last executing test programs:

12.229931273s ago: executing program 4 (id=401):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1)
socket$key(0xf, 0x3, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, 0x0, 0x4004010)
sendto$inet6(r1, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x4, 0xee, 0x2, 0x0, 0x8, 0x5, 0x9, 0x8, 0x7, 0x0, 0x0, 0x0, 0x3}, 0xe)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
shutdown(r1, 0x1)

10.716227872s ago: executing program 4 (id=406):
open(&(0x7f0000000140)='./file0\x00', 0x8060, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x7ab78c4497472f9b, 0x0, 0xffff, 0x0, 0xfffffffd, 0x0, 0x0, 0x2, 0x1}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000540)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x400}}, './file0\x00'})

7.781971117s ago: executing program 0 (id=413):
r0 = syz_open_dev$vim2m(0x0, 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f017, 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket(0x10, 0x3, 0x0)
bind$netlink(r6, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r6, &(0x7f00000026c0)="2600000022004701050000070001000000000000002b1f000a4e51f1ee839cd53400b017ca7e", 0x26)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
bind$netrom(r2, &(0x7f0000000000)={{0x6, @rose, 0x6}, [@bcast, @bcast, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null]}, 0x48)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)

6.747539059s ago: executing program 4 (id=415):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000480)={0x0, &(0x7f0000000c00)=""/4096, 0x0, 0x0, 0x100}, 0x38)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0), 0x0, 0x0, 0x0})
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x48800)
sendmmsg(r3, &(0x7f0000000180), 0x400008a, 0x0)

6.305515833s ago: executing program 0 (id=419):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0, 0x0, 0x80}, 0x18)
syz_genetlink_get_family_id$tipc(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'})
r1 = socket(0x10, 0x803, 0x0)
sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {0x0}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "101040", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x70}}}}}}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @random="4bac0a17a4e4", @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x11, 0x0, 0x3, {[@window={0x3, 0x3}]}}}}}}}}, 0x0)

6.277020848s ago: executing program 2 (id=420):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
recvmmsg(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x10001, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfff}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$vim2m_VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc0405602, &(0x7f00000001c0)=@fd={0x6, 0x1, 0x4, 0x0, 0x0, {0x0, 0xea60}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x82, '\x00\x00@\x00'}})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x40)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="ac0000000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8000000000000000000000000000aa0c00028005000100000000000800074000000000180006"], 0xac}, 0x1, 0x0, 0x0, 0x4000}, 0x4000894)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0x5453, 0x0)

5.31621781s ago: executing program 0 (id=422):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x42, [0x9, 0x2, 0x8, 0x6, 0x2, 0x400, 0x80000000, 0x0, 0x8, 0x0, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x2004, 0x3, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x0, 0x1ff, 0x8000, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x2, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x8, 0xa, 0x5], [0x7, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c32, 0x3, 0x5, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x37a, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd5, 0x7, 0x1f, 0x404, 0x4, 0x8, 0x8001, 0x7, 0x9, 0x800e8b, 0x5, 0x80000001, 0x48, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x1, 0x1000, 0x80040101, 0x4, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x3, 0x0, 0x7fff, 0x4, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x956, 0xf5c1, 0x3ff, 0x3, 0xcac, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x4000000, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x8320fb05, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x3, 0x1654, 0x4, 0x8, 0x2851, 0x3b, 0x20000002, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x20008, 0x8a8, 0x6, 0x44, 0x409, 0x3, 0x744, 0x4, 0x12, 0x4, 0x10, 0x7fff, 0x2, 0xfffffff8, 0x401, 0xf, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
readv(r0, 0x0, 0x0)
write$input_event(r0, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

4.911235105s ago: executing program 4 (id=424):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x4, 0x8, 0x8}, 0x48)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001680)={r3, &(0x7f0000001580), &(0x7f0000001640)=@udp6=r4, 0x2}, 0x20)

4.836216012s ago: executing program 2 (id=426):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x14, r3, 0x701, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x8814)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r4, 0x0, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000100), 0xffffffffffffffff)
r5 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000040)={0x3, 0x6576, 0xd, 0x0, <r6=>0x0})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r5, 0x100000000)
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r5, 0xc00464b4, &(0x7f0000000080)={r6})
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffb}]})
close_range(r7, 0xffffffffffffffff, 0x0)

4.202246059s ago: executing program 0 (id=427):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=@base={0xf, 0x4, 0x8, 0x2}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000000c0)=ANY=[@ANYRES32=r0], 0x10)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/meminfo\x00', 0x0, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
r5 = syz_open_dev$usbfs(&(0x7f0000000240), 0x75, 0x109301)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000001600)={0xffffffffffffffff, 0x0, 0x2d, 0x11}, 0x14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001980)={0x6, 0x25, &(0x7f00000013c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @map_fd={0x18, 0xa, 0x1, 0x0, r0}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x7}, @alu={0x7, 0x0, 0xa, 0xb, 0x9, 0x18, 0x1}, @call={0x85, 0x0, 0x0, 0x2a}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x2}, @initr0, @btf_id={0x18, 0x3, 0x3, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001540)='syzkaller\x00', 0x800, 0xa7, &(0x7f0000001580)=""/167, 0x41000, 0xa, '\x00', 0x0, 0x25, r1, 0x8, &(0x7f0000001640)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000001680)={0x0, 0x100003, 0xffffffff, 0x89f}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000016c0)=[r1, r0, r3, r0, r1, r1, r1, r0, r1], &(0x7f0000001700)=[{0x2, 0x1, 0xc, 0x3}], 0x10, 0xdff}, 0x94)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
prctl$PR_SET_MM_AUXV(0x23, 0xc, 0x0, 0x1a0)
r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, 0x0, 0xffffffffffffffff, 0xfffffffffffffffd)
bind$ax25(r8, &(0x7f0000000100)={{0x3, @null, 0x1}, [@default, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast]}, 0x48)
close(0x4)

4.127740872s ago: executing program 2 (id=428):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=@newtaction={0x6c, 0x30, 0x1af, 0x1000, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x9, 0xfc000000, 0x7, 0x4, 0xfffffffd}, @multicast1, @broadcast, 0xffffffff}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3.891637393s ago: executing program 4 (id=431):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl812\x00', [0x8001, 0x6, 0x1, 0x0, 0x1, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x4be, 0x1, 0x8, 0x1100004, 0x6, 0x9, 0x8000001, 0x1a449, 0x3, 0x40000003, 0x89, 0x2, 0xf27, 0x4, 0x800b, 0x8, 0x5, 0x8, 0x8, 0x10000, 0xfffffff7]})

3.764156336s ago: executing program 1 (id=432):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000044)
capset(&(0x7f0000000000)={0x19980330, r0}, &(0x7f0000000040)={0x4, 0x8, 0x63, 0x401, 0x7c6d, 0xfffffffb})
syz_clone(0x22023500, 0x0, 0x20010, 0x0, 0x0, 0x0)

3.746715748s ago: executing program 3 (id=433):
r0 = socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x10, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_ADDRESS={0x14, 0x1, @dev={0xfe, 0x80, '\x00', 0xa}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x48, 0x14, 0x9535393fea6295b5, 0x0, 0x400000, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_ADDRESS={0x14, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}}, @IFA_RT_PRIORITY={0x8, 0x9, 0x2e2540}]}, 0x48}}, 0x0)

3.654500188s ago: executing program 3 (id=434):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7786}}, 0x0, 0x5, 0x0, 0x0, 0x41000, 0xc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi3\x00', 0x2000, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000080)={'c6xdigio\x00', [0x401, 0x181, 0x2, 0xa, 0x14000000, 0x0, 0xfffffffc, 0x2, 0xffd, 0x7ffe, 0x3, 0x723, 0x400, 0x2, 0x13, 0x100, 0xffffffa7, 0x9, 0x34d, 0x1, 0x3fd, 0x4000009, 0x200, 0xe2df, 0x9, 0x1, 0x4, 0x40000, 0x7, 0xf58, 0x6]})
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92, 0x0, 0x1, 0x80000000})

3.616886794s ago: executing program 4 (id=435):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioprio_get$pid(0x2, r1)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
memfd_secret(0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000001540), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001580)={0x50, r4, 0x411, 0x70bd2b, 0x25dfdbf9, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x50)

3.516250138s ago: executing program 3 (id=436):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, &(0x7f0000000000)='clear_refs\x00')
socket$inet6_udp(0xa, 0x2, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000002280)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000100)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x5e})

2.570174292s ago: executing program 0 (id=437):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x42, [0x9, 0x2, 0x8, 0x6, 0x2, 0x400, 0x80000000, 0x0, 0x8, 0x0, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x2004, 0x3, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x0, 0x1ff, 0x8000, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x2, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x8, 0xa, 0x5], [0x7, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c32, 0x3, 0x5, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x37a, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd5, 0x7, 0x1f, 0x404, 0x4, 0x8, 0x8001, 0x7, 0x9, 0x800e8b, 0x5, 0x80000001, 0x48, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x1, 0x1000, 0x80040101, 0x4, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x3, 0x0, 0x7fff, 0x4, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x956, 0xf5c1, 0x3ff, 0x3, 0xcac, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x4000000, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x8320fb05, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x3, 0x1654, 0x4, 0x8, 0x2851, 0x3b, 0x20000002, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x20008, 0x8a8, 0x6, 0x44, 0x409, 0x3, 0x744, 0x4, 0x12, 0x4, 0x10, 0x7fff, 0x2, 0xfffffff8, 0x401, 0xf, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
readv(r0, 0x0, 0x0)
write$input_event(r0, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

2.566332678s ago: executing program 1 (id=438):
recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000000100)=[{0x0}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000080)=""/37, 0x25}, {&(0x7f0000000300)=""/163, 0xa3}], 0x4}, 0x6}], 0x1, 0x140, &(0x7f0000000440)={0x0, 0x989680})
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r4, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r5, 0xffffffffffffffff, 0x200000000000000)

2.224599267s ago: executing program 3 (id=439):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r3 = gettid()
rt_sigaction(0x16, &(0x7f0000000080)={0x0, 0x90000000, 0x0}, 0x0, 0x8, &(0x7f0000000200))
tkill(r3, 0x16)

2.124028008s ago: executing program 0 (id=440):
pipe(0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x161b01, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000580)=@allocspi={0xf8, 0x16, 0x1, 0x0, 0x0, {{{@in=@empty, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in=@broadcast, {}, {}, {0x0, 0x0, 0xfffffffe}, 0x70bd26, 0x0, 0x2}}}, 0xf8}, 0x1, 0x0, 0x0, 0x840}, 0x0)

2.123431023s ago: executing program 1 (id=441):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x1d, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lsm=0x1b}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
writev(r1, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

2.123004932s ago: executing program 2 (id=442):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r5, 0xc0a85320, 0x0)
r6 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000300), r0)
sendmsg$NET_DM_CMD_START(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r6, 0x1, 0x0, 0x25dfdbfc}, 0x14}}, 0x0)

1.816631969s ago: executing program 1 (id=443):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
close(0xffffffffffffffff)
openat$incfs(0xffffffffffffffff, 0x0, 0x8101, 0x100)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040), 0x4)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\n\x00\x00\x00'], 0x24}}, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000140)=0x7, 0x4)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000080)=0xfffffffe, 0x4)

1.493857267s ago: executing program 3 (id=444):
mkdirat(0xffffffffffffff9c, 0x0, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$key(0xffffffffffffffff, 0x0, 0x4004010)
sendto$inet6(r1, &(0x7f00000001c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, 0x0, 0x4008)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0x4, 0xee, 0x2, 0x0, 0x8, 0x5, 0x9, 0x8, 0x7, 0x0, 0x0, 0x0, 0x3}, 0xe)
shutdown(r1, 0x1)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000100)=0x6, 0x4)
recvmmsg(r1, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)

700.305634ms ago: executing program 2 (id=445):
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = semget$private(0x0, 0x5, 0x0)
semop(r0, &(0x7f0000000300)=[{0x1, 0xc600}], 0x1)
semctl$IPC_RMID(r0, 0x0, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)

598.455593ms ago: executing program 1 (id=446):
remap_file_pages(&(0x7f00005f4000/0x3000)=nil, 0x3000, 0x0, 0xfffffffffffffffe, 0x0)
unshare(0x6020400)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f00000004c0))

216.721999ms ago: executing program 3 (id=447):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_REG(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x14, r3, 0x701, 0x70bd2c, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x8814)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x2c, r5, 0x1, 0x70bd2c, 0x0, {{0x2}, {@val={0x8}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16d5}]]}, 0x2c}, 0x1, 0x0, 0x0, 0x8011}, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000100), 0xffffffffffffffff)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r6, 0xc02064b2, &(0x7f0000000040)={0x3, 0x6576, 0xd, 0x0, <r7=>0x0})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r6, 0x100000000)
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r6, 0xc00464b4, &(0x7f0000000080)={r7})
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffb}]})
close_range(r8, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

96.163694ms ago: executing program 2 (id=448):
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, 0x0, 0x20)
socket(0x840000000002, 0x3, 0xff)
r1 = socket$rds(0x15, 0x5, 0x0)
ioctl$FUSE_DEV_IOC_BACKING_OPEN(0xffffffffffffffff, 0x4010e501, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x180, 0x4, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000010000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x15, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r4=>0x0})
socket(0x40000000015, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r4, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0)

0s ago: executing program 1 (id=449):
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x1, &(0x7f0000000ac0)=ANY=[@ANYBLOB="e7e4861f4bcfc6ea1143faf5be5b5e6bb7fabe3baafc310136a16290571ae8331b4e694ced800eb58807a40c5e77fb570e73ce84643ade9bd61334c3db831aa9838138efc968d22a37602fe9fbd34248422a878423c342", @ANYBLOB=',rootmode=', @ANYBLOB=',group_id', @ANYBLOB=','])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be7d6a14", 0x9)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

v: batadv0: Adding interface: batadv_slave_0
[   65.362125][ T5810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.388418][ T5810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.400300][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.407387][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.433311][ T5808] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.452092][ T5818] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.459184][ T5818] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.485196][ T5818] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.503513][ T5807] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.513091][ T5810] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.520307][ T5810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.546284][ T5810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.573294][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.580364][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.606258][ T5809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.618286][ T5809] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.625304][ T5809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.651263][ T5809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.664006][ T5807] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.691711][ T5807] team0: Port device team_slave_0 added
[   65.714676][ T5807] team0: Port device team_slave_1 added
[   65.779685][ T5818] hsr_slave_0: entered promiscuous mode
[   65.786297][ T5818] hsr_slave_1: entered promiscuous mode
[   65.794412][ T5819] Bluetooth: hci2: command tx timeout
[   65.805394][ T5809] hsr_slave_0: entered promiscuous mode
[   65.811387][ T5809] hsr_slave_1: entered promiscuous mode
[   65.817402][ T5809] debugfs: 'hsr0' already exists in 'hsr'
[   65.823162][ T5809] Cannot create hsr debugfs directory
[   65.831886][ T5808] hsr_slave_0: entered promiscuous mode
[   65.838203][ T5808] hsr_slave_1: entered promiscuous mode
[   65.844268][ T5808] debugfs: 'hsr0' already exists in 'hsr'
[   65.849974][ T5808] Cannot create hsr debugfs directory
[   65.858787][ T5810] hsr_slave_0: entered promiscuous mode
[   65.864986][ T5810] hsr_slave_1: entered promiscuous mode
[   65.870794][ T5810] debugfs: 'hsr0' already exists in 'hsr'
[   65.874083][ T5824] Bluetooth: hci0: command tx timeout
[   65.876691][ T5810] Cannot create hsr debugfs directory
[   65.882175][ T5829] Bluetooth: hci1: command tx timeout
[   65.893207][ T5819] Bluetooth: hci4: command tx timeout
[   65.905098][ T5807] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.912026][ T5807] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.938295][ T5807] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.950469][ T5807] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.957656][ T5807] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   65.983629][ T5819] Bluetooth: hci3: command tx timeout
[   65.989269][ T5807] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.105112][ T5807] hsr_slave_0: entered promiscuous mode
[   66.111130][ T5807] hsr_slave_1: entered promiscuous mode
[   66.117248][ T5807] debugfs: 'hsr0' already exists in 'hsr'
[   66.122949][ T5807] Cannot create hsr debugfs directory
[   66.389839][ T5810] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   66.399738][ T5810] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   66.409238][ T5810] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   66.425623][ T5810] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   66.464391][ T5808] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   66.474430][ T5808] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   66.484984][ T5808] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   66.494779][ T5808] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   66.570591][ T5818] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   66.580110][ T5818] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   66.592851][ T5818] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   66.602008][ T5818] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   66.680191][ T5809] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   66.692755][ T5809] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   66.702305][ T5809] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   66.713306][ T5809] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   66.758523][ T5810] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.788580][ T5808] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.817471][ T5810] 8021q: adding VLAN 0 to HW filter on device team0
[   66.836876][ T1338] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.844091][ T1338] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.853224][ T1338] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.860297][ T1338] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.874095][ T5808] 8021q: adding VLAN 0 to HW filter on device team0
[   66.880938][ T5807] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   66.889909][ T5807] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   66.902285][ T5807] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   66.923608][ T5807] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   66.933565][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.940678][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.960525][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.967611][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.991657][ T5818] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.056193][ T5818] 8021q: adding VLAN 0 to HW filter on device team0
[   67.074674][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.081738][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.105671][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.112761][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.208311][   T30] audit: type=1400 audit(1760870917.671:87): avc:  denied  { sys_module } for  pid=5810 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   67.260936][ T5818] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   67.331864][ T5809] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.347453][ T5807] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.390838][ T5809] 8021q: adding VLAN 0 to HW filter on device team0
[   67.411900][ T5807] 8021q: adding VLAN 0 to HW filter on device team0
[   67.432248][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.439371][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.458718][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.465903][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.482854][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.489976][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.525522][ T5810] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.535740][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.542798][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.583580][ T5808] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.616048][ T5818] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.672978][ T5810] veth0_vlan: entered promiscuous mode
[   67.706728][ T5810] veth1_vlan: entered promiscuous mode
[   67.777600][ T5818] veth0_vlan: entered promiscuous mode
[   67.820865][ T5818] veth1_vlan: entered promiscuous mode
[   67.837488][ T5810] veth0_macvtap: entered promiscuous mode
[   67.859342][ T5810] veth1_macvtap: entered promiscuous mode
[   67.880383][ T5819] Bluetooth: hci2: command tx timeout
[   67.909852][ T5818] veth0_macvtap: entered promiscuous mode
[   67.942813][ T5818] veth1_macvtap: entered promiscuous mode
[   67.956517][ T5819] Bluetooth: hci4: command tx timeout
[   67.956874][ T5829] Bluetooth: hci0: command tx timeout
[   67.967600][ T5819] Bluetooth: hci1: command tx timeout
[   67.980850][ T5810] batman_adv: batadv0: Interface activated: batadv_slave_0
[   68.010807][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_0
[   68.022168][ T5818] batman_adv: batadv0: Interface activated: batadv_slave_1
[   68.036289][ T5829] Bluetooth: hci3: command tx timeout
[   68.037305][ T5810] batman_adv: batadv0: Interface activated: batadv_slave_1
[   68.072948][ T1148] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.097364][ T1148] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.107352][ T1148] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.131261][ T1148] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.140070][ T1148] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.155783][ T5808] veth0_vlan: entered promiscuous mode
[   68.166132][ T1148] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.174987][ T1148] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.189596][ T5807] 8021q: adding VLAN 0 to HW filter on device batadv0
[   68.200508][ T1148] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.220546][ T5809] 8021q: adding VLAN 0 to HW filter on device batadv0
[   68.242887][ T5808] veth1_vlan: entered promiscuous mode
[   68.307562][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.317357][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.361281][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.371628][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.372697][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.389717][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.422701][ T5808] veth0_macvtap: entered promiscuous mode
[   68.454576][ T5807] veth0_vlan: entered promiscuous mode
[   68.465266][ T1338] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.469299][ T5808] veth1_macvtap: entered promiscuous mode
[   68.473382][ T1338] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.480714][ T5810] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   68.494615][ T5809] veth0_vlan: entered promiscuous mode
[   68.517287][ T5809] veth1_vlan: entered promiscuous mode
[   68.539428][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_0
[   68.561810][   T30] kauditd_printk_skb: 12 callbacks suppressed
[   68.561823][   T30] audit: type=1400 audit(1760870919.031:100): avc:  denied  { read write } for  pid=5810 comm="syz-executor" name="loop3" dev="devtmpfs" ino=650 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   68.563534][ T5807] veth1_vlan: entered promiscuous mode
[   68.593853][   T30] audit: type=1400 audit(1760870919.041:101): avc:  denied  { open } for  pid=5810 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=650 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   68.638793][   T30] audit: type=1400 audit(1760870919.041:102): avc:  denied  { ioctl } for  pid=5810 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=650 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   68.654631][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_1
[   68.682738][ T5929] audit: audit_lost=1 audit_rate_limit=0 audit_backlog_limit=64
[   68.683853][   T30] audit: type=1400 audit(1760870919.151:103): avc:  denied  { read } for  pid=5928 comm="syz.3.4" name="binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   68.691930][ T5929] audit: out of memory in audit_log_start
[   68.747338][   T30] audit: type=1400 audit(1760870919.151:104): avc:  denied  { open } for  pid=5928 comm="syz.3.4" path="/dev/binderfs/binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   68.815218][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.824373][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.833215][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.833276][   T30] audit: type=1400 audit(1760870919.291:105): avc:  denied  { map_create } for  pid=5932 comm="syz.3.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   68.863329][   T30] audit: type=1400 audit(1760870919.291:106): avc:  denied  { map_read map_write } for  pid=5932 comm="syz.3.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   68.883888][   T30] audit: type=1400 audit(1760870919.301:107): avc:  denied  { prog_load } for  pid=5932 comm="syz.3.6" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   68.906255][ T5809] veth0_macvtap: entered promiscuous mode
[   68.918749][ T5807] veth0_macvtap: entered promiscuous mode
[   68.932182][ T5807] veth1_macvtap: entered promiscuous mode
[   68.939429][ T5933] netlink: 'syz.3.6': attribute type 13 has an invalid length.
[   68.948647][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.975392][ T5809] veth1_macvtap: entered promiscuous mode
[   69.035846][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.054523][ T5807] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.204290][ T5880] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   69.223191][ T5809] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.309886][ T5807] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.373311][ T5880] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   69.386279][ T5880] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   69.417259][ T5880] usb 4-1: New USB device found, idVendor=1d34, idProduct=0004, bcdDevice= 0.00
[   69.443326][ T5880] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.454267][ T1148] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.463212][ T1148] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.480895][ T1148] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.491344][ T1148] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.492246][ T5880] usb 4-1: config 0 descriptor??
[   69.500791][ T1148] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.521543][ T3489] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.531958][ T1148] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.541419][ T3489] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.548132][ T1148] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.561511][ T1148] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.614535][ T3489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.622777][ T3489] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.708200][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.733255][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.740219][ T5941] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   69.878992][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.909062][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.943811][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   69.970324][ T5829] Bluetooth: hci2: command tx timeout
[   70.033853][ T5829] Bluetooth: hci1: command tx timeout
[   70.039360][ T5829] Bluetooth: hci4: command tx timeout
[   70.045065][ T5829] Bluetooth: hci0: command tx timeout
[   70.095457][ T5880] hid-led 0003:1D34:0004.0001: unknown main item tag 0x0
[   70.114696][ T5819] Bluetooth: hci3: command tx timeout
[   70.179540][ T5949] FAULT_INJECTION: forcing a failure.
[   70.179540][ T5949] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   70.192679][ T5949] CPU: 0 UID: 0 PID: 5949 Comm: syz.1.8 Not tainted syzkaller #0 PREEMPT(full) 
[   70.192700][ T5949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   70.192710][ T5949] Call Trace:
[   70.192716][ T5949]  <TASK>
[   70.192723][ T5949]  dump_stack_lvl+0x16c/0x1f0
[   70.192749][ T5949]  should_fail_ex+0x512/0x640
[   70.192776][ T5949]  strncpy_from_user+0x3b/0x2e0
[   70.192799][ T5949]  getname_flags.part.0+0x8f/0x550
[   70.192822][ T5949]  getname_flags+0x93/0xf0
[   70.192843][ T5949]  do_sys_openat2+0xb8/0x1d0
[   70.192861][ T5949]  ? __pfx_do_sys_openat2+0x10/0x10
[   70.192879][ T5949]  ? __pfx___schedule+0x10/0x10
[   70.192899][ T5949]  ? __fget_files+0x20e/0x3c0
[   70.192926][ T5949]  __x64_sys_openat+0x174/0x210
[   70.192943][ T5949]  ? __pfx___x64_sys_openat+0x10/0x10
[   70.192959][ T5949]  ? ksys_write+0x1ac/0x250
[   70.192989][ T5949]  do_syscall_64+0xcd/0xfa0
[   70.193013][ T5949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.193030][ T5949] RIP: 0033:0x7fc38fd8efc9
[   70.193044][ T5949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.193060][ T5949] RSP: 002b:00007fc390c57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   70.193077][ T5949] RAX: ffffffffffffffda RBX: 00007fc38ffe6180 RCX: 00007fc38fd8efc9
[   70.193088][ T5949] RDX: 000000000000c100 RSI: 0000200000000140 RDI: ffffffffffffff9c
[   70.193098][ T5949] RBP: 00007fc390c57090 R08: 0000000000000000 R09: 0000000000000000
[   70.193108][ T5949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.193117][ T5949] R13: 00007fc38ffe6218 R14: 00007fc38ffe6180 R15: 00007ffdbb801ae8
[   70.193142][ T5949]  </TASK>
[   70.474074][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   70.513958][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   70.533198][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   70.580990][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   70.587648][ T5880] hid-led 0003:1D34:0004.0001: probe with driver hid-led failed with error -71
[   70.618513][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   70.649981][ T1338] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.667979][ T1338] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.676243][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.706154][ T5880] usb 4-1: USB disconnect, device number 2
[   70.706493][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.005237][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[   71.012508][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[   71.235661][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   71.244462][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   71.253556][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   71.262344][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   71.972608][ T5955] random: crng reseeded on system resumption
[   72.037446][ T5819] Bluetooth: hci2: command tx timeout
[   72.128046][ T5819] Bluetooth: hci0: command tx timeout
[   72.128060][ T5829] Bluetooth: hci4: command tx timeout
[   72.133517][ T5819] Bluetooth: hci1: command tx timeout
[   72.195493][ T5819] Bluetooth: hci3: command tx timeout
[   72.594410][ T5975] fuse: Bad value for 'fd'
[   73.335250][ T5982] netlink: 100 bytes leftover after parsing attributes in process `syz.3.14'.
[   73.686221][   T30] kauditd_printk_skb: 36 callbacks suppressed
[   73.686237][   T30] audit: type=1400 audit(1760870924.161:144): avc:  denied  { read } for  pid=5987 comm="syz.2.17" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   73.842985][   T30] audit: type=1400 audit(1760870924.161:145): avc:  denied  { open } for  pid=5987 comm="syz.2.17" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   73.866652][   T30] audit: type=1400 audit(1760870924.161:146): avc:  denied  { ioctl } for  pid=5987 comm="syz.2.17" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   73.996040][   T30] audit: type=1400 audit(1760870924.471:147): avc:  denied  { create } for  pid=5983 comm="syz.0.13" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   74.025743][   T30] audit: type=1400 audit(1760870924.501:148): avc:  denied  { create } for  pid=5985 comm="syz.1.15" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   74.048087][ T5942] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[   74.211252][ T5998] netlink: 28 bytes leftover after parsing attributes in process `syz.0.18'.
[   74.222268][ T5998] netlink: 28 bytes leftover after parsing attributes in process `syz.0.18'.
[   74.354478][ T5942] usb 5-1: config 0 has an invalid interface number: 15 but max is 0
[   74.364837][ T5942] usb 5-1: config 0 has no interface number 0
[   74.426132][ T6002] Zero length message leads to an empty skb
[   74.505527][   T30] audit: type=1400 audit(1760870924.901:149): avc:  denied  { create } for  pid=5995 comm="syz.3.19" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   74.527538][   T30] audit: type=1400 audit(1760870924.901:150): avc:  denied  { connect } for  pid=5995 comm="syz.3.19" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   74.551393][ T5942] usb 5-1: New USB device found, idVendor=0644, idProduct=800f, bcdDevice=47.a2
[   74.563548][ T5942] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.657361][ T5942] usb 5-1: Product: syz
[   74.661903][ T5942] usb 5-1: Manufacturer: syz
[   74.675147][ T5942] usb 5-1: SerialNumber: syz
[   74.682987][ T5942] usb 5-1: config 0 descriptor??
[   74.696516][   T30] audit: type=1400 audit(1760870925.171:151): avc:  denied  { write } for  pid=5985 comm="syz.1.15" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   74.774348][ T6006] netlink: 124 bytes leftover after parsing attributes in process `syz.2.20'.
[   74.966363][ T6009] netlink: 'syz.0.21': attribute type 4 has an invalid length.
[   75.125990][ T5991] netlink: 24 bytes leftover after parsing attributes in process `syz.4.16'.
[   75.135907][ T6009] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.21'.
[   75.148657][ T5991] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[   75.203852][ T5942] usb 5-1: USB disconnect, device number 2
[   75.394130][   T30] audit: type=1400 audit(1760870925.241:152): avc:  denied  { write } for  pid=6000 comm="syz.2.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   75.429660][   T30] audit: type=1400 audit(1760870925.241:153): avc:  denied  { nlmsg_write } for  pid=6000 comm="syz.2.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   75.613947][ T6018] fuse: Bad value for 'fd'
[   75.777884][  T869] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   76.551247][ T6021] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.675109][ T6021] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.843952][  T869] usb 3-1: unable to get BOS descriptor or descriptor too short
[   76.852489][  T869] usb 3-1: config 250 has no interfaces?
[   76.886504][  T869] usb 3-1: string descriptor 0 read error: -22
[   76.892787][  T869] usb 3-1: New USB device found, idVendor=10cf, idProduct=8063, bcdDevice=8c.1e
[   76.932991][  T869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.972351][ T6021] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.054090][ T6021] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.215790][   T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.366559][   T12] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.647038][   T12] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.878767][ T5942] usb 3-1: USB disconnect, device number 2
[   77.900867][   T12] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.162756][ T6037] tmpfs: Bad value for 'mpol'
[   78.180368][ T6036] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   78.844850][   T30] kauditd_printk_skb: 9 callbacks suppressed
[   78.844866][   T30] audit: type=1400 audit(1760870928.951:163): avc:  denied  { create } for  pid=6035 comm="syz.0.30" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   78.968804][   T30] audit: type=1400 audit(1760870929.011:164): avc:  denied  { write } for  pid=6035 comm="syz.0.30" name="file0" dev="tmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   79.045040][   T30] audit: type=1400 audit(1760870929.011:165): avc:  denied  { open } for  pid=6035 comm="syz.0.30" path="/6/file0" dev="tmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   79.067424][   T30] audit: type=1400 audit(1760870929.081:166): avc:  denied  { ioctl } for  pid=6035 comm="syz.0.30" path="/6/file0" dev="tmpfs" ino=50 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   79.093936][   T30] audit: type=1400 audit(1760870929.391:167): avc:  denied  { write } for  pid=6035 comm="syz.0.30" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   79.173851][   T30] audit: type=1400 audit(1760870929.611:168): avc:  denied  { unlink } for  pid=5807 comm="syz-executor" name="file0" dev="tmpfs" ino=50 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   79.263950][   T30] audit: type=1400 audit(1760870929.621:169): avc:  denied  { connect } for  pid=6048 comm="syz.4.32" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   79.333830][   T30] audit: type=1400 audit(1760870929.621:170): avc:  denied  { map } for  pid=6048 comm="syz.4.32" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=8641 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   79.411675][ T6055] netlink: 132 bytes leftover after parsing attributes in process `syz.4.32'.
[   79.431286][   T30] audit: type=1400 audit(1760870929.621:171): avc:  denied  { read write } for  pid=6048 comm="syz.4.32" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=8641 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   79.520832][ T6059] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.528420][ T6059] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.634175][   T30] audit: type=1400 audit(1760870929.691:172): avc:  denied  { write } for  pid=6048 comm="syz.4.32" path="socket:[8640]" dev="sockfs" ino=8640 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   79.714836][ T6059] bridge_slave_1: left allmulticast mode
[   79.720535][ T6059] bridge_slave_1: left promiscuous mode
[   79.779344][ T6059] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.089120][ T6059] bridge_slave_0: left allmulticast mode
[   80.100879][ T6059] bridge_slave_0: left promiscuous mode
[   80.106698][ T6059] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.356863][  T977] cfg80211: failed to load regulatory.db
[   81.422033][ T6092] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[   81.428602][ T6092] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   81.497151][ T6092] vhci_hcd vhci_hcd.0: Device attached
[   81.713742][ T5942] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   81.733828][    T9] usb 33-1: new low-speed USB device number 2 using vhci_hcd
[   81.866550][ T5942] usb 1-1: config 0 has an invalid interface number: 105 but max is 0
[   81.877058][ T5942] usb 1-1: config 0 has no interface number 0
[   81.889406][ T5942] usb 1-1: New USB device found, idVendor=05ac, idProduct=0259, bcdDevice=f0.b2
[   81.900960][ T6104] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6104 comm=syz.4.47
[   81.925901][ T5942] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.967485][ T5942] usb 1-1: config 0 descriptor??
[   81.995882][ T5942] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.105/input/input5
[   82.318743][ T6109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.46'.
[   82.462025][ T6093] usb 33-1: recv xbuf, 0
[   82.487132][ T5169] bcm5974 1-1:0.105: could not read from device
[   82.516659][   T36] vhci_hcd: stop threads
[   82.531707][   T36] vhci_hcd: release socket
[   82.680758][ T5169] bcm5974 1-1:0.105: could not read from device
[   82.690758][   T36] vhci_hcd: disconnect device
[   82.693031][ T5942] usb 1-1: USB disconnect, device number 2
[   82.723779][    T9] usb 33-1: device descriptor read/64, error -71
[   82.914707][    T9] vhci_hcd: vhci_device speed not set
[   83.619334][ T6129] FAULT_INJECTION: forcing a failure.
[   83.619334][ T6129] name failslab, interval 1, probability 0, space 0, times 0
[   83.632158][ T6129] CPU: 1 UID: 0 PID: 6129 Comm: syz.0.52 Not tainted syzkaller #0 PREEMPT(full) 
[   83.632179][ T6129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   83.632189][ T6129] Call Trace:
[   83.632195][ T6129]  <TASK>
[   83.632202][ T6129]  dump_stack_lvl+0x16c/0x1f0
[   83.632228][ T6129]  should_fail_ex+0x512/0x640
[   83.632249][ T6129]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   83.632275][ T6129]  should_failslab+0xc2/0x120
[   83.632301][ T6129]  kmem_cache_alloc_noprof+0x75/0x6e0
[   83.632322][ T6129]  ? skb_clone+0x190/0x3f0
[   83.632348][ T6129]  ? skb_clone+0x190/0x3f0
[   83.632367][ T6129]  skb_clone+0x190/0x3f0
[   83.632389][ T6129]  netlink_deliver_tap+0xabd/0xd30
[   83.632417][ T6129]  netlink_unicast+0x64c/0x870
[   83.632444][ T6129]  ? __pfx_netlink_unicast+0x10/0x10
[   83.632467][ T6129]  ? netlink_autobind.isra.0+0xa8/0x370
[   83.632498][ T6129]  netlink_sendmsg+0x8c8/0xdd0
[   83.632525][ T6129]  ? __pfx_netlink_sendmsg+0x10/0x10
[   83.632553][ T6129]  ? ____sys_sendmsg+0x871/0xc70
[   83.632582][ T6129]  ____sys_sendmsg+0xa98/0xc70
[   83.632608][ T6129]  ? copy_msghdr_from_user+0x10a/0x160
[   83.632630][ T6129]  ? __pfx_____sys_sendmsg+0x10/0x10
[   83.632658][ T6129]  ? __lock_acquire+0xb8a/0x1c90
[   83.632689][ T6129]  ___sys_sendmsg+0x134/0x1d0
[   83.632712][ T6129]  ? __pfx____sys_sendmsg+0x10/0x10
[   83.632771][ T6129]  __sys_sendmsg+0x16d/0x220
[   83.632792][ T6129]  ? __pfx___sys_sendmsg+0x10/0x10
[   83.632831][ T6129]  do_syscall_64+0xcd/0xfa0
[   83.632854][ T6129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.632871][ T6129] RIP: 0033:0x7f937738efc9
[   83.632885][ T6129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.632901][ T6129] RSP: 002b:00007f93781c0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   83.632917][ T6129] RAX: ffffffffffffffda RBX: 00007f93775e6180 RCX: 00007f937738efc9
[   83.632928][ T6129] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[   83.632938][ T6129] RBP: 00007f93781c0090 R08: 0000000000000000 R09: 0000000000000000
[   83.632949][ T6129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.632958][ T6129] R13: 00007f93775e6218 R14: 00007f93775e6180 R15: 00007ffd43e9e228
[   83.632984][ T6129]  </TASK>
[   83.926703][   T30] kauditd_printk_skb: 36 callbacks suppressed
[   83.926714][   T30] audit: type=1400 audit(1760870934.401:209): avc:  denied  { read write } for  pid=6130 comm="syz.1.53" name="rdma_cm" dev="devtmpfs" ino=1271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   83.958185][   T30] audit: type=1400 audit(1760870934.431:210): avc:  denied  { open } for  pid=6130 comm="syz.1.53" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[   84.752888][ T6146] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.761084][ T6146] batadv_slave_0: entered promiscuous mode
[   85.086491][   T30] audit: type=1400 audit(1760870935.561:211): avc:  denied  { read } for  pid=6145 comm="syz.1.57" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   86.487127][ T6148] Bluetooth: MGMT ver 1.23
[   86.492133][   T30] audit: type=1400 audit(1760870935.561:212): avc:  denied  { open } for  pid=6145 comm="syz.1.57" path="/dev/dri/card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   86.517551][   T30] audit: type=1400 audit(1760870935.811:213): avc:  denied  { write } for  pid=6149 comm="syz.3.58" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   86.540158][   T30] audit: type=1400 audit(1760870936.771:214): avc:  denied  { write } for  pid=6145 comm="syz.1.57" path="socket:[9923]" dev="sockfs" ino=9923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   86.789096][   T30] audit: type=1326 audit(1760870937.171:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6157 comm="syz.4.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11a978efc9 code=0x7ffc0000
[   86.849117][ T6161] fuse: Bad value for 'fd'
[   87.195927][   T30] audit: type=1326 audit(1760870937.171:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6157 comm="syz.4.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11a978efc9 code=0x7ffc0000
[   87.219053][    C1] vkms_vblank_simulate: vblank timer overrun
[   87.439398][ T6166] netlink: 48 bytes leftover after parsing attributes in process `syz.4.62'.
[   87.803176][   T30] audit: type=1326 audit(1760870937.171:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6157 comm="syz.4.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11a978efc9 code=0x7ffc0000
[   87.850239][ T6177] IPv4: Oversized IP packet from 172.20.20.24
[   87.850625][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   87.850793][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   87.962955][   T30] audit: type=1326 audit(1760870937.171:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6157 comm="syz.4.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11a978efc9 code=0x7ffc0000
[   89.017608][ T6191] process 'syz.2.69' launched './file0' with NULL argv: empty string added
[   89.037096][   T30] kauditd_printk_skb: 12 callbacks suppressed
[   89.037112][   T30] audit: type=1400 audit(1760870939.491:231): avc:  denied  { execute } for  pid=6188 comm="syz.2.69" name="file0" dev="tmpfs" ino=78 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   89.130010][   T30] audit: type=1400 audit(1760870939.521:232): avc:  denied  { execute_no_trans } for  pid=6188 comm="syz.2.69" path="/11/file0" dev="tmpfs" ino=78 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   89.465405][   T30] audit: type=1400 audit(1760870939.941:233): avc:  denied  { mount } for  pid=6194 comm="syz.3.72" name="/" dev="ramfs" ino=8941 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   89.606037][ T6199] netlink: 100 bytes leftover after parsing attributes in process `syz.2.71'.
[   89.844782][   T30] audit: type=1400 audit(1760870940.291:234): avc:  denied  { setopt } for  pid=6194 comm="syz.3.72" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   89.906371][   T30] audit: type=1400 audit(1760870940.311:235): avc:  denied  { ioctl } for  pid=6194 comm="syz.3.72" path="socket:[8942]" dev="sockfs" ino=8942 ioctlcmd=0x5450 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   90.094874][   T30] audit: type=1400 audit(1760870940.571:236): avc:  denied  { bind } for  pid=6202 comm="syz.0.73" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   90.776436][ T6215] fuse: Bad value for 'fd'
[   91.125384][   T30] audit: type=1400 audit(1760870941.591:237): avc:  denied  { ioctl } for  pid=6204 comm="syz.2.74" path="/dev/fb0" dev="devtmpfs" ino=629 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   91.158090][ T6219] warning: `syz.0.77' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   91.158912][   T30] audit: type=1400 audit(1760870941.631:238): avc:  denied  { create } for  pid=6217 comm="syz.0.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   91.158942][   T30] audit: type=1400 audit(1760870941.631:239): avc:  denied  { ioctl } for  pid=6217 comm="syz.0.77" path="socket:[9981]" dev="sockfs" ino=9981 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   91.158964][   T30] audit: type=1400 audit(1760870941.631:240): avc:  denied  { write } for  pid=6217 comm="syz.0.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   91.548708][    C1] vkms_vblank_simulate: vblank timer overrun
[   91.615659][    C1] vkms_vblank_simulate: vblank timer overrun
[   91.944575][    T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   92.460506][    T9] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   92.531744][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 31, changing to 7
[   92.566298][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[   92.756123][    T9] usb 1-1: language id specifier not provided by device, defaulting to English
[   92.800756][    T9] usb 1-1: New USB device found, idVendor=2013, idProduct=0251, bcdDevice=e8.6e
[   92.809860][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.820820][    T9] usb 1-1: Manufacturer: ‰ 
[   92.825613][    T9] usb 1-1: SerialNumber: syz
[   92.836459][    T9] usb 1-1: config 0 descriptor??
[   92.906762][    T9] em28xx 1-1:0.0: New device ‰   @ 480 Mbps (2013:0251, interface 0, class 0)
[   92.954916][    T9] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[   93.208266][ T6218] netlink: 12 bytes leftover after parsing attributes in process `syz.0.77'.
[   93.344165][    T9] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[   93.350439][    T9] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[   93.369932][    T9] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[   93.388418][    T9] em28xx 1-1:0.0: No AC97 audio processor
[   93.419713][    T9] usb 1-1: USB disconnect, device number 3
[   93.436268][    T9] em28xx 1-1:0.0: Disconnecting em28xx
[   93.457661][    T9] em28xx 1-1:0.0: Freeing device
[   93.484164][   T10] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   93.667485][ T6245] netlink: 100 bytes leftover after parsing attributes in process `syz.2.84'.
[   93.899232][   T10] usb 2-1: Using ep0 maxpacket: 32
[   93.912332][   T10] usb 2-1: config 1 interface 0 altsetting 220 endpoint 0x2 has an invalid bInterval 23, changing to 8
[   93.955978][   T10] usb 2-1: config 1 interface 0 has no altsetting 0
[   93.977285][   T10] usb 2-1: New USB device found, idVendor=05ac, idProduct=0222, bcdDevice= 0.40
[   93.993956][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   94.016565][   T10] usb 2-1: Product: syz
[   94.026811][   T10] usb 2-1: SerialNumber: syz
[   94.161283][   T30] kauditd_printk_skb: 28 callbacks suppressed
[   94.161299][   T30] audit: type=1400 audit(1760870944.631:269): avc:  denied  { create } for  pid=6247 comm="syz.0.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   94.218552][   T30] audit: type=1400 audit(1760870944.631:270): avc:  denied  { create } for  pid=6246 comm="syz.4.85" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   94.372673][   T30] audit: type=1400 audit(1760870944.631:271): avc:  denied  { ioctl } for  pid=6246 comm="syz.4.85" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=9164 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   94.398356][    C1] vkms_vblank_simulate: vblank timer overrun
[   94.408847][   T30] audit: type=1400 audit(1760870944.641:272): avc:  denied  { prog_run } for  pid=6247 comm="syz.0.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   94.437778][ T6252] bridge_slave_0: left allmulticast mode
[   94.443910][   T30] audit: type=1400 audit(1760870944.721:273): avc:  denied  { read } for  pid=6246 comm="syz.4.85" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   94.466234][    C1] vkms_vblank_simulate: vblank timer overrun
[   95.019607][   T30] audit: type=1400 audit(1760870944.721:274): avc:  denied  { open } for  pid=6246 comm="syz.4.85" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   95.074468][ T6252] bridge_slave_0: left promiscuous mode
[   95.081327][   T30] audit: type=1400 audit(1760870944.731:275): avc:  denied  { ioctl } for  pid=6246 comm="syz.4.85" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   95.122953][   T30] audit: type=1400 audit(1760870944.991:276): avc:  denied  { create } for  pid=6247 comm="syz.0.86" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   95.125174][   T10] usbhid 2-1:1.0: can't add hid device: -71
[   95.151082][ T6252] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.172289][ T6263] netlink: 'syz.3.88': attribute type 9 has an invalid length.
[   95.179963][ T6263] netlink: 184 bytes leftover after parsing attributes in process `syz.3.88'.
[   95.242310][ T6252] bridge_slave_1: left allmulticast mode
[   95.249360][ T6252] bridge_slave_1: left promiscuous mode
[   95.255195][   T30] audit: type=1400 audit(1760870945.011:277): avc:  denied  { write } for  pid=6247 comm="syz.0.86" name="file0" dev="tmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   95.287932][ T6252] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.325028][   T10] usbhid 2-1:1.0: probe with driver usbhid failed with error -71
[   95.331665][   T30] audit: type=1400 audit(1760870945.011:278): avc:  denied  { open } for  pid=6247 comm="syz.0.86" path="/16/file0" dev="tmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   95.386932][ T6268] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1792 sclass=netlink_route_socket pid=6268 comm=syz.0.89
[   95.501444][ T6270] netlink: 20 bytes leftover after parsing attributes in process `syz.2.87'.
[   95.505009][   T10] usb 2-1: USB disconnect, device number 2
[   95.686560][ T6252] bond0: (slave bond_slave_0): Releasing backup interface
[   95.712151][ T6267] syz.0.89 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   95.728816][ T6252] bond0: (slave bond_slave_1): Releasing backup interface
[   95.751366][ T6252] team0: Port device team_slave_0 removed
[   95.762241][ T6252] team0: Port device team_slave_1 removed
[   95.770558][ T6252] batman_adv: batadv0: Removing interface: batadv_slave_0
[   95.779353][ T6252] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.787335][ T6252] batman_adv: batadv0: Removing interface: batadv_slave_1
[   95.804653][ T6252] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   95.871526][ T6273] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   96.579470][ T6293] syz_tun: entered promiscuous mode
[   96.585697][ T6293] gretap0: entered promiscuous mode
[   98.340820][   T24] usb 1-1: new low-speed USB device number 4 using dummy_hcd
[   98.711325][   T24] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   98.886719][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid maxpacket 200, setting to 8
[   98.898182][   T10] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   98.900051][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   98.921265][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   98.934412][   T24] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[   98.943476][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.956302][   T24] usb 1-1: config 0 descriptor??
[   98.971575][ T6306] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   99.033721][   T10] usb 5-1: device descriptor read/64, error -71
[   99.178271][   T30] kauditd_printk_skb: 34 callbacks suppressed
[   99.178286][   T30] audit: type=1400 audit(1760870949.651:313): avc:  denied  { write } for  pid=6332 comm="syz.1.103" name="uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   99.232232][   T30] audit: type=1400 audit(1760870949.651:314): avc:  denied  { open } for  pid=6332 comm="syz.1.103" path="/dev/uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   99.257774][   T30] audit: type=1400 audit(1760870949.651:315): avc:  denied  { ioctl } for  pid=6332 comm="syz.1.103" path="/dev/uinput" dev="devtmpfs" ino=920 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   99.284675][   T30] audit: type=1400 audit(1760870949.691:316): avc:  denied  { getopt } for  pid=6298 comm="syz.0.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   99.304047][   T30] audit: type=1400 audit(1760870949.701:317): avc:  denied  { create } for  pid=6330 comm="syz.3.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   99.342299][   T30] audit: type=1400 audit(1760870949.731:318): avc:  denied  { create } for  pid=6330 comm="syz.3.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   99.394334][   T10] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   99.417041][   T30] audit: type=1400 audit(1760870949.761:319): avc:  denied  { ioctl } for  pid=6330 comm="syz.3.102" path="socket:[11355]" dev="sockfs" ino=11355 ioctlcmd=0x89ef scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   99.500388][   T30] audit: type=1400 audit(1760870949.801:320): avc:  denied  { setopt } for  pid=6330 comm="syz.3.102" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   99.543923][   T10] usb 5-1: device descriptor read/64, error -71
[   99.654116][   T10] usb usb5-port1: attempt power cycle
[   99.670689][ T6339] netlink: 'syz.1.105': attribute type 2 has an invalid length.
[   99.808200][   T30] audit: type=1400 audit(1760870950.281:321): avc:  denied  { create } for  pid=6340 comm="syz.1.106" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   99.944611][   T30] audit: type=1400 audit(1760870950.281:322): avc:  denied  { bind } for  pid=6340 comm="syz.1.106" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  100.033770][   T10] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  100.641946][   T10] usb 5-1: device descriptor read/8, error -71
[  100.677914][    T9] usb 1-1: USB disconnect, device number 4
[  101.085560][ T6355] netlink: 100 bytes leftover after parsing attributes in process `syz.0.109'.
[  102.965262][ T6388] netlink: 'syz.3.115': attribute type 12 has an invalid length.
[  103.393066][   T42] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  103.555160][   T42] usb 3-1: Using ep0 maxpacket: 8
[  103.971604][   T42] usb 3-1: config 0 has an invalid interface number: 95 but max is 0
[  103.983498][   T42] usb 3-1: config 0 has no interface number 0
[  103.990473][   T42] usb 3-1: New USB device found, idVendor=0830, idProduct=0031, bcdDevice= c.66
[  104.001101][   T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.026767][   T42] usb 3-1: config 0 descriptor??
[  104.049764][   T42] usb 3-1: active config #0 != 1 ??
[  105.164302][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  105.164316][   T30] audit: type=1400 audit(1760870955.641:340): avc:  denied  { create } for  pid=6415 comm="syz.4.122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  105.164710][ T6416] openvswitch: netlink: Flow key attr not present in new flow.
[  105.219137][ T6419] fuse: Unknown parameter 'ÿÿÿÿ0xffffffffffffffff'
[  105.223804][   T30] audit: type=1400 audit(1760870955.691:341): avc:  denied  { write } for  pid=6415 comm="syz.4.122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  105.271250][ T6416] openvswitch: netlink: Missing key (keys=40, expected=100)
[  105.293182][   T30] audit: type=1400 audit(1760870955.721:342): avc:  denied  { create } for  pid=6417 comm="syz.0.123" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  105.464774][ T6427] =======================================================
[  105.464774][ T6427] WARNING: The mand mount option has been deprecated and
[  105.464774][ T6427]          and is ignored by this kernel. Remove the mand
[  105.464774][ T6427]          option from the mount to silence this warning.
[  105.464774][ T6427] =======================================================
[  105.503583][ T6427] ocfs2: Bad value for 'barrier'
[  106.144036][   T30] audit: type=1400 audit(1760870955.721:343): avc:  denied  { read } for  pid=6417 comm="syz.0.123" path="socket:[11507]" dev="sockfs" ino=11507 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  106.167804][   T30] audit: type=1400 audit(1760870955.741:344): avc:  denied  { remount } for  pid=6415 comm="syz.4.122" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  106.187718][   T30] audit: type=1400 audit(1760870955.841:345): avc:  denied  { name_bind } for  pid=6420 comm="syz.3.124" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  106.243865][   T30] audit: type=1400 audit(1760870955.861:346): avc:  denied  { write } for  pid=6417 comm="syz.0.123" name="netlink" dev="proc" ino=4026533078 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  106.267749][   T30] audit: type=1400 audit(1760870955.941:347): avc:  denied  { mounton } for  pid=6417 comm="syz.0.123" path="/syzcgroup/unified/syz0" dev="cgroup2" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  106.596067][ T6441] vivid-003: =================  START STATUS  =================
[  106.613048][ T6441] vivid-003: Radio HW Seek Mode: Bounded
[  106.639061][ T6441] vivid-003: Radio Programmable HW Seek: false
[  106.648712][ T6441] vivid-003: RDS Rx I/O Mode: Block I/O
[  106.655730][ T6441] vivid-003: Generate RBDS Instead of RDS: false
[  107.161395][ T6441] vivid-003: RDS Reception: true
[  107.166966][ T6441] vivid-003: RDS Program Type: 0 inactive
[  107.173962][ T6441] vivid-003: RDS PS Name:  inactive
[  107.197801][ T6441] vivid-003: RDS Radio Text:  inactive
[  107.203554][ T6441] vivid-003: RDS Traffic Announcement: false inactive
[  107.210875][ T6441] vivid-003: RDS Traffic Program: false inactive
[  107.217410][ T6441] vivid-003: RDS Music: false inactive
[  107.222957][ T6441] vivid-003: ==================  END STATUS  ==================
[  107.557312][   T30] audit: type=1400 audit(1760870958.021:348): avc:  denied  { name_connect } for  pid=6436 comm="syz.4.129" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  107.762920][   T30] audit: type=1400 audit(1760870958.231:349): avc:  denied  { listen } for  pid=6436 comm="syz.4.129" lport=50168 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  107.801089][   T42] usb 3-1: USB disconnect, device number 3
[  108.081119][ T6460] FAULT_INJECTION: forcing a failure.
[  108.081119][ T6460] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  108.095723][ T6460] CPU: 0 UID: 0 PID: 6460 Comm: syz.2.132 Not tainted syzkaller #0 PREEMPT(full) 
[  108.095747][ T6460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  108.095758][ T6460] Call Trace:
[  108.095764][ T6460]  <TASK>
[  108.095771][ T6460]  dump_stack_lvl+0x16c/0x1f0
[  108.095798][ T6460]  should_fail_ex+0x512/0x640
[  108.095825][ T6460]  _copy_from_user+0x2e/0xd0
[  108.095849][ T6460]  core_sys_select+0x35b/0xc20
[  108.095879][ T6460]  ? __pfx_core_sys_select+0x10/0x10
[  108.095926][ T6460]  ? set_user_sigmask+0x21b/0x2b0
[  108.095953][ T6460]  ? __pfx_set_user_sigmask+0x10/0x10
[  108.095984][ T6460]  do_pselect.constprop.0+0x19f/0x1e0
[  108.096008][ T6460]  ? __pfx_do_pselect.constprop.0+0x10/0x10
[  108.096042][ T6460]  __x64_sys_pselect6+0x182/0x240
[  108.096066][ T6460]  ? __pfx___x64_sys_pselect6+0x10/0x10
[  108.096097][ T6460]  do_syscall_64+0xcd/0xfa0
[  108.096121][ T6460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.096139][ T6460] RIP: 0033:0x7f905c78efc9
[  108.096154][ T6460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.096170][ T6460] RSP: 002b:00007f905d658038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  108.096188][ T6460] RAX: ffffffffffffffda RBX: 00007f905c9e6090 RCX: 00007f905c78efc9
[  108.096199][ T6460] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000040
[  108.096209][ T6460] RBP: 00007f905d658090 R08: 0000200000000300 R09: 0000000000000000
[  108.096225][ T6460] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  108.096236][ T6460] R13: 00007f905c9e6128 R14: 00007f905c9e6090 R15: 00007fffce793ee8
[  108.096261][ T6460]  </TASK>
[  108.910284][ T6462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.133'.
[  108.976765][ T6465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.993909][ T6462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.133'.
[  109.058083][ T6465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.085771][ T6465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.121299][ T6465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.147900][ T6465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.171050][ T6465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.183215][ T6465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.195802][ T6465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.200377][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  109.220832][ T6465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.232088][ T6465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.373711][   T10] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  109.553503][   T10] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  109.564598][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.577137][   T10] usb 3-1: Product: syz
[  109.581703][   T10] usb 3-1: Manufacturer: syz
[  109.587369][   T10] usb 3-1: SerialNumber: syz
[  109.640516][   T10] usb 3-1: config 0 descriptor??
[  109.672648][ T6480] lo speed is unknown, defaulting to 1000
[  110.237195][   T10] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  110.252101][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  110.252116][   T30] audit: type=1400 audit(1760870960.721:380): avc:  denied  { read write } for  pid=6473 comm="syz.4.138" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  110.750522][ T6480] lo speed is unknown, defaulting to 1000
[  110.794568][   T30] audit: type=1400 audit(1760870960.721:381): avc:  denied  { open } for  pid=6473 comm="syz.4.138" path="/dev/ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  110.820413][ T6480] lo speed is unknown, defaulting to 1000
[  111.023806][   T30] audit: type=1400 audit(1760870960.721:382): avc:  denied  { ioctl } for  pid=6473 comm="syz.4.138" path="/dev/ppp" dev="devtmpfs" ino=709 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  111.075522][ T6480] infiniband s
z1: set active
[  111.090472][ T6480] infiniband s
z1: added lo
[  111.091628][ T5895] lo speed is unknown, defaulting to 1000
[  111.147271][ T6480] RDS/IB: s
z1: added
[  111.151699][ T6480] smc: adding ib device s
z1 with port count 1
[  111.159959][ T6480] smc:    ib device s
z1 port 1 has no pnetid
[  111.175731][  T977] lo speed is unknown, defaulting to 1000
[  111.204293][ T6480] lo speed is unknown, defaulting to 1000
[  111.319391][ T6500] SET target dimension over the limit!
[  111.364195][   T30] audit: type=1400 audit(1760871217.838:383): avc:  denied  { read append } for  pid=6499 comm="syz.3.143" name="sg0" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  111.476340][   T30] audit: type=1400 audit(1760871217.838:384): avc:  denied  { open } for  pid=6499 comm="syz.3.143" path="/dev/sg0" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  111.513008][   T30] audit: type=1400 audit(1760871217.838:385): avc:  denied  { ioctl } for  pid=6499 comm="syz.3.143" path="/dev/sg0" dev="devtmpfs" ino=767 ioctlcmd=0x2275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  111.671358][ T6511] fuse: Bad value for 'fd'
[  111.724606][   T30] audit: type=1400 audit(1760871217.938:386): avc:  denied  { create } for  pid=6508 comm="syz.3.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  111.754089][   T30] audit: type=1400 audit(1760871217.948:387): avc:  denied  { create } for  pid=6505 comm="syz.1.146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  111.922392][   T30] audit: type=1400 audit(1760871218.008:388): avc:  denied  { bind } for  pid=6508 comm="syz.3.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  112.000464][    C0] raw-gadget.3 gadget.2: ignoring, device is not running
[  112.015271][ T6519] netlink: 100 bytes leftover after parsing attributes in process `syz.3.149'.
[  112.245906][   T10] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  112.272250][   T30] audit: type=1400 audit(1760871218.018:389): avc:  denied  { write } for  pid=6508 comm="syz.3.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  112.295693][   T10] usb 3-1: USB disconnect, device number 4
[  112.681858][ T6480] lo speed is unknown, defaulting to 1000
[  112.781399][ T6528] netlink: 100 bytes leftover after parsing attributes in process `syz.3.151'.
[  113.534388][ T6537] binder: BINDER_SET_CONTEXT_MGR already set
[  113.541306][ T6537] binder: 6530:6537 ioctl 4018620d 200000000040 returned -16
[  113.576375][ T6480] lo speed is unknown, defaulting to 1000
[  114.721499][ T6480] lo speed is unknown, defaulting to 1000
[  114.757752][ T6554] capability: warning: `syz.1.159' uses deprecated v2 capabilities in a way that may be insecure
[  115.531708][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  115.531724][   T30] audit: type=1400 audit(1760871221.998:404): avc:  denied  { setopt } for  pid=6557 comm="syz.1.160" lport=8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  115.555923][ T6480] lo speed is unknown, defaulting to 1000
[  117.749996][   T30] audit: type=1400 audit(1760871223.838:405): avc:  denied  { connect } for  pid=6582 comm="syz.1.168" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  118.031192][ T6594] fuse: Bad value for 'fd'
[  118.266055][   T30] audit: type=1400 audit(1760871224.728:406): avc:  denied  { read write } for  pid=6593 comm="syz.0.171" name="card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  118.292096][   T30] audit: type=1400 audit(1760871224.728:407): avc:  denied  { open } for  pid=6593 comm="syz.0.171" path="/dev/dri/card1" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  118.318883][   T30] audit: type=1400 audit(1760871224.738:408): avc:  denied  { ioctl } for  pid=6593 comm="syz.0.171" path="/dev/dri/card1" dev="devtmpfs" ino=628 ioctlcmd=0x640d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  118.324022][   T42] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  118.683204][   T42] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  118.744129][   T42] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.759047][   T42] usb 5-1: Product: syz
[  118.780107][   T42] usb 5-1: Manufacturer: syz
[  118.818764][   T42] usb 5-1: SerialNumber: syz
[  118.819804][ T6602] netlink: 100 bytes leftover after parsing attributes in process `syz.3.173'.
[  118.857852][   T42] usb 5-1: config 0 descriptor??
[  119.130004][   T30] audit: type=1400 audit(1760871225.598:409): avc:  denied  { mount } for  pid=6603 comm="syz.1.175" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  119.151403][    C1] vkms_vblank_simulate: vblank timer overrun
[  119.180333][   T30] audit: type=1400 audit(1760871225.628:410): avc:  denied  { unmount } for  pid=5818 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  119.237729][   T30] audit: type=1400 audit(1760871225.638:411): avc:  denied  { create } for  pid=6607 comm="syz.2.176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  119.257021][   T30] audit: type=1400 audit(1760871225.648:412): avc:  denied  { ioctl } for  pid=6607 comm="syz.2.176" path="/dev/nullb0" dev="devtmpfs" ino=696 ioctlcmd=0x127f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  119.405314][   T42] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  120.195106][   T30] audit: type=1400 audit(1760871226.648:413): avc:  denied  { ioctl } for  pid=6616 comm="syz.2.179" path="socket:[11906]" dev="sockfs" ino=11906 ioctlcmd=0x48d4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  121.056580][   T42] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  121.098966][   T42] usb 5-1: USB disconnect, device number 7
[  121.873554][   T30] audit: type=1400 audit(1760871228.298:414): avc:  denied  { write } for  pid=6628 comm="syz.0.182" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  122.241047][ T6646] netlink: 100 bytes leftover after parsing attributes in process `syz.4.185'.
[  122.283368][   T30] audit: type=1400 audit(1760871228.738:415): avc:  denied  { setopt } for  pid=6648 comm="syz.3.186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  122.495687][ T6654] FAULT_INJECTION: forcing a failure.
[  122.495687][ T6654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.573795][ T6654] CPU: 1 UID: 0 PID: 6654 Comm: syz.3.188 Not tainted syzkaller #0 PREEMPT(full) 
[  122.573823][ T6654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  122.573834][ T6654] Call Trace:
[  122.573840][ T6654]  <TASK>
[  122.573847][ T6654]  dump_stack_lvl+0x16c/0x1f0
[  122.573875][ T6654]  should_fail_ex+0x512/0x640
[  122.573903][ T6654]  _copy_from_iter+0x29f/0x1720
[  122.573929][ T6654]  ? __alloc_skb+0x200/0x380
[  122.573951][ T6654]  ? __pfx__copy_from_iter+0x10/0x10
[  122.573974][ T6654]  ? netlink_autobind.isra.0+0x158/0x370
[  122.574008][ T6654]  netlink_sendmsg+0x820/0xdd0
[  122.574037][ T6654]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.574070][ T6654]  ____sys_sendmsg+0xa98/0xc70
[  122.574108][ T6654]  ? copy_msghdr_from_user+0x10a/0x160
[  122.574130][ T6654]  ? __pfx_____sys_sendmsg+0x10/0x10
[  122.574167][ T6654]  ___sys_sendmsg+0x134/0x1d0
[  122.574191][ T6654]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.574210][ T6654]  ? __lock_acquire+0x622/0x1c90
[  122.574263][ T6654]  __sys_sendmsg+0x16d/0x220
[  122.574286][ T6654]  ? __pfx___sys_sendmsg+0x10/0x10
[  122.574324][ T6654]  do_syscall_64+0xcd/0xfa0
[  122.574349][ T6654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.574366][ T6654] RIP: 0033:0x7f28f978efc9
[  122.574381][ T6654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.574397][ T6654] RSP: 002b:00007f28fa649038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.574414][ T6654] RAX: ffffffffffffffda RBX: 00007f28f99e5fa0 RCX: 00007f28f978efc9
[  122.574426][ T6654] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  122.574436][ T6654] RBP: 00007f28fa649090 R08: 0000000000000000 R09: 0000000000000000
[  122.574446][ T6654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.574456][ T6654] R13: 00007f28f99e6038 R14: 00007f28f99e5fa0 R15: 00007fff78cb98c8
[  122.574480][ T6654]  </TASK>
[  122.773598][    C1] vkms_vblank_simulate: vblank timer overrun
[  122.841009][ T6657] zonefs (nullb0) ERROR: Not a zoned block device
[  124.211703][ T6672] veth0_to_team: entered promiscuous mode
[  124.217520][ T6672] veth0_to_team: entered allmulticast mode
[  124.581983][ T6680] veth0_to_team: entered promiscuous mode
[  124.587797][ T6680] veth0_to_team: entered allmulticast mode
[  125.160400][ T6686] lo speed is unknown, defaulting to 1000
[  125.310830][   T30] audit: type=1400 audit(1760871231.778:416): avc:  denied  { append } for  pid=6695 comm="syz.2.199" name="comedi2" dev="devtmpfs" ino=1278 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  125.425138][   T42] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  125.481802][ T6702] netlink: 16 bytes leftover after parsing attributes in process `syz.0.200'.
[  125.508101][   T30] audit: type=1400 audit(1760871231.938:417): avc:  denied  { create } for  pid=6699 comm="syz.0.200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  125.629952][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 141, changing to 11
[  125.665966][   T30] audit: type=1400 audit(1760871231.948:418): avc:  denied  { write } for  pid=6699 comm="syz.0.200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  125.709211][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  125.813707][   T42] usb 2-1: New USB device found, idVendor=0853, idProduct=0146, bcdDevice= 0.00
[  125.850729][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.901460][   T42] usb 2-1: config 0 descriptor??
[  126.005503][ T6710] FAULT_INJECTION: forcing a failure.
[  126.005503][ T6710] name failslab, interval 1, probability 0, space 0, times 0
[  126.058235][   T30] audit: type=1400 audit(1760871232.048:419): avc:  denied  { connect } for  pid=6704 comm="syz.3.201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  126.077935][ T6710] CPU: 0 UID: 0 PID: 6710 Comm: syz.0.203 Not tainted syzkaller #0 PREEMPT(full) 
[  126.077957][ T6710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  126.077967][ T6710] Call Trace:
[  126.077973][ T6710]  <TASK>
[  126.077979][ T6710]  dump_stack_lvl+0x16c/0x1f0
[  126.078005][ T6710]  should_fail_ex+0x512/0x640
[  126.078025][ T6710]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  126.078051][ T6710]  should_failslab+0xc2/0x120
[  126.078077][ T6710]  kmem_cache_alloc_noprof+0x75/0x6e0
[  126.078099][ T6710]  ? skb_clone+0x190/0x3f0
[  126.078125][ T6710]  ? skb_clone+0x190/0x3f0
[  126.078145][ T6710]  skb_clone+0x190/0x3f0
[  126.078168][ T6710]  netlink_deliver_tap+0xabd/0xd30
[  126.078197][ T6710]  netlink_unicast+0x64c/0x870
[  126.078224][ T6710]  ? __pfx_netlink_unicast+0x10/0x10
[  126.078257][ T6710]  netlink_sendmsg+0x8c8/0xdd0
[  126.078290][ T6710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.078324][ T6710]  ____sys_sendmsg+0xa98/0xc70
[  126.078351][ T6710]  ? copy_msghdr_from_user+0x10a/0x160
[  126.078371][ T6710]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.078408][ T6710]  ___sys_sendmsg+0x134/0x1d0
[  126.078432][ T6710]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.078451][ T6710]  ? __lock_acquire+0x622/0x1c90
[  126.078501][ T6710]  __sys_sendmsg+0x16d/0x220
[  126.078522][ T6710]  ? __pfx___sys_sendmsg+0x10/0x10
[  126.078559][ T6710]  do_syscall_64+0xcd/0xfa0
[  126.078584][ T6710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.078601][ T6710] RIP: 0033:0x7f937738efc9
[  126.078616][ T6710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.078632][ T6710] RSP: 002b:00007f9378202038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.078649][ T6710] RAX: ffffffffffffffda RBX: 00007f93775e5fa0 RCX: 00007f937738efc9
[  126.078660][ T6710] RDX: 00000000000448d0 RSI: 0000200000000240 RDI: 0000000000000003
[  126.078670][ T6710] RBP: 00007f9378202090 R08: 0000000000000000 R09: 0000000000000000
[  126.078680][ T6710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.078689][ T6710] R13: 00007f93775e6038 R14: 00007f93775e5fa0 R15: 00007ffd43e9e228
[  126.078714][ T6710]  </TASK>
[  126.293086][   T30] audit: type=1400 audit(1760871232.058:420): avc:  denied  { setopt } for  pid=6704 comm="syz.3.201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  126.313507][   T30] audit: type=1400 audit(1760871232.058:421): avc:  denied  { write } for  pid=6704 comm="syz.3.201" path="socket:[12318]" dev="sockfs" ino=12318 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  126.337348][   T30] audit: type=1400 audit(1760871232.068:422): avc:  denied  { connect } for  pid=6704 comm="syz.3.201" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  126.358128][ T6711] zonefs (nullb0) ERROR: Not a zoned block device
[  126.582625][ T6721] netlink: 100 bytes leftover after parsing attributes in process `syz.0.205'.
[  126.971890][ T6719] mmap: syz.3.204 (6719) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  126.990979][ T6719] netlink: 8 bytes leftover after parsing attributes in process `syz.3.204'.
[  127.055050][ T6723] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  127.122243][ T6723] CIFS mount error: No usable UNC path provided in device string!
[  127.122243][ T6723] 
[  127.132479][ T6723] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  127.162853][   T42] topre 0003:0853:0146.0002: item fetching failed at offset 2/5
[  127.225605][   T42] topre 0003:0853:0146.0002: probe with driver topre failed with error -22
[  127.449526][   T30] audit: type=1400 audit(1760871233.908:423): avc:  denied  { create } for  pid=6681 comm="syz.1.195" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  127.493536][   T30] audit: type=1400 audit(1760871233.938:424): avc:  denied  { ioctl } for  pid=6681 comm="syz.1.195" path="socket:[12434]" dev="sockfs" ino=12434 ioctlcmd=0x6180 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  127.494765][   T42] usb 2-1: USB disconnect, device number 3
[  127.696952][   T30] audit: type=1400 audit(1760871234.158:425): avc:  denied  { setopt } for  pid=6728 comm="syz.0.207" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  127.734382][   T30] audit: type=1400 audit(1760871234.158:426): avc:  denied  { create } for  pid=6728 comm="syz.0.207" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  127.772257][   T30] audit: type=1400 audit(1760871234.168:427): avc:  denied  { sys_admin } for  pid=6728 comm="syz.0.207" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  128.031302][ T6737] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  128.076884][ T6737] VFS: Can't find a romfs filesystem on dev nullb0.
[  128.076884][ T6737] 
[  128.351505][   T30] audit: type=1400 audit(1760871234.818:428): avc:  denied  { setopt } for  pid=6742 comm="syz.1.211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  129.513695][  T977] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  129.694030][  T977] usb 4-1: Using ep0 maxpacket: 8
[  129.924482][  T977] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  130.083090][  T977] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  130.122658][ T6770] zonefs (nullb0) ERROR: Not a zoned block device
[  130.139106][  T977] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.159955][  T977] usb 4-1: config 0 descriptor??
[  130.913286][  T977] iowarrior 4-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  131.288604][ T6787] netlink: 8 bytes leftover after parsing attributes in process `syz.4.220'.
[  131.297534][ T6787] netlink: 20 bytes leftover after parsing attributes in process `syz.4.220'.
[  131.652078][   T13] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  131.701888][   T13] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  131.722875][ T3489] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  131.741310][ T3489] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  131.784484][   T30] audit: type=1400 audit(1760871238.258:429): avc:  denied  { read append } for  pid=6789 comm="syz.1.222" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  131.866683][ T6794] netlink: 128 bytes leftover after parsing attributes in process `syz.2.223'.
[  131.903722][ T5895] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  131.904150][ T6794] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  131.929718][   T30] audit: type=1400 audit(1760871238.258:430): avc:  denied  { open } for  pid=6789 comm="syz.1.222" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  131.941266][ T6791] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  132.037149][ T6791] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  132.067060][ T6791] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  132.080611][ T5895] usb 1-1: Using ep0 maxpacket: 16
[  132.112011][ T6791] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  132.141335][ T5895] usb 1-1: config 254 has an invalid descriptor of length 0, skipping remainder of the config
[  132.161215][ T6791] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  132.175540][ T6791] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  132.183584][ T6791] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  132.194255][ T6791] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  132.211994][ T5895] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1
[  132.236317][ T5895] usb 1-1: New USB device strings: Mfr=1, Product=251, SerialNumber=3
[  132.240753][ T6791] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  132.267103][ T5895] usb 1-1: Product: syz
[  132.276663][ T5895] usb 1-1: Manufacturer: syz
[  132.293713][ T5895] usb 1-1: SerialNumber: syz
[  132.303517][ T6791] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  132.320294][ T5895] usbtest 1-1:254.0: couldn't get endpoints, -22
[  132.334375][ T5895] usbtest 1-1:254.0: probe with driver usbtest failed with error -22
[  132.357267][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  132.357982][ T6791] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  132.363947][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  132.452770][ T6791] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  132.473404][ T6791] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  132.493721][ T6791] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  132.510904][ T6791] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  132.630098][   T30] audit: type=1400 audit(1760871239.098:431): avc:  denied  { read } for  pid=6784 comm="syz.0.221" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  132.656156][   T30] audit: type=1400 audit(1760871239.098:432): avc:  denied  { open } for  pid=6784 comm="syz.0.221" path="/dev/rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  132.683247][   T30] audit: type=1400 audit(1760871239.158:433): avc:  denied  { ioctl } for  pid=6784 comm="syz.0.221" path="/dev/rtc0" dev="devtmpfs" ino=921 ioctlcmd=0x7005 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  132.773734][ T5895] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  132.898203][   T24] usb 1-1: USB disconnect, device number 5
[  132.953733][ T5895] usb 2-1: Using ep0 maxpacket: 16
[  132.964176][ T5895] usb 2-1: config 0 interface 0 has no altsetting 0
[  132.976082][ T5895] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  132.987369][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.015590][ T5895] usb 2-1: config 0 descriptor??
[  133.194477][ T6797] lo speed is unknown, defaulting to 1000
[  133.286220][   T30] audit: type=1400 audit(1760871239.758:434): avc:  denied  { unmount } for  pid=6796 comm="syz.2.224" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  133.557210][   T24] usb 4-1: USB disconnect, device number 4
[  133.618440][ T5895] usbhid 2-1:0.0: can't add hid device: -71
[  133.652625][ T5895] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  133.911058][ T5895] usb 2-1: USB disconnect, device number 4
[  133.958591][ T5819] Bluetooth: hci1: command 0x0c1a tx timeout
[  134.113971][ T5819] Bluetooth: hci0: command 0x0c1a tx timeout
[  134.195938][ T5819] Bluetooth: hci2: command 0x0c1a tx timeout
[  134.355626][ T5819] Bluetooth: hci3: command 0x0c1a tx timeout
[  134.533778][ T5819] Bluetooth: hci4: command 0x0c1a tx timeout
[  135.638272][ T6830] FAULT_INJECTION: forcing a failure.
[  135.638272][ T6830] name failslab, interval 1, probability 0, space 0, times 0
[  135.651230][ T6830] CPU: 0 UID: 0 PID: 6830 Comm: syz.1.231 Not tainted syzkaller #0 PREEMPT(full) 
[  135.651253][ T6830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  135.651263][ T6830] Call Trace:
[  135.651270][ T6830]  <TASK>
[  135.651278][ T6830]  dump_stack_lvl+0x16c/0x1f0
[  135.651305][ T6830]  should_fail_ex+0x512/0x640
[  135.651327][ T6830]  ? __kmalloc_cache_noprof+0x5f/0x780
[  135.651349][ T6830]  should_failslab+0xc2/0x120
[  135.651375][ T6830]  __kmalloc_cache_noprof+0x72/0x780
[  135.651392][ T6830]  ? preempt_schedule_thunk+0x16/0x30
[  135.651414][ T6830]  ? create_io_worker+0xc9/0x5b0
[  135.651436][ T6830]  ? create_io_worker+0x1f/0x5b0
[  135.651451][ T6830]  ? create_io_worker+0xc9/0x5b0
[  135.651467][ T6830]  create_io_worker+0xc9/0x5b0
[  135.651486][ T6830]  io_wq_enqueue+0x4cc/0x980
[  135.651505][ T6830]  ? __pfx_io_wq_enqueue+0x10/0x10
[  135.651521][ T6830]  ? io_prep_async_work+0x5f0/0x770
[  135.651544][ T6830]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  135.651572][ T6830]  ? io_prep_async_work+0x654/0x770
[  135.651603][ T6830]  io_queue_iowq+0x246/0x530
[  135.651623][ T6830]  io_queue_async+0x113/0x130
[  135.651641][ T6830]  io_req_task_submit+0x1a9/0x220
[  135.651659][ T6830]  ? __pfx_io_req_task_submit+0x10/0x10
[  135.651678][ T6830]  io_handle_tw_list+0x486/0x500
[  135.651699][ T6830]  ? __pfx_io_handle_tw_list+0x10/0x10
[  135.651723][ T6830]  tctx_task_work_run+0xac/0x380
[  135.651743][ T6830]  tctx_task_work+0x7a/0xd0
[  135.651760][ T6830]  ? __pfx_tctx_task_work+0x10/0x10
[  135.651777][ T6830]  ? rcu_is_watching+0x12/0xc0
[  135.651794][ T6830]  ? _raw_spin_unlock_irq+0x23/0x50
[  135.651813][ T6830]  ? lockdep_hardirqs_on+0x7c/0x110
[  135.651835][ T6830]  task_work_run+0x150/0x240
[  135.651861][ T6830]  ? __pfx_task_work_run+0x10/0x10
[  135.651883][ T6830]  ? __do_sys_io_uring_enter+0x60f/0x1630
[  135.651911][ T6830]  get_signal+0x1d0/0x26d0
[  135.651927][ T6830]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  135.651959][ T6830]  ? __pfx_get_signal+0x10/0x10
[  135.651974][ T6830]  ? fput+0x9b/0xd0
[  135.651991][ T6830]  ? __do_sys_io_uring_enter+0x62c/0x1630
[  135.652014][ T6830]  arch_do_signal_or_restart+0x8f/0x7c0
[  135.652044][ T6830]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  135.652077][ T6830]  ? ksys_write+0x1ac/0x250
[  135.652107][ T6830]  exit_to_user_mode_loop+0x85/0x130
[  135.652132][ T6830]  do_syscall_64+0x426/0xfa0
[  135.652156][ T6830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.652178][ T6830] RIP: 0033:0x7fc38fd8efc9
[  135.652192][ T6830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.652208][ T6830] RSP: 002b:00007fc390c57038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  135.652225][ T6830] RAX: 0000000000000001 RBX: 00007fc38ffe6180 RCX: 00007fc38fd8efc9
[  135.652235][ T6830] RDX: 0000000000000000 RSI: 0000000000007a98 RDI: 0000000000000006
[  135.652245][ T6830] RBP: 00007fc390c57090 R08: 0000000000000000 R09: fffffffffffffc76
[  135.652255][ T6830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.652265][ T6830] R13: 00007fc38ffe6218 R14: 00007fc38ffe6180 R15: 00007ffdbb801ae8
[  135.652291][ T6830]  </TASK>
[  136.434849][ T5819] Bluetooth: hci1: command 0x0c1a tx timeout
[  136.441088][ T5819] Bluetooth: hci0: command 0x0c1a tx timeout
[  136.447302][ T5819] Bluetooth: hci2: command 0x0c1a tx timeout
[  136.453437][ T5819] Bluetooth: hci3: command 0x0c1a tx timeout
[  136.546244][  T869] IPVS: starting estimator thread 0...
[  136.593707][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  136.654002][ T6838] IPVS: using max 53 ests per chain, 127200 per kthread
[  136.788163][   T30] audit: type=1400 audit(1760871243.248:435): avc:  denied  { write } for  pid=6841 comm="syz.4.235" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  136.923989][   T30] audit: type=1400 audit(1760871243.368:436): avc:  denied  { execute } for  pid=6841 comm="syz.4.235" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=12740 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  137.743711][   T42] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  137.904871][   T42] usb 4-1: config 0 has an invalid interface number: 17 but max is 0
[  137.913816][   T42] usb 4-1: config 0 has no interface number 0
[  137.922091][   T42] usb 4-1: config 0 interface 17 has no altsetting 0
[  137.961304][   T42] usb 4-1: New USB device found, idVendor=0ab4, idProduct=0014, bcdDevice=c1.09
[  137.972285][   T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.001722][   T42] usb 4-1: Product: syz
[  138.007069][   T42] usb 4-1: Manufacturer: syz
[  138.012749][   T42] usb 4-1: SerialNumber: syz
[  138.034358][   T42] usb 4-1: config 0 descriptor??
[  138.047327][   T42] esd_usb 4-1:0.17: sending version message failed
[  138.084198][   T42] esd_usb 4-1:0.17: probe with driver esd_usb failed with error -22
[  138.513749][   T52] Bluetooth: hci3: command 0x0c1a tx timeout
[  138.513759][ T5819] Bluetooth: hci1: command 0x0c1a tx timeout
[  138.513790][ T5819] Bluetooth: hci2: command 0x0c1a tx timeout
[  138.519829][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  138.660955][   T30] audit: type=1400 audit(1760871245.128:437): avc:  denied  { connect } for  pid=6855 comm="syz.3.238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  138.691066][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  138.703899][   T30] audit: type=1400 audit(1760871245.128:438): avc:  denied  { write } for  pid=6855 comm="syz.3.238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  139.390474][   T30] audit: type=1400 audit(1760871245.818:439): avc:  denied  { bind } for  pid=6884 comm="syz.4.245" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  139.897572][ T5895] usb 4-1: USB disconnect, device number 5
[  140.730177][   T30] audit: type=1400 audit(1760871247.148:440): avc:  denied  { load_policy } for  pid=6890 comm="syz.0.246" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  140.750937][ T6897] overlay: ./file0 is not a directory
[  140.831619][ T6905] overlay: ./file0 is not a directory
[  140.903782][ T6906] netlink: 104 bytes leftover after parsing attributes in process `syz.3.250'.
[  140.960400][   T30] audit: type=1400 audit(1760871247.198:441): avc:  denied  { mounton } for  pid=6890 comm="syz.0.246" path="/51/file0" dev="tmpfs" ino=286 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  141.181130][   T30] audit: type=1400 audit(1760871247.198:442): avc:  denied  { mounton } for  pid=6890 comm="syz.0.246" path="/51/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  141.209566][ T6895] SELinux: failed to load policy
[  141.253720][   T30] audit: type=1400 audit(1760871247.198:443): avc:  denied  { mount } for  pid=6890 comm="syz.0.246" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  141.429725][ T6913] netlink: 104 bytes leftover after parsing attributes in process `syz.3.251'.
[  141.654356][   T30] audit: type=1400 audit(1760871247.368:444): avc:  denied  { write } for  pid=6903 comm="syz.3.250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  141.691759][   T30] audit: type=1400 audit(1760871247.368:445): avc:  denied  { nlmsg_read } for  pid=6903 comm="syz.3.250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  142.373964][   T10] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  142.388358][   T30] audit: type=1400 audit(1760871248.848:446): avc:  denied  { ioctl } for  pid=6922 comm="syz.3.253" path="socket:[12821]" dev="sockfs" ino=12821 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  142.532208][ T6929] Illegal XDP return value 4294967262 on prog  (id 57) dev syz_tun, expect packet loss!
[  143.275699][   T10] usb 5-1: unable to get BOS descriptor or descriptor too short
[  143.284885][   T10] usb 5-1: not running at top speed; connect to a high speed hub
[  143.388565][   T10] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  143.416116][   T10] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  143.426391][ T6939] netlink: 100 bytes leftover after parsing attributes in process `syz.2.260'.
[  143.449978][   T10] usb 5-1: string descriptor 0 read error: -22
[  143.457731][   T10] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  143.476704][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.545204][   T10] usb 5-1: 0:2 : does not exist
[  143.628814][ T6938] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  143.641976][ T6938] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  143.656167][ T6938] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  143.662334][ T6938] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  143.670181][ T6938] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  143.973956][ T6953] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  143.981984][ T6953] batadv_slave_0: entered promiscuous mode
[  143.999446][   T42] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  144.435685][ T6955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.264'.
[  144.446064][ T6955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.264'.
[  144.483735][   T42] usb 4-1: Using ep0 maxpacket: 16
[  144.504213][   T42] usb 4-1: config 0 interface 0 has no altsetting 0
[  144.543464][   T42] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  144.573194][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  144.573209][   T30] audit: type=1400 audit(1760871251.038:449): avc:  denied  { map } for  pid=6956 comm="syz.0.265" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  144.604699][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.617750][   T42] usb 4-1: config 0 descriptor??
[  144.793684][ T5895] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  144.932057][   T42] usbhid 4-1:0.0: can't add hid device: -71
[  144.938769][   T42] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  144.961566][   T42] usb 4-1: USB disconnect, device number 6
[  144.963702][ T5895] usb 2-1: Using ep0 maxpacket: 8
[  144.982624][ T5895] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.995356][ T5895] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  145.005449][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.016254][ T5895] usb 2-1: config 0 descriptor??
[  145.030986][ T5895] gspca_main: vc032x-2.14.0 probing 046d:0892
[  145.232265][ T6959] netlink: 14212 bytes leftover after parsing attributes in process `syz.1.267'.
[  145.297143][ T5895] gspca_vc032x: reg_r err -71
[  145.309644][ T5895] vc032x 2-1:0.0: probe with driver vc032x failed with error -71
[  145.323598][ T5895] usb 2-1: USB disconnect, device number 5
[  145.492635][   T10] usb 5-1: 5:0: failed to get current value for ch 0 (-22)
[  145.525715][   T10] usb 5-1: 5:0: cannot get min/max values for control 2 (id 5)
[  145.541253][   T10] usb 5-1: 5:0: cannot get min/max values for control 3 (id 5)
[  145.568972][   T10] usb 5-1: 5:0: failed to get current value for ch 1 (-22)
[  145.621458][   T10] usb 5-1: 5:0: cannot get min/max values for control 3 (id 5)
[  145.637926][   T52] Bluetooth: hci1: command 0x0c1a tx timeout
[  145.642011][   T10] usb 5-1: 5:0: cannot get min/max values for control 2 (id 5)
[  145.949725][ T6973] ocfs2: Bad value for 'barrier'
[  145.957048][   T52] Bluetooth: hci4: command 0x0c1a tx timeout
[  145.957069][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  145.957110][ T5824] Bluetooth: hci0: command 0x0c1a tx timeout
[  145.972925][ T6974] netlink: 104 bytes leftover after parsing attributes in process `syz.3.269'.
[  145.989190][ T5819] Bluetooth: hci3: command 0x0c1a tx timeout
[  146.062617][   T10] usb 5-1: USB disconnect, device number 8
[  146.698342][   T30] audit: type=1400 audit(1760871253.158:450): avc:  denied  { create } for  pid=6978 comm="syz.3.274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  147.800190][ T6988] FAULT_INJECTION: forcing a failure.
[  147.800190][ T6988] name failslab, interval 1, probability 0, space 0, times 0
[  147.835583][ T6988] CPU: 1 UID: 0 PID: 6988 Comm: syz.3.276 Not tainted syzkaller #0 PREEMPT(full) 
[  147.835609][ T6988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  147.835618][ T6988] Call Trace:
[  147.835624][ T6988]  <TASK>
[  147.835631][ T6988]  dump_stack_lvl+0x16c/0x1f0
[  147.835658][ T6988]  should_fail_ex+0x512/0x640
[  147.835680][ T6988]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  147.835706][ T6988]  should_failslab+0xc2/0x120
[  147.835732][ T6988]  kmem_cache_alloc_noprof+0x75/0x6e0
[  147.835753][ T6988]  ? skb_clone+0x190/0x3f0
[  147.835779][ T6988]  ? skb_clone+0x190/0x3f0
[  147.835797][ T6988]  skb_clone+0x190/0x3f0
[  147.835820][ T6988]  netlink_deliver_tap+0xabd/0xd30
[  147.835848][ T6988]  netlink_unicast+0x64c/0x870
[  147.835876][ T6988]  ? __pfx_netlink_unicast+0x10/0x10
[  147.835910][ T6988]  netlink_sendmsg+0x8c8/0xdd0
[  147.835938][ T6988]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.835972][ T6988]  ____sys_sendmsg+0xa98/0xc70
[  147.835999][ T6988]  ? copy_msghdr_from_user+0x10a/0x160
[  147.836021][ T6988]  ? __pfx_____sys_sendmsg+0x10/0x10
[  147.836065][ T6988]  ___sys_sendmsg+0x134/0x1d0
[  147.836088][ T6988]  ? __pfx____sys_sendmsg+0x10/0x10
[  147.836107][ T6988]  ? __lock_acquire+0x622/0x1c90
[  147.836163][ T6988]  __sys_sendmsg+0x16d/0x220
[  147.836185][ T6988]  ? __pfx___sys_sendmsg+0x10/0x10
[  147.836223][ T6988]  do_syscall_64+0xcd/0xfa0
[  147.836247][ T6988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.836265][ T6988] RIP: 0033:0x7f28f978efc9
[  147.836280][ T6988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.836295][ T6988] RSP: 002b:00007f28fa649038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.836313][ T6988] RAX: ffffffffffffffda RBX: 00007f28f99e5fa0 RCX: 00007f28f978efc9
[  147.836324][ T6988] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  147.836334][ T6988] RBP: 00007f28fa649090 R08: 0000000000000000 R09: 0000000000000000
[  147.836344][ T6988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.836354][ T6988] R13: 00007f28f99e6038 R14: 00007f28f99e5fa0 R15: 00007fff78cb98c8
[  147.836380][ T6988]  </TASK>
[  147.838208][ T6988] x_tables: ip_tables: udp match: only valid for protocol 17
[  148.116585][   T30] audit: type=1400 audit(1760871254.578:451): avc:  denied  { execute_no_trans } for  pid=6990 comm="syz.0.277" path="/56/file0" dev="tmpfs" ino=313 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  149.879850][   T30] audit: type=1326 audit(1760871256.328:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7008 comm="syz.1.282" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc38fd8efc9 code=0x0
[  149.977538][ T7014] FAULT_INJECTION: forcing a failure.
[  149.977538][ T7014] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.990828][ T7014] CPU: 0 UID: 0 PID: 7014 Comm: syz.3.281 Not tainted syzkaller #0 PREEMPT(full) 
[  149.990857][ T7014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  149.990868][ T7014] Call Trace:
[  149.990874][ T7014]  <TASK>
[  149.990881][ T7014]  dump_stack_lvl+0x16c/0x1f0
[  149.990908][ T7014]  should_fail_ex+0x512/0x640
[  149.990935][ T7014]  _copy_to_user+0x32/0xd0
[  149.990961][ T7014]  simple_read_from_buffer+0xcb/0x170
[  149.990986][ T7014]  proc_fail_nth_read+0x197/0x240
[  149.991019][ T7014]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.991048][ T7014]  ? rw_verify_area+0xcf/0x6c0
[  149.991068][ T7014]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.991094][ T7014]  vfs_read+0x1e4/0xcf0
[  149.991118][ T7014]  ? __pfx___mutex_lock+0x10/0x10
[  149.991147][ T7014]  ? __pfx_vfs_read+0x10/0x10
[  149.991176][ T7014]  ? __fget_files+0x20e/0x3c0
[  149.991208][ T7014]  ksys_read+0x12a/0x250
[  149.991229][ T7014]  ? __pfx_ksys_read+0x10/0x10
[  149.991251][ T7014]  ? fput+0x9b/0xd0
[  149.991271][ T7014]  do_syscall_64+0xcd/0xfa0
[  149.991295][ T7014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.991313][ T7014] RIP: 0033:0x7f28f978d9dc
[  149.991327][ T7014] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  149.991343][ T7014] RSP: 002b:00007f28fa628030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  149.991360][ T7014] RAX: ffffffffffffffda RBX: 00007f28f99e6090 RCX: 00007f28f978d9dc
[  149.991371][ T7014] RDX: 000000000000000f RSI: 00007f28fa6280a0 RDI: 0000000000000007
[  149.991382][ T7014] RBP: 00007f28fa628090 R08: 0000000000000000 R09: 0000000000000000
[  149.991392][ T7014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.991403][ T7014] R13: 00007f28f99e6128 R14: 00007f28f99e6090 R15: 00007fff78cb98c8
[  149.991430][ T7014]  </TASK>
[  151.144250][ T7029] netlink: 28 bytes leftover after parsing attributes in process `syz.2.270'.
[  151.270043][ T7027] x_tables: ip_tables: udp match: only valid for protocol 17
[  151.472687][   T30] audit: type=1400 audit(1760871257.888:453): avc:  denied  { nlmsg_write } for  pid=7028 comm="syz.3.286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  151.961123][   T30] audit: type=1400 audit(1760871258.388:454): avc:  denied  { setopt } for  pid=7012 comm="syz.0.283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  152.399134][ T7038] netlink: 28 bytes leftover after parsing attributes in process `syz.2.287'.
[  152.419326][ T7038] netlink: 28 bytes leftover after parsing attributes in process `syz.2.287'.
[  152.430579][ T7023] netlink: 'syz.0.283': attribute type 1 has an invalid length.
[  152.438283][ T7023] netlink: 'syz.0.283': attribute type 2 has an invalid length.
[  152.510994][ T7041] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=7041 comm=syz.2.287
[  152.655463][ T7041] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7041 comm=syz.2.287
[  153.224818][ T7048] netlink: 84 bytes leftover after parsing attributes in process `syz.2.287'.
[  153.348322][   T30] audit: type=1400 audit(1760871259.818:455): avc:  denied  { ioctl } for  pid=7044 comm="syz.4.290" path="socket:[13836]" dev="sockfs" ino=13836 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  153.704518][   T30] audit: type=1400 audit(1760871259.868:456): avc:  denied  { shutdown } for  pid=7044 comm="syz.4.290" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  154.114869][    T9] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  154.706592][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.758742][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.861448][    T9] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  154.874213][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.891562][    T9] usb 2-1: config 0 descriptor??
[  154.929732][ T7066] netlink: 29124 bytes leftover after parsing attributes in process `syz.2.296'.
[  154.968963][ T7067] netlink: 8 bytes leftover after parsing attributes in process `syz.0.295'.
[  154.999697][ T7067] netlink: 8 bytes leftover after parsing attributes in process `syz.0.295'.
[  155.161916][   T30] audit: type=1400 audit(1760871261.608:457): avc:  denied  { mounton } for  pid=7070 comm="syz.2.298" path="/" dev="rootfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  156.432826][   T30] audit: type=1400 audit(1760871261.618:458): avc:  denied  { mount } for  pid=7070 comm="syz.2.298" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  156.457037][   T30] audit: type=1400 audit(1760871261.708:459): avc:  denied  { relabelfrom } for  pid=7068 comm="syz.4.297" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  156.484008][   T30] audit: type=1400 audit(1760871261.708:460): avc:  denied  { relabelto } for  pid=7068 comm="syz.4.297" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  156.509564][   T30] audit: type=1400 audit(1760871262.898:461): avc:  denied  { associate } for  pid=7074 comm="syz.2.298" name="core" scontext=root:object_r:etc_runtime_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1
[  156.624621][   T30] audit: type=1400 audit(1760871263.098:462): avc:  denied  { read } for  pid=7080 comm="syz.2.300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  156.753929][   T42] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  156.926037][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.946939][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.959750][   T42] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  156.973453][   T42] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.036388][   T42] usb 1-1: config 0 descriptor??
[  157.472083][   T42] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  157.675286][ T7076] netlink: 'syz.0.299': attribute type 8 has an invalid length.
[  158.087391][   T42] cp2112 0003:10C4:EA90.0003: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.0-1/input0
[  158.165200][   T42] cp2112 0003:10C4:EA90.0003: Part Number: 0x82 Device Version: 0xFE
[  158.245350][    T9] usbhid 2-1:0.0: can't add hid device: -71
[  158.252336][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  158.330034][    T9] usb 2-1: USB disconnect, device number 6
[  159.034677][ T7076] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.053725][ T7076] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.344345][   T42] usb 1-1: reset high-speed USB device number 6 using dummy_hcd
[  159.693184][ T7109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.309'.
[  159.737649][ T7109] netlink: 8 bytes leftover after parsing attributes in process `syz.2.309'.
[  160.022670][   T30] audit: type=1400 audit(1760871266.488:463): avc:  denied  { create } for  pid=7118 comm="syz.3.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  160.027797][ T7119] netlink: 20 bytes leftover after parsing attributes in process `syz.3.311'.
[  160.043036][   T30] audit: type=1400 audit(1760871266.488:464): avc:  denied  { setopt } for  pid=7118 comm="syz.3.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  160.077834][   T30] audit: type=1400 audit(1760871266.498:465): avc:  denied  { bind } for  pid=7118 comm="syz.3.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  160.172035][ T7124] fuse: Bad value for 'fd'
[  160.343706][   T10] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  161.134728][ T5880] usb 1-1: USB disconnect, device number 6
[  161.551749][   T30] audit: type=1400 audit(1760871268.008:466): avc:  denied  { create } for  pid=7128 comm="syz.2.317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_nflog_socket permissive=1
[  161.588541][ T7145] smc: removing ib device s
z1
[  161.610719][   T10] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  161.623652][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.733699][   T10] usb 2-1: Product: syz
[  161.753908][   T10] usb 2-1: Manufacturer: syz
[  161.770861][   T10] usb 2-1: SerialNumber: syz
[  161.863760][  T977] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  162.251281][   T10] usb 2-1: config 0 descriptor??
[  162.465236][   T10] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  162.576819][  T977] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  162.688165][   T10] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  162.704493][  T977] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.712529][  T977] usb 4-1: Product: syz
[  162.716842][  T977] usb 4-1: Manufacturer: syz
[  162.721473][  T977] usb 4-1: SerialNumber: syz
[  163.153173][  T977] usb 4-1: config 0 descriptor??
[  163.188328][   T10] usb 2-1: USB disconnect, device number 7
[  163.380347][  T977] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  163.839125][ T7168] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20003
[  163.872916][   T30] audit: type=1400 audit(1760871270.298:467): avc:  denied  { bind } for  pid=7165 comm="syz.1.323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  164.285613][   T30] audit: type=1400 audit(1760871270.308:468): avc:  denied  { setopt } for  pid=7165 comm="syz.1.323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  164.292419][  T977] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  164.306271][   T30] audit: type=1400 audit(1760871270.318:469): avc:  denied  { write } for  pid=7165 comm="syz.1.323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  164.953713][   T30] audit: type=1400 audit(1760871271.048:470): avc:  denied  { create } for  pid=7169 comm="syz.0.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  165.005691][  T977] usb 4-1: USB disconnect, device number 7
[  165.012614][   T30] audit: type=1400 audit(1760871271.058:471): avc:  denied  { write } for  pid=7169 comm="syz.0.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  165.248557][    T9] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  165.415375][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[  165.803203][ T7185] fuse: Bad value for 'fd'
[  166.036095][    T9] usb 2-1: not running at top speed; connect to a high speed hub
[  166.054806][    T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  166.102693][    T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  166.165329][    T9] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  166.284470][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.771900][    T9] usb 2-1: Product: syz
[  166.776298][    T9] usb 2-1: Manufacturer: syz
[  166.780888][    T9] usb 2-1: SerialNumber: syz
[  168.063886][   T10] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  168.097248][ T7202] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.105075][ T7202] batadv_slave_0: entered promiscuous mode
[  168.243646][   T10] usb 4-1: Using ep0 maxpacket: 16
[  168.411292][   T10] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  168.424060][   T10] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  168.437470][   T10] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  168.591114][ T5819] Bluetooth: hci3: unexpected event for opcode 0x2006
[  168.600385][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.610333][   T10] usb 4-1: Product: syz
[  168.819427][   T10] usb 4-1: Manufacturer: syz
[  168.830368][   T10] usb 4-1: SerialNumber: syz
[  169.993089][  T869] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  169.996030][ T7221] FAULT_INJECTION: forcing a failure.
[  169.996030][ T7221] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.013773][ T7221] CPU: 1 UID: 0 PID: 7221 Comm: syz.4.337 Not tainted syzkaller #0 PREEMPT(full) 
[  170.013795][ T7221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  170.013805][ T7221] Call Trace:
[  170.013811][ T7221]  <TASK>
[  170.013817][ T7221]  dump_stack_lvl+0x16c/0x1f0
[  170.013844][ T7221]  should_fail_ex+0x512/0x640
[  170.013869][ T7221]  _copy_from_iter+0x29f/0x1720
[  170.013896][ T7221]  ? __alloc_skb+0x200/0x380
[  170.013919][ T7221]  ? __pfx__copy_from_iter+0x10/0x10
[  170.013941][ T7221]  ? netlink_autobind.isra.0+0x158/0x370
[  170.013974][ T7221]  netlink_sendmsg+0x820/0xdd0
[  170.014001][ T7221]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.014036][ T7221]  ____sys_sendmsg+0xa98/0xc70
[  170.014062][ T7221]  ? copy_msghdr_from_user+0x10a/0x160
[  170.014084][ T7221]  ? __pfx_____sys_sendmsg+0x10/0x10
[  170.014122][ T7221]  ___sys_sendmsg+0x134/0x1d0
[  170.014146][ T7221]  ? __pfx____sys_sendmsg+0x10/0x10
[  170.014165][ T7221]  ? __lock_acquire+0x622/0x1c90
[  170.014220][ T7221]  __sys_sendmsg+0x16d/0x220
[  170.014242][ T7221]  ? __pfx___sys_sendmsg+0x10/0x10
[  170.014281][ T7221]  do_syscall_64+0xcd/0xfa0
[  170.014306][ T7221]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.014323][ T7221] RIP: 0033:0x7f11a978efc9
[  170.014337][ T7221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.014354][ T7221] RSP: 002b:00007f11aa661038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.014371][ T7221] RAX: ffffffffffffffda RBX: 00007f11a99e5fa0 RCX: 00007f11a978efc9
[  170.014381][ T7221] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  170.014392][ T7221] RBP: 00007f11aa661090 R08: 0000000000000000 R09: 0000000000000000
[  170.014402][ T7221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.014412][ T7221] R13: 00007f11a99e6038 R14: 00007f11a99e5fa0 R15: 00007fffc9d75938
[  170.014439][ T7221]  </TASK>
[  170.043908][ T7225] netlink: 8 bytes leftover after parsing attributes in process `syz.2.336'.
[  170.224680][ T7225] netlink: 8 bytes leftover after parsing attributes in process `syz.2.336'.
[  170.307118][  T869] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  170.323747][  T869] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.333319][  T869] usb 1-1: Product: syz
[  170.338946][  T869] usb 1-1: Manufacturer: syz
[  170.343663][  T869] usb 1-1: SerialNumber: syz
[  170.349561][  T869] usb 1-1: config 0 descriptor??
[  170.561351][  T869] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  170.638773][ T7235] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  170.646232][ T7235] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  170.653440][ T7235] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  170.659673][ T7235] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  170.666951][ T7235] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  171.083868][  T869] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  171.107877][  T869] usb 1-1: USB disconnect, device number 7
[  171.152486][   T10] usb 4-1: 0:2 : does not exist
[  171.169581][   T10] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  171.203368][    T9] usb 2-1: 0:2 : does not exist
[  171.211183][   T10] usb 4-1: USB disconnect, device number 8
[  171.240389][    T9] usb 2-1: USB disconnect, device number 8
[  171.314682][ T5822] udevd[5822]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  171.332047][ T5823] udevd[5823]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  171.527394][   T30] audit: type=1400 audit(1760871277.998:472): avc:  denied  { mount } for  pid=7246 comm="syz.3.345" name="/" dev="rpc_pipefs" ino=14225 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  171.550334][    C0] vkms_vblank_simulate: vblank timer overrun
[  171.730934][    T9] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  171.913899][    T9] usb 2-1: Using ep0 maxpacket: 16
[  171.940967][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  172.376502][    T9] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  172.571745][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.571788][   T30] audit: type=1400 audit(1760871278.728:473): avc:  denied  { unlink } for  pid=7254 comm="syz.3.348" name="#1" dev="tmpfs" ino=413 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  172.602167][    C0] vkms_vblank_simulate: vblank timer overrun
[  172.611449][    T9] usb 2-1: config 0 descriptor??
[  172.674058][ T5819] Bluetooth: hci4: command 0x0c1a tx timeout
[  172.675893][ T5824] Bluetooth: hci3: command 0x0c1a tx timeout
[  172.680087][   T52] Bluetooth: hci0: command 0x0c1a tx timeout
[  172.686081][ T5824] Bluetooth: hci1: command 0x0c1a tx timeout
[  172.692047][ T5829] Bluetooth: hci2: command 0x0c1a tx timeout
[  172.929798][   T30] audit: type=1400 audit(1760871278.738:474): avc:  denied  { mount } for  pid=7254 comm="syz.3.348" name="/" dev="overlay" ino=408 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  172.952011][   T30] audit: type=1400 audit(1760871279.038:475): avc:  denied  { unmount } for  pid=5810 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  172.955013][ T7265] batman_adv: batadv0: Removing interface: batadv_slave_0
[  172.971651][   T30] audit: type=1400 audit(1760871279.188:476): avc:  denied  { connect } for  pid=7260 comm="syz.0.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  172.998596][   T30] audit: type=1400 audit(1760871279.188:477): avc:  denied  { write } for  pid=7260 comm="syz.0.349" path="socket:[14355]" dev="sockfs" ino=14355 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  173.238629][ T7265] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.246427][ T7265] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.282546][ T7279] syz.3.351 uses obsolete (PF_INET,SOCK_PACKET)
[  173.735871][    T9] usbhid 2-1:0.0: can't add hid device: -71
[  173.745318][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  173.769433][ T7284] netlink: 4 bytes leftover after parsing attributes in process `syz.0.355'.
[  173.769739][    T9] usb 2-1: USB disconnect, device number 9
[  173.901450][ T7284] syz_tun (unregistering): left promiscuous mode
[  173.919126][   T30] audit: type=1400 audit(1760871280.378:478): avc:  denied  { create } for  pid=7285 comm="syz.4.356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  173.964472][   T30] audit: type=1400 audit(1760871280.388:479): avc:  denied  { connect } for  pid=7285 comm="syz.4.356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  173.984040][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.041646][   T30] audit: type=1400 audit(1760871280.508:480): avc:  denied  { ioctl } for  pid=7285 comm="syz.4.356" path="socket:[14456]" dev="sockfs" ino=14456 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  174.066104][    C0] vkms_vblank_simulate: vblank timer overrun
[  174.196325][ T7293] netlink: 36 bytes leftover after parsing attributes in process `syz.4.359'.
[  175.577431][   T30] audit: type=1400 audit(1760871281.548:481): avc:  denied  { bind } for  pid=7299 comm="syz.0.360" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  181.038797][ T7383] netlink: 'syz.2.382': attribute type 6 has an invalid length.
[  181.929480][  T869] kernel read not supported for file /video7 (pid: 869 comm: kworker/0:2)
[  181.971991][ T7392] netlink: 8 bytes leftover after parsing attributes in process `syz.2.387'.
[  182.192637][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  182.192666][   T30] audit: type=1400 audit(1760871288.648:484): avc:  denied  { name_bind } for  pid=7398 comm="syz.2.389" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  183.707002][ T7415] tipc: Can't bind to reserved service type 1
[  183.717090][   T30] audit: type=1400 audit(1760871290.178:485): avc:  denied  { bind } for  pid=7410 comm="syz.4.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  186.111096][   T30] audit: type=1400 audit(1760871292.578:486): avc:  denied  { write } for  pid=7434 comm="syz.4.401" name="binder0" dev="binder" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  187.331012][   T30] audit: type=1400 audit(1760871292.618:487): avc:  denied  { sqpoll } for  pid=7432 comm="syz.3.398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  189.434168][   T30] audit: type=1400 audit(1760871295.898:488): avc:  denied  { create } for  pid=7468 comm="syz.1.409" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  189.568631][ T7470] input: syz1 as /devices/virtual/input/input10
[  189.588109][   T30] audit: type=1400 audit(1760871295.928:489): avc:  denied  { bind } for  pid=7468 comm="syz.1.409" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  189.739109][   T30] audit: type=1400 audit(1760871295.928:490): avc:  denied  { listen } for  pid=7468 comm="syz.1.409" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  189.962344][   T30] audit: type=1400 audit(1760871296.088:491): avc:  denied  { read } for  pid=5169 comm="acpid" name="event4" dev="devtmpfs" ino=2959 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  190.213427][   T30] audit: type=1400 audit(1760871296.088:492): avc:  denied  { open } for  pid=5169 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2959 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  190.375860][   T30] audit: type=1400 audit(1760871296.088:493): avc:  denied  { ioctl } for  pid=5169 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2959 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  190.400807][   T30] audit: type=1400 audit(1760871296.148:494): avc:  denied  { watch } for  pid=7465 comm="syz.2.407" path="/88/file0" dev="tmpfs" ino=494 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  190.440631][   T30] audit: type=1400 audit(1760871296.908:495): avc:  denied  { read write } for  pid=7474 comm="syz.0.411" name="rdma_cm" dev="devtmpfs" ino=1271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  190.491434][   T30] audit: type=1400 audit(1760871296.908:496): avc:  denied  { open } for  pid=7474 comm="syz.0.411" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1271 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  192.357099][ T7499] No control pipe specified
[  192.910694][ T7509] netlink: 24 bytes leftover after parsing attributes in process `syz.3.421'.
[  192.974852][ T7510] netlink: 20 bytes leftover after parsing attributes in process `syz.2.420'.
[  193.064625][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  193.064655][   T30] audit: type=1400 audit(1760871299.378:499): avc:  denied  { wake_alarm } for  pid=7508 comm="syz.3.421" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  193.498544][ T7515] input: syz1 as /devices/virtual/input/input11
[  194.075900][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  194.084462][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  194.409576][   T30] audit: type=1400 audit(1760871300.838:500): avc:  denied  { bind } for  pid=7529 comm="syz.0.427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  195.252004][ T7555] capability: warning: `syz.1.432' uses 32-bit capabilities (legacy support in use)
[  195.996143][ T7559] input: syz1 as /devices/virtual/input/input12
[  196.034024][ T7560] tipc: Started in network mode
[  196.049084][ T7560] tipc: Node identity 4, cluster identity 4711
[  196.073624][ T7560] tipc: Node number set to 4
[  197.110143][ T7582] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7582 comm=syz.1.443
[  197.777389][   T30] audit: type=1400 audit(1760871304.228:501): avc:  denied  { read } for  pid=7579 comm="syz.3.444" laddr=::ac14:14aa lport=35909 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  198.328863][ T7593] ==================================================================
[  198.336936][ T7593] BUG: KASAN: slab-out-of-bounds in __cpa_addr+0x1d3/0x220
[  198.344113][ T7593] Read of size 8 at addr ffff88807dcdf4f8 by task syz.3.447/7593
[  198.351813][ T7593] 
[  198.354112][ T7593] CPU: 0 UID: 0 PID: 7593 Comm: syz.3.447 Not tainted syzkaller #0 PREEMPT(full) 
[  198.354129][ T7593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  198.354136][ T7593] Call Trace:
[  198.354141][ T7593]  <TASK>
[  198.354147][ T7593]  dump_stack_lvl+0x116/0x1f0
[  198.354164][ T7593]  print_report+0xcd/0x630
[  198.354180][ T7593]  ? __virt_addr_valid+0x81/0x610
[  198.354198][ T7593]  ? __phys_addr+0xe8/0x180
[  198.354210][ T7593]  ? __cpa_addr+0x1d3/0x220
[  198.354223][ T7593]  kasan_report+0xe0/0x110
[  198.354239][ T7593]  ? __cpa_addr+0x1d3/0x220
[  198.354254][ T7593]  __cpa_addr+0x1d3/0x220
[  198.354268][ T7593]  cpa_flush+0x28b/0x8a0
[  198.354283][ T7593]  ? __pfx_cpa_flush+0x10/0x10
[  198.354298][ T7593]  ? pgprot2cachemode+0x9a/0x130
[  198.354311][ T7593]  ? __pfx_pgprot2cachemode+0x10/0x10
[  198.354323][ T7593]  ? drm_gem_get_pages+0x6a0/0xa10
[  198.354342][ T7593]  change_page_attr_set_clr+0x34e/0x4a0
[  198.354358][ T7593]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[  198.354379][ T7593]  _set_pages_array+0x1ab/0x2c0
[  198.354395][ T7593]  drm_gem_shmem_get_pages_locked+0x384/0x490
[  198.354412][ T7593]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[  198.354427][ T7593]  ? __pfx___might_resched+0x10/0x10
[  198.354440][ T7593]  drm_gem_shmem_mmap+0xc9/0x550
[  198.354454][ T7593]  ? __pfx_drm_gem_shmem_object_mmap+0x10/0x10
[  198.354470][ T7593]  drm_gem_mmap_obj+0x1b5/0x560
[  198.354486][ T7593]  drm_gem_mmap+0x40b/0x620
[  198.354503][ T7593]  ? __pfx_drm_gem_mmap+0x10/0x10
[  198.354519][ T7593]  ? vm_area_alloc+0x1f/0x160
[  198.354531][ T7593]  ? lockdep_init_map_type+0x5c/0x280
[  198.354546][ T7593]  __mmap_region+0x1309/0x27a0
[  198.354560][ T7593]  ? __pfx___mmap_region+0x10/0x10
[  198.354573][ T7593]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  198.354584][ T7593]  ? audit_log_end+0x1f/0x30
[  198.354599][ T7593]  ? audit_log_end+0x1f/0x30
[  198.354613][ T7593]  ? common_lsm_audit+0x260/0x300
[  198.354644][ T7593]  ? __lock_acquire+0xb8a/0x1c90
[  198.354659][ T7593]  mmap_region+0x1ab/0x3f0
[  198.354671][ T7593]  ? __get_unmapped_area+0x267/0x440
[  198.354688][ T7593]  do_mmap+0xa3e/0x1210
[  198.354704][ T7593]  ? __pfx_do_mmap+0x10/0x10
[  198.354719][ T7593]  ? __pfx_down_write_killable+0x10/0x10
[  198.354737][ T7593]  vm_mmap_pgoff+0x29e/0x470
[  198.354753][ T7593]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  198.354770][ T7593]  ? __fget_files+0x20e/0x3c0
[  198.354785][ T7593]  ksys_mmap_pgoff+0x32c/0x5c0
[  198.354802][ T7593]  __x64_sys_mmap+0x125/0x190
[  198.354816][ T7593]  do_syscall_64+0xcd/0xfa0
[  198.354831][ T7593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.354842][ T7593] RIP: 0033:0x7f28f978efc9
[  198.354852][ T7593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.354863][ T7593] RSP: 002b:00007f28fa628038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  198.354874][ T7593] RAX: ffffffffffffffda RBX: 00007f28f99e6090 RCX: 00007f28f978efc9
[  198.354881][ T7593] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[  198.354889][ T7593] RBP: 00007f28f9811f91 R08: 0000000000000007 R09: 0000000100000000
[  198.354896][ T7593] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  198.354902][ T7593] R13: 00007f28f99e6128 R14: 00007f28f99e6090 R15: 00007fff78cb98c8
[  198.354914][ T7593]  </TASK>
[  198.354918][ T7593] 
[  198.679822][ T7593] Allocated by task 7593:
[  198.684129][ T7593]  kasan_save_stack+0x33/0x60
[  198.688792][ T7593]  kasan_save_track+0x14/0x30
[  198.693449][ T7593]  __kasan_kmalloc+0xaa/0xb0
[  198.698021][ T7593]  __kvmalloc_node_noprof+0x3a3/0x9c0
[  198.703373][ T7593]  drm_gem_get_pages+0x144/0xa10
[  198.708293][ T7593]  drm_gem_shmem_get_pages_locked+0x1e6/0x490
[  198.714342][ T7593]  drm_gem_shmem_mmap+0xc9/0x550
[  198.719260][ T7593]  drm_gem_mmap_obj+0x1b5/0x560
[  198.724096][ T7593]  drm_gem_mmap+0x40b/0x620
[  198.728580][ T7593]  __mmap_region+0x1309/0x27a0
[  198.733324][ T7593]  mmap_region+0x1ab/0x3f0
[  198.737719][ T7593]  do_mmap+0xa3e/0x1210
[  198.741860][ T7593]  vm_mmap_pgoff+0x29e/0x470
[  198.746434][ T7593]  ksys_mmap_pgoff+0x32c/0x5c0
[  198.751182][ T7593]  __x64_sys_mmap+0x125/0x190
[  198.755844][ T7593]  do_syscall_64+0xcd/0xfa0
[  198.760329][ T7593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.766200][ T7593] 
[  198.768502][ T7593] The buggy address belongs to the object at ffff88807dcdf400
[  198.768502][ T7593]  which belongs to the cache kmalloc-256 of size 256
[  198.782531][ T7593] The buggy address is located 0 bytes to the right of
[  198.782531][ T7593]  allocated 248-byte region [ffff88807dcdf400, ffff88807dcdf4f8)
[  198.796995][ T7593] 
[  198.799297][ T7593] The buggy address belongs to the physical page:
[  198.805682][ T7593] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7dcde
[  198.814416][ T7593] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  198.822889][ T7593] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  198.830844][ T7593] page_type: f5(slab)
[  198.834803][ T7593] raw: 00fff00000000040 ffff88813ff26b40 0000000000000000 dead000000000001
[  198.843364][ T7593] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  198.851924][ T7593] head: 00fff00000000040 ffff88813ff26b40 0000000000000000 dead000000000001
[  198.860570][ T7593] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  198.869227][ T7593] head: 00fff00000000001 ffffea0001f73781 00000000ffffffff 00000000ffffffff
[  198.877883][ T7593] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  198.886531][ T7593] page dumped because: kasan: bad access detected
[  198.892922][ T7593] page_owner tracks the page as allocated
[  198.898615][ T7593] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5807, tgid 5807 (syz-executor), ts 68069928075, free_ts 67976821307
[  198.919960][ T7593]  post_alloc_hook+0x1c0/0x230
[  198.924710][ T7593]  get_page_from_freelist+0x10a3/0x3a30
[  198.930235][ T7593]  __alloc_frozen_pages_noprof+0x25f/0x2470
[  198.936106][ T7593]  alloc_pages_mpol+0x1fb/0x550
[  198.940940][ T7593]  new_slab+0x24a/0x360
[  198.945074][ T7593]  ___slab_alloc+0xdc4/0x1ae0
[  198.949733][ T7593]  __slab_alloc.constprop.0+0x63/0x110
[  198.955180][ T7593]  __kmalloc_cache_noprof+0x477/0x780
[  198.960536][ T7593]  ____ip_mc_inc_group+0x403/0x10f0
[  198.965720][ T7593]  ip_mc_up+0x154/0x3b0
[  198.969862][ T7593]  inetdev_event+0xafb/0x18a0
[  198.974515][ T7593]  notifier_call_chain+0xbc/0x410
[  198.979521][ T7593]  call_netdevice_notifiers_info+0xbe/0x140
[  198.985405][ T7593]  __dev_notify_flags+0x12c/0x2e0
[  198.990415][ T7593]  netif_change_flags+0x108/0x160
[  198.995430][ T7593]  do_setlink.constprop.0+0xb53/0x4380
[  199.000881][ T7593] page last free pid 5811 tgid 5811 stack trace:
[  199.007184][ T7593]  __free_frozen_pages+0x7df/0x1160
[  199.012359][ T7593]  qlist_free_all+0x4d/0x120
[  199.016933][ T7593]  kasan_quarantine_reduce+0x195/0x1e0
[  199.022377][ T7593]  __kasan_slab_alloc+0x69/0x90
[  199.027214][ T7593]  __kmalloc_cache_noprof+0x274/0x780
[  199.032564][ T7593]  nsim_fib_event_work+0x1279/0x6da0
[  199.037829][ T7593]  process_one_work+0x9cf/0x1b70
[  199.042756][ T7593]  worker_thread+0x6c8/0xf10
[  199.047335][ T7593]  kthread+0x3c5/0x780
[  199.051396][ T7593]  ret_from_fork+0x675/0x7d0
[  199.055984][ T7593]  ret_from_fork_asm+0x1a/0x30
[  199.060731][ T7593] 
[  199.063032][ T7593] Memory state around the buggy address:
[  199.068637][ T7593]  ffff88807dcdf380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  199.076676][ T7593]  ffff88807dcdf400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  199.084720][ T7593] >ffff88807dcdf480: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc
[  199.092759][ T7593]                                                                 ^
[  199.100711][ T7593]  ffff88807dcdf500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  199.108749][ T7593]  ffff88807dcdf580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  199.116784][ T7593] ==================================================================
[  199.129905][ T7593] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  199.137097][ T7593] CPU: 0 UID: 0 PID: 7593 Comm: syz.3.447 Not tainted syzkaller #0 PREEMPT(full) 
[  199.146270][ T7593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  199.156306][ T7593] Call Trace:
[  199.159565][ T7593]  <TASK>
[  199.162474][ T7593]  dump_stack_lvl+0x3d/0x1f0
[  199.167050][ T7593]  vpanic+0x640/0x6f0
[  199.171017][ T7593]  panic+0xca/0xd0
[  199.174718][ T7593]  ? __pfx_panic+0x10/0x10
[  199.179124][ T7593]  check_panic_on_warn+0xab/0xb0
[  199.184043][ T7593]  end_report+0x107/0x170
[  199.188357][ T7593]  kasan_report+0xee/0x110
[  199.192759][ T7593]  ? __cpa_addr+0x1d3/0x220
[  199.197250][ T7593]  __cpa_addr+0x1d3/0x220
[  199.201561][ T7593]  cpa_flush+0x28b/0x8a0
[  199.205790][ T7593]  ? __pfx_cpa_flush+0x10/0x10
[  199.210538][ T7593]  ? pgprot2cachemode+0x9a/0x130
[  199.215453][ T7593]  ? __pfx_pgprot2cachemode+0x10/0x10
[  199.220802][ T7593]  ? drm_gem_get_pages+0x6a0/0xa10
[  199.225901][ T7593]  change_page_attr_set_clr+0x34e/0x4a0
[  199.231438][ T7593]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[  199.237498][ T7593]  _set_pages_array+0x1ab/0x2c0
[  199.242336][ T7593]  drm_gem_shmem_get_pages_locked+0x384/0x490
[  199.248389][ T7593]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[  199.254963][ T7593]  ? __pfx___might_resched+0x10/0x10
[  199.260242][ T7593]  drm_gem_shmem_mmap+0xc9/0x550
[  199.265164][ T7593]  ? __pfx_drm_gem_shmem_object_mmap+0x10/0x10
[  199.271300][ T7593]  drm_gem_mmap_obj+0x1b5/0x560
[  199.276140][ T7593]  drm_gem_mmap+0x40b/0x620
[  199.280629][ T7593]  ? __pfx_drm_gem_mmap+0x10/0x10
[  199.285637][ T7593]  ? vm_area_alloc+0x1f/0x160
[  199.290295][ T7593]  ? lockdep_init_map_type+0x5c/0x280
[  199.295651][ T7593]  __mmap_region+0x1309/0x27a0
[  199.300397][ T7593]  ? __pfx___mmap_region+0x10/0x10
[  199.305492][ T7593]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  199.311450][ T7593]  ? audit_log_end+0x1f/0x30
[  199.316038][ T7593]  ? audit_log_end+0x1f/0x30
[  199.320608][ T7593]  ? common_lsm_audit+0x260/0x300
[  199.325624][ T7593]  ? __lock_acquire+0xb8a/0x1c90
[  199.330540][ T7593]  mmap_region+0x1ab/0x3f0
[  199.334947][ T7593]  ? __get_unmapped_area+0x267/0x440
[  199.340208][ T7593]  do_mmap+0xa3e/0x1210
[  199.344343][ T7593]  ? __pfx_do_mmap+0x10/0x10
[  199.348919][ T7593]  ? __pfx_down_write_killable+0x10/0x10
[  199.354529][ T7593]  vm_mmap_pgoff+0x29e/0x470
[  199.359107][ T7593]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  199.364193][ T7593]  ? __fget_files+0x20e/0x3c0
[  199.368843][ T7593]  ksys_mmap_pgoff+0x32c/0x5c0
[  199.373587][ T7593]  __x64_sys_mmap+0x125/0x190
[  199.378256][ T7593]  do_syscall_64+0xcd/0xfa0
[  199.382749][ T7593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.388618][ T7593] RIP: 0033:0x7f28f978efc9
[  199.393013][ T7593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.412599][ T7593] RSP: 002b:00007f28fa628038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  199.420994][ T7593] RAX: ffffffffffffffda RBX: 00007f28f99e6090 RCX: 00007f28f978efc9
[  199.428941][ T7593] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[  199.436890][ T7593] RBP: 00007f28f9811f91 R08: 0000000000000007 R09: 0000000100000000
[  199.444839][ T7593] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  199.452787][ T7593] R13: 00007f28f99e6128 R14: 00007f28f99e6090 R15: 00007fff78cb98c8
[  199.460741][ T7593]  </TASK>
[  199.463934][ T7593] Kernel Offset: disabled
[  199.468230][ T7593] Rebooting in 86400 seconds..