T5901] usb 3-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  788.479474][ T5901] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  788.505662][ T5901] usb 3-1: config 0 descriptor??
[  789.225577][ T5901] gspca_main: sq930x-2.14.0 probing 041e:403c
[  789.567535][   T30] audit: type=1400 audit(1742726717.052:1031): avc:  denied  { audit_write } for  pid=14094 comm="syz.4.2238" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  789.613138][T14099] netlink: 'syz.1.2236': attribute type 10 has an invalid length.
[  789.621091][T14099] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2236'.
[  789.630111][T14099] batadv0: entered promiscuous mode
[  789.635367][T14099] batadv0: entered allmulticast mode
[  789.641451][T14099] bridge0: port 1(batadv0) entered blocking state
[  789.647920][T14099] bridge0: port 1(batadv0) entered disabled state
[  789.656651][T14099] bridge0: port 1(batadv0) entered blocking state
[  789.663142][T14099] bridge0: port 1(batadv0) entered forwarding state
[  790.562871][   T58] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  790.572830][   T58] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  790.629452][ T5901] gspca_sq930x: reg_w 0305 fd00 failed -71
[  790.663451][ T5901] sq930x 3-1:0.0: probe with driver sq930x failed with error -71
[  790.705294][ T5901] usb 3-1: USB disconnect, device number 29
[  790.850117][T14107] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2239'.
[  791.607736][T14122] netlink: 'syz.3.2243': attribute type 4 has an invalid length.
[  791.615656][T14122] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.2243'.
[  794.459248][    T9] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[  794.622040][    T9] usb 6-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  794.647073][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  794.665391][    T9] usb 6-1: Product: syz
[  794.675493][    T9] usb 6-1: Manufacturer: syz
[  794.680186][    T9] usb 6-1: SerialNumber: syz
[  794.700204][    T9] usb 6-1: config 0 descriptor??
[  795.364664][T14137] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  795.622340][T14137] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  795.926280][    T9] airspy 6-1:0.0: usb_control_msg() failed -110 request 09
[  795.943995][    T9] airspy 6-1:0.0: Could not detect board
[  795.959833][    T9] airspy 6-1:0.0: probe with driver airspy failed with error -110
[  795.976462][    T9] usb 6-1: USB disconnect, device number 5
[  798.307870][T14180] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2260'.
[  798.343454][T14181] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  799.489391][ T5867] usb 3-1: new low-speed USB device number 30 using dummy_hcd
[  800.569382][   T30] audit: type=1400 audit(1742726727.242:1032): avc:  denied  { read } for  pid=14188 comm="syz.5.2262" path="socket:[37666]" dev="sockfs" ino=37666 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  801.792796][T14197] delete_channel: no stack
[  801.811990][ T5867] usb 3-1: config 2 has an invalid interface number: 222 but max is 0
[  801.821942][ T5867] usb 3-1: config 2 has no interface number 0
[  801.828036][ T5867] usb 3-1: New USB device found, idVendor=12d1, idProduct=ef21, bcdDevice=64.b0
[  801.837255][ T5867] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  801.881948][   T30] audit: type=1400 audit(1742726728.922:1033): avc:  denied  { bind } for  pid=14197 comm="syz.1.2264" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  802.019698][ T5867] usb 3-1: can't set config #2, error -71
[  802.041599][ T5867] usb 3-1: USB disconnect, device number 30
[  803.339995][T14216] Can't find ip_set type hash:ip,port,ne\
[  803.701893][T14221] set match dimension is over the limit!
[  803.765097][   T30] audit: type=1400 audit(1742726731.252:1034): avc:  denied  { read } for  pid=14224 comm="syz.3.2280" path="socket:[37707]" dev="sockfs" ino=37707 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  804.869651][T14230] sp0: Synchronizing with TNC
[  807.261634][T14246] kvm: kvm [14245]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x86
[  807.272407][T14246] kvm: kvm [14245]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4086
[  807.286312][T14246] kvm: kvm [14245]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x43
[  807.349431][T14246] kvm: kvm [14245]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0x4043
[  807.404071][T14246] kvm: kvm [14245]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x12
[  807.532106][T14246] kvm: kvm [14245]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0x4012
[  807.747945][T14262] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2277'.
[  807.772813][T14262] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  808.303549][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  808.309920][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  812.791540][T14296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2284'.
[  812.902522][T14299] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  813.324491][T14300] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[  813.532037][T14304] lo speed is unknown, defaulting to 1000
[  813.608103][T14304] ������7 speed is unknown, defaulting to 1000
[  814.468038][   T30] audit: type=1400 audit(1742726741.942:1035): avc:  denied  { read } for  pid=14308 comm="syz.2.2291" name="/" dev="configfs" ino=143 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  814.472473][T14316] netlink: 108 bytes leftover after parsing attributes in process `syz.2.2291'.
[  814.494629][T14316] netlink: 108 bytes leftover after parsing attributes in process `syz.2.2291'.
[  814.512887][T14316] netlink: 108 bytes leftover after parsing attributes in process `syz.2.2291'.
[  814.809321][   T30] audit: type=1400 audit(1742726741.942:1036): avc:  denied  { open } for  pid=14308 comm="syz.2.2291" path="/" dev="configfs" ino=143 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  817.378166][T14343] netlink: 'syz.2.2297': attribute type 2 has an invalid length.
[  818.196127][ T5869] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  819.453609][ T5901] libceph: connect (1)[c::]:6789 error -101
[  819.472617][ T5901] libceph: mon0 (1)[c::]:6789 connect error
[  819.488821][T14356] ceph: No mds server is up or the cluster is laggy
[  820.393879][T14371] Device name cannot be null; rc = [-22]
[  820.879359][    T9] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  821.381554][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  822.025717][    T9] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  822.035057][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  822.125465][    T9] usb 6-1: config 0 descriptor??
[  822.147463][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[  822.361119][ T5869] usb 4-1: device descriptor read/all, error -71
[  822.719763][    T9] pwc: recv_control_msg error -32 req 02 val 2b00
[  822.731547][    T9] pwc: recv_control_msg error -32 req 02 val 2700
[  823.401894][    T9] pwc: recv_control_msg error -71 req 04 val 1000
[  823.431343][    T9] pwc: recv_control_msg error -71 req 04 val 1300
[  823.459611][    T9] pwc: recv_control_msg error -71 req 04 val 1400
[  823.466373][    T9] pwc: recv_control_msg error -71 req 02 val 2000
[  823.479976][    T9] pwc: recv_control_msg error -71 req 02 val 2100
[  823.495936][    T9] pwc: recv_control_msg error -71 req 04 val 1500
[  823.525357][    T9] pwc: recv_control_msg error -71 req 02 val 2500
[  823.552550][    T9] pwc: recv_control_msg error -71 req 02 val 2400
[  823.579622][    T9] pwc: recv_control_msg error -71 req 02 val 2600
[  823.586413][    T9] pwc: recv_control_msg error -71 req 02 val 2900
[  823.706825][    T9] pwc: recv_control_msg error -71 req 02 val 2800
[  823.714101][    T9] pwc: recv_control_msg error -71 req 04 val 1100
[  823.726369][    T9] pwc: recv_control_msg error -71 req 04 val 1200
[  823.733772][    T9] pwc: Registered as video103.
[  823.758154][    T9] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input25
[  823.841888][T14399] xt_cgroup: invalid path, errno=-2
[  823.951710][T14399] lo speed is unknown, defaulting to 1000
[  824.074673][T14399] ������7 speed is unknown, defaulting to 1000
[  824.185921][    T9] usb 6-1: USB disconnect, device number 6
[  826.883068][T14418] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2316'.
[  827.372440][   T30] audit: type=1400 audit(1742726754.392:1037): avc:  denied  { map } for  pid=14413 comm="syz.5.2316" path="socket:[38595]" dev="sockfs" ino=38595 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  827.519937][ T5869] IPVS: starting estimator thread 0...
[  827.671115][T14422] IPVS: using max 43 ests per chain, 103200 per kthread
[  827.714611][T14412] lo speed is unknown, defaulting to 1000
[  827.986468][T14412] ������7 speed is unknown, defaulting to 1000
[  830.810297][T10201] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  832.526180][T14478] netlink: 'syz.4.2330': attribute type 10 has an invalid length.
[  832.584186][T14478] 8021q: adding VLAN 0 to HW filter on device team0
[  832.602143][T14478] bond0: (slave team0): Enslaving as an active interface with an up link
[  832.862661][   T30] audit: type=1400 audit(1742726760.312:1038): avc:  denied  { read write } for  pid=14480 comm="syz.5.2331" name="uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  832.888161][    T9] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  832.896119][   T30] audit: type=1400 audit(1742726760.312:1039): avc:  denied  { open } for  pid=14480 comm="syz.5.2331" path="/dev/uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  833.392498][    T9] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  834.515588][   T30] audit: type=1326 audit(1742726762.002:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14480 comm="syz.5.2331" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd6b618d169 code=0x0
[  834.575252][T14507] netlink: 'syz.2.2337': attribute type 10 has an invalid length.
[  834.584149][T14507] 8021q: adding VLAN 0 to HW filter on device batadv0
[  834.592164][T14507] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  836.533445][   T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  838.139232][ T5869] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  839.000815][ T5869] usb 5-1: Using ep0 maxpacket: 16
[  841.634120][T14547] lo speed is unknown, defaulting to 1000
[  841.687570][T14547] ������7 speed is unknown, defaulting to 1000
[  841.894887][T12126] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  844.063318][ T5869] usb 5-1: device descriptor read/all, error -110
[  844.542619][ T5869] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  845.399554][ T5869] usb 5-1: device descriptor read/64, error -32
[  846.268389][ T5869] usb usb5-port1: attempt power cycle
[  847.009743][T14593] tipc: Enabled bearer <eth:team0>, priority 0
[  847.551245][   T58] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  847.602987][ T5869] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  848.159605][ T5869] usb 5-1: device descriptor read/8, error -32
[  848.409381][ T5869] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  848.940080][ T5869] usb 5-1: device descriptor read/8, error -32
[  849.154094][ T5869] usb usb5-port1: unable to enumerate USB device
[  849.259574][T14607] overlayfs: failed to clone upperpath
[  849.994330][T14515] raw-gadget.0 gadget.4: failed to queue disconnect event
[  850.091465][   T30] audit: type=1400 audit(1742727230.499:1041): avc:  denied  { create } for  pid=14601 comm="syz.5.2361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  850.469757][   T30] audit: type=1400 audit(1742727230.879:1042): avc:  denied  { accept } for  pid=14609 comm="syz.2.2362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  852.073553][T14634] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2367'.
[  852.892828][T13137] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  852.904477][T13137] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  852.914373][T13137] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  852.923222][T13137] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  852.931169][T13137] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  852.939652][T13137] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  853.132975][T14640] lo speed is unknown, defaulting to 1000
[  853.249565][T10231] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  853.860112][T14640] ������7 speed is unknown, defaulting to 1000
[  854.306965][T14640] chnl_net:caif_netlink_parms(): no params data found
[  854.741943][ T5829] syz_tun (unregistering): left allmulticast mode
[  855.017873][ T5827] Bluetooth: hci5: command tx timeout
[  855.999446][T14640] bridge0: port 1(bridge_slave_0) entered blocking state
[  856.006641][T14640] bridge0: port 1(bridge_slave_0) entered disabled state
[  856.026409][T14640] bridge_slave_0: entered allmulticast mode
[  856.042920][T14640] bridge_slave_0: entered promiscuous mode
[  856.052986][T14640] bridge0: port 2(bridge_slave_1) entered blocking state
[  856.060344][T14640] bridge0: port 2(bridge_slave_1) entered disabled state
[  856.076384][T14640] bridge_slave_1: entered allmulticast mode
[  856.091541][T14640] bridge_slave_1: entered promiscuous mode
[  857.316029][ T5827] Bluetooth: hci5: command tx timeout
[  857.852868][T10231] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  859.329353][ T5827] Bluetooth: hci5: command tx timeout
[  859.494481][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  859.543488][T10231] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  859.710497][T14640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  860.353436][   T30] audit: type=1400 audit(1742727240.729:1043): avc:  denied  { bind } for  pid=14696 comm="syz.3.2381" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  860.393244][T10231] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.070688][T14640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  861.183511][T10231] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  861.469737][ T5827] Bluetooth: hci5: command tx timeout
[  861.660330][T14640] team0: Port device team_slave_0 added
[  861.670273][T14640] team0: Port device team_slave_1 added
[  862.779625][T14640] batman_adv: batadv0: Adding interface: batadv_slave_0
[  862.791962][T14640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  863.000244][T14640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  863.106846][T14640] batman_adv: batadv0: Adding interface: batadv_slave_1
[  863.126218][T14640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  863.363582][T14640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  863.743914][T14640] hsr_slave_0: entered promiscuous mode
[  863.760469][T14640] hsr_slave_1: entered promiscuous mode
[  863.770053][T14640] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  863.784828][T14640] Cannot create hsr debugfs directory
[  864.964643][T14736] overlayfs: failed to clone upperpath
[  865.249733][T10233] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  865.646765][T10231] bond3 (unregistering): (slave gretap1): Releasing active interface
[  866.459966][   T30] audit: type=1400 audit(1742727246.689:1044): avc:  denied  { read } for  pid=14741 comm="syz.5.2394" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  866.576944][T10231] bond0 (unregistering): (slave team0): Releasing backup interface
[  866.594815][T10231] bond0 (unregistering): Released all slaves
[  866.698629][T10231] bond1 (unregistering): Released all slaves
[  866.815911][T10231] bond2 (unregistering): Released all slaves
[  866.995570][T10231] bond3 (unregistering): Released all slaves
[  867.253039][T14735] lo speed is unknown, defaulting to 1000
[  867.326936][T14735] ������7 speed is unknown, defaulting to 1000
[  867.444660][T14747] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  867.453022][T14747] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  867.494425][T14747] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  867.514507][T14747] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  867.521474][T14747] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  867.538451][T14747] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  867.574397][T14759] fuse: Bad value for 'fd'
[  868.637545][T14640] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  868.657020][ T5867] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  868.698017][T14640] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  868.714114][T14640] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  868.737703][T14640] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  869.451492][ T5867] usb 3-1: Using ep0 maxpacket: 8
[  869.464050][ T5867] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  869.474427][ T5867] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  869.493936][ T5867] usb 3-1: Product: syz
[  869.496514][T13137] Bluetooth: hci1: command 0x0406 tx timeout
[  869.569279][ T5827] Bluetooth: hci5: command 0x0c1a tx timeout
[  869.585265][ T5867] usb 3-1: Manufacturer: syz
[  869.618169][ T5867] usb 3-1: SerialNumber: syz
[  869.650407][ T5867] usb 3-1: config 0 descriptor??
[  869.735880][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  869.742252][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  869.754915][T14640] 8021q: adding VLAN 0 to HW filter on device bond0
[  870.847244][ T5867] dvb_usb_rtl28xxu 3-1:0.0: chip type detection failed -110
[  871.019622][ T5867] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -110
[  871.068959][T14785] set match dimension is over the limit!
[  871.242802][T14640] 8021q: adding VLAN 0 to HW filter on device team0
[  871.649600][T13137] Bluetooth: hci1: command 0x0406 tx timeout
[  871.655634][T13137] Bluetooth: hci5: command 0x0c1a tx timeout
[  871.672878][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  871.680002][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  871.704199][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  871.711318][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  872.078165][T14798] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2406'.
[  872.653092][T12266] usb 3-1: USB disconnect, device number 31
[  872.758179][T10231] hsr_slave_0: left promiscuous mode
[  872.792579][T10231] hsr_slave_1: left promiscuous mode
[  872.995836][T10231] veth1_macvtap: left promiscuous mode
[  873.006914][T10231] veth0_macvtap: left promiscuous mode
[  873.014135][T10231] veth1_vlan: left promiscuous mode
[  873.020058][T10231] veth0_vlan: left promiscuous mode
[  873.981041][T13137] Bluetooth: hci1: command 0x0406 tx timeout
[  873.981040][ T5827] Bluetooth: hci5: command 0x0c1a tx timeout
[  875.379317][T14818] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2410'.
[  875.388516][T14818] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2410'.
[  875.397836][T14818] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2410'.
[  879.975581][   T30] audit: type=1400 audit(1742727260.389:1045): avc:  denied  { getopt } for  pid=14851 comm="syz.3.2421" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  880.687778][T14860] Cannot find set identified by id 0 to match
[  881.245136][T14863] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2423'.
[  881.254297][T14863] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2423'.
[  881.263344][T14863] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2423'.
[  881.353799][T14815] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2411'.
[  882.989543][T14882] set match dimension is over the limit!
[  883.898116][T14640] 8021q: adding VLAN 0 to HW filter on device batadv0
[  885.627124][T14902] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  885.886173][T14917] cgroup: No subsys list or none specified
[  886.425492][T14902] usb 4-1: Using ep0 maxpacket: 16
[  886.426110][T10231] IPVS: stop unused estimator thread 0...
[  886.452448][T14902] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  886.467204][T14902] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  886.588306][T14902] usb 4-1: Product: syz
[  886.611481][T14902] usb 4-1: Manufacturer: syz
[  886.621001][T14916] team0: Port device team_slave_1 removed
[  886.746858][T14902] usb 4-1: SerialNumber: syz
[  886.849251][T14902] usb 4-1: config 0 descriptor??
[  887.649412][T14902] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  887.844755][T14640] veth0_vlan: entered promiscuous mode
[  887.895742][T14902] ssu100 4-1:0.0: probe with driver ssu100 failed with error -71
[  887.905657][T14902] usb 4-1: USB disconnect, device number 18
[  888.918823][T14640] veth1_vlan: entered promiscuous mode
[  889.124930][T14640] veth0_macvtap: entered promiscuous mode
[  889.164160][T14640] veth1_macvtap: entered promiscuous mode
[  890.273416][T14954] openvswitch: netlink: Actions may not be safe on all matching packets
[  890.301044][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  890.313547][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  890.324151][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  890.334639][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  890.346972][T14640] batman_adv: batadv0: Interface activated: batadv_slave_0
[  890.370351][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  890.391532][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  890.406842][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  890.418583][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  890.433114][T14640] batman_adv: batadv0: Interface activated: batadv_slave_1
[  890.447792][T14640] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  890.591053][T14640] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  890.831939][T14640] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  890.930655][T14640] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  891.452809][ T5827] Bluetooth: hci1: unexpected event for opcode 0x2040
[  892.857491][T10233] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  892.882448][T10233] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  892.963930][T10226] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  892.976084][T10226] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  899.539406][T15063] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  900.879289][ T5901] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  901.024175][T15074] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  901.573812][T15081] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  901.582263][T15081] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  901.590785][T15081] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  902.012953][ T5901] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  902.099242][ T5901] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[  903.466336][ T5901] usb 3-1: string descriptor 0 read error: -71
[  903.496073][ T5901] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  903.642798][ T5901] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  903.835507][ T5901] usb 3-1: can't set config #1, error -71
[  905.028499][ T5901] usb 3-1: USB disconnect, device number 32
[  905.300120][T15117] NILFS (nullb0): couldn't find nilfs on the device
[  906.874669][   T30] audit: type=1400 audit(1742727287.039:1046): avc:  denied  { read } for  pid=15111 comm="syz.2.2481" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  907.669210][   T30] audit: type=1400 audit(1742727287.699:1047): avc:  denied  { map } for  pid=15122 comm="syz.2.2483" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  908.659745][T15131] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  908.665766][T15131] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  908.684990][   T30] audit: type=1400 audit(1742727287.699:1048): avc:  denied  { execute } for  pid=15122 comm="syz.2.2483" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  909.930505][   T30] audit: type=1400 audit(1742727289.639:1049): avc:  denied  { read write } for  pid=15140 comm="syz.2.2487" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  909.974683][   T30] audit: type=1400 audit(1742727289.639:1050): avc:  denied  { open } for  pid=15140 comm="syz.2.2487" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  910.039269][T15128] overlayfs: missing 'lowerdir'
[  910.797520][T15150] input: syz0 as /devices/virtual/input/input27
[  910.849548][ T5827] Bluetooth: hci5: command 0x0c1a tx timeout
[  910.856722][ T5827] Bluetooth: hci1: command 0x0406 tx timeout
[  910.863359][   T30] audit: type=1400 audit(1742727291.319:1051): avc:  denied  { compute_member } for  pid=15127 comm="syz.3.2485" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  913.010404][T15158] Bluetooth: hci5: command 0x0c1a tx timeout
[  915.169773][T15199] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  915.175794][T15199] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  917.329214][T13137] Bluetooth: hci5: command 0x0c1a tx timeout
[  917.335241][T13137] Bluetooth: hci1: command 0x0406 tx timeout
[  918.699602][   T30] audit: type=1400 audit(1742727299.169:1052): avc:  denied  { getopt } for  pid=15229 comm="syz.5.2508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  922.175053][T15264] set match dimension is over the limit!
[  923.189763][   T30] audit: type=1400 audit(1742727303.679:1053): avc:  denied  { getopt } for  pid=15267 comm="syz.2.2518" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  923.259673][T15268] vim2m vim2m.0: Fourcc format (0x31384142) invalid.
[  926.990073][T15305] 
: renamed from bond0
[  928.429658][T15312] Cannot find set identified by id 0 to match
[  931.220034][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  931.226347][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  931.451541][T15336] NILFS (nullb0): couldn't find nilfs on the device
[  932.755707][T15351] virtio-fs: tag <(null)> not found
[  933.547151][T15359] SELinux:  Context system_u:object_r:systemd_passwd_var_run_t:s0 is not valid (left unmapped).
[  933.889302][   T30] audit: type=1400 audit(1742727314.049:1054): avc:  denied  { relabelto } for  pid=15353 comm="syz.6.2541" name="17" dev="tmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_passwd_var_run_t:s0"
[  933.982305][   T30] audit: type=1400 audit(1742727314.049:1055): avc:  denied  { associate } for  pid=15353 comm="syz.6.2541" name="17" dev="tmpfs" ino=120 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:systemd_passwd_var_run_t:s0"
[  934.210171][T15368] 
: renamed from bond0 (while UP)
[  934.236198][   T30] audit: type=1400 audit(1742727314.399:1056): avc:  denied  { write } for  pid=14640 comm="syz-executor" name="17" dev="tmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_passwd_var_run_t:s0"
[  935.080558][   T30] audit: type=1400 audit(1742727314.399:1057): avc:  denied  { remove_name } for  pid=14640 comm="syz-executor" name="binderfs" dev="tmpfs" ino=124 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_passwd_var_run_t:s0"
[  935.111237][   T30] audit: type=1400 audit(1742727314.399:1058): avc:  denied  { rmdir } for  pid=14640 comm="syz-executor" name="17" dev="tmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:systemd_passwd_var_run_t:s0"
[  935.162611][T15371] sg_write: data in/out 2031668/2 bytes for SCSI command 0x26-- guessing data in;
[  935.162611][T15371]    program syz.5.2542 not setting count and/or reply_len properly
[  935.209422][T15375] set match dimension is over the limit!
[  935.542893][T15381] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2546'.
[  936.331516][T15385] Cannot find del_set index 0 as target
[  936.779728][T15390] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2549'.
[  943.106123][T15445] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2562'.
[  947.591597][   T30] audit: type=1400 audit(1742727327.839:1059): avc:  denied  { watch watch_reads } for  pid=15456 comm="syz.6.2565" path="/" dev="configfs" ino=143 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  950.638159][T15501] netlink: 64138 bytes leftover after parsing attributes in process `syz.6.2573'.
[  950.986723][T15158] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  950.998273][T15158] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  951.006447][T15158] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  951.021499][T15158] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  951.038263][T15158] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  951.046542][T15158] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  951.127541][T14902] IPVS: starting estimator thread 0...
[  951.469780][T15514] netlink: 'syz.1.2577': attribute type 4 has an invalid length.
[  951.477585][T15514] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.2577'.
[  951.650442][T15510] IPVS: using max 27 ests per chain, 64800 per kthread
[  952.214301][T15502] lo speed is unknown, defaulting to 1000
[  952.414696][T15502] ������7 speed is unknown, defaulting to 1000
[  952.549801][T15521] /dev/nbd1: Can't lookup blockdev
[  952.634323][T15523] IPVS: sync thread started: state = MASTER, mcast_ifn = macvlan1, syncid = -1, id = 0
[  953.089298][T15158] Bluetooth: hci4: command tx timeout
[  953.497264][T10201] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  953.943660][T15502] chnl_net:caif_netlink_parms(): no params data found
[  954.104501][T10201] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  954.860918][T10201] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.792753][T15158] Bluetooth: hci4: command tx timeout
[  955.877169][T10201] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  956.053337][T15502] bridge0: port 1(bridge_slave_0) entered blocking state
[  956.119888][T15502] bridge0: port 1(bridge_slave_0) entered disabled state
[  956.160621][T15502] bridge_slave_0: entered allmulticast mode
[  956.301166][T15502] bridge_slave_0: entered promiscuous mode
[  956.633573][T15502] bridge0: port 2(bridge_slave_1) entered blocking state
[  956.677244][T15502] bridge0: port 2(bridge_slave_1) entered disabled state
[  956.684538][T15502] bridge_slave_1: entered allmulticast mode
[  956.691453][T15502] bridge_slave_1: entered promiscuous mode
[  956.731694][T15502] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  956.851658][T15502] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  957.092063][T15502] team0: Port device team_slave_0 added
[  957.106708][T15502] team0: Port device team_slave_1 added
[  957.310715][T10201] vlan2: left promiscuous mode
[  957.810978][T15158] Bluetooth: hci4: command tx timeout
[  957.906961][T10201] macsec0: left promiscuous mode
[  957.918188][T10201] bridge0: port 3(vlan2) entered disabled state
[  957.937492][T10201] bridge_slave_1: left allmulticast mode
[  957.943267][T10201] bridge_slave_1: left promiscuous mode
[  958.005717][T10201] bridge0: port 2(bridge_slave_1) entered disabled state
[  958.102414][T10201] bridge_slave_0: left allmulticast mode
[  958.107924][T15583] Cannot find set identified by id 0 to match
[  958.108065][T10201] bridge_slave_0: left promiscuous mode
[  958.128446][T10201] bridge0: port 1(bridge_slave_0) entered disabled state
[  959.629826][T15593] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=15593 comm=syz.1.2598
[  959.890073][T15158] Bluetooth: hci4: command tx timeout
[  960.711500][T10201] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  960.724034][T10201] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  960.733862][T10201] bond0 (unregistering): Released all slaves
[  960.743417][T10201] bond1 (unregistering): Released all slaves
[  961.001577][T15608] x_tables: duplicate underflow at hook 2
[  961.315575][T15502] batman_adv: batadv0: Adding interface: batadv_slave_0
[  961.327566][T15502] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  961.360078][T15502] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  961.378057][T15502] batman_adv: batadv0: Adding interface: batadv_slave_1
[  961.396049][T15502] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  961.451679][T15502] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  962.848678][T15502] hsr_slave_0: entered promiscuous mode
[  962.993175][T15502] hsr_slave_1: entered promiscuous mode
[  962.999599][T15502] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  963.007810][T15502] Cannot create hsr debugfs directory
[  964.965908][   T30] audit: type=1400 audit(1742727345.409:1060): avc:  denied  { setopt } for  pid=15637 comm="syz.3.2608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  965.013470][   T30] audit: type=1400 audit(1742727345.439:1061): avc:  denied  { connect } for  pid=15641 comm="syz.1.2610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  965.986406][T15502] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  966.957889][T15502] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  966.996634][T15502] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  967.023399][T10201] hsr_slave_0: left promiscuous mode
[  967.038605][T10201] hsr_slave_1: left promiscuous mode
[  967.044728][T10201] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  967.139285][T10201] batman_adv: batadv0: Removing interface: batadv_slave_0
[  967.169301][T10201] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  967.176711][T10201] batman_adv: batadv0: Removing interface: batadv_slave_1
[  967.192749][T15665] Cannot find set identified by id 0 to match
[  967.742661][T10201] macsec0: left allmulticast mode
[  967.747728][T10201] veth1_macvtap: left allmulticast mode
[  967.753454][T10201] veth1_macvtap: left promiscuous mode
[  967.758950][T10201] veth0_macvtap: left promiscuous mode
[  967.764615][T10201] veth1_vlan: left promiscuous mode
[  967.771221][T10201] veth0_vlan: left promiscuous mode
[  967.906250][T15671] netlink: 'syz.2.2616': attribute type 10 has an invalid length.
[  967.914223][T15671] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2616'.
[  969.423325][T10201] team0 (unregistering): Port device team_slave_0 removed
[  969.771557][ T6655] smc: removing ib device syz1
[  971.255699][T10224] smc: removing ib device s
z1
[  971.263434][T15502] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  971.274449][ T5867] ������7 speed is unknown, defaulting to 1000
[  971.281991][T15671] batadv0: entered promiscuous mode
[  971.287204][T15671] batadv0: entered allmulticast mode
[  971.331942][T15671] 
: (slave batadv0): Releasing backup interface
[  971.341736][T15671] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  972.262503][T15502] 8021q: adding VLAN 0 to HW filter on device bond0
[  972.419914][T15502] 8021q: adding VLAN 0 to HW filter on device team0
[  972.480733][T10233] bridge0: port 1(bridge_slave_0) entered blocking state
[  972.487857][T10233] bridge0: port 1(bridge_slave_0) entered forwarding state
[  973.049775][T10233] bridge0: port 2(bridge_slave_1) entered blocking state
[  973.056963][T10233] bridge0: port 2(bridge_slave_1) entered forwarding state
[  973.424426][T15502] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  973.534670][T15502] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  974.568495][T15502] 8021q: adding VLAN 0 to HW filter on device batadv0
[  974.772243][T15739] Cannot find set identified by id 0 to match
[  975.003402][T15741] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2630'.
[  976.139958][T15751] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2632'.
[  976.723182][T15502] veth0_vlan: entered promiscuous mode
[  976.798391][T15502] veth1_vlan: entered promiscuous mode
[  977.525820][T15502] veth0_macvtap: entered promiscuous mode
[  977.543704][T15758] Cannot find set identified by id 0 to match
[  977.561531][T15706] lo speed is unknown, defaulting to 1000
[  977.575900][T15502] veth1_macvtap: entered promiscuous mode
[  977.592704][T15502] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  977.605481][T15502] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.620443][T15502] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  977.633149][T15502] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  977.754141][T15502] batman_adv: batadv0: Interface activated: batadv_slave_0
[  978.324639][T15502] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  978.339180][T15502] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  978.349012][T15502] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  978.522070][T15502] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  978.533415][T15502] batman_adv: batadv0: Interface activated: batadv_slave_1
[  979.335019][T15502] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  979.359270][T15502] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  979.367979][T15502] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  979.380239][T15502] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  979.546005][   T30] audit: type=1326 audit(1742727359.939:1062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  979.992916][   T30] audit: type=1326 audit(1742727359.939:1063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  980.111420][   T30] audit: type=1326 audit(1742727359.939:1064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  980.412951][   T30] audit: type=1326 audit(1742727359.939:1065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  980.455275][   T30] audit: type=1326 audit(1742727359.939:1066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  980.545845][   T30] audit: type=1326 audit(1742727359.949:1067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  980.799284][   T30] audit: type=1326 audit(1742727359.949:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  980.964005][ T6655] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  980.978321][   T30] audit: type=1326 audit(1742727359.949:1069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  981.009731][ T6655] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  981.026148][   T30] audit: type=1326 audit(1742727359.949:1070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15772 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb34d98d169 code=0x7ffc0000
[  981.579280][   T30] audit: type=1400 audit(1742727361.409:1071): avc:  denied  { remount } for  pid=15785 comm="syz.6.2643" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  981.679714][T10224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  981.687555][T10224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  981.721025][T10201] IPVS: stop unused estimator thread 0...
[  983.177863][T15809] Cannot find del_set index 4 as target
[  983.195976][T15809] xt_CT: You must specify a L4 protocol and not use inversions on it
[  983.695059][T15811] mkiss: ax0: crc mode is auto.
[  984.201034][T15818] pim6reg: entered allmulticast mode
[  985.160966][T15827] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2652'.
[  986.065902][   T30] audit: type=1400 audit(1742727366.549:1072): avc:  denied  { mount } for  pid=15836 comm="syz.1.2655" name="/" dev="pstore" ino=2904 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  986.137339][T15842] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2652'.
[  986.147563][T15837] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15837 comm=syz.1.2655
[  986.181043][T15842] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2652'.
[  986.342890][T15842] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  986.351996][T15842] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  986.360761][T15842] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  986.369527][T15842] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  986.591202][T15850] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2657'.
[  986.668295][T15851] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2656'.
[  987.190777][T15850] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2657'.
[  987.242956][T15852] netlink: 'syz.6.2657': attribute type 10 has an invalid length.
[  987.523242][T15852] 
: (slave wlan1): Enslaving as an active interface with an up link
[  990.740294][T15887] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2666'.
[  991.264664][T15900] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2669'.
[  992.207740][T15889] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2668'.
[  992.274503][T15903] set match dimension is over the limit!
[  992.589476][T15908] netlink: 'syz.3.2672': attribute type 1 has an invalid length.
[  992.611515][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  992.619839][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  997.306472][T15963] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2682'.
[ 1002.829973][T16003] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[ 1002.859529][T16004] tipc: Resetting bearer <eth:team0>
[ 1003.083594][T16012] openvswitch: netlink: IP tunnel TTL not specified.
[ 1003.204082][T16012] macsec0: entered promiscuous mode
[ 1007.203095][T16057] bad cache= option: none

[ 1007.203095][T16057] 
[ 1007.209957][T16057] CIFS: VFS: bad cache= option: none

[ 1007.271547][T16057] block device autoloading is deprecated and will be removed.
[ 1007.479432][ T5867] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[ 1008.459212][ T5867] usb 4-1: Using ep0 maxpacket: 16
[ 1008.466527][ T5867] usb 4-1: config 1 interface 0 altsetting 121 bulk endpoint 0x82 has invalid maxpacket 32
[ 1008.476633][ T5867] usb 4-1: config 1 interface 0 altsetting 121 bulk endpoint 0x3 has invalid maxpacket 1023
[ 1008.487162][ T5867] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1008.545903][ T5867] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1008.555217][ T5867] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1008.563449][ T5867] usb 4-1: Product: syz
[ 1008.567675][ T5867] usb 4-1: Manufacturer: syz
[ 1008.572662][ T5867] usb 4-1: SerialNumber: syz
[ 1008.579547][T16056] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1008.619325][T16056] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1008.961408][ T5867] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -71
[ 1009.005451][ T5867] usb 4-1: USB disconnect, device number 19
[ 1011.678415][T16110] overlayfs: failed to resolve './file0': -2
[ 1013.696998][T16137] fuse: Bad value for 'fd'
[ 1016.678350][   T30] audit: type=1400 audit(1742727397.159:1073): avc:  denied  { append } for  pid=16156 comm="syz.7.2733" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[ 1017.461536][T16174] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1018.699742][T16186] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2742'.
[ 1019.546129][T16190] fuse: Bad value for 'fd'
[ 1019.555045][T16190] netfs: Couldn't get user pages (rc=-14)
[ 1022.763977][T16219] fuse: Bad value for 'fd'
[ 1024.457942][  T118] libceph: connect (1)[c::]:6789 error -101
[ 1024.479532][  T118] libceph: mon0 (1)[c::]:6789 connect error
[ 1024.501977][T16211] lo speed is unknown, defaulting to 1000
[ 1024.540319][T16237] netlink: 'syz.2.2754': attribute type 4 has an invalid length.
[ 1024.548136][T16237] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.2754'.
[ 1025.090591][T16232] ceph: No mds server is up or the cluster is laggy
[ 1025.461709][  T118] libceph: connect (1)[c::]:6789 error -101
[ 1025.497470][  T118] libceph: mon0 (1)[c::]:6789 connect error
[ 1026.473464][T16249] IPVS: stopping backup sync thread 16251 ...
[ 1027.803482][   T30] audit: type=1400 audit(1742727408.289:1074): avc:  denied  { setopt } for  pid=16252 comm="syz.6.2760" lport=57704 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[ 1027.803680][T16259] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2758'.
[ 1031.684206][T16307] overlayfs: failed to clone upperpath
[ 1032.561728][ T5902] libceph: connect (1)[c::]:6789 error -101
[ 1032.567711][ T5902] libceph: mon0 (1)[c::]:6789 connect error
[ 1032.641808][T16311] ceph: No mds server is up or the cluster is laggy
[ 1034.814475][T16334] SET target dimension over the limit!
[ 1034.904402][T16336] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[ 1035.334598][T16334] netlink: 71 bytes leftover after parsing attributes in process `syz.1.2778'.
[ 1035.350270][T16334] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2778'.
[ 1036.509223][   T30] audit: type=1400 audit(1742727416.659:1075): avc:  denied  { map } for  pid=16337 comm="syz.2.2780" path="/dev/usbmon0" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[ 1036.940851][T16336] lo speed is unknown, defaulting to 1000
[ 1037.294085][T16356] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2784'.
[ 1038.223194][T16353] lo speed is unknown, defaulting to 1000
[ 1039.388100][   T30] audit: type=1400 audit(1742727419.839:1076): avc:  denied  { map } for  pid=16369 comm="syz.1.2788" path="socket:[45054]" dev="sockfs" ino=45054 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1039.876060][T16372] lo speed is unknown, defaulting to 1000
[ 1039.900116][   T30] audit: type=1400 audit(1742727419.839:1077): avc:  denied  { read accept } for  pid=16369 comm="syz.1.2788" path="socket:[45054]" dev="sockfs" ino=45054 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[ 1040.064830][T16377] fuse: Bad value for 'fd'
[ 1040.077759][T16377] netfs: Couldn't get user pages (rc=-14)
[ 1040.370699][   T30] audit: type=1400 audit(1742727420.839:1078): avc:  denied  { lock } for  pid=16382 comm="syz.1.2792" path="socket:[47135]" dev="sockfs" ino=47135 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[ 1045.717592][T16420] lo speed is unknown, defaulting to 1000
[ 1046.851737][T16443] xt_hashlimit: max too large, truncated to 1048576
[ 1050.223717][T16470] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[ 1050.320646][T16470] lo speed is unknown, defaulting to 1000
[ 1050.489644][T16458] syzkaller1: entered promiscuous mode
[ 1050.495145][T16458] syzkaller1: entered allmulticast mode
[ 1051.622227][T16480] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1052.198466][   T30] audit: type=1400 audit(1742727432.669:1079): avc:  denied  { bind } for  pid=16481 comm="syz.1.2818" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1052.231398][T16488] loop6: detected capacity change from 0 to 524287999
[ 1052.358712][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.367959][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.384867][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.394066][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.634346][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.643567][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.657659][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.666863][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.690909][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.700132][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.714312][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.723477][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.733139][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.742289][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.756725][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.765883][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.774624][T16488] ldm_validate_partition_table(): Disk read failed.
[ 1052.880212][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.889399][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.898051][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1052.907205][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1052.920424][T16488] Dev loop6: unable to read RDB block 0
[ 1052.936800][T16488]  loop6: unable to read partition table
[ 1052.958720][T16488] loop_reread_partitions: partition scan of loop6 (��������6�tPΪŔ���A���8�*V^��3c) failed (rc=-5)
[ 1054.053613][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.101155][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.502758][T16514] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1055.920377][T16488] loop6: detected capacity change from 524287999 to 0
[ 1057.529224][T14902] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[ 1057.689767][T14902] usb 3-1: no configurations
[ 1057.697979][T14902] usb 3-1: can't read configurations, error -22
[ 1058.089446][T16540] tmpfs: Unknown parameter 'usrquo'
[ 1058.256927][T14902] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[ 1059.020734][T16546] ubi: mtd0 is already attached to ubi31
[ 1059.576761][T16552] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2837'.
[ 1059.586081][T16552] 0��{X��: renamed from gretap0 (while UP)
[ 1059.644490][T14902] usb 3-1: no configurations
[ 1059.666861][T14902] usb 3-1: can't read configurations, error -22
[ 1059.681950][T14902] usb usb3-port1: attempt power cycle
[ 1059.692151][T16552] 0��{X��: entered allmulticast mode
[ 1059.702079][T16552] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[ 1060.571306][T16564] serio: Serial port ttyS3
[ 1061.283465][T16569] overlay: Unknown parameter '/'
[ 1061.305347][T16569] overlayfs: failed to resolve './file1': -2
[ 1061.389146][   T30] audit: type=1400 audit(1742727441.769:1080): avc:  denied  { mounton } for  pid=16568 comm="syz.2.2842" path="/572/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[ 1061.473865][   T30] audit: type=1400 audit(1742727441.909:1081): avc:  denied  { unmount } for  pid=5820 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[ 1062.452209][T16586] lo: entered allmulticast mode
[ 1062.881414][T16588] PKCS8: Unsupported PKCS#8 version
[ 1062.961021][ T5869] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[ 1063.699053][    T9] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[ 1063.930322][ T5869] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1063.943503][ T5869] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[ 1063.964063][ T5869] usb 7-1: New USB device found, idVendor=04b4, idProduct=bca1, bcdDevice= 0.00
[ 1063.979049][ T5869] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1063.994555][ T5869] usb 7-1: config 0 descriptor??
[ 1064.008588][T16573] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1064.087692][    T9] usb 3-1: New USB device found, idVendor=093a, idProduct=2476, bcdDevice= d.5b
[ 1064.151108][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1064.159269][    T9] usb 3-1: Product: syz
[ 1064.164453][    T9] usb 3-1: Manufacturer: syz
[ 1064.169113][    T9] usb 3-1: SerialNumber: syz
[ 1064.517376][ T5869] cypress 0003:04B4:BCA1.0007: item fetching failed at offset 5/7
[ 1064.550685][ T5869] cypress 0003:04B4:BCA1.0007: parse failed
[ 1064.565015][ T5869] cypress 0003:04B4:BCA1.0007: probe with driver cypress failed with error -22
[ 1064.792570][ T5867] usb 7-1: USB disconnect, device number 2
[ 1065.891198][    T9] gspca_main: pac207-2.14.0 probing 093a:2476
[ 1065.919507][    T9] gspca_pac207: Failed to read a register (index 0x0000, error -71)
[ 1065.933195][    T9] usb 3-1: Found UVC 0.00 device syz (093a:2476)
[ 1065.940479][    T9] usb 3-1: No valid video chain found.
[ 1065.947372][    T9] usb 3-1: USB disconnect, device number 36
[ 1067.369913][   T30] audit: type=1400 audit(1742727447.849:1082): avc:  denied  { ioctl } for  pid=16610 comm="syz.3.2853" path="socket:[46594]" dev="sockfs" ino=46594 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[ 1067.452547][   T30] audit: type=1400 audit(1742727447.939:1083): avc:  denied  { read } for  pid=16610 comm="syz.3.2853" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[ 1070.053477][   T30] audit: type=1326 audit(1742727450.209:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1070.189234][   T30] audit: type=1326 audit(1742727450.209:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1070.264735][   T30] audit: type=1326 audit(1742727450.279:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1070.361093][   T30] audit: type=1326 audit(1742727450.279:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1070.385307][   T30] audit: type=1326 audit(1742727450.279:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1070.420054][   T30] audit: type=1326 audit(1742727450.329:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1070.479039][   T30] audit: type=1326 audit(1742727450.329:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1070.578640][   T30] audit: type=1326 audit(1742727450.339:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16646 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5e58d169 code=0x7ffc0000
[ 1072.171845][T16671] lo speed is unknown, defaulting to 1000
[ 1077.047174][T13137] Bluetooth: hci4: command 0x0406 tx timeout
[ 1078.029174][T16725] kernel profiling enabled (shift: 7)
[ 1079.523700][T16736] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[ 1081.464862][T16740] dccp_invalid_packet: P.Data Offset(10) too large
[ 1083.646891][T16767] Cannot find set identified by id 0 to match
[ 1087.189081][   T30] kauditd_printk_skb: 15 callbacks suppressed
[ 1087.189098][   T30] audit: type=1400 audit(1742727467.649:1107): avc:  denied  { listen } for  pid=16795 comm="syz.6.2902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1087.330394][T16809] syz.7.2903: attempt to access beyond end of device
[ 1087.330394][T16809] nbd7: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1087.343171][T16809] exFAT-fs (nbd7): unable to read boot sector
[ 1087.349252][T16809] exFAT-fs (nbd7): failed to read boot sector
[ 1087.355307][T16809] exFAT-fs (nbd7): failed to recognize exfat type
[ 1093.890097][   T30] audit: type=1400 audit(1742727474.379:1108): avc:  denied  { ioctl } for  pid=16853 comm="syz.1.2917" path="socket:[46974]" dev="sockfs" ino=46974 ioctlcmd=0x4943 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[ 1093.933719][   T30] audit: type=1400 audit(1742727474.379:1109): avc:  denied  { write } for  pid=16853 comm="syz.1.2917" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1094.180263][   T30] audit: type=1400 audit(1742727474.669:1110): avc:  denied  { listen } for  pid=16860 comm="syz.7.2921" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1095.375939][   T30] audit: type=1400 audit(1742727475.859:1111): avc:  denied  { ioctl } for  pid=16857 comm="syz.6.2918" path="socket:[48021]" dev="sockfs" ino=48021 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[ 1096.176247][T16887] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1096.183613][T16887] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1096.193624][T16887] bridge0: entered allmulticast mode
[ 1097.373571][   T30] audit: type=1400 audit(1742727477.859:1112): avc:  denied  { create } for  pid=16880 comm="syz.1.2926" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[ 1102.173845][T16939] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2939'.
[ 1207.728903][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1207.735875][    C1] rcu: 	0-...!: (1 GPs behind) idle=85e4/1/0x4000000000000000 softirq=80096/80097 fqs=0
[ 1207.747110][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P16902/1:b..l
[ 1207.755110][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=64305, q=252 ncpus=2)
[ 1207.762818][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1207.762839][    C0] NMI backtrace for cpu 0
[ 1207.762848][    C0] CPU: 0 UID: 0 PID: 16933 Comm: syz.1.2938 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[ 1207.762864][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1207.762872][    C0] RIP: 0010:__lock_acquire+0x263/0x3c40
[ 1207.762894][    C0] Code: 41 0f b7 56 20 8b 7c 24 20 81 e2 ff 1f 00 00 39 fa 75 0c 48 83 7c 24 10 00 0f 85 36 0d 00 00 48 8b 44 24 28 44 0f b7 74 24 20 <49> 01 c7 49 8d 47 20 66 41 81 e6 ff 1f 48 89 c2 48 89 44 24 38 48
[ 1207.762906][    C0] RSP: 0018:ffffc90000007ab0 EFLAGS: 00000006
[ 1207.762917][    C0] RAX: ffff888039e45370 RBX: 0000000000000001 RCX: 0000000000000000
[ 1207.762926][    C0] RDX: 000000000000006f RSI: 1ffff110073c8a77 RDI: 0000000000000000
[ 1207.762935][    C0] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001
[ 1207.762942][    C0] R10: 000000000000000a R11: 0000000000000001 R12: ffffffff9aaa4788
[ 1207.762951][    C0] R13: ffff888039e44880 R14: 0000000000000000 R15: 0000000000000050
[ 1207.762960][    C0] FS:  00007fed5f3966c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1207.762974][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1207.762983][    C0] CR2: 0000555572fa2808 CR3: 000000005a5d2000 CR4: 00000000003526f0
[ 1207.762992][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1207.763000][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1207.763008][    C0] Call Trace:
[ 1207.763013][    C0]  <NMI>
[ 1207.763019][    C0]  ? nmi_cpu_backtrace+0x1d8/0x390
[ 1207.763036][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1207.763053][    C0]  ? nmi_handle+0x1ac/0x5d0
[ 1207.763071][    C0]  ? __lock_acquire+0x263/0x3c40
[ 1207.763088][    C0]  ? default_do_nmi+0x6a/0x160
[ 1207.763103][    C0]  ? exc_nmi+0x170/0x1e0
[ 1207.763115][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1207.763137][    C0]  ? __lock_acquire+0x263/0x3c40
[ 1207.763154][    C0]  ? __lock_acquire+0x263/0x3c40
[ 1207.763171][    C0]  ? __lock_acquire+0x263/0x3c40
[ 1207.763188][    C0]  </NMI>
[ 1207.763193][    C0]  <IRQ>
[ 1207.763198][    C0]  ? __lock_acquire+0x15a9/0x3c40
[ 1207.763216][    C0]  ? hlock_class+0x4e/0x130
[ 1207.763231][    C0]  ? __pfx___lock_acquire+0x10/0x10
[ 1207.763251][    C0]  lock_acquire.part.0+0x11b/0x380
[ 1207.763269][    C0]  ? debug_object_activate+0x149/0x4a0
[ 1207.763286][    C0]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1207.763304][    C0]  ? rcu_is_watching+0x12/0xc0
[ 1207.763318][    C0]  ? trace_lock_acquire+0x14e/0x1f0
[ 1207.763333][    C0]  ? debug_object_activate+0x149/0x4a0
[ 1207.763348][    C0]  ? lock_acquire+0x2f/0xb0
[ 1207.763364][    C0]  ? debug_object_activate+0x149/0x4a0
[ 1207.763380][    C0]  _raw_spin_lock_irqsave+0x3a/0x60
[ 1207.763395][    C0]  ? debug_object_activate+0x149/0x4a0
[ 1207.763411][    C0]  debug_object_activate+0x149/0x4a0
[ 1207.763426][    C0]  ? lock_acquire.part.0+0x11b/0x380
[ 1207.763444][    C0]  ? __pfx_debug_object_activate+0x10/0x10
[ 1207.763461][    C0]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1207.763473][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1207.763487][    C0]  ? __pfx_advance_sched+0x10/0x10
[ 1207.763501][    C0]  enqueue_hrtimer+0x25/0x3c0
[ 1207.763515][    C0]  __hrtimer_run_queues+0x903/0xae0
[ 1207.763530][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1207.763543][    C0]  ? read_tsc+0x9/0x20
[ 1207.763559][    C0]  hrtimer_interrupt+0x392/0x8e0
[ 1207.763576][    C0]  __sysvec_apic_timer_interrupt+0x10f/0x400
[ 1207.763600][    C0]  sysvec_apic_timer_interrupt+0x9f/0xc0
[ 1207.763617][    C0]  </IRQ>
[ 1207.763621][    C0]  <TASK>
[ 1207.763625][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1207.763643][    C0] RIP: 0010:stack_depot_save_flags+0x70/0x9c0
[ 1207.763663][    C0] Code: 8d 1c 85 7b 71 f5 75 83 f8 03 89 c1 0f 86 9a 03 00 00 89 d8 89 df 4c 89 ea 03 42 08 83 e9 03 48 83 c2 0c 44 8b 4a f4 03 7a f8 <89> c6 41 29 c1 c1 c6 04 41 01 d9 01 f8 44 31 ce 8d 1c 06 29 f7 41
[ 1207.763675][    C0] RSP: 0018:ffffc9001347f0d8 EFLAGS: 00000a17
[ 1207.763686][    C0] RAX: 0000000059bd2497 RBX: 00000000b4611443 RCX: 000000000000000c
[ 1207.763695][    C0] RDX: ffffc9001347f1a0 RSI: 000000004c56ece5 RDI: 0000000007c60624
[ 1207.763703][    C0] RBP: 0000000000000001 R08: 0000000000000000 R09: 00000000ffffffff
[ 1207.763711][    C0] R10: ffffffff90626c17 R11: 0000000000000001 R12: 0000000000140dca
[ 1207.763719][    C0] R13: ffffc9001347f158 R14: 000000000000000f R15: 000000000000000f
[ 1207.763732][    C0]  ? stack_depot_save_flags+0x28/0x9c0
[ 1207.763752][    C0]  save_stack+0x16f/0x1f0
[ 1207.763771][    C0]  ? __pfx_save_stack+0x10/0x10
[ 1207.763789][    C0]  ? post_alloc_hook+0x181/0x1b0
[ 1207.763808][    C0]  ? get_page_from_freelist+0xfce/0x2f80
[ 1207.763821][    C0]  ? __alloc_frozen_pages_noprof+0x221/0x2470
[ 1207.763835][    C0]  ? alloc_pages_mpol+0x1fc/0x540
[ 1207.763849][    C0]  ? folio_alloc_mpol_noprof+0x36/0x2f0
[ 1207.763865][    C0]  ? vma_alloc_folio_noprof+0xee/0x1b0
[ 1207.763881][    C0]  ? do_pte_missing+0x202f/0x3e10
[ 1207.763894][    C0]  ? __handle_mm_fault+0x103c/0x2a40
[ 1207.763907][    C0]  ? handle_mm_fault+0x3fa/0xaa0
[ 1207.763919][    C0]  ? __get_user_pages+0x773/0x36f0
[ 1207.763931][    C0]  ? populate_vma_page_range+0x27f/0x3a0
[ 1207.763944][    C0]  ? __mm_populate+0x1d6/0x380
[ 1207.763956][    C0]  ? __do_sys_mremap+0xe3c/0x1630
[ 1207.763970][    C0]  ? do_syscall_64+0xcd/0x250
[ 1207.763987][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1207.764007][    C0]  __set_page_owner+0x8b/0x560
[ 1207.764019][    C0]  ? mark_held_locks+0x9f/0xe0
[ 1207.764036][    C0]  ? __pfx___set_page_owner+0x10/0x10
[ 1207.764048][    C0]  ? bad_range+0x23d/0x490
[ 1207.764064][    C0]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1207.764081][    C0]  ? get_page_from_freelist+0xfae/0x2f80
[ 1207.764095][    C0]  post_alloc_hook+0x181/0x1b0
[ 1207.764115][    C0]  get_page_from_freelist+0xfce/0x2f80
[ 1207.764132][    C0]  ? __pfx___might_resched+0x10/0x10
[ 1207.764152][    C0]  ? __pfx_get_page_from_freelist+0x10/0x10
[ 1207.764166][    C0]  ? should_fail_alloc_page+0xee/0x130
[ 1207.764181][    C0]  ? prepare_alloc_pages.constprop.0+0x16f/0x560
[ 1207.764201][    C0]  __alloc_frozen_pages_noprof+0x221/0x2470
[ 1207.764216][    C0]  ? hlock_class+0x4e/0x130
[ 1207.764228][    C0]  ? mark_lock+0xb5/0xc60
[ 1207.764246][    C0]  ? __pfx_mark_lock+0x10/0x10
[ 1207.764263][    C0]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 1207.764277][    C0]  ? hlock_class+0x4e/0x130
[ 1207.764290][    C0]  ? mark_lock+0xb5/0xc60
[ 1207.764307][    C0]  ? __pfx_mark_lock+0x10/0x10
[ 1207.764324][    C0]  ? hlock_class+0x4e/0x130
[ 1207.764337][    C0]  ? __lock_acquire+0xcc5/0x3c40
[ 1207.764354][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1207.764374][    C0]  ? policy_nodemask+0xea/0x4e0
[ 1207.764389][    C0]  alloc_pages_mpol+0x1fc/0x540
[ 1207.764404][    C0]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 1207.764418][    C0]  ? hlock_class+0x4e/0x130
[ 1207.764433][    C0]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 1207.764450][    C0]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1207.764466][    C0]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 1207.764482][    C0]  ? find_held_lock+0x2d/0x110
[ 1207.764497][    C0]  do_pte_missing+0x202f/0x3e10
[ 1207.764513][    C0]  __handle_mm_fault+0x103c/0x2a40
[ 1207.764529][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1207.764541][    C0]  ? follow_page_pte+0x3ac/0x1490
[ 1207.764553][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1207.764576][    C0]  handle_mm_fault+0x3fa/0xaa0
[ 1207.764590][    C0]  __get_user_pages+0x773/0x36f0
[ 1207.764609][    C0]  ? __pfx_mt_find+0x10/0x10
[ 1207.764626][    C0]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1207.764644][    C0]  ? __pfx___get_user_pages+0x10/0x10
[ 1207.764657][    C0]  ? __mm_populate+0x21d/0x380
[ 1207.764671][    C0]  populate_vma_page_range+0x27f/0x3a0
[ 1207.764685][    C0]  ? __pfx_populate_vma_page_range+0x10/0x10
[ 1207.764698][    C0]  ? __pfx_find_vma_intersection+0x10/0x10
[ 1207.764716][    C0]  ? __do_sys_mremap+0x4ea/0x1630
[ 1207.764732][    C0]  __mm_populate+0x1d6/0x380
[ 1207.764745][    C0]  ? __pfx___mm_populate+0x10/0x10
[ 1207.764759][    C0]  ? up_write+0x1b2/0x520
[ 1207.764778][    C0]  __do_sys_mremap+0xe3c/0x1630
[ 1207.764795][    C0]  ? __pfx___do_sys_mremap+0x10/0x10
[ 1207.764810][    C0]  ? __x64_sys_futex+0x1e1/0x4c0
[ 1207.764827][    C0]  ? xfd_validate_state+0x5d/0x180
[ 1207.764844][    C0]  ? rcu_is_watching+0x12/0xc0
[ 1207.764860][    C0]  do_syscall_64+0xcd/0x250
[ 1207.764877][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1207.764894][    C0] RIP: 0033:0x7fed5e58d169
[ 1207.764906][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1207.764917][    C0] RSP: 002b:00007fed5f396038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 1207.764929][    C0] RAX: ffffffffffffffda RBX: 00007fed5e7a5fa0 RCX: 00007fed5e58d169
[ 1207.764938][    C0] RDX: 0000000005000000 RSI: 0000000000002000 RDI: 0000200000ff5000
[ 1207.764946][    C0] RBP: 00007fed5e60e2a0 R08: 0000200000ffd000 R09: 0000000000000000
[ 1207.764954][    C0] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[ 1207.764962][    C0] R13: 0000000000000000 R14: 00007fed5e7a5fa0 R15: 00007ffd38d13aa8
[ 1207.764975][    C0]  </TASK>
[ 1207.765835][    C1] task:syz.3.2928      state:R  running task     stack:26320 pid:16902 tgid:16895 ppid:5814   task_flags:0x40044c flags:0x00004006
[ 1208.650370][    C1] Call Trace:
[ 1208.653643][    C1]  <TASK>
[ 1208.656573][    C1]  __schedule+0xf43/0x5890
[ 1208.660999][    C1]  ? lock_acquire.part.0+0xe1/0x380
[ 1208.666207][    C1]  ? __pfx___schedule+0x10/0x10
[ 1208.671055][    C1]  ? __pfx_mark_lock+0x10/0x10
[ 1208.675817][    C1]  ? is_bpf_text_address+0x30/0x1a0
[ 1208.681027][    C1]  ? irqentry_exit+0x3b/0x90
[ 1208.685617][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1208.690816][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[ 1208.696188][    C1]  preempt_schedule_common+0x44/0xc0
[ 1208.701475][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 1208.706678][    C1]  unwind_next_frame+0x1776/0x20c0
[ 1208.711790][    C1]  ? arch_stack_walk+0x74/0x100
[ 1208.716642][    C1]  __unwind_start+0x45f/0x7f0
[ 1208.721320][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1208.727471][    C1]  arch_stack_walk+0x74/0x100
[ 1208.732145][    C1]  ? stack_trace_save+0x95/0xd0
[ 1208.736994][    C1]  stack_trace_save+0x95/0xd0
[ 1208.741683][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 1208.747068][    C1]  save_stack+0x162/0x1f0
[ 1208.751403][    C1]  ? __pfx_save_stack+0x10/0x10
[ 1208.756259][    C1]  ? __pfx_lock_acquire.part.0+0x10/0x10
[ 1208.761911][    C1]  __reset_page_owner+0x8d/0x400
[ 1208.766849][    C1]  free_unref_folios+0xa7b/0x1500
[ 1208.771875][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1208.777699][    C1]  folios_put_refs+0x587/0x7b0
[ 1208.782477][    C1]  ? __pfx_folios_put_refs+0x10/0x10
[ 1208.787765][    C1]  ? folio_batch_remove_exceptionals+0x115/0x1a0
[ 1208.794093][    C1]  shmem_undo_range+0x586/0x1170
[ 1208.799039][    C1]  ? __pfx_shmem_undo_range+0x10/0x10
[ 1208.804410][    C1]  ? __pfx___lock_acquire+0x10/0x10
[ 1208.809627][    C1]  ? mark_lock+0xb5/0xc60
[ 1208.813959][    C1]  ? hlock_class+0x4e/0x130
[ 1208.818467][    C1]  ? mark_lock+0xb5/0xc60
[ 1208.822819][    C1]  ? __pfx___lock_acquire+0x10/0x10
[ 1208.828014][    C1]  ? hlock_class+0x4e/0x130
[ 1208.832515][    C1]  ? percpu_counter_add_batch+0xb5/0x1e0
[ 1208.838152][    C1]  shmem_evict_inode+0x3a3/0xba0
[ 1208.843091][    C1]  ? find_held_lock+0x2d/0x110
[ 1208.847849][    C1]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 1208.853306][    C1]  ? evict+0x3c8/0x960
[ 1208.857373][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1208.862399][    C1]  ? lock_acquire+0x2f/0xb0
[ 1208.866906][    C1]  ? __pfx_shmem_evict_inode+0x10/0x10
[ 1208.872369][    C1]  evict+0x409/0x960
[ 1208.876265][    C1]  ? __pfx_evict+0x10/0x10
[ 1208.880689][    C1]  iput+0x52a/0x890
[ 1208.884496][    C1]  ? __pfx_generic_delete_inode+0x10/0x10
[ 1208.890220][    C1]  dentry_unlink_inode+0x29c/0x480
[ 1208.895331][    C1]  __dentry_kill+0x1d0/0x600
[ 1208.899921][    C1]  dput.part.0+0x4b1/0x9b0
[ 1208.904335][    C1]  dput+0x1f/0x30
[ 1208.907964][    C1]  __fput+0x51c/0xb70
[ 1208.911946][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1208.917144][    C1]  task_work_run+0x14e/0x250
[ 1208.921733][    C1]  ? __pfx_task_work_run+0x10/0x10
[ 1208.926845][    C1]  ? do_raw_spin_unlock+0x172/0x230
[ 1208.932039][    C1]  do_exit+0xad8/0x2db0
[ 1208.936194][    C1]  ? get_signal+0x8f7/0x26c0
[ 1208.940785][    C1]  ? __pfx_do_exit+0x10/0x10
[ 1208.945371][    C1]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1208.950396][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1208.955763][    C1]  do_group_exit+0xd3/0x2a0
[ 1208.960260][    C1]  get_signal+0x24ed/0x26c0
[ 1208.964769][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1208.969792][    C1]  ? __pfx_get_signal+0x10/0x10
[ 1208.974650][    C1]  arch_do_signal_or_restart+0x90/0x7e0
[ 1208.980190][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1208.986346][    C1]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1208.991894][    C1]  syscall_exit_to_user_mode+0x150/0x2a0
[ 1208.997524][    C1]  do_syscall_64+0xda/0x250
[ 1209.002026][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1209.007918][    C1] RIP: 0033:0x7fb34d98d169
[ 1209.012324][    C1] RSP: 002b:00007fb34e768038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1209.020730][    C1] RAX: 0000000000010106 RBX: 00007fb34dba6080 RCX: 00007fb34d98d169
[ 1209.028694][    C1] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003
[ 1209.036656][    C1] RBP: 00007fb34da0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1209.044619][    C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1209.052579][    C1] R13: 0000000000000000 R14: 00007fb34dba6080 R15: 00007ffd6cdc06d8
[ 1209.060559][    C1]  </TASK>
[ 1209.063573][    C1] rcu: rcu_preempt kthread starved for 10502 jiffies! g64305 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1209.074758][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1209.084713][    C1] rcu: RCU grace-period kthread stack dump:
[ 1209.090591][    C1] task:rcu_preempt     state:R  running task     stack:27456 pid:18    tgid:18    ppid:2      task_flags:0x208040 flags:0x00004000
[ 1209.104075][    C1] Call Trace:
[ 1209.107346][    C1]  <TASK>
[ 1209.110270][    C1]  __schedule+0xf43/0x5890
[ 1209.114683][    C1]  ? __pfx___lock_acquire+0x10/0x10
[ 1209.119889][    C1]  ? __pfx___schedule+0x10/0x10
[ 1209.124738][    C1]  ? schedule+0x298/0x350
[ 1209.129064][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1209.134089][    C1]  ? lock_acquire+0x2f/0xb0
[ 1209.138593][    C1]  ? schedule+0x1fd/0x350
[ 1209.142922][    C1]  schedule+0xe7/0x350
[ 1209.146986][    C1]  schedule_timeout+0x124/0x280
[ 1209.151831][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1209.157198][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1209.162482][    C1]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1209.168282][    C1]  ? prepare_to_swait_event+0xf3/0x470
[ 1209.173745][    C1]  rcu_gp_fqs_loop+0x1eb/0xb00
[ 1209.178511][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1209.183794][    C1]  ? rcu_gp_init+0xc82/0x1630
[ 1209.188472][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1209.193669][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1209.199472][    C1]  rcu_gp_kthread+0x271/0x380
[ 1209.204146][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1209.209343][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1209.214541][    C1]  ? __kthread_parkme+0x148/0x220
[ 1209.219569][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1209.224770][    C1]  kthread+0x3af/0x750
[ 1209.228834][    C1]  ? __pfx_kthread+0x10/0x10
[ 1209.233423][    C1]  ? __pfx_kthread+0x10/0x10
[ 1209.238008][    C1]  ret_from_fork+0x45/0x80
[ 1209.242420][    C1]  ? __pfx_kthread+0x10/0x10
[ 1209.247004][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1209.251775][    C1]  </TASK>
[ 1209.254785][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1209.261094][    C1] CPU: 1 UID: 0 PID: 12126 Comm: kworker/u8:65 Not tainted 6.14.0-rc7-syzkaller-00205-g586de92313fc #0
[ 1209.272101][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1209.282147][    C1] Workqueue: events_unbound toggle_allocation_gate
[ 1209.288645][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x66/0x70
[ 1209.294800][    C1] Code: 82 08 16 00 00 83 f8 02 75 20 48 8b 8a 10 16 00 00 8b 92 0c 16 00 00 48 8b 01 48 83 c0 01 48 39 d0 73 07 48 89 01 48 89 34 c1 <c3> cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90
[ 1209.314401][    C1] RSP: 0018:ffffc90004527920 EFLAGS: 00000293
[ 1209.320463][    C1] RAX: 0000000000000000 RBX: ffff8880b8646a00 RCX: ffffffff81ade1ea
[ 1209.328424][    C1] RDX: ffff88802abb2440 RSI: ffffffff81ade1c4 RDI: 0000000000000005
[ 1209.336384][    C1] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[ 1209.344344][    C1] R10: 0000000000000001 R11: 0000000000000006 R12: ffffed10170c8d41
[ 1209.352303][    C1] R13: 0000000000000001 R14: ffff8880b873fe80 R15: ffff8880b8646a08
[ 1209.360264][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1209.369186][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1209.375766][    C1] CR2: 0000001b2e0faff8 CR3: 000000000df80000 CR4: 00000000003526f0
[ 1209.383732][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1209.391691][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1209.399651][    C1] Call Trace:
[ 1209.402923][    C1]  <IRQ>
[ 1209.405759][    C1]  ? rcu_check_gp_kthread_starvation+0x31b/0x450
[ 1209.412080][    C1]  ? do_raw_spin_unlock+0x172/0x230
[ 1209.417270][    C1]  ? rcu_sched_clock_irq+0x247a/0x3310
[ 1209.422733][    C1]  ? timekeeping_advance+0x72e/0xa90
[ 1209.428015][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[ 1209.433643][    C1]  ? __asan_memcpy+0x3c/0x60
[ 1209.438242][    C1]  ? rcu_is_watching+0x12/0xc0
[ 1209.443001][    C1]  ? update_process_times+0x178/0x2d0
[ 1209.448375][    C1]  ? __pfx_update_process_times+0x10/0x10
[ 1209.454092][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1209.459559][    C1]  ? update_wall_time+0x1c/0x40
[ 1209.464422][    C1]  ? tick_nohz_handler+0x376/0x530
[ 1209.469534][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1209.474992][    C1]  ? __hrtimer_run_queues+0x5fb/0xae0
[ 1209.480366][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1209.486079][    C1]  ? read_tsc+0x9/0x20
[ 1209.490159][    C1]  ? hrtimer_interrupt+0x392/0x8e0
[ 1209.495280][    C1]  ? __sysvec_apic_timer_interrupt+0x10f/0x400
[ 1209.501438][    C1]  ? sysvec_apic_timer_interrupt+0x9f/0xc0
[ 1209.507248][    C1]  </IRQ>
[ 1209.510173][    C1]  <TASK>
[ 1209.513277][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1209.519438][    C1]  ? smp_call_function_many_cond+0x4ea/0x12c0
[ 1209.525500][    C1]  ? smp_call_function_many_cond+0x4c4/0x12c0
[ 1209.531559][    C1]  ? __sanitizer_cov_trace_pc+0x66/0x70
[ 1209.537111][    C1]  smp_call_function_many_cond+0x4c4/0x12c0
[ 1209.543010][    C1]  ? __pfx_do_sync_core+0x10/0x10
[ 1209.548027][    C1]  on_each_cpu_cond_mask+0x40/0x90
[ 1209.553139][    C1]  text_poke_bp_batch+0x22b/0x760
[ 1209.558158][    C1]  ? __pfx___mutex_lock+0x10/0x10
[ 1209.563181][    C1]  ? __pfx_text_poke_bp_batch+0x10/0x10
[ 1209.568718][    C1]  ? text_poke_queue+0xef/0x180
[ 1209.573562][    C1]  ? arch_jump_label_transform_queue+0xc0/0x120
[ 1209.579807][    C1]  text_poke_finish+0x30/0x40
[ 1209.584478][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[ 1209.590454][    C1]  jump_label_update+0x1d7/0x400
[ 1209.595391][    C1]  static_key_enable_cpuslocked+0x1b7/0x270
[ 1209.601282][    C1]  static_key_enable+0x1a/0x20
[ 1209.606040][    C1]  toggle_allocation_gate+0xfc/0x260
[ 1209.611335][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[ 1209.617253][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[ 1209.622451][    C1]  ? process_one_work+0x921/0x1ba0
[ 1209.627580][    C1]  ? lock_acquire+0x2f/0xb0
[ 1209.632087][    C1]  ? process_one_work+0x921/0x1ba0
[ 1209.637202][    C1]  process_one_work+0x9c5/0x1ba0
[ 1209.642146][    C1]  ? __pfx_nsim_dev_trap_report_work+0x10/0x10
[ 1209.648294][    C1]  ? __pfx_process_one_work+0x10/0x10
[ 1209.653671][    C1]  ? assign_work+0x1a0/0x250
[ 1209.658268][    C1]  worker_thread+0x6c8/0xf00
[ 1209.662876][    C1]  ? __kthread_parkme+0x148/0x220
[ 1209.667903][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1209.673014][    C1]  kthread+0x3af/0x750
[ 1209.677081][    C1]  ? __pfx_kthread+0x10/0x10
[ 1209.681667][    C1]  ? lock_acquire+0x2f/0xb0
[ 1209.686174][    C1]  ? __pfx_kthread+0x10/0x10
[ 1209.690762][    C1]  ret_from_fork+0x45/0x80
[ 1209.695175][    C1]  ? __pfx_kthread+0x10/0x10
[ 1209.699763][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1209.704537][    C1]  </TASK>