last executing test programs:

1m10.569946395s ago: executing program 1 (id=673):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000580)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r6 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$KVM_CAP_EXCEPTION_PAYLOAD(r6, 0x4068aea3, &(0x7f0000000280)={0xa4, 0x0, 0x1})
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_MCAST_MSFILTER(r7, 0x0, 0x30, &(0x7f0000000280)={0x0, {{0x2, 0x0, @multicast1}}}, 0xfd34)
r8 = fcntl$getown(r4, 0x9)
sched_setaffinity(r8, 0x8, &(0x7f0000000080))
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r5, 0x0, 0x0)
bind$inet(r5, &(0x7f00000000c0)={0x2, 0x4e22, @multicast1}, 0x10)
r9 = syz_io_uring_setup(0x4af4, &(0x7f0000000100)={0x0, 0x57cf, 0x20, 0x0, 0x1a3}, &(0x7f0000000180), &(0x7f00000001c0))
r10 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(r10, 0x40806685, &(0x7f0000000d40))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r9, 0x7, &(0x7f0000000200)=r10, 0x1)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001780)=ANY=[@ANYBLOB="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"], 0x16c}}, 0x0)

1m10.332037183s ago: executing program 1 (id=675):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
prctl$PR_SCHED_CORE(0x25, 0x20000000000002, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_RELEASE_PORT(r0, 0x4004550d, 0x0)

1m5.315803633s ago: executing program 2 (id=691):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20}}, 0x120)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x4000000000000001, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00'}, 0x10)
unshare(0x2a020400)
semget$private(0x0, 0x2, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x500, 0x0, 0x1800}], 0x1, 0x0)
syz_emit_vhci(0x0, 0x7)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e1f0a"], 0x22)
syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_reply={{0x32, 0x9}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x40, 0x9}}}, 0xc)
socket(0x10, 0x80002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x9, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="720aacff0000000071102b00000000009500000000000000"], &(0x7f0000000480)='GPL\x00'}, 0x90)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$inet_udplite(0x2, 0x2, 0x88)

1m2.349214634s ago: executing program 2 (id=695):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0x0, &(0x7f0000000100), &(0x7f0000000080)=0x4)

1m1.706503737s ago: executing program 2 (id=697):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
gettid()
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r1, 0x84, 0x7f, &(0x7f00000011c0)=""/4072, &(0x7f0000001180)=0xfe8)
r2 = syz_open_dev$cec(&(0x7f0000000680), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000500)={"a0453822", 0x0, 0x6, 0x2, 0x0, 0x0, "3377f877c734c4f928875ab8db00", "000100", "0200", "be4d22a4", ["c38600008000080000e6fc00", "51f3541a910080ffffcb3a10", "2ce50f8a285d9500c522afe1"]})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_REMOVE(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000003c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000050}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="030dbd39bc5a4480524eea27e9c90000397058abce57033f29eb6dc1f8b110a7cfa5a5495ffc36ac891ea6f898ba2a0784b3781c59e6bd91a231a605e31def18cdff000000c81a8fdd065d5641794f0b7cae298b7efd3f6946179a16868bdf8efc30ccc25a1c35afbac80800d5be1cd2a3a54e4e9d3c2987a460bc4699d9fea4dc5e0a9f71a64a5acb3b62841f882e99eeb510b093919cf605c3f8"], 0x3d)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000300)='vegas\x00', 0xfd9b)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast1, 0x2}, 0x1c)
write$binfmt_script(r4, &(0x7f0000000200), 0xfffffd9d)
syz_emit_vhci(&(0x7f0000000580)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa1}, @l2cap_cid_signaling={{0x9d}, [@l2cap_info_rsp={{0xb, 0x0, 0x4b}, {0x1, 0x4458, "df72b6d009681b6899c49817261a109aeecde1fd1a29f0133ead90a95d5666958c65f407c4e2e6efbe72d0e7e246885e3560f01f1e12c4c6bc9adf78245d780975414f84a5def9"}}, @l2cap_conf_req={{0x4, 0x4, 0x1a}, {0x87f3, 0x8, [@l2cap_conf_efs={0x6, 0x10, {0x4, 0x0, 0x3, 0x4, 0x3, 0xff}}, @l2cap_conf_ews={0x7, 0x2, 0x4b1}]}}, @l2cap_conn_req={{0x2, 0x42, 0x4}, {0x3, 0x2}}, @l2cap_disconn_rsp={{0x7, 0xf8, 0x4}, {0x200, 0x5}}, @l2cap_move_chan_cfm={{0x10, 0x5, 0x4}, {0x7, 0x3}}, @l2cap_disconn_rsp={{0x7, 0xf5, 0x4}, {0x851, 0x7}}, @l2cap_disconn_rsp={{0x7, 0x7, 0x4}, {0x3, 0x4ee}}, @l2cap_move_chan_cfm={{0x10, 0xf, 0x4}, {0x3}}]}}, 0xa6)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r5 = inotify_init()
inotify_add_watch(r5, &(0x7f0000000180)='./file0\x00', 0x80000108)
inotify_add_watch(r5, &(0x7f0000000040)='./file0\x00', 0x16000281)
syz_emit_vhci(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

56.396597837s ago: executing program 2 (id=706):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {0xa, 0x10, 0x10}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)

55.347541857s ago: executing program 2 (id=710):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
prctl$PR_SCHED_CORE(0x25, 0x20000000000002, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_RELEASE_PORT(r0, 0x4004550d, 0x0)

44.581546697s ago: executing program 1 (id=700):
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_ringparam={0x11}})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x10001, 0x9, 0x1}, 0x48)
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0xc, 0x0, 0x1}, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="2400f12ee3af02000000f0ff7fff0000000008001900", @ANYRES32=0x0, @ANYBLOB], 0x24}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x54, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x20000000, {0x2, 0x1f, 0x4, 0x1}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@action_no_ack={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @device_a, @broadcast, @random="c69763e644ef", {0x5}, @value=@ver_80211n={0x0, 0x80, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}}, @tdls_setup_cfm={0xc, 0x2, {0x2c, 0x3}}}, 0x21)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r5, 0x0, 0x2a, &(0x7f0000000040)={0x6, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108)
setsockopt$inet_group_source_req(r5, 0x0, 0x2d, &(0x7f0000000300)={0x6, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @loopback}}}, 0x108)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04010000000c000000"], 0x9)
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=ANY=[@ANYBLOB="b00000000802110000010802110000000802110400001013292c1242fa79"], 0x1e)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, 0x0)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x5, [{0x0, 0x1}, {0x4}, {0xb, 0x1}, {}, {}]}, @void}, 0x25)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8922, &(0x7f0000000040)={'erspan0\x00', &(0x7f00000000c0)=@ethtool_rxnfc={0x0, 0x0, 0x0, {0x0, @hdata="ad65c8435d8a74855146175c4823057931ddd8de52215a0cba4b92c305c136df3a767ec61275c88bbeee48cc3ad39e98881843ed", {}, @esp_ip4_spec={@multicast1, @dev}, {0x0, @local}}}})
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000640)={{0xa, 0x4e22, 0xffff, @private1, 0x2}, {0xa, 0x4e23, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1}, 0xffffffffffffffff, {[0x8000, 0x4, 0xfff, 0x4, 0x1000, 0x1000, 0x0, 0x3ff]}}, 0x5c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000a80)='ext4_writepages\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r6, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

42.091623825s ago: executing program 1 (id=733):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x67, '\x00', 0x0, 0x0}, 0x48)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}}}, 0x7)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="04300300c8003956eb7141856b687430ce54a0b02902823bbd5162b438922e5dac3785d66ae6f6512579b8ac3ef6ad4696c428f0af2cc0ad53a89ff64ede2bc5aeed349dd3386c272fb619e73e3796b07335d59bc10fcd10ab4705d1e242f5056f773a62f3031c1c7b0e1b437b1a0307fe843e5bd3ae5782a60e914129c49961e6505d6456083051e0cfc836e561e2af02ba3f1d08e6615b03bee294106c8ab81d7884321fecd3040ec3beed188bd6812b7a"], 0x6)
syz_emit_vhci(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r6, @ANYBLOB="0a0034000202020202020000080026004c"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_SET_WOWLAN(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000002d00)={0x18fc, r3, 0x2, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x50}, @val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_WOWLAN_TRIGGERS={0x618, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_TCP_CONNECTION={0x218, 0xe, 0x0, 0x1, [@NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ={0x10, 0x7, {0xd, 0x7, 0x9}}, @NL80211_WOWLAN_TCP_DATA_INTERVAL={0x8, 0x9, 0x400}, @NL80211_WOWLAN_TCP_WAKE_MASK={0x2c, 0xb, "62723b9429c8c218fd759e2746617941eed93a8110d78b9b5777ecb10d0334163f31af1f2c47c029"}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @broadcast}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD={0x91, 0x6, "54c3ef67070e8aeca8f68d44d50f6358ed9cbec8c102b53973c53aba07f3307382170ad42601d2dbd56933316fd3ed786be06dd0a6eb6594b15c8a5e4842a68dc225ca541dcf7065bd61500f0dfc29d9a9362e4d7bbea8f51b11fcc32cd5ccd362f5f092a82a94f8af4444f0713664bc4a497d5f14e65586ce885009f9c1df10e59656ee7c420d3060f2d62cbc"}, @NL80211_WOWLAN_TCP_SRC_PORT={0x6, 0x4, 0x1}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @broadcast}, @NL80211_WOWLAN_TCP_WAKE_MASK={0x2f, 0xb, "52eb07a3437a00c773419d36e8b23879da69096d21288533880c95b691230005100c615d350c9cce738eaa"}, @NL80211_WOWLAN_TCP_WAKE_PAYLOAD={0xec, 0xa, "2e9fca2c530157660742712480842496ca2ed8308ef1f7fafb867a45c5abc29643f40f88454152be2c37997aef0081e08052587a133cfaab38ea3d908325461801e5154da54f1499a6f8759afe0bf8e3ea9cf486b1a26e109973272e22e68d6955416ad67507b0702a42fe7f7e357e3cc3afc5ac5adcce144f8d7a65beb4a806a0e45824cef5a41934ff6690a2386beb5ff2e6dda5f8537f6705f47db69c9b99db5175572d4e37cd4c2a51cc3a239ede59eaeacc04cd0b01a73dddfdcfa2cfd3aee2c4fe6e88aadfe0ae4394b877541ea14bc6de1f42926cd21de08b54f9d21bbe5c35fcbaefcdd0"}]}, @NL80211_WOWLAN_TRIG_PKT_PATTERN={0x3fc, 0x4, 0x0, 0x1, [{0x2d0, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_PATTERN={0xdf, 0x2, "b0e5fb67e70950cba3c9d9e407612d10dfa587108cef10868cab317d3c81b5ed5085dd2408d6fba447df869e48ed7a068fa479097dcd09b8d19c360032d20590390656626f54eab2157d050589ed89df77659ba1f19d1ea2cf8a7e3aded9d8c3cd23da610f866193e9e154c107a1752da4108ee00302244121adb8494c1b9e37c3141be8357fc278a6da480e29c7780869c799ea36fa5dd24627fa9e5c4829542f0501ce5b96175533beee3cdcd27de6765c403a3f0c55c1c829d5e013fc3e9d54742f22f774903b6ec07b1d239498e2b94168815f399fe1eddaea"}, @NL80211_PKTPAT_MASK={0xce, 0x1, "8ca99fa64b1786e53cc801936e6f06d87f56ea6aa94e5972afbaca806b9a63d2592b8571962d335d38fdd7953ed25793690b74823e141e01e2824bb56faccdf11ab17eb27e274c53b219b0c7834330cefb0aa6fe377c62e8e3d8d22b92a38f879686c26a12dd1c9936d444498749ca5bc1c07798d6b7bd70540e56252e0c0866d81a489850cfa088230234a1fe0f1fe19145e80b32313d50741e9c35951a2ff62e45bbecc650568203a27c779078d81a9091c019b44f9a30569c58ed2b7e22e980e5eda462c79457e921"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x1}, @NL80211_PKTPAT_MASK={0x79, 0x1, "fa2d7e8401ac657a0c71a90e0caab0246928df946f1be9c1e6b8104ffb12ac71ad15d118c75bf4e7fd4b6bb0921119f3b74b88341c773820ec8a5206d75fd7eeeb4e264ab876a2eda1a5f433bb6f6afa560efc3944707638a3edea8d5bb87d84c31bd905bc8521a957cff409326aa93303d8670c38"}, @NL80211_PKTPAT_PATTERN={0xa, 0x2, "e4b9e05bf94a"}, @NL80211_PKTPAT_PATTERN={0x23, 0x2, "bc3c5faeeadc57fb5808009441f523dba086c971a09c9e7d75a1e43ad9b862"}, @NL80211_PKTPAT_MASK={0x65, 0x1, "e8a15a874a3916b7533febaeede9a637a8d75b4cbaa03fb556eb60a4bfb54ebe06d6781cd6136789b09ca9d46f37c289f57f22f2b904d54e7d21b2df71f2011504666517355b2546770bf5878522d68ac305971fd624005ff7dfee23db248de967"}]}, {0xcc, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_MASK={0xc8, 0x1, "bb80e781650e655840ed56a8d05d71a63d21bae6e91d2c9396dd282bf9c79fecff2ddce401887c3894cf3621f878e1c4ea67c5e55e1d97273d00e13e6d9d9e3f6311d82f2da81357831e3365250f618827a707d852fc40c598c14c59da930fc79e1226c9583836c9ab13d38100db59f635cb0b3b08cdcffcb673797979ab0ff662bacbaae79607a33d0995ef8564203106606c9b255ff52a0e666a68c3f887ba5baf65b4863b69be5cf5a93ef92c4023405b32a2d567121958c7fd4d5c97477c73a0e98a"}]}, {0x5c, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_PATTERN={0x56, 0x2, "8071cea1cdba2759638dba220ac5fe6e16c07f69c330bf1aa4183c7266f1ca3a29257fbcc4d93bfb8ad0cf01592a05740bc16f8f9de8a3dfaca30f2312a96a18b3b945a06e8ce42da3bc41627375c4f15d71"}]}]}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x12a8, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST={0x4}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}, @NL80211_WOWLAN_TRIG_ANY={0x4}, @NL80211_WOWLAN_TRIG_PKT_PATTERN={0x1294, 0x4, 0x0, 0x1, [{0x288, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_PATTERN={0xd8, 0x2, "53d1f905c991853cae7c88c13fc2070fcfa767819d478175b2fa0dafb2d42fb1e6e896125036fc6844075985c8a3301fb90f0dc57052919a23b59897c14a53c0d14c7e35ffcdb94d32aed4dd513f3ba61670a22744fe1e993867515505baee74d5d28e70b21843f7ba5d4f90dd37c2c75c89ea341c08e0aa0acdd23f73e488ba3d02d606bf910ad59c486a7379274821f33c44d4943d2e5fb7480563ffb5b0485b61bf1beacebb7f34b782379593c1ef50d9efa267e4fe94b67f4ecebb1e7c89d3d7a8a82626eb326190b2ed0a44c4d96b485820"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x200}, @NL80211_PKTPAT_MASK={0x71, 0x1, "a3e0814d8f486d27e38fe36b49f97ca65bf7a322e6e5821e3e78987f5432aafe37f25f7f7a910827542b51c290926b8ad58d4d06232fe296269702f4657778c5f34484a32f98e32adc456a0cd911e15db23d352a442808e2020038ff56da0886a7353cf95f0914b62ee88853a1"}, @NL80211_PKTPAT_MASK={0x34, 0x1, "ca2661dc7df0a8c359d97b96b188cd26c6a110ba4d96ca53afc02fad228079b7561d84b688c6a7e2d59bde89c68e133d"}, @NL80211_PKTPAT_MASK={0x13, 0x1, "6f9afb33b67b8115b6f4b1a0472f01"}, @NL80211_PKTPAT_MASK={0xe6, 0x1, "c2a8f5c6448fcb536d645929c316b2c324b8a2a52a6ae5e93ebda154efb7988fd21ce28b2459c75954b5e1d4774486213440efa39a8b1bec677faee2feea66ed9daaa1e6dcdc0b229f53b3777fe49d2a614283645fea10bf0787ccfbcb55d23ac4b7d0807660e7c0217ea80f489ad87f381e0af961ee1c6335e8d4f83a74d439fd843e8fd3ee75b0130f3ae3d96568da3c6a2265ae3f27efb3aaba7ed22e68853e878acc36a6012f19b41ca4a2f6ae216b1be749e0df7175ea868037bcdb259b1683ad597adf47ae221c3ff7b8920141fd33f80a42d8c0aebf6c21c57b39985742fd"}]}, {0x1008, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_MASK={0x1004, 0x1, "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"}]}]}, @NL80211_WOWLAN_TRIG_DISCONNECT={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x14, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_ANY={0x4}, @NL80211_WOWLAN_TRIG_ANY={0x4}, @NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST={0x4}, @NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x4}]}, 0x18fc}, 0x1, 0x0, 0x0, 0x20048801}, 0x40000)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x50, r5, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0xa, 0xbd, [0x8000, 0x8, 0xdfec]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_PLINK_ACTION={0x5}, @NL80211_ATTR_OPMODE_NOTIF={0x5}]}, 0x50}}, 0x8040)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f0000000000))
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
arch_prctl$ARCH_SHSTK_ENABLE(0x1011, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x6}, {0x66, 0x0, 0x0, 0x80ffffff}}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x1, 0x5, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}, {0x56}}], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

39.790209935s ago: executing program 1 (id=735):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x32, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x80})
io_submit(0x0, 0x0, 0x0)
io_setup(0xc, &(0x7f0000000040))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
socket$key(0xf, 0x3, 0x2)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
r8 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r8, 0xc018643a, &(0x7f0000000080)={0x4000000})
sendfile(r6, r7, 0x0, 0x20000023896)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

37.84590066s ago: executing program 1 (id=739):
r0 = creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, 0x0, 0x0)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$SIOCNRDECOBS(r4, 0x89e2)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000280)={{0xdd, 0xd0}, 'port1\x00', 0x2c, 0x180806, 0x40, 0x5, 0x4, 0xff, 0x1, 0x0, 0x3, 0x6})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl(r5, 0x8b21, &(0x7f0000000040))
syz_open_dev$dri(0x0, 0x1ff, 0x0)
modify_ldt$write(0x1, &(0x7f0000000040), 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
getpid()
accept4$x25(r0, &(0x7f0000000000), &(0x7f0000000040)=0x12, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
open(0x0, 0x30000, 0x130)

14.217219107s ago: executing program 4 (id=774):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="080027bd70be18291e4cad9c196900fddbdf2506000000050005000000000008000400080000000800020002000000"], 0x2c}, 0x1, 0x0, 0x0, 0x200008c0}, 0x240000c0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="043e1a0d011b0000aaaa000000000000000000000000ffffffffffff00"], 0x1d)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bca)
getpgid(0xffffffffffffffff)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="100000091414fdffffffffffffff0000"], 0x10}}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000100)=0x3)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206010100000000000000000000000005000100070000000900020073797a30000000000c000780080012400000100014000300686173683a69702c706f72742c697000050005000a000000050004"], 0x58}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
syz_emit_vhci(0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0x10}, @l2cap_cid_signaling={{0xc}, [@l2cap_info_req={{0xa, 0x5, 0x2}, {0x3}}, @l2cap_cmd_rej_unk={{0x1, 0x0, 0x2}}]}}, 0x15)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg(r4, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000022c0)=ANY=[], 0x148}}, 0x0)
r5 = accept4$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80400)
accept4(r5, &(0x7f00000000c0)=@ieee802154={0x24, @short}, &(0x7f0000000140)=0x80, 0x0)

12.114274028s ago: executing program 0 (id=778):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001100), 0x40a01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
syz_emit_ethernet(0x5e, &(0x7f0000001080)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd60cb763e00283afffe800000000000000000000000000000ff020000000000000000000000000001860090780000000000000000000000001803007c4de20278ab96e88afd5c976b4c1ce4a945b1aafb04afee5ec8c831c0b77c3ddc21702dd6e797"], 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0x1a, {"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", 0x1000}}, 0x1006)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="043e1a0d011b0000aaaa000000000000000000000000ffffffff"], 0x1d)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bca)
getpgid(0xffffffffffffffff)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="100000091414fdffffffffffffff0000"], 0x10}}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000100)=0x3)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = getpid()
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206010100000000000000000000000005000100070000000900020073797a30000000000c000780080012400000100014000300686173683a69702c706f72742c697000050005000a000000050004"], 0x58}}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000001140)=ANY=[@ANYBLOB="58000000020620010000000000e421000000000005000100070000000900020073797a30000000000c0007800800124000010000113ec600686173683a69702c6d61726b00"], 0x58}}, 0x0)
fsetxattr$trusted_overlay_origin(r2, &(0x7f0000001200), &(0x7f0000001240), 0x2, 0x3)
sched_setscheduler(r4, 0x1, &(0x7f0000000080)=0x6)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000140)='wg2\x00', 0x10)
write$binfmt_elf64(r5, &(0x7f0000000e40)=ANY=[], 0xfdef)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000040)="1c0000001a009b8a14e5f40700426e2400000000ff00000000000000", 0x23)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000001e00), r6)

10.390058166s ago: executing program 4 (id=781):
socket$igmp(0x2, 0x3, 0x2)
socket$kcm(0x10, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
epoll_create(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000240)=@nullb, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='v7\x00', 0x0, 0x0)

9.230542766s ago: executing program 4 (id=782):
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x331442, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000000880)=[{0x0, 0x0, 0x0}, {0x0, 0x0, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x4000}], 0x2, 0x0)
recvmmsg(r3, &(0x7f0000000c80), 0x0, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
r4 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000001900)=@raw={'raw\x00', 0x8, 0x3, 0x338, 0x0, 0xe138, 0x198, 0x1c0, 0x198, 0x2a0, 0x358, 0x358, 0x2a0, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bond\x00'}, 0x0, 0x158, 0x1c0, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d0004030000080040000424fff0cf81dfd28c89545e14cd3e01dd24289c31777846c88621039b284cb286775a9955786df11fbed40cf5a9c1df6cdbdb7c2378d5afd35f4c16827f55b3af494e3968fb33020000000004009a8d87298e88a94cb519f5c17631af916a00020000000000000000e9ffffff00000000004900", 0x8}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x398)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x5, {0x0, 0x0, 0x0, 0x4}}, 0x9)
socket$nl_rdma(0x10, 0x3, 0x14)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@bridge_getvlan={0x18, 0x72, 0x701}, 0x18}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r6=>0x0})
syz_emit_ethernet(0x4e, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd60922ff50018210000000000000000000000fffffffffffffe8000000000000000000000ec000000aa0000000000000000000000000401907800114f840080005134b766a47bc181da1b3065bcd8cfd324401f6da4156e7cb363339183e2a9218de8031a82cb8d3c8afbb6e3b4335aaf503f929f0e2b75cedf1de49c5a96cd58a64d8579912ac869dbb62112f670c916d43e44b5f0e045e7ec161d6b1dcb1c4421"], 0x0)
r7 = socket$tipc(0x1e, 0x2, 0x0)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r3, 0x114, 0x7, &(0x7f0000000440)={@pppol2tp={0x18, 0x1, {0x0, r8, {0x2, 0x4e23, @multicast2}, 0x4, 0x3, 0x2, 0x3}}, {&(0x7f0000000280)=""/72, 0x48}, &(0x7f00000001c0), 0x33}, 0xa0)
bind$tipc(r7, &(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
sendmsg$tipc(r7, &(0x7f0000001b40)={&(0x7f0000001800)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10, 0x0}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r6, @ANYBLOB="0800266ec81600000a00180000000000000000011c005a8018000180140003"], 0x4c}}, 0x0)

8.162221047s ago: executing program 4 (id=783):
madvise(&(0x7f0000ba2000/0x3000)=nil, 0x3000, 0xe)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000002800)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000010500"/20, @ANYRES32=r3, @ANYBLOB="00e40000000000001c0012800900010069706970000000000c0002800800010037"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c0000001000070800"/20, @ANYRES32=r3, @ANYBLOB="00000000000000001c0012800900010069706970000000000c00028008000100a2"], 0x3c}}, 0x0) (fail_nth: 6)

7.883755142s ago: executing program 0 (id=784):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, 0x0)
io_submit(0x0, 0x0, 0x0)
io_setup(0xc, &(0x7f0000000040))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
socket$key(0xf, 0x3, 0x2)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
r8 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r8, 0xc018643a, &(0x7f0000000080)={0x4000000})
sendfile(r6, r7, 0x0, 0x20000023896)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

7.202394628s ago: executing program 4 (id=786):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="080027bd70be18291e4cad9c196900fddbdf2506000000050005000000000008000400080000000800020002000000"], 0x2c}, 0x1, 0x0, 0x0, 0x200008c0}, 0x240000c0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="043e1a0d011b0000aaaa000000000000000000000000ffffffffffff00"], 0x1d)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bca)
getpgid(0xffffffffffffffff)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="100000091414fdffffffffffffff0000"], 0x10}}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000100)=0x3)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206010100000000000000000000000005000100070000000900020073797a30000000000c000780080012400000100014000300686173683a69702c706f72742c697000050005000a000000050004"], 0x58}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
syz_emit_vhci(0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0x10}, @l2cap_cid_signaling={{0xc}, [@l2cap_info_req={{0xa, 0x5, 0x2}, {0x3}}, @l2cap_cmd_rej_unk={{0x1, 0x0, 0x2}}]}}, 0x15)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000006840)=[{{0x0, 0x0, &(0x7f0000003080)=[{&(0x7f0000000440)="5ff17db605ade75363a0530733408850aaf311cbe0", 0x7ffff000}, {&(0x7f0000000600)="8882d1dc72424e1fd8dd4b9a691db9a3f2d539b0ed59d1d1b67695f356653c71087b5fe7c96758a0f47f379517352fe067a0c327617260dcd520", 0x3a}, {&(0x7f0000002c40)='E', 0x1}], 0x3}}], 0x1, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000022c0)=ANY=[], 0x148}}, 0x0)
r5 = accept4$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80400)
accept4(r5, &(0x7f00000000c0)=@ieee802154={0x24, @short}, &(0x7f0000000140)=0x80, 0x0)

6.239142334s ago: executing program 0 (id=787):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280))
socket$nl_generic(0x10, 0x3, 0x10)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffd}, [@call={0x85, 0x0, 0x0, 0x36}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x4f)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x80, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x2d, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @val={0x25, 0x3}, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x18, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14}]}]}]}, 0x80}}, 0x0)

6.235291116s ago: executing program 3 (id=788):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0)
rmdir(&(0x7f0000000700)='./cgroup/../file0\x00')
write$binfmt_script(r1, 0x0, 0x0) (fail_nth: 1)

5.647751673s ago: executing program 0 (id=789):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="080027bd70be18291e4cad9c196900fddbdf2506000000050005000000000008000400080000000800020002000000"], 0x2c}, 0x1, 0x0, 0x0, 0x200008c0}, 0x240000c0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_vhci(&(0x7f0000000ac0)=ANY=[@ANYBLOB="043e1a0d011b0000aaaa000000000000000000000000ffffffffffff00"], 0x1d)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bca)
getpgid(0xffffffffffffffff)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="100000091414fdffffffffffffff0000"], 0x10}}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000100)=0x3)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206010100000000000000000000000005000100070000000900020073797a30000000000c000780080012400000100014000300686173683a69702c706f72742c697000050005000a000000050004"], 0x58}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
syz_emit_vhci(0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0x10}, @l2cap_cid_signaling={{0xc}, [@l2cap_info_req={{0xa, 0x5, 0x2}, {0x3}}, @l2cap_cmd_rej_unk={{0x1, 0x0, 0x2}}]}}, 0x15)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg(r4, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000022c0)=ANY=[], 0x148}}, 0x0)
r5 = accept4$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c, 0x80400)
accept4(r5, &(0x7f00000000c0)=@ieee802154={0x24, @short}, &(0x7f0000000140)=0x80, 0x0)

5.582725647s ago: executing program 3 (id=790):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000040)={0x38, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xa}]}, 0x38}}, 0x0) (fail_nth: 1)

4.958182471s ago: executing program 3 (id=791):
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x331442, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000000880)=[{0x0, 0x0, 0x0}, {0x0, 0x0, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x4000}], 0x2, 0x0)
recvmmsg(r3, &(0x7f0000000c80), 0x0, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
r4 = socket$inet(0x2, 0x3, 0x8)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000001900)=@raw={'raw\x00', 0x8, 0x3, 0x338, 0x0, 0xe138, 0x198, 0x1c0, 0x198, 0x2a0, 0x358, 0x358, 0x2a0, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bond\x00'}, 0x0, 0x158, 0x1c0, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d0004030000080040000424fff0cf81dfd28c89545e14cd3e01dd24289c31777846c88621039b284cb286775a9955786df11fbed40cf5a9c1df6cdbdb7c2378d5afd35f4c16827f55b3af494e3968fb33020000000004009a8d87298e88a94cb519f5c17631af916a00020000000000000000e9ffffff00000000004900", 0x8}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x398)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x5, {0x0, 0x0, 0x0, 0x4}}, 0x9)
socket$nl_rdma(0x10, 0x3, 0x14)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@bridge_getvlan={0x18, 0x72, 0x701}, 0x18}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r6=>0x0})
syz_emit_ethernet(0x4e, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd60922ff50018210000000000000000000000fffffffffffffe8000000000000000000000ec000000aa0000000000000000000000000401907800114f840080005134b766a47bc181da1b3065bcd8cfd324401f6da4156e7cb363339183e2a9218de8031a82cb8d3c8afbb6e3b4335aaf503f929f0e2b75cedf1de49c5a96cd58a64d8579912ac869dbb62112f670c916d43e44b5f0e045e7ec161d6b1dcb1c4421"], 0x0)
r7 = socket$tipc(0x1e, 0x2, 0x0)
r8 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r3, 0x114, 0x7, &(0x7f0000000440)={@pppol2tp={0x18, 0x1, {0x0, r8, {0x2, 0x4e23, @multicast2}, 0x4, 0x3, 0x2, 0x3}}, {&(0x7f0000000280)=""/72, 0x48}, &(0x7f00000001c0), 0x33}, 0xa0)
bind$tipc(r7, &(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
sendmsg$tipc(r7, &(0x7f0000001b40)={&(0x7f0000001800)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10, 0x0}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r6, @ANYBLOB="0800266ec81600000a00180000000000000000011c005a8018000180140003"], 0x4c}}, 0x0)

3.939637723s ago: executing program 3 (id=792):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x2, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x17\x00'}]}, 0x1c}}, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4800}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_VALIDATION={0x5, 0xd, 0xe7}]}}}]}, 0x3c}, 0x1, 0xff7f}, 0x0)
setsockopt$inet_int(r2, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x1a, &(0x7f0000000200)={0x1, 'netdevsim0\x00'}, 0x18)
syz_emit_ethernet(0xc2, &(0x7f0000000280)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x24, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr, @dev, {[@cipso={0x86, 0x71, 0x0, [{0x0, 0xc, "e256b28c599d1681fb52"}, {0x0, 0x9, "789607671442eb"}, {0x0, 0xe, "7434954373561de584b703c8"}, {0x0, 0x9, "e706d30bd224f8"}, {0x0, 0x7, "cfa11cab1a"}, {0x0, 0x10, "8475be675de6a70a05a0dc91e5c6"}, {0x0, 0xa, "6580a5e97612fe86"}, {0x0, 0x12, "73bc2300ad9d19a30000000000000000"}, {0x0, 0xc, "c8f46976e79e56c7a95e"}]}, @cipso={0x86, 0xc, 0x0, [{0x0, 0x6, "7f36c525"}]}]}}, '\x00\x00\x00\x00'}}}}}, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f00000000c0), r1)

2.891253209s ago: executing program 4 (id=793):
bpf$BPF_PROG_QUERY(0x8, &(0x7f0000000180)={@ifindex, 0x0, 0x24, 0x7fff, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04ff0000000002"], 0x7)
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4001, 0x0, @private2={0xfc, 0x2, '\x00', 0x3}}, 0x1c)
syz_emit_vhci(&(0x7f0000000080)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_rsp={{0x7, 0x3, 0x4}, {0x0, 0x4}}}}, 0x11)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x1f)
syz_emit_vhci(0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000000000)={0x18, {"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", 0x1000}}, 0x1006)
r2 = syz_open_dev$usbmon(&(0x7f0000000280), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000240)=0x8)
pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f0000001180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004200)=[{{&(0x7f0000001040)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001740)=[{&(0x7f00000011c0)="0f7a5c44ad75172e199c8eec1b9e17349f6796b311328f60ea37782cb592b4ae3bd2fcc0c775e690242794e5d5aad15de4455f25e2edb273027ea695f35a1066a586fa3ea3c35f3725d0d0421fc91812c9737d1bdafff79faa322f4762956b0717f3307d0ce7002613a8c3de78dbea94c027370ce1305eca449f25cd23be765a5eb109cbd7dd33f40fded185b5139a120b89f15230a3ac5da0bf0970577ffcb6b634400c9e5e479033283d554a187f35dc1704a716eecf59a40bdbfdf72dfc4f5e2421d30b18b9fb2b837ea7ad95317e50e86fd5a9ef08aa9ab09b6b5f7da33ac0", 0xe1}, {&(0x7f0000003380)="2fbb86829c25e3384a103c7c296773075262e42652b2b4cec94fc7a4a2f6ebf9ef9a6650cb8f430a7e739ceb37ebdeff695aba211a2d5b6be7945ec98f64f2d77c7c77836f105916c82219de18aecaa478f2668f435196b33e69fde8db2ac4545fcc4f7545664dd4a2b57c4ff015c9d5310c1e02798b9d1b9d4ffb9505928fe2", 0x80}, {&(0x7f00000012c0)="4d164d4afeff86fcea8615b51cbb1fafbe3568cbe889434fe50a4dd51ef95502d5a42fcbc890299ecd53a8e16fae4e4c497c7b683b683cb4b0b9eb217769267a06578f90c0e39b6f0ed986f1cd14c3b4f8ef74b4542a28d9932561f0dd3530ebb82cb65b9e1132310c654485451acd26929dc2584733f5698d5410dc4f1cd398106dac9ff52004c0070fc1410d9791af02d87dfa4989bb7b185bce02002f5edc224fcb6bfb1b293789248f863eb85d3d769582aaa08cdcbe3c4960d5cfcd9a6dfab4", 0xc2}, {&(0x7f00000013c0)="4fc9ad2fdcc9d2a30bf8936c04d67c74ced358d296d89ccd6502191dec4107cf3ea5e104571af641eac3c8d9d010b0fdc201c1a8edd224433176ba931aa8a43aa98a6a9aad3932f7790039f4dd773881772b3c8e9f345088197ce724a4c6", 0x5e}, {&(0x7f0000001440)="6e19fab767311b7d1f38f08817324a6e261cf8deba4e6869ecf10fa9b4a1380cb55b7dc9cbb494f4840079fdf639c2f02bfe0579e09de4fd92d09cf915885c1708a1b45db922171541121b17f6fbfbc3df55ef83bfa3374ee6c503c691d13618b8aa7c27661c65406e033cbccb4c5efe915b3f03b677764da4300d4a68", 0x7d}, {&(0x7f00000014c0)="de06949791ab1905d675caf2a86f7690ec14208573eeab5f8c69563091ae2e1e338a546dc8b1bd3ea2435c035f8047faba282bd2178a744f89284ff38773a258071e680f120204406c547c021294b9830d6e30cbfcbcec2ce3b3623f20dc4041cc803544d909102230e0144e3cc2d1961571fff977c996e9517db56c60e648db8df35ea87d4d", 0x86}, {&(0x7f0000001580)="f4d98b330ade8830ad82f79f435cdfd27e7d56d6ecd400ea760d0da78f7f7588ef6b9b46cf3e88084b601059ae01bcb7d217c747f53949ec16841a2ffd5904ad500604c4fe11a066eeab0133d71c6d1717b64be3bf8b2461ada998652f52859a2f427f2ecd3a72cd69646748dd858bba755bcb4d8b2ff96ea035c6f4838c39029d1f82ffbddb4b5f722bf5876ee149f18fa1814e4681a9c1f879650bb80879851e061888d8e12387c1de654917cd91d7b3b108a255a04cbac137ed1424", 0xbd}, {&(0x7f0000001c00)="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", 0x186}, {&(0x7f0000001140)="6f7c55005432a7fac5ed648a71c6370bd6697e", 0x13}], 0x9, &(0x7f0000001840)=[@cred={{0x1c}}, @rights={{0x10}}, @rights={{0x14, 0x1, 0x1, [r4]}}], 0x48, 0x4000080}}, {{&(0x7f00000018c0)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000001b40)=[{&(0x7f0000001940)="498a1f56e9def4af4c8656f29b000159da0e12d30beb6f6947147c55f7d83de8430df1d6446a46d612178e3bf29c7162da39797fab18107548", 0x39}, {&(0x7f0000001980)="e32332066a0ad4cbc55c28d76f40ab2d3d584556902e28b9235e75bb522d18284e6832f36642202ee3461fc65eefe13b2e5b8bde1c9989dca4fcba473e5868717c8e4912bede2e6f11a25b341cfd3bd2971603bc330c9c39", 0x58}, {&(0x7f0000001a00)="57086e6c0ea849e1685ac7a11e810813652331be03326b3122073b12b1f1debc0885fac3d2dcc0b971f1c47464578dd626595cb74d8f5d3d79c3740a977969d193388d5f94704126beb676201fbad814b2763c665d84bac0a8146abe2ca0f5d04a1b794f8efb5c2c8a744769e9b899a0dafce901dbb4d381af6aaca7affa314b025f2f41ed855b523dce", 0x8a}, {&(0x7f0000001ac0)="1cf1d630d26314851f8cf2e5bfee9d1c6b3e4fe1e8ad5bd389bb688c3769b737013701e62a64d95ae11b687db96c76b0ace0ef2c21f3aae032da452785b0d7d408b166486a27efac8c2e9a1db35d723d39f686a14028e38435c79fdc061e8e368c33fb84b4a2dee32735fa0029", 0x6d}], 0x4, 0x0, 0x0, 0x4008000}}, {{0x0, 0x0, &(0x7f0000001bc0)=[{&(0x7f0000001b80)="6fb3a4d9e1d6b885bbafc6990c30ae00993f", 0x12}], 0x1, &(0x7f0000001dc0)=[@rights={{0x30, 0x1, 0x1, [r3, 0xffffffffffffffff, r0, r3, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c}}], 0x50, 0x24000020}}, {{&(0x7f0000001e40)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003180)=[{&(0x7f0000001ec0)="1bad5de67de684c917dd2ba533b6a780cc98b9cf63d620a62a79157f9e3a4f9ca84429aefac107593c640afe608f5c8db6a3535bcaf5f4be01da803a29d6034e9d28e69de3fd2ecbff96f121c82292163f876a214f2c65c241a3a87eed6c42df8b2225ec526fc53604e372217fe0b556c1b430360fe0e221", 0x78}, {&(0x7f0000001f40)="9a1fe36fc969ef880aa7355bf212a43067c337b216b8e60461143dd578eb43ab1201f0b05925d0ca6120fd0a0d5bb27b709fd6039648710de824dcc6cf397a20d209fef903da21be008f985e2f4ac0c7f7ee93120ca9fb2b76cd8e23bd59e7358b657e801baad4f6c5426d28167a83f0607fda1d89e5337615c252494b2dbf5daf89bd91daa3ef6bf3656ca134710244ad05a0d396a8ee11726c9d7377afd6ccc9c29ff5f761b54514a2ec91883261e3cdb7a0715082d3a80308dcdd6fd7f6d181af0d704bb9d797fe3cfdcf3ae5868b570e318869970750d649702bc9e9b3f3635e021818b880af4da5", 0xea}, {&(0x7f0000002040)="9e48c237", 0x4}, {&(0x7f0000002080)="3e6340c403d079a5c0362e783c21e3bee9697051e8d3888b2c7343189d3ff9c44581eeaa37d140418ba0133e6fb3bab0da91f8f9036b4aa05c87e054735925349526aab0bd990cf02fa14ec24b829a639bc943af56b442513bac3760f0e94810df1d78bb4a11a042a89810657ca1f2e6d4df4d0c36e014585f2d5a37355d029ccaec4922170f9657e9cd76be6fd63ffc353b160ac37f5411fff7f632e23ebb", 0x9f}, {&(0x7f0000002140)="44e992116df7ab8449d11d", 0xb}, {&(0x7f0000002180)="5986b85d1bdb684e47437c10aa530d00ae74d869b7e08cdca0312af70450a1aba9dd96ba4678d35a3220decf94e23eae00866c4f7e441e32035a1a1e0f3acea9a317f5eecebcce3a42a71558271a0682e5b0714f1223c52a1f7db4c76171041648828deebfc5d7d3e124412dd8cc7d71748cbdcc1cddc7468c07f47d41734247616e688c8e35000c40229235069245d1ef62fb194930d00de1002f5f42e09b04c0b74b97032c5f42f4131370412b37f12450f979bf37966382e496d280d4591179cea682637f6c92544cc97728b353099fbae4af2173b68c44a2d86c39260e5bc29bb7ab421519a3b29c49e65e46d9d644a649ff2fa046244a7918c93be038bedf9cc944792a6f9d426b4b41bfb0f80a4154b22e2aaaff25a82f78077529d329aa836b9eac2408a35623228b76df6e2b90dd53ac7d99c21e88f27e8e5851741851eff15fb4eae552a4059fc823b00d65529229675a6b3045ea1974de1ac70ffde49af686f1ffb54e5d8060817f01e354981c2b90f79ca246aad7f5c3dce53cc82a4b24bb081aad022b13924c8c73fcacdf69be3ed5ff61c9f6f316f59408ab5e89701249becd24d4ab29c36714bc7fda68007c4e677dd11f79238b4f9225ea205b95a2e14c47c2c2d6c5fd331179989e936779de54a4c1f832678a392ae2642e9a97b4e71a6c13131324f74bc55f5ba3816c4b74444f054944015e9469f8a9749f87569fb371f182d182d909b284f117dc57581356196c173652d0c8e3b297cdea8e61e80f3f035e520267ae6478c59e15f4a582ad427cf271cde29261b6dba366a7e7172bd2aac1167e2461cc1456ef2395d9837122e291d7edd7bcae214866ec0aef4543c3ba788866291e3227c7bd71bc04ad667edc557f877865d220ac8c322fd77109caf6d56789a789a51a933c4f969ba3ff264cb15d4531a2865b1da0c3d4588cfba439a4710c4c3e0f9a8b900efabf256d84f843525ff124d818d2c85cf5ef3b143f50b243bb50641b10965ead1861bebf148d4ecacb433fa753c0fa0cfbf3071354b1011ac59d90cb70b4539196b0fe17eb79f51443833a2b61631c5acd034fa1a392fa5c57719fbfa1eacdc5990015d649d4736768545add0b956ae683dabb93c3abc063ffc9f97c36bc3688ce3e825cc6cb47012a6ea0d572d38739cd9fe898c6e62e8ebab340d83a8c1f4aafa617b772f7f53b2f47604205d2358cecda52aee0c025fc232e976da72b89bb9e391aef42e962a7016d9f4705507241dc5ab0d26f223279a112ef45404b3d6986dc550acbe97ec7e61700db1933e52c41f64f8ee579f0b7fc0d555394c16f32ed3cb3f82be924bee5ea66051f976f2b0481b02422d256c4b3e17126bb6d6be48786e7d8b786fb8a397f2d4a58d8c1aad2d36ad86c17b9625c17d0b2a400a064cb39c906751ea7f530ba319976ce3dc3a3e06fcb3cc0241fd8aa98f6ab3bcc1dd61b6bcc72c20c1ee8a704c5aac14562677a4d5d980cab39649c65d376aa28d260612e5f54bbde28ee39f4dbe06557cd3db558ee70dadf6bf97634ff301555f38542e3389e0f2a30ec4f1d3981af2ca6a04f5989a9f4c8781538fae4331daf8ce400306c1af7f677cdeb1249047516181d864859f2a13b640eb0d1170da46666e65f07f34e6193ff5c3374a520e4b2e4519d0727b58d00fdeb47e4143109577a05c56772717650de8eb9bc769bfbad7a22327f76b2a4728ae8041c8ecddd092b30b2e72f007852dd3d18b491d3479f9bbbf990b2ce8cee8532c32448de9528584576d390251e74fe94ff9e2bd044c374bd58346e40198fb3426ecacb2407dd3883c84df3c480128410fd83b0c97498c10c1230ab1d2506c76e4dc3145c086f5dc4253962eae7d6777ca344b99471b723c66775831056d5a3c67f04659034f6ed7e3bcd446865ee23ef33a295634c7022f7d4e386cb986c82a28c0fbe244f74c5a7b626a35d1c5b31cc6f1506799e043266a094f317db5bf641c66748053bfde4569fe30f2539a366d3af8544eb94de3305cff8ced97df04eb39d0caf32402e628a6855791fabc92f444b89e9e666954455587348329673730d252764a224b64bb33d22c25f144b74f7884b22df3f1ee686e185575133f1f3f02c5df4dd10b1257710045c9b4d53d49c329e3e7bc3c1694f9504b80a16d5710ce95232ec4076b1b17051605864d8759ea974ea639333e2b934ed70c61a45c56681233e1d34582048f4eae73118b03f479c971ced1db342312efea67aa34a338e4c56e8b934d5835d906eeaa1b84c055ef7187a34cdf89aceed0709048c84c7ce872a4ed12f69463e63a15549d7b7552aa651b98069b2dc3ff513bfaf0955bfcd32428bb0a27064949500e8aef6034a2f36a248ae5c083a9aaf8e53e905a59ddd07afb55941886375e90796de03aedc9dd1d68d5f5ee7cfb1e4f1fe6ee823de673e2fbc0696f2794485c48d40280e405f1f6e2cd9b83dd3d2fc9715649b795a24c9a058c745a504458ed4d4b8e4334d2765d17ed990f403c37f38bae99c4a3e1b8146cf48d23ec72fb707752f5af4632ac960ed2d9aba99e331e60304caeec079bb3741c76cbf6394a163eee818f882de1a13f686bdd0141ad8a6b973209ee2026ce475b11576f9b804bf24c4eea2de322d78262c7da992db91feaf04316c8e7429c33d8211067b631be1cb8a161195c45137f3c269f176596e0ebe7a4f9f25a2edbaadc1efc776017958fea78580d26311ecd6fc68c637cc0918113f8499c9c9339c327ca54a877567f3f6b8d82895d1809d1202c96380385870d22f4b865069ac8ffbddd4238f85d7874f1bc919f04d7d45a95b0bc9591ad879dc689c1e4f07c7687467d69d9373b50cbc4f08024c09a90d8beda579abd43d5dad52a932e7eb331403be07f27f6b18f95766b2cb8f8aa56a2d36dd16931fa2ff3a0ba2ce0188522d0312e4e56ed605f346184f3ee648c5dd1780e55246451af8b422da0ce9af3c0ff10737e247251e344206c6f43a14a1ab5f38737fc58fbcbdc93a9a5fafc8845f6566a32f5a022cf15613dca70b38e81327d1b5f3bfaf508ba7e6cfdc7716e89055281b8a396a445540d72b8fe6c23909a7cb7532f8a40020d2a2f1b80f1fb9faa60bd2eb23c73af4baca8b89f8c1e2aed000744018747c71f7833c9ff61cfbce6e426c10a1e3d9aeb9aae6a0b0f7bb650f648fb06384989736597188e7239008f54ccc6f5def1ac127d26ce64e86a90f16d1701137430208f5c1f4a5df54b95f67cc7508ef94dcd43bb10086cfb8c1c17362a6d7a4635d17673f8a9133ceba6171c329575b18e330406219e22d21f77e07bb50b8b86b6d1b58e292aa62afe81da45d26ea98d519eeb1995628344e80bae881fb3aa6c65ed91ede500510bb5a71f332763aae7c9732ec242efd8a7928728dff213c128be930f620029c20c6702ada9391198861133f74c0de52ba922adf1612f830a41210fdc961750d9152a6afbbbd426feafc6324e5c045cfeb3c97df2624b565c6b5c6e9f9ec361afe21841f31e106f0a3345548fb0e95d2644854ee91d833e36910f2972908490c429eb26927ff2b05b1dddd963ebcda43ebf80f67055d13033b67082c00ab6c36af8222dc8bbc1bf7869f37f8c1ceea8a765ff1cb613030f5414804af04873851ef7c48bd9e4785355c7cebad3230597adeb01364bc7c8d83713491c098dc8169eaf4896ce6dd58e32c6d77296a61e4deb40cbd740b49d7d2bed632c7405acc3d1368628479f0747ba6bfbfb53fd1a9df8fb52687a7d0480a5a517cd13e8ef23086dca72c8572e49012187f3049455fe8e5e5a487aabfe6d75ea259c8614eccc701f6a11be64ef53f55c34752038f55af2133fd06e72e3d07fea6b92d5e7f20f4986f9cfc46ca530f68f3a71cfdd5934152e635acf0e7d4c6a0f4bffd2ecbea0ce84dd8aa16ac636d4dad65336e549730ce7ca75a349c3123aab2fdaf392f74e963a5f3b572d84836cb765bc2f68c3564f89130f2dc00fc346c03102e7cfe6ee1a6722e600ece41d1d91af6be59ea27e948aae158212df7e8baf5132107a4b9409d6eb908b089ecea728cf5b99205c2cfef9303a03d56ef90272e766deb5e07c4336d6b24418052c6669bab6d7941e09cf6d529d6e720c718df04d626f5c962ddad4917984bd027a4223e81bc34577120517e5baee7d52a9dfb7f33d812dbf0c298cd0348e5d1a97fac78910b61b776011582b1899de2899b05b39d66315494666b7ca4f0385e68ec8495d8a6518d7caa6ec1e22afb6706659b52239d3dff72b408c2100f3f82005d27b33333bd0d1da49f122ceebc0edd07805eab2e94e3612982752b6217770b1c200ed6e2707eff6026fa8519d9273d0fec916054af2ca734867db062d3e3f1a068c14c0c3c11d0d329fb60bf3942b1abe1ccb21fc7a3f76a87fa1308574d33a9c5978c51dee1e8a539add5be66c38c27527ab8f665fe3b715112708f5c594e762f5e26373bd5e97e232439cd557176940e6b4aaff5b192d0183e92c81e6c552495cab209574e44408dc0add415d85499d8b4fe1a98b5c15b14dbea418c40b9570a73a99d39f7baa4ce55410f92bca36856df40d2652ef5896978062b79115d305ac569dc37db34241b92044bc18168c23d0166163544be038715ed679ce0f7197e1b826ce39de8579aac4abbcf265a5f00817b95828ad51e9b402e123db14e33cbc8b1aebeea93835c807b1391557e09c2da3b3561917297cfc2f7cbe42c37a50293ad5d2a426ef91bbb29a149a8a9919428bf7ad7271db82001a5776c9cb0ff5847ff21735fd3c6e62f5448a48971dd5cc347c58053cb4b4a2c624897affa579eae3dae829b62340382044c90588eba79408da236aab690f05285479b964350ae0429a3991c9adb7af996b4f615550f19a8ecb9ad108ee1af46c95d5d02c3c626cd6d901f5b85b1ef187b28977bd1e08581e095fc41bbed113a7a828fe5820a03014db91346cbeb5f924eed4b412a3d3530ec5fa69ab8e16d322b501ce9258b01bfbd9b6ea6640f81e2c3d53cc77df398b2f49548d35f81259ef42f8d79a606d8928cdd4df88beaa04dcacbf4c64d54e7682ee2035350ffff0170b372fa41039f9b808cc2de3ce158b1edf232ea92d3f82631eb5d9cf776bc2ccb69234906d044c85c7c88f5ccbdcb4cf0628549a4305d04769405d588563b11916cbfb0a591ec32a6b74380b3f145cf463c6fd4bee7e9fe03ecdb29cfe9b1b3e4d82f81f8f77cc54dcab3067de08b5011be894d41251c6124f047918622d68e02ee0129bf1ba6a6faca9b95b5c78f85053021e9291541dfc4d38e5bccd7c35fa8d782e5f1003facb81c6ae5bfdf124a07cff4067990754db0426ba616e42af15b6c5aa065bf08e73a43adeadb45a21a0641287082fe40ffd95650300279eb6c234f16f51e8866424f2e8d02772ed767ad87eb31e2fce61864f10b4282f463a77843dd52f7a719504565bd37776b92044c3234dbbc7e0406b2b5d081e2c3f6451989d32a0310ef7a93148845f4912207e79b8f7da90652bf5edf065d1467fdfa5e2e14d47c6ff80fb2357f9858e5d6b62423c13eba686c27680849b61782b43c9a2a69a77ac17b965b2d2f4a23eaa4da552e81d9138d203b4025f1d1bf9de231c77e5b3a4c9a6c1c82984f1b576c512ad7a67872071bdfee6b7b1d66e100f3f1cd9cdf1c41c8c37e8d466ef18fd059c7ac393010a06b41cc4feec72175af319792a366375628959ef14a5e068191ddc1a55182b0b07e", 0x1000}], 0x6, 0x0, 0x0, 0x4040010}}, {{&(0x7f0000003200)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000003340)=[{&(0x7f0000003280)="47d74c6f48ef886851", 0x9}, {&(0x7f00000032c0)="6e3be6fd33d27838d72ee287b195c48508902cd805afebff7619e49ebd54691b5a66be3ec2a1215c359063a6b91b5551511d9cc3e310dbe8e7c719301736751536848198de9cabd89148b5b4c7c653f4612863d727f1b588cf9858e6476a961d03425904edb42be685977034a1", 0x6d}], 0x2, &(0x7f0000003980)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd0}}, {{&(0x7f0000003600)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000003700)=[{&(0x7f0000003680)="01f65eed45652275e1f18a26d7807a5347a2aae833c509d712f7154c68ff2e66c5cd4defa8bb2d80971c435302dcffaa0210f83e2a8776137818ea4f84154a58695a0738a9f802c1aec697cd37ed391096c9a90ae573ff8204457b9ec8e278731acaf1e0fdd1000943b8d835f01cc1285f1e98e370f80ed8d9daf187416e", 0x7e}], 0x1, 0x0, 0x0, 0x800}}, {{&(0x7f0000003740)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003840)=[{&(0x7f00000037c0)="80be5e0d193b2b5a7e3838aef6ffe27b92f80636d12e12aa9820c172c70158d9239b5874d2ffa9074b11988ed19a40a896737bdfe2858a95f14125a3e21c59a23eb2ebae", 0x44}], 0x1, &(0x7f0000001640)=[@rights={{0x10}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [r1, r3, r1, 0xffffffffffffffff, r1]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r3, r4, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd8, 0x50}}], 0x7, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000200)=0x4)
sched_getscheduler(0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x1e0)
arch_prctl$ARCH_SHSTK_ENABLE(0x1011, 0x0)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r5, 0x8982, &(0x7f0000000a40)={0x0, 'macsec0\x00'})
syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="041c0b00c9004bddfc52fd3a5399"], 0xe)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
accept4(r6, 0x0, 0x0, 0x0)

2.715932456s ago: executing program 3 (id=794):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0)
io_setup(0x2e, &(0x7f0000000100)=<r3=>0x0)
io_submit(r3, 0x0, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x90)
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f00000008c0)=r5, 0x4)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
sendmmsg$inet6(r6, &(0x7f0000003f00)=[{{0x0, 0xf, &(0x7f0000000300)=[{&(0x7f0000000140)="a2", 0x1a058}], 0x1}}], 0x1, 0x0)

2.08674258s ago: executing program 0 (id=795):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, 0x0)
io_submit(0x0, 0x0, 0x0)
io_setup(0xc, &(0x7f0000000040))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
socket$key(0xf, 0x3, 0x2)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
r8 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r8, 0xc018643a, &(0x7f0000000080)={0x4000000})
sendfile(r6, r7, 0x0, 0x20000023896)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

1.219809426s ago: executing program 2 (id=727):
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_ringparam={0x11}})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x10001, 0x0, 0x1}, 0x48)
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0xc, 0x0, 0x1}, 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="2400f12ee3af02000000f0ff7fff0000000008001900", @ANYRES32=0x0, @ANYBLOB], 0x24}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x54, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x20000000, {0x2, 0x1f, 0x4, 0x1}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000011}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@action_no_ack={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @device_a, @broadcast, @random="c69763e644ef", {0x5, 0x3f}, @value=@ver_80211n={0x0, 0x80, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}}, @tdls_setup_cfm={0xc, 0x2, {0x2c, 0x3}}}, 0x21)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r5, 0x0, 0x2a, &(0x7f0000000040)={0x6, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108)
setsockopt$inet_group_source_req(r5, 0x0, 0x2d, &(0x7f0000000300)={0x6, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @loopback}}}, 0x108)
syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0x9)
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=ANY=[@ANYBLOB="b00000000802110000010802110000000802110400001013292c1242fa79"], 0x1e)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, 0x0)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x5, [{0x0, 0x1}, {0x4}, {0xb, 0x1}, {}, {}]}, @void}, 0x25)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8922, &(0x7f0000000040)={'erspan0\x00', &(0x7f00000000c0)=@ethtool_rxnfc={0x0, 0x0, 0x0, {0x0, @hdata="ad65c8435d8a74855146175c4823057931ddd8de52215a0cba4b92c305c136df3a767ec61275c88bbeee48cc3ad39e98881843ed", {}, @esp_ip4_spec={@multicast1, @dev}, {0x0, @local}}}})
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000640)={{0xa, 0x4e22, 0xffff, @private1, 0x2}, {0xa, 0x4e23, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1}, 0xffffffffffffffff, {[0x8000, 0x4, 0xfff, 0x4, 0x1000, 0x1000, 0x0, 0x3ff]}}, 0x5c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000a80)='ext4_writepages\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r6, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

768.835724ms ago: executing program 3 (id=796):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
gettid()
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$bt_hci(r1, 0x84, 0x7f, &(0x7f00000011c0)=""/4072, &(0x7f0000001180)=0xfe8)
r2 = syz_open_dev$cec(&(0x7f0000000680), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r2, 0xc05c6104, &(0x7f0000000500)={"a0453822", 0x0, 0x6, 0x2, 0x0, 0x0, "3377f877c734c4f928875ab8db00", "000100", "0200", "be4d22a4", ["c38600008000080000e6fc00", "51f3541a910080ffffcb3a10", "2ce50f8a285d9500c522afe1"]})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_REMOVE(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000003c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20000050}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000400)=ANY=[@ANYBLOB="030dbd39bc5a4480524eea27e9c90000397058abce57033f29eb6dc1f8b110a7cfa5a5495ffc36ac891ea6f898ba2a0784b3781c59e6bd91a231a605e31def18cdff000000c81a8fdd065d5641794f0b7cae298b7efd3f6946179a16868bdf8efc30ccc25a1c35afbac80800d5be1cd2a3a54e4e9d3c2987a460bc4699d9fea4dc5e0a9f71a64a5acb3b62841f882e99eeb510b093919cf605c3f8"], 0x3d)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000300)='vegas\x00', 0xfd9b)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast1, 0x2}, 0x1c)
write$binfmt_script(r4, &(0x7f0000000200), 0xfffffd9d)
syz_emit_vhci(&(0x7f0000000580)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xab}, @l2cap_cid_signaling={{0xa7}, [@l2cap_info_rsp={{0xb, 0x0, 0x4b}, {0x1, 0x4458, "df72b6d009681b6899c49817261a109aeecde1fd1a29f0133ead90a95d5666958c65f407c4e2e6efbe72d0e7e246885e3560f01f1e12c4c6bc9adf78245d780975414f84a5def9"}}, @l2cap_conn_rsp={{0x3, 0x2, 0x8}, {0x0, 0x7, 0x3, 0x7}}, @l2cap_conf_req={{0x4, 0x4, 0x1a}, {0x87f3, 0x8, [@l2cap_conf_efs={0x6, 0x10, {0x4, 0x0, 0x3, 0x4, 0x3, 0xff}}, @l2cap_conf_ews={0x7, 0x2, 0x4b1}]}}, @l2cap_conn_req={{0x2, 0x42, 0x4}, {0x3, 0x2}}, @l2cap_disconn_rsp={{0x7, 0xf8, 0xffffffffffffff75}, {0x200, 0x5}}, @l2cap_move_chan_cfm={{0x10, 0x5, 0x4}, {0x7, 0x3}}, @l2cap_disconn_rsp={{0x7, 0xf5, 0x4}, {0x851, 0x7}}, @l2cap_disconn_rsp={{0x7, 0x7, 0x4}, {0x3, 0x4ee}}, @l2cap_move_chan_cfm={{0x10, 0xf}, {0x3}}]}}, 0xb0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r5 = inotify_init()
inotify_add_watch(r5, &(0x7f0000000180)='./file0\x00', 0x80000108)
inotify_add_watch(r5, &(0x7f0000000040)='./file0\x00', 0x16000281)
syz_emit_vhci(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

0s ago: executing program 0 (id=797):
r0 = socket$packet(0x11, 0x3, 0x300)
mkdir(&(0x7f0000002200)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='hpfs\x00', 0x0, &(0x7f0000000240))
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve0\x00', <r1=>0x0})
setsockopt$packet_int(r0, 0x107, 0xe, &(0x7f0000000000)=0xf3b, 0x4)
sendto$packet(r0, &(0x7f00000000c0)="3f05fe7f7028120039001e0089e9aaa921d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

kernel console output (not intermixed with test programs):

 vhci_hcd: invalid port number 0
[  265.730626][ T6756] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  265.737222][ T6756] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  265.785081][ T6756] vhci_hcd vhci_hcd.0: Device attached
[  265.789038][ T6760] netlink: 12 bytes leftover after parsing attributes in process `syz.2.390'.
[  265.890857][ T6758] vhci_hcd: connection closed
[  265.891799][ T3676] vhci_hcd: stop threads
[  265.928274][ T3676] vhci_hcd: release socket
[  265.948767][ T3676] vhci_hcd: disconnect device
[  266.000966][   T25] vhci_hcd: vhci_device speed not set
[  266.629014][ T5102] Bluetooth: hci1: unexpected event 0x1c length: 11 > 5
[  266.956122][ T6783] FAULT_INJECTION: forcing a failure.
[  266.956122][ T6783] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  267.017674][ T6783] CPU: 0 PID: 6783 Comm: syz.4.398 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  267.027723][ T6783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  267.037794][ T6783] Call Trace:
[  267.041077][ T6783]  <TASK>
[  267.044015][ T6783]  dump_stack_lvl+0x16c/0x1f0
[  267.048712][ T6783]  should_fail_ex+0x497/0x5b0
[  267.053407][ T6783]  _copy_to_user+0x30/0xc0
[  267.057855][ T6783]  simple_read_from_buffer+0xd0/0x160
[  267.063242][ T6783]  proc_fail_nth_read+0x1b0/0x290
[  267.068290][ T6783]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  267.073861][ T6783]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  267.079425][ T6783]  vfs_read+0x1d4/0xbd0
[  267.083598][ T6783]  ? __fdget_pos+0xeb/0x180
[  267.088120][ T6783]  ? __pfx_vfs_read+0x10/0x10
[  267.092806][ T6783]  ? __pfx___mutex_lock+0x10/0x10
[  267.097839][ T6783]  ? __fget_files+0x256/0x400
[  267.102538][ T6783]  ksys_read+0x12f/0x260
[  267.106789][ T6783]  ? __pfx_ksys_read+0x10/0x10
[  267.111588][ T6783]  do_syscall_64+0xcd/0x250
[  267.116136][ T6783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.122053][ T6783] RIP: 0033:0x7f6ce43746bc
[  267.126486][ T6783] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  267.146108][ T6783] RSP: 002b:00007f6ce51e2040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  267.154528][ T6783] RAX: ffffffffffffffda RBX: 00007f6ce4503f60 RCX: 00007f6ce43746bc
[  267.162507][ T6783] RDX: 000000000000000f RSI: 00007f6ce51e20b0 RDI: 0000000000000004
[  267.170483][ T6783] RBP: 00007f6ce51e20a0 R08: 0000000000000000 R09: 0000000000000000
[  267.178452][ T6783] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[  267.186423][ T6783] R13: 000000000000000b R14: 00007f6ce4503f60 R15: 00007ffd177696b8
[  267.194423][ T6783]  </TASK>
[  267.291992][ T6781] binder: 6780:6781 ioctl 541c 200001c0 returned -22
[  267.400197][ T6787] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  267.406695][   T29] audit: type=1400 audit(1720711171.715:362): avc:  denied  { mount } for  pid=6784 comm="syz.0.399" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  267.446221][ T5102] Bluetooth: hci2: unexpected event 0x01 length: 6 > 1
[  267.461644][ T6787] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  267.466215][ T6785] netlink: 24 bytes leftover after parsing attributes in process `syz.0.399'.
[  267.565136][ T6787] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  267.638353][   T29] audit: type=1400 audit(1720711171.975:363): avc:  denied  { read } for  pid=6790 comm="syz.4.401" name="autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  267.672788][ T6797] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.401'.
[  267.810523][ T6800] vhci_hcd: invalid port number 0
[  267.821415][   T29] audit: type=1400 audit(1720711172.005:364): avc:  denied  { open } for  pid=6790 comm="syz.4.401" path="/dev/autofs" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  267.916571][ T6800] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  267.923159][ T6800] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  267.975408][   T29] audit: type=1400 audit(1720711172.015:365): avc:  denied  { ioctl } for  pid=6790 comm="syz.4.401" path="/dev/autofs" dev="devtmpfs" ino=98 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  268.007927][ T6800] vhci_hcd vhci_hcd.0: Device attached
[  268.048646][   T29] audit: type=1400 audit(1720711172.115:366): avc:  denied  { unmount } for  pid=5084 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  268.301453][   T25] usb 13-1: new low-speed USB device number 2 using vhci_hcd
[  268.483037][ T6812] netlink: 12 bytes leftover after parsing attributes in process `syz.1.406'.
[  268.544884][ T6803] vhci_hcd: connection reset by peer
[  268.584777][ T3468] vhci_hcd: stop threads
[  268.589100][ T3468] vhci_hcd: release socket
[  268.649136][ T3468] vhci_hcd: disconnect device
[  270.436881][   T29] audit: type=1400 audit(1720711174.765:367): avc:  denied  { mount } for  pid=6832 comm="syz.0.411" name="/" dev="ramfs" ino=13303 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  270.875100][   T29] audit: type=1400 audit(1720711175.215:368): avc:  denied  { unmount } for  pid=5084 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  270.998241][   T29] audit: type=1400 audit(1720711175.335:369): avc:  denied  { connect } for  pid=6846 comm="syz.0.415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  271.024979][   T29] audit: type=1400 audit(1720711175.355:370): avc:  denied  { name_connect } for  pid=6846 comm="syz.0.415" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  271.539974][ T5102] Bluetooth: hci3: unexpected event 0x1c length: 11 > 5
[  271.700559][ T6854] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  271.784777][ T5102] Bluetooth: hci2: unexpected event 0x01 length: 6 > 1
[  271.792995][ T6854] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  271.968500][ T6854] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  272.321186][ T6862] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  272.327770][ T6862] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  272.335502][   T29] audit: type=1400 audit(1720711176.645:371): avc:  denied  { audit_read } for  pid=6858 comm="syz.1.418" capability=37  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  272.420355][ T6862] vhci_hcd vhci_hcd.0: Device attached
[  272.980998][   T45] usb 9-1: new low-speed USB device number 3 using vhci_hcd
[  273.068763][ T6871] netlink: 830 bytes leftover after parsing attributes in process `syz.1.421'.
[  273.111216][ T6871] bond_slave_0: entered promiscuous mode
[  273.117528][ T6871] bond_slave_1: entered promiscuous mode
[  273.216864][ T6871] xt_CT: You must specify a L4 protocol and not use inversions on it
[  273.413038][ T6880] netlink: 12 bytes leftover after parsing attributes in process `syz.4.423'.
[  273.510259][   T25] vhci_hcd: vhci_device speed not set
[  273.511555][ T6878] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[  273.529899][ T6883] FAULT_INJECTION: forcing a failure.
[  273.529899][ T6883] name failslab, interval 1, probability 0, space 0, times 0
[  273.564132][ T6883] CPU: 1 PID: 6883 Comm: syz.1.425 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  273.574212][ T6883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  273.584291][ T6883] Call Trace:
[  273.587617][ T6883]  <TASK>
[  273.590579][ T6883]  dump_stack_lvl+0x16c/0x1f0
[  273.595296][ T6883]  should_fail_ex+0x497/0x5b0
[  273.600012][ T6883]  should_failslab+0x9/0x20
[  273.604548][ T6883]  kmem_cache_alloc_node_noprof+0x71/0x310
[  273.610373][ T6883]  ? __alloc_skb+0x2b1/0x380
[  273.615006][ T6883]  __alloc_skb+0x2b1/0x380
[  273.619443][ T6883]  ? __pfx___alloc_skb+0x10/0x10
[  273.624400][ T6883]  ? genl_rcv_msg+0x4f0/0x800
[  273.629114][ T6883]  ? genl_rcv_msg+0x4bd/0x800
[  273.633829][ T6883]  netlink_ack+0x164/0xb90
[  273.638274][ T6883]  ? __pfx___lock_acquire+0x10/0x10
[  273.643500][ T6883]  netlink_rcv_skb+0x348/0x440
[  273.648303][ T6883]  ? __pfx_genl_rcv_msg+0x10/0x10
[  273.653376][ T6883]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  273.658711][ T6883]  ? down_read+0xc9/0x330
[  273.663068][ T6883]  ? __pfx_down_read+0x10/0x10
[  273.667860][ T6883]  ? netlink_deliver_tap+0x1ae/0xd90
[  273.673191][ T6883]  genl_rcv+0x28/0x40
[  273.677247][ T6883]  netlink_unicast+0x542/0x820
[  273.682053][ T6883]  ? __pfx_netlink_unicast+0x10/0x10
[  273.687389][ T6883]  netlink_sendmsg+0x8b8/0xd70
[  273.692187][ T6883]  ? __pfx_netlink_sendmsg+0x10/0x10
[  273.697505][ T6883]  ____sys_sendmsg+0xab5/0xc90
[  273.702298][ T6883]  ? copy_msghdr_from_user+0x10b/0x160
[  273.707816][ T6883]  ? __pfx_____sys_sendmsg+0x10/0x10
[  273.713153][ T6883]  ? find_held_lock+0x2d/0x110
[  273.717997][ T6883]  ? __pfx___lock_acquire+0x10/0x10
[  273.723239][ T6883]  ___sys_sendmsg+0x135/0x1e0
[  273.727948][ T6883]  ? __pfx____sys_sendmsg+0x10/0x10
[  273.733200][ T6883]  ? ksys_write+0x21c/0x260
[  273.737782][ T6883]  ? __fget_light+0x173/0x210
[  273.742490][ T6883]  __sys_sendmsg+0x117/0x1f0
[  273.747122][ T6883]  ? __pfx___sys_sendmsg+0x10/0x10
[  273.752281][ T6883]  do_syscall_64+0xcd/0x250
[  273.756818][ T6883]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.762755][ T6883] RIP: 0033:0x7f1677175bd9
[  273.767182][ T6883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.786816][ T6883] RSP: 002b:00007f1677fd8048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  273.795251][ T6883] RAX: ffffffffffffffda RBX: 00007f1677303f60 RCX: 00007f1677175bd9
[  273.803254][ T6883] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000004
[  273.811239][ T6883] RBP: 00007f1677fd80a0 R08: 0000000000000000 R09: 0000000000000000
[  273.819214][ T6883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  273.827196][ T6883] R13: 000000000000000b R14: 00007f1677303f60 R15: 00007ffd0e8c1488
[  273.835191][ T6883]  </TASK>
[  276.078970][ T5102] Bluetooth: hci5: unexpected event 0x1c length: 11 > 5
[  276.178660][ T6906] capability: warning: `syz.4.432' uses 32-bit capabilities (legacy support in use)
[  277.835867][ T5102] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  277.888959][ T6928] netlink: 12 bytes leftover after parsing attributes in process `syz.1.437'.
[  277.923886][ T6928] netlink: 4 bytes leftover after parsing attributes in process `syz.1.437'.
[  278.166931][ T6926] bridge0: port 3(gretap0) entered blocking state
[  278.174394][ T6926] bridge0: port 3(gretap0) entered disabled state
[  278.182206][ T6926] gretap0: entered allmulticast mode
[  278.232474][ T6926] gretap0: entered promiscuous mode
[  278.257870][ T6926] bridge0: port 3(gretap0) entered blocking state
[  278.265906][ T6926] bridge0: port 3(gretap0) entered forwarding state
[  279.093738][   T29] audit: type=1326 audit(1720711183.435:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6937 comm="syz.1.441" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1677175bd9 code=0x0
[  279.447968][ T6949] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  279.461122][ T5102] Bluetooth: hci3: unexpected event 0x01 length: 6 > 1
[  279.464651][ T6949] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  279.537577][ T6949] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  280.045800][ T5102] Bluetooth: hci5: SCO packet for unknown connection handle 3341
[  280.049339][ T5102] Bluetooth: hci5: ACL packet for unknown connection handle 200
[  280.134017][   T29] audit: type=1400 audit(1720711184.445:373): avc:  denied  { watch } for  pid=6952 comm="syz.1.445" path="/74/file0" dev="tmpfs" ino=412 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  280.156227][    C1] vkms_vblank_simulate: vblank timer overrun
[  280.212325][   T29] audit: type=1400 audit(1720711184.445:374): avc:  denied  { watch_reads } for  pid=6952 comm="syz.1.445" path="/74/file0" dev="tmpfs" ino=412 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  280.534948][ T5102] Bluetooth: hci3: unexpected event 0x1c length: 11 > 5
[  280.689348][ T5102] Bluetooth: hci3: link tx timeout
[  280.702166][ T5102] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  280.784748][   T29] audit: type=1400 audit(1720711185.125:375): avc:  denied  { create } for  pid=6960 comm="syz.3.448" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  280.947330][   T29] audit: type=1400 audit(1720711185.155:376): avc:  denied  { ioctl } for  pid=6960 comm="syz.3.448" path="socket:[14578]" dev="sockfs" ino=14578 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  281.977449][ T6978] netlink: 12 bytes leftover after parsing attributes in process `syz.2.451'.
[  282.051009][ T6978] netlink: 4 bytes leftover after parsing attributes in process `syz.2.451'.
[  282.257799][   T29] audit: type=1400 audit(1720711186.585:377): avc:  denied  { bind } for  pid=6976 comm="syz.3.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  282.345987][   T29] audit: type=1400 audit(1720711186.595:378): avc:  denied  { node_bind } for  pid=6976 comm="syz.3.452" saddr=172.20.20.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  282.700260][ T5169] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  282.766812][ T6989] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  282.777175][ T5089] Bluetooth: hci3: command 0x0406 tx timeout
[  282.868708][ T5102] Bluetooth: hci3: unexpected event 0x01 length: 6 > 1
[  282.887011][ T6989] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  282.919688][ T5169] usb 4-1: config 0 has no interfaces?
[  282.950375][ T5169] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  283.003419][ T6989] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  283.082743][ T5169] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.198057][ T5169] usb 4-1: config 0 descriptor??
[  283.369314][ T5089] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  283.395820][ T5089] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  283.408765][ T5089] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  283.427407][ T5089] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  283.441989][ T5089] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  283.449629][ T5089] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  283.514394][ T6981] netlink: 'syz.3.452': attribute type 3 has an invalid length.
[  283.534157][ T6981] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.452'.
[  283.686831][   T29] audit: type=1400 audit(1720711188.025:379): avc:  denied  { mount } for  pid=6995 comm="syz.1.459" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  283.745018][   T29] audit: type=1400 audit(1720711188.075:380): avc:  denied  { write } for  pid=6995 comm="syz.1.459" name="event0" dev="devtmpfs" ino=834 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  283.909380][ T5089] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  284.335568][ T6991] chnl_net:caif_netlink_parms(): no params data found
[  284.674449][   T29] audit: type=1400 audit(1720711189.005:381): avc:  denied  { unmount } for  pid=5345 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  285.093762][ T6991] bridge0: port 1(bridge_slave_0) entered blocking state
[  285.118456][ T5169] usb 4-1: USB disconnect, device number 9
[  285.125998][ T6991] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.160543][ T6991] bridge_slave_0: entered allmulticast mode
[  285.210438][ T6991] bridge_slave_0: entered promiscuous mode
[  285.251945][ T6991] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.307818][ T6991] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.342073][ T6991] bridge_slave_1: entered allmulticast mode
[  285.380489][ T6991] bridge_slave_1: entered promiscuous mode
[  285.490676][ T5089] Bluetooth: hci1: command tx timeout
[  285.616121][ T5089] Bluetooth: hci3: unexpected event 0x1c length: 11 > 5
[  285.633734][ T6991] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  285.716346][ T6991] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  285.725622][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  285.808603][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  286.129723][ T6991] team0: Port device team_slave_0 added
[  286.214230][ T6991] team0: Port device team_slave_1 added
[  286.381564][ T7027] netlink: 12 bytes leftover after parsing attributes in process `syz.3.466'.
[  286.506655][ T7027] netlink: 4 bytes leftover after parsing attributes in process `syz.3.466'.
[  286.575862][ T6991] batman_adv: batadv0: Adding interface: batadv_slave_0
[  286.583060][ T6991] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.619505][ T6991] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  286.721834][ T6991] batman_adv: batadv0: Adding interface: batadv_slave_1
[  286.743646][ T6991] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.858482][ T6991] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  287.271665][ T6991] hsr_slave_0: entered promiscuous mode
[  287.362347][ T6991] hsr_slave_1: entered promiscuous mode
[  287.410183][ T6991] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  287.417785][ T6991] Cannot create hsr debugfs directory
[  287.570874][ T5089] Bluetooth: hci1: command tx timeout
[  287.592585][ T7044] fuse: Unknown parameter 'group_i00000000000000000000'
[  287.693353][ T7042] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  287.805462][ T5089] Bluetooth: hci0: unexpected event 0x01 length: 6 > 1
[  287.809313][ T7042] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  287.921698][ T7045] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  288.133460][ T6991] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.188292][ T5089] Bluetooth: hci2: ISO packet for unknown connection handle 0
[  288.339988][ T6991] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.546065][ T6991] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.889711][ T6991] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.158429][ T7068] netlink: 12 bytes leftover after parsing attributes in process `syz.2.478'.
[  289.195917][ T7068] netlink: 4 bytes leftover after parsing attributes in process `syz.2.478'.
[  289.256338][ T5089] Bluetooth: hci2: SCO packet for unknown connection handle 3341
[  289.259663][   T29] audit: type=1400 audit(1720711193.595:382): avc:  denied  { ioctl } for  pid=7058 comm="syz.4.476" path="/dev/vhost-net" dev="devtmpfs" ino=1084 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  289.307963][ T5089] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  289.509871][ T6991] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  289.565436][ T6991] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  289.634780][ T6991] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  289.650750][ T5089] Bluetooth: hci1: command tx timeout
[  289.757288][ T6991] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  290.089259][ T7079] FAULT_INJECTION: forcing a failure.
[  290.089259][ T7079] name failslab, interval 1, probability 0, space 0, times 0
[  290.127656][ T7081] fuse: Unknown parameter 'group_i00000000000000000000'
[  290.204054][ T7079] CPU: 1 PID: 7079 Comm: syz.4.482 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  290.214088][ T7079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  290.226698][ T7079] Call Trace:
[  290.230026][ T7079]  <TASK>
[  290.232996][ T7079]  dump_stack_lvl+0x16c/0x1f0
[  290.237737][ T7079]  should_fail_ex+0x497/0x5b0
[  290.242463][ T7079]  should_failslab+0x9/0x20
[  290.247021][ T7079]  __kmalloc_noprof+0xcf/0x410
[  290.251842][ T7079]  ? __pfx_lock_acquire+0x10/0x10
[  290.256926][ T7079]  tomoyo_realpath_from_path+0xb9/0x720
[  290.262496][ T7079]  ? tomoyo_profile+0x47/0x60
[  290.267195][ T7079]  tomoyo_path_number_perm+0x245/0x590
[  290.272783][ T7079]  ? tomoyo_path_number_perm+0x232/0x590
[  290.278465][ T7079]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  290.284479][ T7079]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  290.290575][ T7079]  ? __fget_files+0x256/0x400
[  290.295295][ T7079]  security_file_ioctl+0x75/0xc0
[  290.300276][ T7079]  __x64_sys_ioctl+0xbb/0x220
[  290.304965][ T7079]  do_syscall_64+0xcd/0x250
[  290.309488][ T7079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.315403][ T7079] RIP: 0033:0x7f6ce4375bd9
[  290.319824][ T7079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.339453][ T7079] RSP: 002b:00007f6ce51e2048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  290.347878][ T7079] RAX: ffffffffffffffda RBX: 00007f6ce4503f60 RCX: 00007f6ce4375bd9
[  290.355853][ T7079] RDX: 0000000020000000 RSI: 000000008004e500 RDI: 0000000000000003
[  290.363833][ T7079] RBP: 00007f6ce51e20a0 R08: 0000000000000000 R09: 0000000000000000
[  290.371841][ T7079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.379818][ T7079] R13: 000000000000000b R14: 00007f6ce4503f60 R15: 00007ffd177696b8
[  290.387798][ T7079]  </TASK>
[  290.390956][    C1] vkms_vblank_simulate: vblank timer overrun
[  290.419462][ T7079] ERROR: Out of memory at tomoyo_realpath_from_path.
[  290.452008][   T29] audit: type=1400 audit(1720711194.775:383): avc:  denied  { ioctl } for  pid=7077 comm="syz.4.482" path="/dev/fuse" dev="devtmpfs" ino=99 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  290.524656][ T6991] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.644880][ T6991] 8021q: adding VLAN 0 to HW filter on device team0
[  290.751897][ T5169] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.759097][ T5169] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.784865][ T5169] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.792275][ T5169] bridge0: port 2(bridge_slave_1) entered forwarding state
[  291.730839][ T5089] Bluetooth: hci1: command tx timeout
[  292.044551][ T7104] netlink: 12 bytes leftover after parsing attributes in process `syz.3.489'.
[  292.822019][ T7106] netlink: 4 bytes leftover after parsing attributes in process `syz.3.489'.
[  293.109906][ T6991] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.312086][ T7113] netlink: 'syz.3.491': attribute type 5 has an invalid length.
[  293.418720][ T6991] veth0_vlan: entered promiscuous mode
[  293.494109][ T6991] veth1_vlan: entered promiscuous mode
[  293.613997][ T7113] evm: overlay not supported
[  293.648243][ T6991] veth0_macvtap: entered promiscuous mode
[  293.698981][ T6991] veth1_macvtap: entered promiscuous mode
[  293.800666][   T29] audit: type=1400 audit(1720711198.115:384): avc:  denied  { create } for  pid=7112 comm="syz.3.491" name="#6" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  293.839275][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.864138][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.908603][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.927468][   T29] audit: type=1400 audit(1720711198.135:385): avc:  denied  { link } for  pid=7112 comm="syz.3.491" name="#6" dev="tmpfs" ino=610 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  293.969610][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.989251][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  294.000775][   T29] audit: type=1400 audit(1720711198.225:386): avc:  denied  { rename } for  pid=7112 comm="syz.3.491" name="#7" dev="tmpfs" ino=610 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  294.057305][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.088240][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  294.106747][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.131073][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  294.158377][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.203881][ T6991] batman_adv: batadv0: Interface activated: batadv_slave_0
[  294.298528][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  294.360299][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.371948][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  294.383256][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.394615][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  294.405403][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.415437][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  294.439571][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.469835][ T6991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  294.488328][ T6991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  294.515064][ T6991] batman_adv: batadv0: Interface activated: batadv_slave_1
[  294.565904][ T6991] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  294.612535][ T6991] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  294.617612][   T29] audit: type=1400 audit(1720711198.945:387): avc:  denied  { create } for  pid=7126 comm="syz.1.496" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  294.646699][ T6991] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  294.661723][ T7133] fuse: Unknown parameter 'group_id00000000000000000000'
[  294.698893][ T6991] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  294.980021][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  294.986703][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  295.012789][   T25] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  295.108656][ T2439] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  295.178833][ T2439] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  295.202513][   T25] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  295.237917][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  295.250843][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  295.271392][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  295.306616][   T25] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  295.319206][   T25] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  295.372040][   T25] usb 2-1: Manufacturer: syz
[  295.399545][   T25] usb 2-1: config 0 descriptor??
[  295.508195][ T3676] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  295.526883][ T3676] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  295.914530][   T25] appleir 0003:05AC:8243.0003: unknown main item tag 0x0
[  295.945592][   T25] appleir 0003:05AC:8243.0003: No inputs registered, leaving
[  295.959309][   T29] audit: type=1400 audit(1720711200.295:388): avc:  denied  { connect } for  pid=7144 comm="syz.0.454" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  296.005623][ T7147] netlink: 12 bytes leftover after parsing attributes in process `syz.3.500'.
[  296.051494][   T25] appleir 0003:05AC:8243.0003: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  296.093446][ T7147] netlink: 4 bytes leftover after parsing attributes in process `syz.3.500'.
[  296.336220][   T29] audit: type=1400 audit(1720711200.665:389): avc:  denied  { write } for  pid=7139 comm="syz.2.499" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  296.356418][ T7150] ieee802154 phy0 wpan0: encryption failed: -22
[  296.442484][   T29] audit: type=1400 audit(1720711200.705:390): avc:  denied  { append } for  pid=7126 comm="syz.1.496" path="/dev/usb/hiddev0" dev="devtmpfs" ino=2455 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  296.911909][ T5139] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  296.920292][   T29] audit: type=1800 audit(1720711201.245:391): pid=7141 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.499" name="/" dev="fuse" ino=1 res=0 errno=0
[  297.001852][ T5168] usb 2-1: USB disconnect, device number 5
[  297.126104][ T5139] usb 4-1: Using ep0 maxpacket: 8
[  297.139566][ T5139] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  297.164700][ T5139] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  297.189425][ T5139] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  297.231952][ T5139] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  297.266012][ T5139] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  297.285649][ T5139] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.446946][ T7167] VFS: could not find a valid V7 on nullb0.
[  298.273297][ T5139] usb 4-1: usb_control_msg returned -32
[  298.278994][ T5139] usbtmc 4-1:16.0: can't read capabilities
[  299.119476][ T5089] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  299.740421][ T5139] usb 4-1: USB disconnect, device number 10
[  299.796741][   T25] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  300.003832][ T7192] netlink: 12 bytes leftover after parsing attributes in process `syz.1.512'.
[  300.024720][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  300.034413][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  300.035278][   T25] usb 3-1: Using ep0 maxpacket: 8
[  300.117190][ T7192] netlink: 4 bytes leftover after parsing attributes in process `syz.1.512'.
[  300.153735][   T25] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  300.405982][   T25] usb 3-1: config 179 has no interface number 0
[  300.429042][   T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  301.028073][   T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  301.223018][   T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  301.341986][   T25] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  301.442979][   T25] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  301.508422][   T25] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  301.615367][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.624006][ T7209] netlink: 'syz.1.518': attribute type 2 has an invalid length.
[  301.654931][ T7185] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  302.101353][   T25] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input17
[  302.323819][ T5168] usb 3-1: USB disconnect, device number 8
[  302.323854][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  302.338158][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  302.398136][ T5168] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  302.480350][    T8] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  302.660232][   T25] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  302.710186][    T8] usb 2-1: Using ep0 maxpacket: 8
[  302.752260][    T8] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  302.795502][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  302.834386][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  302.893661][   T25] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  302.895764][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  302.945100][    T8] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  302.953237][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  302.957255][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  303.029177][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  303.075788][   T25] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  303.110306][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  303.157930][   T25] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  303.194808][    T8] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  303.221890][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  303.240576][   T25] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  303.287159][   T25] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  303.296429][   T25] usb 1-1: Manufacturer: syz
[  303.358626][   T25] usb 1-1: config 0 descriptor??
[  303.364460][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  303.388767][    T8] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  303.517639][    T8] usb 2-1: string descriptor 0 read error: -22
[  303.556188][    T8] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  303.637131][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.645598][ T5089] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  303.706779][    T8] adutux 2-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  303.994035][   T25] appleir 0003:05AC:8243.0004: unknown main item tag 0x0
[  304.017173][   T25] appleir 0003:05AC:8243.0004: No inputs registered, leaving
[  304.070564][   T25] appleir 0003:05AC:8243.0004: hiddev1,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  304.257679][   T25] usb 1-1: USB disconnect, device number 9
[  304.616243][   T29] audit: type=1400 audit(1720711208.955:392): avc:  denied  { watch } for  pid=7231 comm="syz.3.525" path="/proc/367/task" dev="proc" ino=16529 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  304.638521][    C1] vkms_vblank_simulate: vblank timer overrun
[  304.832974][ T7237] netlink: 12 bytes leftover after parsing attributes in process `syz.2.526'.
[  304.857120][ T5168] usb 2-1: USB disconnect, device number 6
[  304.974933][ T7237] netlink: 4 bytes leftover after parsing attributes in process `syz.2.526'.
[  307.217829][   T29] audit: type=1400 audit(1720711211.555:393): avc:  denied  { getopt } for  pid=7259 comm="syz.4.536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  307.237238][    C1] vkms_vblank_simulate: vblank timer overrun
[  307.280554][    T8] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  307.293035][ T5089] Bluetooth: hci5: SCO packet for unknown connection handle 3341
[  307.300445][ T5089] Bluetooth: hci5: ACL packet for unknown connection handle 200
[  307.500338][    T8] usb 1-1: Using ep0 maxpacket: 8
[  307.509333][    T8] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  307.524264][    T8] usb 1-1: config 179 has no interface number 0
[  307.546930][    T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  307.614702][    T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  307.749881][    T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  307.820778][    T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  307.834998][   T29] audit: type=1400 audit(1720711212.165:394): avc:  denied  { setopt } for  pid=7271 comm="syz.2.538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  307.916959][    T8] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  307.969935][    T8] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  308.111262][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.162510][ T7255] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  308.461980][    T9] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input18
[  308.699497][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  308.707860][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  308.757837][    T9] usb 1-1: USB disconnect, device number 10
[  308.773043][    T9] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  308.876317][ T7286] VFS: could not find a valid V7 on nullb0.
[  308.901940][   T29] audit: type=1400 audit(1720711213.215:395): avc:  denied  { mounton } for  pid=7281 comm="syz.4.539" path="/116/file0" dev="configfs" ino=1173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  309.699321][ T7288] netlink: 12 bytes leftover after parsing attributes in process `syz.2.541'.
[  309.817300][ T7288] netlink: 4 bytes leftover after parsing attributes in process `syz.2.541'.
[  309.995438][   T29] audit: type=1400 audit(1720711214.315:396): avc:  denied  { ioctl } for  pid=7294 comm="syz.3.544" path="socket:[16647]" dev="sockfs" ino=16647 ioctlcmd=0x5450 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  310.091418][   T29] audit: type=1400 audit(1720711214.325:397): avc:  denied  { shutdown } for  pid=7296 comm="syz.4.543" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  310.119433][   T29] audit: type=1400 audit(1720711214.365:398): avc:  denied  { connect } for  pid=7293 comm="syz.0.542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  310.138765][    C1] vkms_vblank_simulate: vblank timer overrun
[  310.372117][ T7305] netlink: 'syz.4.545': attribute type 2 has an invalid length.
[  311.660297][ T5168] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  311.880812][ T5168] usb 5-1: Using ep0 maxpacket: 8
[  311.960443][ T5168] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  312.008216][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  312.100552][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  312.136550][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  312.226108][ T5168] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  312.228198][ T7319] netlink: 'syz.3.551': attribute type 16 has an invalid length.
[  312.265771][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  313.030145][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  313.045886][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  313.090985][ T5168] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  313.098503][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  313.150285][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  313.163895][ T5168] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  313.180725][ T5168] usb 5-1: string descriptor 0 read error: -22
[  313.187269][ T5168] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  313.197176][ T5168] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.224063][ T5168] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  313.360448][ T2758] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  313.600290][ T2758] usb 3-1: Using ep0 maxpacket: 8
[  313.637683][ T2758] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  313.660882][ T2758] usb 3-1: config 179 has no interface number 0
[  313.700204][ T2758] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  313.755112][ T2758] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  313.800219][ T2758] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  313.866655][ T2758] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  313.945068][ T2758] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  314.023919][ T2758] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  314.055128][ T2758] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.119067][ T7322] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  314.234257][ T7330] xt_CT: You must specify a L4 protocol and not use inversions on it
[  314.255450][ T5137] usb 5-1: USB disconnect, device number 4
[  314.470631][ T2758] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input19
[  314.541393][   T29] audit: type=1400 audit(1720711218.845:399): avc:  denied  { bind } for  pid=7329 comm="syz.0.554" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  314.835991][ T7335] netlink: 64 bytes leftover after parsing attributes in process `syz.4.556'.
[  314.937461][ T2758] usb 3-1: USB disconnect, device number 9
[  314.943347][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  314.943405][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  315.087105][ T2758] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  315.446213][ T7346] netlink: 12 bytes leftover after parsing attributes in process `syz.3.558'.
[  315.559202][ T7346] netlink: 4 bytes leftover after parsing attributes in process `syz.3.558'.
[  315.737553][ T7354] VFS: could not find a valid V7 on nullb0.
[  316.911653][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  316.923475][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  317.738215][ T7375] netlink: 36 bytes leftover after parsing attributes in process `syz.1.568'.
[  319.720300][   T29] audit: type=1400 audit(1720711224.055:400): avc:  denied  { execute } for  pid=7374 comm="syz.1.568" path=2F6D656D66643A01FDAE2E2BA68CB63F32193994532C7C783F55655BBDE1210333BC2723FF179B25F35B64202097F5479741C2D8F05571E62BA56C940BB607175CFB0421E4C4B1A21CFF433B94510DB67D9CEC430BCFEBE49A52E52C8203202864656C6574656429 dev="hugetlbfs" ino=16366 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  319.761059][    C0] vkms_vblank_simulate: vblank timer overrun
[  320.148529][ T5168] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  320.380484][ T5168] usb 3-1: Using ep0 maxpacket: 8
[  320.422934][ T5168] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  320.473387][ T5168] usb 3-1: config 179 has no interface number 0
[  320.563597][ T5168] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  320.760638][ T5168] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  320.846965][ T5168] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  320.908601][ T5168] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  320.928915][ T7402] netlink: 12 bytes leftover after parsing attributes in process `syz.4.575'.
[  320.962040][ T7402] netlink: 4 bytes leftover after parsing attributes in process `syz.4.575'.
[  320.968976][ T5168] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  321.140703][ T5168] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  321.149839][ T5168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.179191][ T7392] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  321.290935][ T7407] FAULT_INJECTION: forcing a failure.
[  321.290935][ T7407] name failslab, interval 1, probability 0, space 0, times 0
[  321.322316][ T7407] CPU: 0 PID: 7407 Comm: syz.3.577 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  321.332361][ T7407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  321.342464][ T7407] Call Trace:
[  321.345780][ T7407]  <TASK>
[  321.348745][ T7407]  dump_stack_lvl+0x16c/0x1f0
[  321.353478][ T7407]  should_fail_ex+0x497/0x5b0
[  321.358219][ T7407]  should_failslab+0x9/0x20
[  321.362779][ T7407]  kmem_cache_alloc_node_noprof+0x71/0x310
[  321.368635][ T7407]  ? __alloc_skb+0x2b1/0x380
[  321.373279][ T7407]  __alloc_skb+0x2b1/0x380
[  321.377749][ T7407]  ? __pfx___alloc_skb+0x10/0x10
[  321.382728][ T7407]  ? genl_rcv_msg+0x4bd/0x800
[  321.387471][ T7407]  netlink_ack+0x164/0xb90
[  321.391956][ T7407]  ? __pfx___lock_acquire+0x10/0x10
[  321.397224][ T7407]  netlink_rcv_skb+0x348/0x440
[  321.402056][ T7407]  ? __pfx_genl_rcv_msg+0x10/0x10
[  321.407149][ T7407]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  321.412498][ T7407]  ? down_read+0xc9/0x330
[  321.416877][ T7407]  ? __pfx_down_read+0x10/0x10
[  321.421701][ T7407]  ? netlink_deliver_tap+0x1ae/0xd90
[  321.427043][ T7407]  genl_rcv+0x28/0x40
[  321.431083][ T7407]  netlink_unicast+0x542/0x820
[  321.435890][ T7407]  ? __pfx_netlink_unicast+0x10/0x10
[  321.441206][ T7407]  netlink_sendmsg+0x8b8/0xd70
[  321.446001][ T7407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  321.451315][ T7407]  ? __import_iovec+0x1fd/0x6e0
[  321.456196][ T7407]  ____sys_sendmsg+0xab5/0xc90
[  321.460984][ T7407]  ? copy_msghdr_from_user+0x10b/0x160
[  321.466475][ T7407]  ? __pfx_____sys_sendmsg+0x10/0x10
[  321.471805][ T7407]  ? find_held_lock+0x2d/0x110
[  321.476593][ T7407]  ? __pfx___lock_acquire+0x10/0x10
[  321.481825][ T7407]  ___sys_sendmsg+0x135/0x1e0
[  321.486552][ T7407]  ? __pfx____sys_sendmsg+0x10/0x10
[  321.491787][ T7407]  ? ksys_write+0x21c/0x260
[  321.496319][ T7407]  ? __fget_light+0x173/0x210
[  321.501019][ T7407]  __sys_sendmsg+0x117/0x1f0
[  321.505639][ T7407]  ? __pfx___sys_sendmsg+0x10/0x10
[  321.510787][ T7407]  do_syscall_64+0xcd/0x250
[  321.515321][ T7407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.521258][ T7407] RIP: 0033:0x7f7448d75bd9
[  321.525681][ T7407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.545322][ T7407] RSP: 002b:00007f7449b62048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  321.553748][ T7407] RAX: ffffffffffffffda RBX: 00007f7448f03f60 RCX: 00007f7448d75bd9
[  321.561724][ T7407] RDX: 0000000000000000 RSI: 0000000020000940 RDI: 0000000000000004
[  321.569706][ T7407] RBP: 00007f7449b620a0 R08: 0000000000000000 R09: 0000000000000000
[  321.577695][ T7407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.585689][ T7407] R13: 000000000000000b R14: 00007f7448f03f60 R15: 00007ffedf10d008
[  321.593672][ T7407]  </TASK>
[  321.596991][    C0] vkms_vblank_simulate: vblank timer overrun
[  321.676223][ T5169] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input20
[  321.936215][   T25] usb 3-1: USB disconnect, device number 10
[  321.936232][    C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  321.950570][    C0] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  321.964910][   T25] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  322.199797][ T7416] netlink: 'syz.0.581': attribute type 12 has an invalid length.
[  322.209791][ T7416] netlink: 'syz.0.581': attribute type 29 has an invalid length.
[  322.220222][ T7416] netlink: 'syz.0.581': attribute type 2 has an invalid length.
[  322.228127][ T7416] netlink: 'syz.0.581': attribute type 2 has an invalid length.
[  322.243880][ T7416] netlink: 'syz.0.581': attribute type 1 has an invalid length.
[  322.280559][ T7416] netlink: 'syz.0.581': attribute type 37 has an invalid length.
[  322.321395][ T7416] netlink: 'syz.0.581': attribute type 2 has an invalid length.
[  322.341524][ T7416] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.694494][ T1247] ieee802154 phy0 wpan0: encryption failed: -22
[  322.704503][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[  324.282965][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  324.283039][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  325.573240][ T7454] netlink: 12 bytes leftover after parsing attributes in process `syz.1.589'.
[  325.619834][ T7454] netlink: 4 bytes leftover after parsing attributes in process `syz.1.589'.
[  326.347352][ T5137] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  327.420667][ T5137] usb 3-1: Using ep0 maxpacket: 8
[  327.446607][ T5137] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  327.476458][ T5137] usb 3-1: config 179 has no interface number 0
[  327.505776][ T5137] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  327.549711][ T5137] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  327.582268][ T5137] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  327.604462][   T29] audit: type=1400 audit(1720711231.945:401): avc:  denied  { write } for  pid=7474 comm="syz.1.597" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  327.625595][ T5137] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  327.752035][ T5137] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  327.847103][ T5137] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  327.930832][ T5137] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.998422][ T7462] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  328.411019][ T5139] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input21
[  328.613023][ T7478] DRBG: could not allocate digest TFM handle: hmac(sha512)
[  328.735859][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  328.744229][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  328.849050][ T5139] usb 3-1: USB disconnect, device number 11
[  328.940482][ T5139] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  329.362932][ T7498] Cannot find set identified by id 0 to match
[  330.310881][ T5168] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  330.427994][ T7510] sp0: Synchronizing with TNC
[  330.455156][   T29] audit: type=1400 audit(1720711234.795:402): avc:  denied  { listen } for  pid=7511 comm="syz.4.608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  330.790401][   T29] audit: type=1400 audit(1720711234.795:403): avc:  denied  { accept } for  pid=7511 comm="syz.4.608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  330.839352][ T5168] usb 2-1: Using ep0 maxpacket: 8
[  330.874538][ T5168] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  330.953496][ T7521] netlink: 'syz.2.606': attribute type 4 has an invalid length.
[  331.063109][ T5168] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  331.277947][ T5168] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  331.351566][ T5168] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  331.437432][ T5168] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  331.497407][ T5168] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.824953][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  331.872970][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  331.977988][ T5168] usb 2-1: usb_control_msg returned -32
[  331.979615][   T29] audit: type=1400 audit(1720711236.315:404): avc:  denied  { map } for  pid=7491 comm="syz.1.600" path="socket:[17078]" dev="sockfs" ino=17078 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  332.011605][ T5168] usbtmc 2-1:16.0: can't read capabilities
[  332.094528][ T5168] usb 2-1: USB disconnect, device number 7
[  332.153475][   T29] audit: type=1400 audit(1720711236.355:405): avc:  denied  { accept } for  pid=7491 comm="syz.1.600" path="socket:[17078]" dev="sockfs" ino=17078 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  333.214560][ T5169] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  333.430292][ T5169] usb 1-1: Using ep0 maxpacket: 8
[  333.470782][ T5169] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  333.479069][ T5169] usb 1-1: config 179 has no interface number 0
[  333.528587][ T5169] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  333.560123][ T5169] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  333.613928][ T5169] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  333.640226][ T5169] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  333.701047][ T5169] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  333.790388][ T5169] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  333.865370][ T5169] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.994805][ T7535] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  334.421321][ T5169] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input23
[  334.678225][   T25] usb 1-1: USB disconnect, device number 11
[  334.678295][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  334.692600][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  334.701067][    C0] vkms_vblank_simulate: vblank timer overrun
[  334.726465][   T25] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  337.018823][   T29] audit: type=1400 audit(1720711241.355:406): avc:  denied  { create } for  pid=7578 comm="syz.0.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  337.025898][ T7580] netlink: 'syz.0.627': attribute type 1 has an invalid length.
[  337.102886][ T7580] netlink: 24 bytes leftover after parsing attributes in process `syz.0.627'.
[  337.110252][   T29] audit: type=1400 audit(1720711241.365:407): avc:  denied  { write } for  pid=7578 comm="syz.0.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  337.472696][ T7583] sp0: Synchronizing with TNC
[  337.943041][ T7589] netlink: 'syz.0.628': attribute type 4 has an invalid length.
[  339.156081][ T5089] Bluetooth: hci3: SCO packet for unknown connection handle 3341
[  339.540468][ T7601] syzkaller0: entered allmulticast mode
[  339.598985][ T7599] syzkaller0: left allmulticast mode
[  340.925229][    T8] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  341.018211][ T7616] netlink: 'syz.4.638': attribute type 12 has an invalid length.
[  341.201872][    T8] usb 4-1: Using ep0 maxpacket: 8
[  341.216456][    T8] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  341.308087][    T8] usb 4-1: config 179 has no interface number 0
[  341.321766][    T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  341.336576][    T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  341.348079][    T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  341.359698][    T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  341.485081][    T8] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  341.758219][    T8] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  341.771146][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.807682][ T7608] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  342.265482][ T5168] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input25
[  342.569811][ T5168] usb 4-1: USB disconnect, device number 11
[  342.569889][    C0] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  342.584152][    C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  342.680372][    T8] IPVS: starting estimator thread 0...
[  342.712686][ T7627] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  342.775691][ T5168] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  342.840476][ T7628] IPVS: using max 15 ests per chain, 36000 per kthread
[  343.020826][   T29] audit: type=1400 audit(1720711247.365:408): avc:  denied  { bind } for  pid=7629 comm="syz.4.641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  343.573965][ T7636] FAULT_INJECTION: forcing a failure.
[  343.573965][ T7636] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  343.651562][ T7636] CPU: 1 PID: 7636 Comm: syz.3.644 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  343.661735][ T7636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  343.671873][ T7636] Call Trace:
[  343.675173][ T7636]  <TASK>
[  343.678120][ T7636]  dump_stack_lvl+0x16c/0x1f0
[  343.682831][ T7636]  should_fail_ex+0x497/0x5b0
[  343.687541][ T7636]  _copy_from_user+0x30/0xf0
[  343.692159][ T7636]  get_timespec64+0x8c/0x240
[  343.696788][ T7636]  ? __pfx_get_timespec64+0x10/0x10
[  343.702022][ T7636]  ? __mutex_unlock_slowpath+0x164/0x650
[  343.707774][ T7636]  get_itimerspec64+0x1e/0x60
[  343.712498][ T7636]  __x64_sys_timer_settime+0x17e/0x2c0
[  343.718002][ T7636]  ? __pfx___x64_sys_timer_settime+0x10/0x10
[  343.724034][ T7636]  ? ksys_write+0x1ab/0x260
[  343.728600][ T7636]  do_syscall_64+0xcd/0x250
[  343.733155][ T7636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.739109][ T7636] RIP: 0033:0x7f7448d75bd9
[  343.743646][ T7636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.763287][ T7636] RSP: 002b:00007f7449b62048 EFLAGS: 00000246 ORIG_RAX: 00000000000000df
[  343.771738][ T7636] RAX: ffffffffffffffda RBX: 00007f7448f03f60 RCX: 00007f7448d75bd9
[  343.779725][ T7636] RDX: 0000000020000280 RSI: 0000000000000000 RDI: 0000000000000000
[  343.787734][ T7636] RBP: 00007f7449b620a0 R08: 0000000000000000 R09: 0000000000000000
[  343.795836][ T7636] R10: 0000000020000400 R11: 0000000000000246 R12: 0000000000000001
[  343.803854][ T7636] R13: 000000000000000b R14: 00007f7448f03f60 R15: 00007ffedf10d008
[  343.811939][ T7636]  </TASK>
[  345.957874][    T9] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  346.160256][    T9] usb 1-1: Using ep0 maxpacket: 8
[  346.176100][    T9] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  346.207872][    T9] usb 1-1: config 179 has no interface number 0
[  346.236998][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  346.270192][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  346.329388][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  346.380406][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  346.410375][    T9] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  346.459096][    T9] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  346.468525][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  347.842092][ T7663] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  348.239401][    T9] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input26
[  348.520473][    T9] usb 1-1: USB disconnect, device number 12
[  348.520555][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  348.534823][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  348.572282][    T9] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  349.046444][ T5089] Bluetooth: hci2: SCO packet for unknown connection handle 3341
[  349.059886][ T5089] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  349.528745][ T7693] FAULT_INJECTION: forcing a failure.
[  349.528745][ T7693] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  349.575697][ T7693] CPU: 1 PID: 7693 Comm: syz.1.661 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  349.585764][ T7693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  349.595827][ T7693] Call Trace:
[  349.599127][ T7693]  <TASK>
[  349.602063][ T7693]  dump_stack_lvl+0x16c/0x1f0
[  349.606758][ T7693]  should_fail_ex+0x497/0x5b0
[  349.611476][ T7693]  _copy_to_user+0x30/0xc0
[  349.615908][ T7693]  simple_read_from_buffer+0xd0/0x160
[  349.621292][ T7693]  proc_fail_nth_read+0x1b0/0x290
[  349.626338][ T7693]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  349.631904][ T7693]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  349.637481][ T7693]  vfs_read+0x1d4/0xbd0
[  349.641696][ T7693]  ? ioctl_has_perm.constprop.0.isra.0+0x2f0/0x470
[  349.648210][ T7693]  ? __fdget_pos+0xeb/0x180
[  349.652760][ T7693]  ? __pfx_vfs_read+0x10/0x10
[  349.657471][ T7693]  ? __pfx___mutex_lock+0x10/0x10
[  349.662528][ T7693]  ? __fget_files+0x256/0x400
[  349.667246][ T7693]  ksys_read+0x12f/0x260
[  349.671518][ T7693]  ? __pfx_ksys_read+0x10/0x10
[  349.676304][ T7693]  do_syscall_64+0xcd/0x250
[  349.680839][ T7693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.686765][ T7693] RIP: 0033:0x7f16771746bc
[  349.691205][ T7693] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  349.710827][ T7693] RSP: 002b:00007f1677fd8040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  349.719257][ T7693] RAX: ffffffffffffffda RBX: 00007f1677303f60 RCX: 00007f16771746bc
[  349.727330][ T7693] RDX: 000000000000000f RSI: 00007f1677fd80b0 RDI: 0000000000000004
[  349.735325][ T7693] RBP: 00007f1677fd80a0 R08: 0000000000000000 R09: 0000000000000000
[  349.743323][ T7693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  349.751328][ T7693] R13: 000000000000000b R14: 00007f1677303f60 R15: 00007ffd0e8c1488
[  349.759325][ T7693]  </TASK>
[  353.737636][   T29] audit: type=1400 audit(1720711258.075:409): avc:  denied  { getopt } for  pid=7711 comm="syz.0.666" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  354.480160][ T5168] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  354.710233][ T5168] usb 1-1: Using ep0 maxpacket: 8
[  354.728896][ T5168] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  354.757433][ T5168] usb 1-1: config 179 has no interface number 0
[  354.785284][ T5168] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  354.837457][ T5168] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  354.869302][ T5168] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  354.915688][ T5168] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  354.950293][ T5168] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  354.984228][ T5168] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  355.010683][ T5168] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.025092][   T29] audit: type=1400 audit(1720711259.355:410): avc:  denied  { write } for  pid=7731 comm="syz.1.673" path="socket:[18559]" dev="sockfs" ino=18559 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  355.065774][ T7722] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  355.606088][ T5168] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input27
[  356.295454][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  356.303846][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  356.455070][ T5169] usb 1-1: USB disconnect, device number 13
[  356.526966][ T5169] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  356.579114][ T7747] netlink: 'syz.2.677': attribute type 2 has an invalid length.
[  356.658571][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  356.664915][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  356.753958][ T7751] ADFS-fs (nullb0): unrecognised mount option "
" or missing value
[  357.340185][   T25] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  357.530120][   T25] usb 3-1: Using ep0 maxpacket: 8
[  357.574828][   T25] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  357.602345][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  357.616468][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  357.690874][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  357.736945][   T25] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  358.020325][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  358.040732][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  358.085670][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  358.170638][   T25] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  358.280712][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  358.336732][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  358.452388][   T25] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  358.563173][   T25] usb 3-1: string descriptor 0 read error: -22
[  358.600865][   T25] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  358.609990][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.758916][   T25] adutux 3-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  359.035971][   T29] audit: type=1400 audit(1720711263.375:411): avc:  denied  { ioctl } for  pid=7769 comm="syz.0.686" path="socket:[18633]" dev="sockfs" ino=18633 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  359.099195][ T7771] netlink: 28 bytes leftover after parsing attributes in process `syz.0.686'.
[  359.136932][   T29] audit: type=1400 audit(1720711263.375:412): avc:  denied  { bind } for  pid=7769 comm="syz.0.686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  359.188647][ T5169] usb 3-1: USB disconnect, device number 12
[  359.214708][ T7773] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.241612][ T5089] Bluetooth: hci0: unexpected event 0x01 length: 6 > 1
[  359.243447][ T7773] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.375105][ T7773] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.441701][ T7775] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.461657][ T7775] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  359.527443][ T7775] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  360.267570][   T29] audit: type=1400 audit(1720711264.605:413): avc:  denied  { write } for  pid=7780 comm="syz.2.691" name="uhid" dev="devtmpfs" ino=1083 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  360.681090][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  360.689314][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  360.699072][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  360.706925][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  361.917852][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  361.927547][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  361.971930][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  361.987097][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  361.994596][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.004022][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.017602][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.046406][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.061041][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.068475][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.079440][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.088671][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.098371][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.120258][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.127707][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.184722][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.210107][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.217549][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.276877][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.300356][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.321230][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.341878][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.351149][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.359335][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.370665][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.383827][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.405044][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.648272][   T25] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  362.685479][   T25] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  363.630427][   T29] audit: type=1400 audit(1720711267.965:414): avc:  denied  { bind } for  pid=7798 comm="syz.0.696" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  363.771316][   T29] audit: type=1400 audit(1720711267.975:415): avc:  denied  { write } for  pid=7798 comm="syz.0.696" path="socket:[18733]" dev="sockfs" ino=18733 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  363.970209][ T5102] Bluetooth: hci3: command 0x0406 tx timeout
[  364.109378][ T5102] Bluetooth: hci3: SCO packet for unknown connection handle 3341
[  364.158838][ T5102] Bluetooth: Unknown BR/EDR signaling command 0x10
[  364.173351][ T5102] Bluetooth: Wrong link type (-22)
[  364.178525][ T5102] Bluetooth: Unknown BR/EDR signaling command 0x10
[  364.185817][ T5102] Bluetooth: Wrong link type (-22)
[  364.191467][ T5102] Bluetooth: hci3: link tx timeout
[  366.971656][ T5089] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  366.981378][ T5089] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  366.992229][ T5089] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  367.000956][ T5089] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  367.013293][ T5089] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  367.021126][ T5089] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  367.191343][ T7823] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  367.351120][ T7825] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  367.663035][ T7823] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  368.622907][ T7822] chnl_net:caif_netlink_parms(): no params data found
[  369.090633][ T5102] Bluetooth: hci4: command tx timeout
[  369.093412][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.292828][ T7822] bridge0: port 1(bridge_slave_0) entered blocking state
[  369.331206][ T7822] bridge0: port 1(bridge_slave_0) entered disabled state
[  369.373427][ T7822] bridge_slave_0: entered allmulticast mode
[  369.409069][ T7822] bridge_slave_0: entered promiscuous mode
[  369.445407][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.454022][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.461618][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.469050][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.476713][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.485232][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.500706][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.508199][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.517643][ T7822] bridge0: port 2(bridge_slave_1) entered blocking state
[  369.536465][ T7822] bridge0: port 2(bridge_slave_1) entered disabled state
[  369.727831][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.780764][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  369.838490][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.033346][ T7822] bridge_slave_1: entered allmulticast mode
[  370.049889][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.081815][ T7822] bridge_slave_1: entered promiscuous mode
[  370.102606][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.300218][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.336846][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.370451][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.377890][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.416997][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.442720][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.483462][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.515522][ T5089] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  370.536616][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.541920][ T7822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  370.544910][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.561746][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.569179][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.577484][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.587555][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.595423][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.603305][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.611110][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.622453][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.630498][ T2758] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  370.653659][ T7822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  370.663858][ T2758] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  370.894804][ T7822] team0: Port device team_slave_0 added
[  370.963052][ T7822] team0: Port device team_slave_1 added
[  371.091666][ T2758] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  371.144082][ T7822] batman_adv: batadv0: Adding interface: batadv_slave_0
[  371.160197][ T7822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  371.202406][ T5089] Bluetooth: hci4: command tx timeout
[  371.228020][ T7822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  371.252947][ T7822] batman_adv: batadv0: Adding interface: batadv_slave_1
[  371.260661][ T7822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  371.288022][ T7822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  371.299349][ T7864] vhci_hcd vhci_hcd.0: port 0 already used
[  371.312057][ T2758] usb 4-1: Using ep0 maxpacket: 8
[  371.324142][ T2758] usb 4-1: config 0 has an invalid descriptor of length 181, skipping remainder of the config
[  371.340084][ T2758] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  371.354214][ T2758] usb 4-1: New USB device found, idVendor=07e0, idProduct=1512, bcdDevice=30.22
[  371.388161][ T2758] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=8
[  371.407354][ T2758] usb 4-1: SerialNumber: syz
[  371.429270][ T2758] usb 4-1: config 0 descriptor??
[  371.482711][ T7822] hsr_slave_0: entered promiscuous mode
[  371.533973][ T7822] hsr_slave_1: entered promiscuous mode
[  371.557900][ T7822] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  371.592704][ T7822] Cannot create hsr debugfs directory
[  371.840428][ T5089] Bluetooth: hci2: command 0x0406 tx timeout
[  372.297307][   T29] audit: type=1400 audit(1720711276.635:416): avc:  denied  { listen } for  pid=7861 comm="syz.3.711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  372.377247][ T7822] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.548495][ T7822] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.695935][ T7822] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.793891][ T7822] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.128625][ T7822] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  373.189140][ T7822] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  373.224212][ T7822] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  373.251405][ T5089] Bluetooth: hci4: command tx timeout
[  373.277781][ T7822] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  373.683579][ T7880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.716226][ T7822] 8021q: adding VLAN 0 to HW filter on device bond0
[  373.726232][ T5089] Bluetooth: hci1: SCO packet for unknown connection handle 3341
[  373.748154][ T7880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.783010][ T5089] Bluetooth: Unknown BR/EDR signaling command 0x10
[  373.789773][ T5089] Bluetooth: Wrong link type (-22)
[  373.795243][ T5089] Bluetooth: Unknown BR/EDR signaling command 0x10
[  373.814722][ T5089] Bluetooth: Wrong link type (-22)
[  373.822382][ T5089] Bluetooth: hci1: link tx timeout
[  373.829073][ T5089] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  373.931218][ T5169] usb 4-1: USB disconnect, device number 12
[  373.960717][ T7822] 8021q: adding VLAN 0 to HW filter on device team0
[  373.973307][ T7882] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  374.081014][ T2758] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.088265][ T2758] bridge0: port 1(bridge_slave_0) entered forwarding state
[  374.152486][ T2758] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.159709][ T2758] bridge0: port 2(bridge_slave_1) entered forwarding state
[  374.238210][ T7884] netlink: 'syz.3.717': attribute type 2 has an invalid length.
[  374.800163][   T25] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  375.010606][   T25] usb 4-1: Using ep0 maxpacket: 8
[  375.093462][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  375.116219][ T5089] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  375.140470][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  375.156788][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  375.174756][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  375.190852][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  375.198515][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  375.269558][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  375.331181][ T5089] Bluetooth: hci4: command tx timeout
[  375.348453][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  375.395540][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  375.420147][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  375.485842][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7
[  375.530758][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[  375.607344][ T7822] 8021q: adding VLAN 0 to HW filter on device batadv0
[  375.616447][   T25] usb 4-1: string descriptor 0 read error: -22
[  375.645310][   T25] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  375.701563][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  375.780895][   T25] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  375.893424][ T5089] Bluetooth: hci1: command 0x0406 tx timeout
[  376.004651][ T7822] veth0_vlan: entered promiscuous mode
[  376.148968][ T7902] netlink: 4 bytes leftover after parsing attributes in process `syz.4.720'.
[  376.228401][ T7822] veth1_vlan: entered promiscuous mode
[  376.364512][ T7822] veth0_macvtap: entered promiscuous mode
[  376.424917][ T7822] veth1_macvtap: entered promiscuous mode
[  376.438477][    T8] usb 4-1: USB disconnect, device number 13
[  376.526500][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.561330][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.592327][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.695069][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.735205][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.773802][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.814383][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.879380][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.904340][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.930567][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.942912][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  376.955616][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  376.992946][ T7822] batman_adv: batadv0: Interface activated: batadv_slave_0
[  377.111969][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  377.136563][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  377.157593][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  377.216807][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  377.270163][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  377.295719][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  377.310335][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  377.343825][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  377.611506][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  377.739341][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.160278][ T7822] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  378.192418][ T7822] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.214457][ T7822] batman_adv: batadv0: Interface activated: batadv_slave_1
[  378.255461][ T7822] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  378.273578][ T7822] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  378.289428][ T7822] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  378.299954][ T7822] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  379.672485][ T7927] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes
[  380.053717][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.072164][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.167682][ T7934] FAULT_INJECTION: forcing a failure.
[  380.167682][ T7934] name failslab, interval 1, probability 0, space 0, times 0
[  380.221256][ T3676] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.234667][ T7934] CPU: 1 PID: 7934 Comm: syz.0.726 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  380.244716][ T7934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  380.250086][ T3676] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.254783][ T7934] Call Trace:
[  380.254797][ T7934]  <TASK>
[  380.254809][ T7934]  dump_stack_lvl+0x16c/0x1f0
[  380.273170][ T7934]  should_fail_ex+0x497/0x5b0
[  380.277900][ T7934]  should_failslab+0x9/0x20
[  380.282455][ T7934]  kmem_cache_alloc_node_noprof+0x71/0x310
[  380.288311][ T7934]  ? __alloc_skb+0x2b1/0x380
[  380.292935][ T7934]  __alloc_skb+0x2b1/0x380
[  380.297400][ T7934]  ? __pfx___alloc_skb+0x10/0x10
[  380.302363][ T7934]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  380.309064][ T7934]  netlink_alloc_large_skb+0x69/0x130
[  380.314457][ T7934]  netlink_sendmsg+0x689/0xd70
[  380.319242][ T7934]  ? __pfx_netlink_sendmsg+0x10/0x10
[  380.324545][ T7934]  ? __import_iovec+0x1fd/0x6e0
[  380.329416][ T7934]  ____sys_sendmsg+0xab5/0xc90
[  380.334191][ T7934]  ? copy_msghdr_from_user+0x10b/0x160
[  380.339704][ T7934]  ? __pfx_____sys_sendmsg+0x10/0x10
[  380.345015][ T7934]  ? find_held_lock+0x2d/0x110
[  380.349807][ T7934]  ? __pfx___lock_acquire+0x10/0x10
[  380.355037][ T7934]  ___sys_sendmsg+0x135/0x1e0
[  380.359762][ T7934]  ? __pfx____sys_sendmsg+0x10/0x10
[  380.365468][ T7934]  ? ksys_write+0x21c/0x260
[  380.370004][ T7934]  ? __fget_light+0x173/0x210
[  380.374709][ T7934]  __sys_sendmsg+0x117/0x1f0
[  380.379322][ T7934]  ? __pfx___sys_sendmsg+0x10/0x10
[  380.384474][ T7934]  do_syscall_64+0xcd/0x250
[  380.389012][ T7934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.394947][ T7934] RIP: 0033:0x7f1d18575bd9
[  380.399374][ T7934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.418998][ T7934] RSP: 002b:00007f1d19283048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  380.427428][ T7934] RAX: ffffffffffffffda RBX: 00007f1d18704038 RCX: 00007f1d18575bd9
[  380.435417][ T7934] RDX: 0000000000000000 RSI: 0000000020001980 RDI: 0000000000000004
[  380.443414][ T7934] RBP: 00007f1d192830a0 R08: 0000000000000000 R09: 0000000000000000
[  380.451400][ T7934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  380.459384][ T7934] R13: 000000000000006e R14: 00007f1d18704038 R15: 00007ffecab1ed18
[  380.467468][ T7934]  </TASK>
[  380.470516][    C1] vkms_vblank_simulate: vblank timer overrun
[  380.911893][ T5102] Bluetooth: hci2: SCO packet for unknown connection handle 3341
[  380.921204][ T5102] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  381.061334][ T5102] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  381.314213][ T7950] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.491452][ T5102] Bluetooth: hci4: unexpected event 0x01 length: 6 > 1
[  381.517163][ T7945] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.614635][ T7945] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  382.056760][ T7955] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  382.065613][ T7955] overlayfs: missing 'lowerdir'
[  382.084635][ T5089] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  382.095205][ T5089] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  382.103463][ T5089] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  382.112424][ T5089] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  382.124257][ T5089] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  382.131816][ T5089] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  382.609355][   T29] audit: type=1400 audit(1720711286.905:417): avc:  denied  { read } for  pid=7953 comm="syz.0.731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  384.178527][ T1247] ieee802154 phy0 wpan0: encryption failed: -22
[  384.210255][ T5102] Bluetooth: hci6: command tx timeout
[  384.530424][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[  386.290873][ T5102] Bluetooth: hci6: command tx timeout
[  387.365345][ T7983] netlink: 12 bytes leftover after parsing attributes in process `syz.3.736'.
[  387.504200][ T7994] netlink: 4 bytes leftover after parsing attributes in process `syz.3.736'.
[  387.617233][ T7954] chnl_net:caif_netlink_parms(): no params data found
[  388.489938][ T5102] Bluetooth: hci6: command tx timeout
[  388.848949][ T5102] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  389.363038][ T7954] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.380310][ T7954] bridge0: port 1(bridge_slave_0) entered disabled state
[  389.400468][ T7954] bridge_slave_0: entered allmulticast mode
[  389.412704][ T7954] bridge_slave_0: entered promiscuous mode
[  389.472333][ T7954] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.500341][ T7954] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.516855][ T7954] bridge_slave_1: entered allmulticast mode
[  389.546137][ T7954] bridge_slave_1: entered promiscuous mode
[  389.574339][ T8016] FAULT_INJECTION: forcing a failure.
[  389.574339][ T8016] name failslab, interval 1, probability 0, space 0, times 0
[  389.610209][ T8016] CPU: 0 PID: 8016 Comm: syz.0.743 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  389.620278][ T8016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  389.630394][ T8016] Call Trace:
[  389.633710][ T8016]  <TASK>
[  389.636683][ T8016]  dump_stack_lvl+0x16c/0x1f0
[  389.641427][ T8016]  should_fail_ex+0x497/0x5b0
[  389.646160][ T8016]  should_failslab+0x9/0x20
[  389.650729][ T8016]  kmalloc_trace_noprof+0x6b/0x300
[  389.655914][ T8016]  ? rtnl_newlink+0x49/0xa0
[  389.660491][ T8016]  rtnl_newlink+0x49/0xa0
[  389.664899][ T8016]  ? __pfx_rtnl_newlink+0x10/0x10
[  389.669986][ T8016]  rtnetlink_rcv_msg+0x3c7/0xea0
[  389.674976][ T8016]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  389.680497][ T8016]  netlink_rcv_skb+0x16b/0x440
[  389.685344][ T8016]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  389.690862][ T8016]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  389.696217][ T8016]  ? netlink_deliver_tap+0x1ae/0xd90
[  389.701654][ T8016]  netlink_unicast+0x542/0x820
[  389.706484][ T8016]  ? __pfx_netlink_unicast+0x10/0x10
[  389.711858][ T8016]  netlink_sendmsg+0x8b8/0xd70
[  389.716693][ T8016]  ? __pfx_netlink_sendmsg+0x10/0x10
[  389.722042][ T8016]  ? __import_iovec+0x1fd/0x6e0
[  389.726948][ T8016]  ____sys_sendmsg+0xab5/0xc90
[  389.731776][ T8016]  ? copy_msghdr_from_user+0x10b/0x160
[  389.737401][ T8016]  ? __pfx_____sys_sendmsg+0x10/0x10
[  389.742754][ T8016]  ? find_held_lock+0x2d/0x110
[  389.747579][ T8016]  ? __pfx___lock_acquire+0x10/0x10
[  389.752849][ T8016]  ___sys_sendmsg+0x135/0x1e0
[  389.757596][ T8016]  ? __pfx____sys_sendmsg+0x10/0x10
[  389.762874][ T8016]  ? ksys_write+0x21c/0x260
[  389.767463][ T8016]  ? __fget_light+0x173/0x210
[  389.772209][ T8016]  __sys_sendmsg+0x117/0x1f0
[  389.776868][ T8016]  ? __pfx___sys_sendmsg+0x10/0x10
[  389.782057][ T8016]  do_syscall_64+0xcd/0x250
[  389.786637][ T8016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.792693][ T8016] RIP: 0033:0x7f1d18575bd9
[  389.797152][ T8016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.816833][ T8016] RSP: 002b:00007f1d192a4048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  389.825309][ T8016] RAX: ffffffffffffffda RBX: 00007f1d18703f60 RCX: 00007f1d18575bd9
[  389.833333][ T8016] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000004
[  389.841347][ T8016] RBP: 00007f1d192a40a0 R08: 0000000000000000 R09: 0000000000000000
[  389.849354][ T8016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.857398][ T8016] R13: 000000000000000b R14: 00007f1d18703f60 R15: 00007ffecab1ed18
[  389.865438][ T8016]  </TASK>
[  389.975528][ T5102] Bluetooth: hci0: unexpected event 0x1c length: 11 > 5
[  390.119336][ T8020] FAULT_INJECTION: forcing a failure.
[  390.119336][ T8020] name failslab, interval 1, probability 0, space 0, times 0
[  390.141904][ T5089] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  390.152850][ T5089] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  390.161933][ T8020] CPU: 1 PID: 8020 Comm: syz.0.744 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  390.171973][ T8020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  390.182193][ T8020] Call Trace:
[  390.185512][ T8020]  <TASK>
[  390.188498][ T8020]  dump_stack_lvl+0x16c/0x1f0
[  390.193267][ T8020]  should_fail_ex+0x497/0x5b0
[  390.198008][ T8020]  should_failslab+0x9/0x20
[  390.202584][ T8020]  __kmalloc_noprof+0xcf/0x410
[  390.207411][ T8020]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  390.214606][ T8020]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  390.220145][ T8020]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  390.226278][ T8020]  ? ns_capable+0xd7/0x110
[  390.230740][ T8020]  genl_rcv_msg+0x565/0x800
[  390.235287][ T8020]  ? __pfx_genl_rcv_msg+0x10/0x10
[  390.240351][ T8020]  ? __pfx___lock_acquire+0x10/0x10
[  390.245605][ T8020]  ? __pfx_mptcp_pm_nl_announce_doit+0x10/0x10
[  390.251784][ T8020]  ? __pfx___lock_acquire+0x10/0x10
[  390.257026][ T8020]  netlink_rcv_skb+0x16b/0x440
[  390.261830][ T8020]  ? __pfx_genl_rcv_msg+0x10/0x10
[  390.266896][ T8020]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  390.272223][ T8020]  ? down_read+0xc9/0x330
[  390.276600][ T8020]  ? __pfx_down_read+0x10/0x10
[  390.281405][ T8020]  ? netlink_deliver_tap+0x1ae/0xd90
[  390.286726][ T8020]  genl_rcv+0x28/0x40
[  390.290744][ T8020]  netlink_unicast+0x542/0x820
[  390.295540][ T8020]  ? __pfx_netlink_unicast+0x10/0x10
[  390.300868][ T8020]  netlink_sendmsg+0x8b8/0xd70
[  390.305675][ T8020]  ? __pfx_netlink_sendmsg+0x10/0x10
[  390.310999][ T8020]  ? __import_iovec+0x1fd/0x6e0
[  390.315888][ T8020]  ____sys_sendmsg+0xab5/0xc90
[  390.320700][ T8020]  ? copy_msghdr_from_user+0x10b/0x160
[  390.326194][ T8020]  ? __pfx_____sys_sendmsg+0x10/0x10
[  390.331510][ T8020]  ? find_held_lock+0x2d/0x110
[  390.336307][ T8020]  ? __pfx___lock_acquire+0x10/0x10
[  390.341548][ T8020]  ___sys_sendmsg+0x135/0x1e0
[  390.346257][ T8020]  ? __pfx____sys_sendmsg+0x10/0x10
[  390.351495][ T8020]  ? ksys_write+0x21c/0x260
[  390.356031][ T8020]  ? __fget_light+0x173/0x210
[  390.360738][ T8020]  __sys_sendmsg+0x117/0x1f0
[  390.365379][ T8020]  ? __pfx___sys_sendmsg+0x10/0x10
[  390.370538][ T8020]  do_syscall_64+0xcd/0x250
[  390.375082][ T8020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.381018][ T8020] RIP: 0033:0x7f1d18575bd9
[  390.385454][ T8020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.405433][ T8020] RSP: 002b:00007f1d192a4048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  390.413873][ T8020] RAX: ffffffffffffffda RBX: 00007f1d18703f60 RCX: 00007f1d18575bd9
[  390.421870][ T8020] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004
[  390.429869][ T8020] RBP: 00007f1d192a40a0 R08: 0000000000000000 R09: 0000000000000000
[  390.437881][ T8020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  390.445878][ T8020] R13: 000000000000000b R14: 00007f1d18703f60 R15: 00007ffecab1ed18
[  390.453874][ T8020]  </TASK>
[  390.456928][    C1] vkms_vblank_simulate: vblank timer overrun
[  390.476202][ T5089] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  390.502404][ T5089] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  390.513869][ T5089] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  390.530990][ T5089] Bluetooth: hci6: command tx timeout
[  390.541417][ T5089] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  390.698987][ T7954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  390.769385][ T7954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  390.784786][ T5089] Bluetooth: hci2: unexpected event 0x1c length: 11 > 5
[  390.846686][ T5089] Bluetooth: hci1: SCO packet for unknown connection handle 3341
[  391.200767][ T3676] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.245458][ T5089] Bluetooth: hci0: Malformed LE Event: 0x0d
[  391.398269][ T7954] team0: Port device team_slave_0 added
[  391.721976][ T3676] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  391.785551][ T7954] team0: Port device team_slave_1 added
[  392.149629][ T3676] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.599051][ T3676] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  392.612489][ T5089] Bluetooth: hci4: command tx timeout
[  393.841037][ T7954] batman_adv: batadv0: Adding interface: batadv_slave_0
[  393.865443][ T7954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  393.923816][ T7954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  394.143526][ T7954] batman_adv: batadv0: Adding interface: batadv_slave_1
[  394.172613][ T7954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  394.218897][ T7954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  394.456977][ T8051] netlink: 12 bytes leftover after parsing attributes in process `syz.0.750'.
[  394.531313][ T8051] netlink: 4 bytes leftover after parsing attributes in process `syz.0.750'.
[  394.692061][ T5089] Bluetooth: hci4: command tx timeout
[  395.025522][ T7954] hsr_slave_0: entered promiscuous mode
[  395.055004][ T7954] hsr_slave_1: entered promiscuous mode
[  395.092487][ T7954] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  395.103699][ T7954] Cannot create hsr debugfs directory
[  395.424551][ T5089] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  395.966109][ T3676] bridge_slave_1: left allmulticast mode
[  395.980065][ T3676] bridge_slave_1: left promiscuous mode
[  396.000518][ T3676] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.081437][ T3676] bridge_slave_0: left allmulticast mode
[  396.091577][ T3676] bridge_slave_0: left promiscuous mode
[  396.119184][ T3676] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.770158][ T5089] Bluetooth: hci4: command tx timeout
[  397.015673][ T5089] Bluetooth: hci1: unexpected event 0x1c length: 11 > 5
[  397.228413][ T5089] Bluetooth: hci2: unexpected event 0x1c length: 11 > 5
[  397.940368][ T3676] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  398.167439][ T3676] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  398.191023][ T3676] bond0 (unregistering): Released all slaves
[  398.767905][ T5089] Bluetooth: hci0: SCO packet for unknown connection handle 3341
[  398.769551][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  398.852126][ T5089] Bluetooth: hci4: command tx timeout
[  400.277290][ T5089] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  401.005205][ T7954] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  401.206123][ T3676] hsr_slave_0: left promiscuous mode
[  401.265812][ T3676] hsr_slave_1: left promiscuous mode
[  401.318336][ T3676] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  401.366681][ T3676] batman_adv: batadv0: Removing interface: batadv_slave_0
[  401.424888][ T3676] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  401.439930][ T8130] netlink: 12 bytes leftover after parsing attributes in process `syz.4.762'.
[  401.491870][ T3676] batman_adv: batadv0: Removing interface: batadv_slave_1
[  401.524566][ T5089] Bluetooth: hci1: ISO packet for unknown connection handle 0
[  401.614387][ T8133] netlink: 4 bytes leftover after parsing attributes in process `syz.4.762'.
[  401.711493][ T3676] veth1_macvtap: left promiscuous mode
[  401.740794][ T3676] veth0_macvtap: left promiscuous mode
[  401.758419][ T3676] veth1_vlan: left promiscuous mode
[  401.800026][ T3676] veth0_vlan: left promiscuous mode
[  403.317955][ T3676] team0 (unregistering): Port device team_slave_1 removed
[  403.390885][ T3676] team0 (unregistering): Port device team_slave_0 removed
[  404.069087][ T8021] chnl_net:caif_netlink_parms(): no params data found
[  404.163968][ T7954] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  404.461829][   T29] audit: type=1400 audit(1720711308.795:418): avc:  denied  { name_bind } for  pid=8138 comm="syz.0.764" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  404.543629][ T7954] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  404.720257][   T29] audit: type=1400 audit(1720711308.975:419): avc:  denied  { block_suspend } for  pid=8140 comm="syz.3.765" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  405.910393][ T7954] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.332674][ T8021] bridge0: port 1(bridge_slave_0) entered blocking state
[  406.339987][ T8021] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.393637][ T8021] bridge_slave_0: entered allmulticast mode
[  406.422798][ T8021] bridge_slave_0: entered promiscuous mode
[  406.719693][ T5102] Bluetooth: hci3: command 0x0406 tx timeout
[  407.681090][ T8021] bridge0: port 2(bridge_slave_1) entered blocking state
[  407.692372][ T8021] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.719867][ T8021] bridge_slave_1: entered allmulticast mode
[  407.734279][ T8021] bridge_slave_1: entered promiscuous mode
[  407.956374][ T8021] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  408.012010][ T8021] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  408.514206][ T5089] Bluetooth: hci0: unexpected event 0x1c length: 11 > 5
[  408.580394][ T8021] team0: Port device team_slave_0 added
[  408.600267][ T5089] Bluetooth: hci1: SCO packet for unknown connection handle 3341
[  408.751148][ T8021] team0: Port device team_slave_1 added
[  408.774736][ T7954] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  408.803350][ T7954] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  409.055658][ T7954] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  409.210622][ T8185] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  409.255349][ T8021] batman_adv: batadv0: Adding interface: batadv_slave_0
[  409.281960][ T8021] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  409.290223][   T29] audit: type=1400 audit(1720711313.615:420): avc:  denied  { bind } for  pid=8184 comm="syz.3.771" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  409.308121][    C1] vkms_vblank_simulate: vblank timer overrun
[  409.344656][ T8187] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  409.411984][   T29] audit: type=1400 audit(1720711313.705:421): avc:  denied  { create } for  pid=8184 comm="syz.3.771" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  409.486954][ T8021] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  409.558675][ T7954] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  409.596154][ T8021] batman_adv: batadv0: Adding interface: batadv_slave_1
[  409.646089][ T8021] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  409.700061][ T5089] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  409.775681][ T8021] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  410.458615][ T8021] hsr_slave_0: entered promiscuous mode
[  411.170806][ T8021] hsr_slave_1: entered promiscuous mode
[  411.211383][ T8021] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  411.237559][ T8021] Cannot create hsr debugfs directory
[  412.703945][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  413.412057][ T7954] 8021q: adding VLAN 0 to HW filter on device bond0
[  413.643686][ T5089] Bluetooth: hci1: Malformed LE Event: 0x0d
[  413.687359][ T7954] 8021q: adding VLAN 0 to HW filter on device team0
[  413.733871][ T5141] bridge0: port 1(bridge_slave_0) entered blocking state
[  413.741241][ T5141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  413.769688][ T5089] Bluetooth: hci2: unexpected event for opcode 0x040e
[  413.960378][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  413.967737][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  415.348835][ T8249] VFS: could not find a valid V7 on nullb0.
[  416.582682][ T8021] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  416.627620][ T5089] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  416.665048][ T8021] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  416.794948][ T8021] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  417.024443][ T5089] Bluetooth: hci2: unexpected event 0x1c length: 11 > 5
[  417.076747][ T7954] 8021q: adding VLAN 0 to HW filter on device batadv0
[  417.101411][ T8021] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  417.574928][ T8263] FAULT_INJECTION: forcing a failure.
[  417.574928][ T8263] name failslab, interval 1, probability 0, space 0, times 0
[  417.620408][ T8263] CPU: 1 PID: 8263 Comm: syz.4.783 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  417.630487][ T8263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  417.640581][ T8263] Call Trace:
[  417.643891][ T8263]  <TASK>
[  417.646860][ T8263]  dump_stack_lvl+0x16c/0x1f0
[  417.651600][ T8263]  should_fail_ex+0x497/0x5b0
[  417.656404][ T8263]  should_failslab+0x9/0x20
[  417.660997][ T8263]  kmalloc_trace_noprof+0x6b/0x300
[  417.666232][ T8263]  ? rtnl_newlink+0x49/0xa0
[  417.670812][ T8263]  rtnl_newlink+0x49/0xa0
[  417.675229][ T8263]  ? __pfx_rtnl_newlink+0x10/0x10
[  417.680333][ T8263]  rtnetlink_rcv_msg+0x3c7/0xea0
[  417.685338][ T8263]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  417.690881][ T8263]  netlink_rcv_skb+0x16b/0x440
[  417.695714][ T8263]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  417.701239][ T8263]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  417.706601][ T8263]  ? netlink_deliver_tap+0x1ae/0xd90
[  417.711959][ T8263]  netlink_unicast+0x542/0x820
[  417.716792][ T8263]  ? __pfx_netlink_unicast+0x10/0x10
[  417.722149][ T8263]  netlink_sendmsg+0x8b8/0xd70
[  417.726980][ T8263]  ? __pfx_netlink_sendmsg+0x10/0x10
[  417.732419][ T8263]  ? __import_iovec+0x1fd/0x6e0
[  417.737328][ T8263]  ____sys_sendmsg+0xab5/0xc90
[  417.742150][ T8263]  ? copy_msghdr_from_user+0x10b/0x160
[  417.747683][ T8263]  ? __pfx_____sys_sendmsg+0x10/0x10
[  417.753026][ T8263]  ? find_held_lock+0x2d/0x110
[  417.757845][ T8263]  ? __pfx___lock_acquire+0x10/0x10
[  417.763167][ T8263]  ___sys_sendmsg+0x135/0x1e0
[  417.767873][ T8263]  ? __pfx____sys_sendmsg+0x10/0x10
[  417.773127][ T8263]  ? ksys_write+0x21c/0x260
[  417.777685][ T8263]  ? __fget_light+0x173/0x210
[  417.782418][ T8263]  __sys_sendmsg+0x117/0x1f0
[  417.787076][ T8263]  ? __pfx___sys_sendmsg+0x10/0x10
[  417.792260][ T8263]  do_syscall_64+0xcd/0x250
[  417.796829][ T8263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.802791][ T8263] RIP: 0033:0x7f6ce4375bd9
[  417.807250][ T8263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.826920][ T8263] RSP: 002b:00007f6ce51c1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  417.835411][ T8263] RAX: ffffffffffffffda RBX: 00007f6ce4504038 RCX: 00007f6ce4375bd9
[  417.843446][ T8263] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  417.851430][ T8263] RBP: 00007f6ce51c10a0 R08: 0000000000000000 R09: 0000000000000000
[  417.859418][ T8263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.867446][ T8263] R13: 000000000000006e R14: 00007f6ce4504038 R15: 00007ffd177696b8
[  417.875447][ T8263]  </TASK>
[  417.878606][    C1] vkms_vblank_simulate: vblank timer overrun
[  418.195104][ T7954] veth0_vlan: entered promiscuous mode
[  418.890326][ T5089] Bluetooth: hci2: SCO packet for unknown connection handle 3341
[  418.909709][ T5089] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  419.043341][ T7954] veth1_vlan: entered promiscuous mode
[  419.311452][ T8021] 8021q: adding VLAN 0 to HW filter on device bond0
[  419.403975][ T8278] FAULT_INJECTION: forcing a failure.
[  419.403975][ T8278] name failslab, interval 1, probability 0, space 0, times 0
[  419.456562][ T8278] CPU: 1 PID: 8278 Comm: syz.3.788 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  419.466625][ T8278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  419.476727][ T8278] Call Trace:
[  419.480038][ T8278]  <TASK>
[  419.482995][ T8278]  dump_stack_lvl+0x16c/0x1f0
[  419.487708][ T8278]  should_fail_ex+0x497/0x5b0
[  419.492426][ T8278]  should_failslab+0x9/0x20
[  419.496993][ T8278]  __kmalloc_noprof+0xcf/0x410
[  419.501789][ T8278]  kernfs_fop_write_iter+0x229/0x500
[  419.507115][ T8278]  vfs_write+0x6b6/0x1140
[  419.511477][ T8278]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  419.517317][ T8278]  ? __pfx_vfs_write+0x10/0x10
[  419.522127][ T8278]  ? __pfx___mutex_lock+0x10/0x10
[  419.527200][ T8278]  ? __fget_files+0x256/0x400
[  419.531908][ T8278]  ksys_write+0x12f/0x260
[  419.536266][ T8278]  ? __pfx_ksys_write+0x10/0x10
[  419.541147][ T8278]  do_syscall_64+0xcd/0x250
[  419.545719][ T8278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.551672][ T8278] RIP: 0033:0x7f7448d75bd9
[  419.556111][ T8278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  419.575736][ T8278] RSP: 002b:00007f7449b62048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  419.584162][ T8278] RAX: ffffffffffffffda RBX: 00007f7448f03f60 RCX: 00007f7448d75bd9
[  419.592140][ T8278] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  419.600125][ T8278] RBP: 00007f7449b620a0 R08: 0000000000000000 R09: 0000000000000000
[  419.608113][ T8278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  419.616109][ T8278] R13: 000000000000000b R14: 00007f7448f03f60 R15: 00007ffedf10d008
[  419.624118][ T8278]  </TASK>
[  419.627271][    C1] vkms_vblank_simulate: vblank timer overrun
[  419.655360][ T5089] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  419.718697][ T7954] veth0_macvtap: entered promiscuous mode
[  419.774935][ T8021] 8021q: adding VLAN 0 to HW filter on device team0
[  419.826874][ T7954] veth1_macvtap: entered promiscuous mode
[  419.908727][ T5141] bridge0: port 1(bridge_slave_0) entered blocking state
[  419.915949][ T5141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.085463][ T5168] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.093100][ T5168] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.119588][ T8284] FAULT_INJECTION: forcing a failure.
[  420.119588][ T8284] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  420.183395][ T8284] CPU: 1 PID: 8284 Comm: syz.3.790 Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  420.193424][ T8284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  420.203570][ T8284] Call Trace:
[  420.206851][ T8284]  <TASK>
[  420.209781][ T8284]  dump_stack_lvl+0x16c/0x1f0
[  420.214467][ T8284]  should_fail_ex+0x497/0x5b0
[  420.219156][ T8284]  _copy_from_user+0x30/0xf0
[  420.223774][ T8284]  copy_msghdr_from_user+0x99/0x160
[  420.228991][ T8284]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  420.234823][ T8284]  ? find_held_lock+0x2d/0x110
[  420.239625][ T8284]  ? __pfx___lock_acquire+0x10/0x10
[  420.244854][ T8284]  ___sys_sendmsg+0xff/0x1e0
[  420.249471][ T8284]  ? __pfx____sys_sendmsg+0x10/0x10
[  420.254706][ T8284]  ? ksys_write+0x21c/0x260
[  420.259237][ T8284]  ? __fget_light+0x173/0x210
[  420.263948][ T8284]  __sys_sendmsg+0x117/0x1f0
[  420.268567][ T8284]  ? __pfx___sys_sendmsg+0x10/0x10
[  420.273711][ T8284]  do_syscall_64+0xcd/0x250
[  420.278237][ T8284]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.284164][ T8284] RIP: 0033:0x7f7448d75bd9
[  420.288606][ T8284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.308230][ T8284] RSP: 002b:00007f7449b62048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  420.316659][ T8284] RAX: ffffffffffffffda RBX: 00007f7448f03f60 RCX: 00007f7448d75bd9
[  420.324667][ T8284] RDX: 0000000000000000 RSI: 0000000020000a00 RDI: 0000000000000003
[  420.332655][ T8284] RBP: 00007f7449b620a0 R08: 0000000000000000 R09: 0000000000000000
[  420.340636][ T8284] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.348611][ T8284] R13: 000000000000000b R14: 00007f7448f03f60 R15: 00007ffedf10d008
[  420.356636][ T8284]  </TASK>
[  420.359685][    C1] vkms_vblank_simulate: vblank timer overrun
[  420.473170][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.500165][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.520083][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.546678][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.625051][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.685598][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.738712][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.785076][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  420.911695][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  420.964110][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.033347][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  421.090441][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.144018][ T7954] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.289551][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.304537][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.330762][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.347057][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.383795][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.435387][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.480881][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.542681][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.598081][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.623861][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.673255][ T7954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.716471][ T7954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.783234][ T7954] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.852783][ T7954] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.890055][ T7954] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.930203][ T7954] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  421.938973][ T7954] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  422.748359][ T3676] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  422.789102][ T3676] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  423.050335][ T3468] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  423.050368][ T3468] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  423.935199][ T8021] 8021q: adding VLAN 0 to HW filter on device batadv0
[  424.952052][ T8021] veth0_vlan: entered promiscuous mode
[  425.173386][ T8335] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  425.499305][ T5089] Bluetooth: hci2: SCO packet for unknown connection handle 3341
[  425.505202][ T8021] veth1_vlan: entered promiscuous mode
[  425.535729][ T5089] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  425.546346][ T8334] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  425.646261][ T8331] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  425.706342][ T8344] hpfs: Bad magic ... probably not HPFS
[  425.730768][   T30] INFO: task syz.0.419:6862 blocked for more than 143 seconds.
[  425.739181][   T30]       Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  425.766602][ T8021] veth0_macvtap: entered promiscuous mode
[  425.773233][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  425.830329][   T30] task:syz.0.419       state:D stack:27856 pid:6862  tgid:6861  ppid:5084   flags:0x00004002
[  425.859486][   T30] Call Trace:
[  425.872081][   T30]  <TASK>
[  425.872446][ T8021] veth1_macvtap: entered promiscuous mode
[  425.875567][   T30]  __schedule+0xf15/0x5d00
[  425.891455][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  425.911940][   T30]  ? __pfx___lock_acquire+0x10/0x10
[  425.922403][   T30]  ? __pfx___schedule+0x10/0x10
[  425.966891][   T30]  ? schedule+0x298/0x350
[  425.986035][   T30]  ? __pfx_lock_release+0x10/0x10
[  426.001840][   T30]  ? __mutex_lock+0x5b3/0x9c0
[  426.024521][   T30]  ? __mutex_trylock_common+0x78/0x250
[  426.040794][   T30]  schedule+0xe7/0x350
[  426.046360][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.069843][   T30]  schedule_preempt_disabled+0x13/0x30
[  426.076367][   T30]  __mutex_lock+0x5b8/0x9c0
[  426.089198][   T30]  ? usbdev_release+0x87/0x470
[  426.101082][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  426.110571][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.122244][   T30]  ? locks_remove_file+0x399/0x5a0
[  426.139543][   T30]  ? __pfx_usbdev_release+0x10/0x10
[  426.146325][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.156839][   T30]  ? usbdev_release+0x87/0x470
[  426.156897][   T30]  usbdev_release+0x87/0x470
[  426.156944][   T30]  ? __pfx_usbdev_release+0x10/0x10
[  426.156990][   T30]  __fput+0x408/0xbb0
[  426.157030][   T30]  task_work_run+0x14e/0x250
[  426.157064][   T30]  ? __pfx_task_work_run+0x10/0x10
[  426.157098][   T30]  ? do_raw_spin_unlock+0x172/0x230
[  426.157140][   T30]  do_exit+0xa9b/0x2ba0
[  426.157191][   T30]  ? get_signal+0x8f2/0x2710
[  426.157232][   T30]  ? __pfx_do_exit+0x10/0x10
[  426.157282][   T30]  ? do_raw_spin_lock+0x12d/0x2c0
[  426.157319][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  426.157359][   T30]  do_group_exit+0xd3/0x2a0
[  426.157411][   T30]  get_signal+0x2616/0x2710
[  426.157460][   T30]  ? vfs_write+0x14d/0x1140
[  426.157511][   T30]  ? __pfx_get_signal+0x10/0x10
[  426.157551][   T30]  ? __mutex_unlock_slowpath+0x164/0x650
[  426.157602][   T30]  arch_do_signal_or_restart+0x90/0x7e0
[  426.157648][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  426.157705][   T30]  ? ksys_write+0x1ab/0x260
[  426.157752][   T30]  ? __pfx_ksys_write+0x10/0x10
[  426.157802][   T30]  syscall_exit_to_user_mode+0x14a/0x2a0
[  426.157849][   T30]  do_syscall_64+0xda/0x250
[  426.157897][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.158085][   T30] RIP: 0033:0x7f8cbdf7475f
[  426.158144][   T30] RSP: 002b:00007f8cbed7aa60 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  426.158243][   T30] RAX: 0000000000000007 RBX: 0000000000000006 RCX: 00007f8cbdf7475f
[  426.194755][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.325239][   T30] RDX: 0000000000000007 RSI: 00007f8cbed7aab0 RDI: 0000000000000006
[  426.378821][   T30] RBP: 00007f8cbdfd2bb8 R08: 0000000000000000 R09: 0000000000000000
[  426.394690][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.410142][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000007
[  426.444218][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.464199][   T30] R13: 00007f8cbed7aab0 R14: 00007f8cbe103f60 R15: 00007ffd592f4568
[  426.482298][   T30]  </TASK>
[  426.495881][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.511518][   T30] 
[  426.511518][   T30] Showing all locks held in the system:
[  426.550241][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.560492][   T30] 1 lock held by khungtaskd/30:
[  426.565722][   T30]  #0: ffffffff8dbb1620 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[  426.610674][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.616717][   T30] 2 locks held by kworker/u8:2/35:
[  426.628420][   T30] 5 locks held by kworker/1:1/45:
[  426.660118][   T30]  #0: ffff88801b282d48 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  426.664726][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.695718][   T30]  #1: ffffc90000b57d80 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  426.707842][   T30]  #2: ffff888024016190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1c1/0x4e20
[  426.717415][   T30]  #3: ffff8880240d2518 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2802/0x4e20
[  426.721570][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.728244][   T30]  #4: ffff88801b736c68 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_event+0x282b/0x4e20
[  426.749158][   T30] 3 locks held by kworker/1:2/2758:
[  426.755007][   T30]  #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  426.771159][   T30]  #1: ffffc9000969fd80 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  426.778830][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.812363][   T30]  #2: ffffffff8f748528 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0x51/0xc0
[  426.823987][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.832988][   T30] 3 locks held by kworker/u8:9/3676:
[  426.844885][   T30]  #0: ffff88802aa29148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x1277/0x1b40
[  426.850038][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.877810][   T30]  #1: ffffc9000adafd80 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1b40
[  426.896856][ T8021] batman_adv: batadv0: Interface activated: batadv_slave_0
[  426.972005][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  426.976055][   T30]  #2: ffffffff8f748528 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xcf/0x1500
[  427.016710][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.016733][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  427.016759][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.016776][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  427.016798][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.016827][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  427.016850][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.016871][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  427.016894][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.016917][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  427.016941][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.016961][ T8021] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  427.016983][ T8021] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.029817][ T8021] batman_adv: batadv0: Interface activated: batadv_slave_1
[  427.185153][   T30] 2 locks held by getty/4844:
[  427.190745][   T30]  #0: ffff88802acdb0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  427.210860][   T30]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc8/0x1490
[  427.238899][   T30] 3 locks held by kworker/0:5/5168:
[  427.294563][   T30] 1 lock held by syz.0.419/6862:
[  427.296367][ T8021] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  427.307984][   T30]  #0: ffff888024016190 (&dev->mutex){....}-{3:3}, at: usbdev_release+0x87/0x470
[  427.310542][ T8021] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  427.329000][ T8021] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  427.339695][ T8021] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  427.349127][   T30] 1 lock held by syz.1.675/7736:
[  427.363308][   T30]  #0: ffff888024016190 (&dev->mutex){....}-{3:3}, at: usbdev_open+0x1b8/0x8c0
[  427.393004][   T30] 1 lock held by syz.2.710/7855:
[  427.411295][   T30]  #0: ffff888024016190 (&dev->mutex){....}-{3:3}, at: usbdev_open+0x1b8/0x8c0
[  427.465527][   T30] 3 locks held by syz-executor/8021:
[  427.487391][   T30]  #0: ffffffff8f748528 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x372/0xea0
[  427.532082][   T30]  #1: ffff888070959408 (&wg->device_update_lock){+.+.}-{3:3}, at: wg_open+0x203/0x4e0
[  427.555073][   T30]  #2: ffffffff8dbbcdb8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock+0x282/0x3b0
[  427.577254][   T30] 3 locks held by dhcpcd-run-hook/8355:
[  427.590389][   T30] 
[  427.592762][   T30] =============================================
[  427.592762][   T30] 
[  427.682460][   T30] NMI backtrace for cpu 0
[  427.686849][   T30] CPU: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  427.696842][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  427.706906][   T30] Call Trace:
[  427.710203][   T30]  <TASK>
[  427.713159][   T30]  dump_stack_lvl+0x116/0x1f0
[  427.717886][   T30]  nmi_cpu_backtrace+0x27b/0x390
[  427.722874][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  427.728873][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  427.734896][   T30]  watchdog+0xf86/0x1240
[  427.739185][   T30]  ? __pfx_watchdog+0x10/0x10
[  427.743924][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  427.749180][   T30]  ? __kthread_parkme+0x148/0x220
[  427.754259][   T30]  ? __pfx_watchdog+0x10/0x10
[  427.758983][   T30]  kthread+0x2c1/0x3a0
[  427.763099][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  427.768345][   T30]  ? __pfx_kthread+0x10/0x10
[  427.772998][   T30]  ret_from_fork+0x45/0x80
[  427.777472][   T30]  ? __pfx_kthread+0x10/0x10
[  427.782119][   T30]  ret_from_fork_asm+0x1a/0x30
[  427.786953][   T30]  </TASK>
[  427.791716][   T30] Sending NMI from CPU 0 to CPUs 1:
[  427.797699][    C1] NMI backtrace for cpu 1 skipped: idling at acpi_safe_halt+0x1a/0x20
[  427.820928][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  427.827822][   T30] CPU: 0 PID: 30 Comm: khungtaskd Not tainted 6.10.0-rc7-syzkaller-00076-g9d9a2f29aefd #0
[  427.837837][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  427.847921][   T30] Call Trace:
[  427.851230][   T30]  <TASK>
[  427.854186][   T30]  dump_stack_lvl+0x3d/0x1f0
[  427.858823][   T30]  panic+0x6f5/0x7a0
[  427.862773][   T30]  ? __pfx_panic+0x10/0x10
[  427.867245][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  427.872683][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  427.878898][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  427.884323][   T30]  ? watchdog+0xd3d/0x1240
[  427.888785][   T30]  ? watchdog+0xd30/0x1240
[  427.893246][   T30]  watchdog+0xd4e/0x1240
[  427.897536][   T30]  ? __pfx_watchdog+0x10/0x10
[  427.902282][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  427.907530][   T30]  ? __kthread_parkme+0x148/0x220
[  427.912615][   T30]  ? __pfx_watchdog+0x10/0x10
[  427.917325][   T30]  kthread+0x2c1/0x3a0
[  427.921460][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  427.926701][   T30]  ? __pfx_kthread+0x10/0x10
[  427.931343][   T30]  ret_from_fork+0x45/0x80
[  427.935812][   T30]  ? __pfx_kthread+0x10/0x10
[  427.940450][   T30]  ret_from_fork_asm+0x1a/0x30
[  427.945270][   T30]  </TASK>
[  427.948599][   T30] Kernel Offset: disabled
[  427.952934][   T30] Rebooting in 86400 seconds..