last executing test programs:

51.082407083s ago: executing program 1 (id=216):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000001400)={{0x80}, 'port1\x00', 0xe3, 0x1b1c07})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) (async)
r2 = eventfd(0x401)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x0, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000380)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/233, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000780)={0x0, 0x1, 0x0, &(0x7f0000000700)=""/88, 0x0}) (async)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000001c40)) (async)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1fffd) (async)
ioctl$VHOST_GET_VRING_ENDIAN(r1, 0x4008af24, &(0x7f0000000180)={0x0, 0x5}) (async)
readv(r0, &(0x7f0000000240)=[{&(0x7f0000000300)=""/168, 0xa8}], 0x1) (async)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8417f, 0x0)

50.070628077s ago: executing program 1 (id=219):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001200000008000300", @ANYRES32=r1, @ANYBLOB="0a00060008021100000100000600b500c802"], 0x4c}, 0x1, 0x0, 0x0, 0x4004000}, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000100)={{r3}, &(0x7f0000000080), &(0x7f00000000c0)='%pB    \x00'}, 0x20)
fsopen(&(0x7f0000000000)='ocfs2\x00', 0x1)

49.880670239s ago: executing program 1 (id=220):
openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8003, 0x0, 0x0, 0x0, 0x10}}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5df6, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x3}]}}]}, 0x3c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x7, 0x1, 0x301, 0x0, 0x0, {0x5, 0x0, 0xa}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000800}, 0x4800)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r5, 0x0, 0x4000845)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r6)
r7 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, 0x0)
r8 = socket(0x400000000010, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r10}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003a00)=[{{&(0x7f00000000c0)={0xa, 0x4e22, 0xffffff83, @local, 0x9}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000600)="11", 0x1}], 0x1, 0x0, 0x0, 0xf5}}], 0x1, 0x4c040)
setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, 0x0, 0x310)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)

48.519217554s ago: executing program 1 (id=225):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r3, 0x407, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}}, 0x50)
vmsplice(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x1010800)
fcntl$setpipe(r3, 0x407, 0x2000000)

47.327451253s ago: executing program 1 (id=228):
socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFCONF(r2, 0x8912, &(0x7f00000003c0)=@buf)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x40, 0x0, r3, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0, 0x40000103})
io_uring_enter(0xffffffffffffffff, 0x46f3, 0x0, 0x0, 0x0, 0x0)
r4 = socket(0x2a, 0x2, 0x0)
mq_notify(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x2d, 0x2})
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) (fail_nth: 1)

45.739425893s ago: executing program 1 (id=234):
r0 = socket$igmp6(0xa, 0x3, 0x2)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0xfffffffb, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, 0x57bd}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$6lowpan_enable(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f0000000a80))
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYRESOCT=r2], 0x20}}, 0x0)
read(0xffffffffffffffff, &(0x7f0000000140)=""/68, 0x44)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, 0x0, 0x0)
capset(&(0x7f0000000100)={0x20071026}, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
syz_pidfd_open(0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000400000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000c707d10023519ab555f8c85229222673c564b0a30857486d62197936db6c3d09fd287eddba3b20ad26901109c8e1fb20633a"], 0x50)
r7 = io_uring_setup(0x204b, &(0x7f0000005740)={0x0, 0x1e, 0x3080, 0x0, 0x200027d})
io_uring_register$IORING_UNREGISTER_RING_FDS(r7, 0x15, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), &(0x7f0000000380), 0xfff, r6, 0x0, 0xa0028000}, 0x38)

42.935829749s ago: executing program 2 (id=243):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040301, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f00000002c0)=0x7)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000080)=0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x249, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)

41.849652174s ago: executing program 2 (id=247):
socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$usbfs(0x0, 0x10, 0xa401)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
r3 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f00000005c0)='fd', 0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f00000000c0)=r6, 0x4)
sendmsg$unix(r5, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

39.053634611s ago: executing program 2 (id=255):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg2\x00', <r0=>0x0})
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000c80)="7cffa9061b2f8b082b6f69ae50430c8a8b6aa3162ba083c4a52e1ab0ac50ed4a19b1a69988000d5bed4433daaa4932dbb1cb3550dee8b23579d76ce37d574b43fca1eed8ebd38d1303240ed0d84517692128dd5aef5c4d60a6659952a1437c6f0ac3ed75806011ccbaa504f41a7e0abcf8823bc4a71ef8c52c2b297b539eaf752c56ebfe9b0542543069257dafcbf76c958d4cbf4eaaa67c5c2bd9e6518be34b56add7613ab83d389724b664e62c154e1a5aac073a53a0", 0xb7, 0x43ceb, 0x0, 0x0)
writev(r1, &(0x7f0000000600)=[{&(0x7f0000000100)='^', 0x34000}], 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x2, '\x00', r0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0xc20040, 0x0)
clock_adjtime(0x0, 0x0)
ioctl$AUTOFS_IOC_FAIL(r4, 0x4c80, 0x7000000)
socket$can_raw(0x1d, 0x3, 0x1)
socket(0x10, 0x3, 0x0)
r5 = open(&(0x7f0000000000)='./file0\x00', 0x8501, 0x12c)
fcntl$setsig(r5, 0xa, 0x21)
fcntl$setlease(r5, 0x400, 0x1)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
openat$vimc0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000580)={0x0, 0x0})
syz_open_dev$radio(&(0x7f00000002c0), 0x1, 0x2)

38.355881678s ago: executing program 2 (id=257):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x149a82, 0x240)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
r4 = inotify_init()
r5 = getpgrp(0x0)
syz_open_procfs(r5, &(0x7f0000000040)='mounts\x00')
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000008000"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="187d744c000000000d0000000000000004000000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r8, &(0x7f0000000040), 0x10)
listen(r8, 0x0)
r9 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0x200032c7, 0x1, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r10=>0x0, &(0x7f0000000280)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r9, 0x47f6, 0x0, 0x2, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r7, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r12 = inotify_add_watch(r4, &(0x7f0000000000)='.\x00', 0x40007c0)
inotify_rm_watch(r4, r12)

37.48445421s ago: executing program 2 (id=258):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg$inet(r0, &(0x7f0000002f00)=[{{&(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10, 0x0}}], 0x1, 0x20004000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0x2, 0x195)
write$cgroup_pid(r6, &(0x7f0000000140), 0x12)
r7 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0xc, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x49c781})
socket(0x10, 0x3, 0x0)
io_uring_enter(r7, 0x3516, 0x4, 0x0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x4048881}, 0x24000800)
close(0x3)

36.368303205s ago: executing program 2 (id=260):
r0 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
r5 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0xc95e})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, 0x0, 0x0)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e00000001500000029bd7000000000006469676573745f6e756c6c2d67656e65726963"], 0xe0}, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
sendmsg$nl_crypto(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040f0403011920"], 0x7)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$KDFONTOP_COPY(r7, 0x4b72, &(0x7f00000001c0)={0x3, 0x0, 0x12, 0x16, 0x1e0, &(0x7f00000009c0)})
ioctl$FIOCLEX(r0, 0x5451)
close(r7)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x8e79f0352167ea94)
r8 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r8)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r8})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0, 0x4000})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})

30.504101026s ago: executing program 32 (id=234):
r0 = socket$igmp6(0xa, 0x3, 0x2)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0xfffffffb, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, 0x57bd}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$6lowpan_enable(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f0000000a80))
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002700)=""/102392, 0x18ff8)
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYRESOCT=r2], 0x20}}, 0x0)
read(0xffffffffffffffff, &(0x7f0000000140)=""/68, 0x44)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, 0x0, 0x0)
capset(&(0x7f0000000100)={0x20071026}, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)
syz_pidfd_open(0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0600000004000000400000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000c707d10023519ab555f8c85229222673c564b0a30857486d62197936db6c3d09fd287eddba3b20ad26901109c8e1fb20633a"], 0x50)
r7 = io_uring_setup(0x204b, &(0x7f0000005740)={0x0, 0x1e, 0x3080, 0x0, 0x200027d})
io_uring_register$IORING_UNREGISTER_RING_FDS(r7, 0x15, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), &(0x7f0000000380), 0xfff, r6, 0x0, 0xa0028000}, 0x38)

24.29429939s ago: executing program 0 (id=305):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fdatasync(0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x2a, &(0x7f00000002c0)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x22}}, @address_request={0x11, 0x0, 0x0, 0x1}}}}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000240)={'bridge_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=r4, @ANYBLOB="000000000000000024001280110001006272696467655f736c617665000000000c0005800500190003"], 0x4c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
mknodat(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(0xffffffffffffffff, 0xc018620c, 0x0)

23.506455249s ago: executing program 0 (id=309):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6", 0x90}, {&(0x7f00000007c0)="02999344565d9c61d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e432bcb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc402189195e92dc1d73fce0d96439a53073df328509806e960c2", 0x7e}, {&(0x7f00000002c0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844ed9a26675199d5ff9b391c1dec077b5099cf9aecd1a9d94e235", 0xcf}, {&(0x7f0000000f00)="397d5f2e855cb2b0b1e61d3fe47dc3e798cf47cfebf169e77257f308b498e5b417227094d569a4456954e58ea1850000000000000000355c5f42d9f2aa5f1b", 0x3f}, {&(0x7f00000003c0)="9059c5aee5eca0529f3f91", 0xb}, {0x0}], 0x6}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa", 0x7d}, {&(0x7f0000001000)="bd2f6aa36cea0e4bccda24dc5bd69ad762e998d923018ec9f30d63c7059c3c786069915581888508ff589f82857ff546b23b88d6bd61f1efc982005bf6c9abc4fe2caf32ef3ff105", 0x48}], 0x2}}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000840)="3f1c4a04940ee0b20aec8b4090986a3bff84255d40657e7ee0d40a25584e869ef417cfb843df9bab6a733f72f13c385945fbe4f6592503b0013edc972aa7f382cfe6f924e9b3058c5dc3a39af5f6868c9031d7f0fba663fed16b868a4e53436b1be7a082f826014791", 0x69}, {&(0x7f00000008c0)="ab802595e16402267afad4132bae032aeebc5d3df8873915f385de7623fdcdbb497d2913cabe2bd146dee84fdcbeaa251db4f747090dc6c625ed3b915aae8dda1394c0d541055b3e89cab518a94118fb170c1d73", 0x54}, {&(0x7f0000000940)="2c5e42e310fe2f095389d5264f44036f83f52415194225b1d75664af0bb8c7db4032895089bf7ed9c49da28ec002a2250c905af982041e9c842ea9dab20db6473e1556aca64e9c40548f5b0381db15e028b2a4f9983a447bb0aacb1b0267c1f54c88d99ea07b387d4be282d5d56e7acb15ebce07ad8846bcbbb754", 0x7b}, {0x0}, {&(0x7f0000000d40)="ae6e06ff2c78f503a3e8140a4b5cf5fc573e93e3a03f36939389b5457bf672fb023da089c8c8d9b0cd7201e46415290b", 0x30}], 0x5}}], 0x3, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

22.617809049s ago: executing program 0 (id=313):
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000001680))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001b000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000140)="b8050000000f01c10f46a78900000066ba2100b0678c2bee2bee2000b000ee6dbf2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x5}], 0x1, 0x28, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_int(r2, 0x0, 0x22, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000c00), 0xc, &(0x7f0000000c80)={&(0x7f0000000c40)=ANY=[@ANYBLOB="1c000000030101830000000000060000475203840800014000003006"], 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'sit0\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}, 0x0, r4})

22.392347607s ago: executing program 0 (id=318):
mremap(&(0x7f00000ab000/0x4000)=nil, 0x4000, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil)
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x36)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
munlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
syz_fuse_handle_req(r0, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb1000008747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb80035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22383e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485a4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2245eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e4c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad64c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc590800", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x0, 0x0, 0x0, {0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3966, 0x3, 0x8000, 0x0, r2, r3, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r4, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r4, r0)

22.310551543s ago: executing program 3 (id=319):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
epoll_create1(0x0)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x135002, 0x20)
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000100)=""/115, 0x73}], 0x1, 0x80000001, 0x80000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
ioprio_get$pid(0x0, r1)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x0)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000040)="290000002000190f00003fffffffda060a00008bfee80001dd0048040d000600fe7f00000005000500", 0x29}], 0x1)

20.820753353s ago: executing program 0 (id=322):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6}]})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
readv(r2, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/164, 0xa4}], 0x1)

20.534825805s ago: executing program 33 (id=260):
r0 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
r5 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0xc95e})
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, 0x0, 0x0)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e00000001500000029bd7000000000006469676573745f6e756c6c2d67656e65726963"], 0xe0}, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
sendmsg$nl_crypto(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040f0403011920"], 0x7)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$KDFONTOP_COPY(r7, 0x4b72, &(0x7f00000001c0)={0x3, 0x0, 0x12, 0x16, 0x1e0, &(0x7f00000009c0)})
ioctl$FIOCLEX(r0, 0x5451)
close(r7)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x8e79f0352167ea94)
r8 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r8)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r8})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0, 0x4000})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})

20.519918298s ago: executing program 3 (id=324):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000019800))
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x85}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000280), 0x9)
r4 = openat$cgroup_procs(r3, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000c40), 0x12)

19.498508722s ago: executing program 3 (id=326):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x3b, 0xfffffffe, 0x0, 0x17, "7f12ddc1517600"})
r1 = syz_open_pts(r0, 0x2)
ioctl$TIOCCBRK(r1, 0x5428)

19.498137473s ago: executing program 0 (id=327):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x80402, 0x0)
write$rfkill(r0, &(0x7f0000000100)={0x1, 0x7, 0x2, 0x1}, 0x8)

18.989203278s ago: executing program 3 (id=329):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001540)={{r0}, &(0x7f00000014c0), &(0x7f0000001500)}, 0x20)

18.988900939s ago: executing program 3 (id=330):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r0, &(0x7f0000000500)=[{&(0x7f0000000bc0)=""/80, 0x50}], 0x1, 0x4000ffe, 0x102)

18.988200778s ago: executing program 3 (id=332):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x80402, 0x0)
write$rfkill(r0, 0x0, 0x0)

18.270378655s ago: executing program 4 (id=335):
socket$inet(0x2, 0x2, 0x1)
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/if_inet6\x00')
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001400), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
read(r2, &(0x7f00000001c0)=""/210, 0xd2)
write$char_usb(r2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f00000010c0), 0x1ff, 0x2401)
read$FUSE(r0, &(0x7f0000002600)={0x2020}, 0x2020)

17.050154942s ago: executing program 4 (id=336):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0xd1, &(0x7f0000000080)=0x7fffffff, 0x4)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x60, 0x30, 0x1, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000380))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000580)=""/128, 0x80}], 0x1, 0x3, 0x0)

16.88551813s ago: executing program 4 (id=337):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x2010000)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r3, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)
syz_emit_ethernet(0x11, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6(0xa, 0x802, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000000)=0xf)

15.939989963s ago: executing program 4 (id=338):
syz_emit_ethernet(0x86, &(0x7f0000001f80)={@local, @random="1ab900", @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "b70bff", 0x4c, 0x2f, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, @mcast2, {[@fragment={0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffc}]}}}}}, 0x0)

15.939545515s ago: executing program 4 (id=339):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x20, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x240007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000200)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000800)}, {&(0x7f00000004c0)}, {&(0x7f0000000380)="b66f2ff6f856fcc492f8d70a911f88bbe543188ed5e14a04cd5593ef564beeb056d805ef2123b08b5db17d5c1f237bac1b4523dc437b6fd41dd5183e836c0a582bed0e43766b6c20f3ba278d64be564b40eada18267ae77389f228ce5b6efca30e2eaed8b0fac439af3fa0949920dfc76ccdef4f7950ca891d797e36db52f5edceb81f4d05f27ae5982c09d1cb8ec3f7104abc2b4f57dffe04", 0x99}], 0x3}}], 0x1, 0x4000000)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x0, 0x0, 0x21)

15.904483945s ago: executing program 4 (id=340):
unshare(0x400)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x4, <r2=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000000)=@attr_arm64={0x0, 0x1, 0x5, 0x0})

4.23706883s ago: executing program 34 (id=327):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x80402, 0x0)
write$rfkill(r0, &(0x7f0000000100)={0x1, 0x7, 0x2, 0x1}, 0x8)

3.736257528s ago: executing program 35 (id=332):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x80402, 0x0)
write$rfkill(r0, 0x0, 0x0)

0s ago: executing program 36 (id=340):
unshare(0x400)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x4, <r2=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000000)=@attr_arm64={0x0, 0x1, 0x5, 0x0})

kernel console output (not intermixed with test programs):

] audit: type=1400 audit(1743887460.768:96): avc:  denied  { mount } for  pid=5806 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   57.083998][   T30] audit: type=1400 audit(1743887460.798:97): avc:  denied  { read } for  pid=5488 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[   57.962665][ T5806] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   61.691398][   T30] kauditd_printk_skb: 5 callbacks suppressed
[   61.691411][   T30] audit: type=1400 audit(1743887465.518:103): avc:  denied  { create } for  pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.759157][   T30] audit: type=1400 audit(1743887465.548:104): avc:  denied  { read write } for  pid=5816 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   61.806791][   T30] audit: type=1400 audit(1743887465.548:105): avc:  denied  { open } for  pid=5816 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   61.810163][ T5819] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   61.832509][   T30] audit: type=1400 audit(1743887465.558:106): avc:  denied  { ioctl } for  pid=5816 comm="syz-executor" path="socket:[3892]" dev="sockfs" ino=3892 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.871103][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   61.878540][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   61.886802][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   61.894559][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   61.904949][ T5822] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   61.912663][ T5822] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   61.920040][ T5822] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   61.928250][ T5822] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   61.935948][ T5822] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   61.943302][ T5822] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   61.951276][ T5822] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   61.958747][ T5822] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   61.966268][ T5822] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   61.971432][ T5826] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   61.973600][ T5822] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   61.988522][ T5834] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   61.989370][ T5822] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   61.996061][ T5834] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   62.002605][ T5835] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   62.017557][ T5822] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   62.018086][ T5834] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   62.025257][ T5835] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   62.052826][   T30] audit: type=1400 audit(1743887465.868:107): avc:  denied  { read } for  pid=5816 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   62.088294][ T5826] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   62.097101][   T30] audit: type=1400 audit(1743887465.868:108): avc:  denied  { open } for  pid=5816 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   62.129653][   T30] audit: type=1400 audit(1743887465.868:109): avc:  denied  { mounton } for  pid=5816 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   62.151468][ T5826] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   62.399153][   T30] audit: type=1400 audit(1743887466.218:110): avc:  denied  { module_request } for  pid=5820 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   62.469919][ T5820] chnl_net:caif_netlink_parms(): no params data found
[   62.512758][ T5816] chnl_net:caif_netlink_parms(): no params data found
[   62.666615][ T5830] chnl_net:caif_netlink_parms(): no params data found
[   62.691257][ T5820] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.698405][ T5820] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.706613][ T5820] bridge_slave_0: entered allmulticast mode
[   62.713409][ T5820] bridge_slave_0: entered promiscuous mode
[   62.740546][ T5820] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.747668][ T5820] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.754918][ T5820] bridge_slave_1: entered allmulticast mode
[   62.761701][ T5820] bridge_slave_1: entered promiscuous mode
[   62.790868][ T5824] chnl_net:caif_netlink_parms(): no params data found
[   62.856420][ T5820] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.895471][ T5820] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.904993][ T5816] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.912735][ T5816] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.919895][ T5816] bridge_slave_0: entered allmulticast mode
[   62.926493][ T5816] bridge_slave_0: entered promiscuous mode
[   62.933170][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   62.960316][ T5816] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.967395][ T5816] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.974710][ T5816] bridge_slave_1: entered allmulticast mode
[   62.981390][ T5816] bridge_slave_1: entered promiscuous mode
[   63.033599][ T5816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.048229][ T5816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.058453][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.065637][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.072932][ T5830] bridge_slave_0: entered allmulticast mode
[   63.080176][ T5830] bridge_slave_0: entered promiscuous mode
[   63.088790][ T5820] team0: Port device team_slave_0 added
[   63.096322][ T5820] team0: Port device team_slave_1 added
[   63.124406][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.131636][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.138694][ T5830] bridge_slave_1: entered allmulticast mode
[   63.146015][ T5830] bridge_slave_1: entered promiscuous mode
[   63.178753][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.186135][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.193704][ T5824] bridge_slave_0: entered allmulticast mode
[   63.200406][ T5824] bridge_slave_0: entered promiscuous mode
[   63.223424][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.230428][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.256753][ T5820] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.273664][ T5820] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.280641][ T5820] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.306536][ T5820] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.317395][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.324759][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.331976][ T5824] bridge_slave_1: entered allmulticast mode
[   63.338678][ T5824] bridge_slave_1: entered promiscuous mode
[   63.347523][ T5816] team0: Port device team_slave_0 added
[   63.386349][ T5816] team0: Port device team_slave_1 added
[   63.394336][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.428102][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.460743][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.467784][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.475950][ T5828] bridge_slave_0: entered allmulticast mode
[   63.482657][ T5828] bridge_slave_0: entered promiscuous mode
[   63.490420][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.497490][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.504720][ T5828] bridge_slave_1: entered allmulticast mode
[   63.512076][ T5828] bridge_slave_1: entered promiscuous mode
[   63.520316][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.531808][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.557339][ T5830] team0: Port device team_slave_0 added
[   63.589241][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.596191][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.622516][ T5816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.641597][ T5830] team0: Port device team_slave_1 added
[   63.652451][ T5820] hsr_slave_0: entered promiscuous mode
[   63.659623][ T5820] hsr_slave_1: entered promiscuous mode
[   63.668704][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.680141][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.696367][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.703612][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.729947][ T5816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.764939][ T5824] team0: Port device team_slave_0 added
[   63.773637][ T5824] team0: Port device team_slave_1 added
[   63.784534][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.791758][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.818126][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.852729][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.860051][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.886280][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.901297][ T5828] team0: Port device team_slave_0 added
[   63.915161][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.922128][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.948141][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.968769][ T5828] team0: Port device team_slave_1 added
[   63.983198][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.990226][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.016199][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.066755][ T5816] hsr_slave_0: entered promiscuous mode
[   64.073713][ T5816] hsr_slave_1: entered promiscuous mode
[   64.080334][ T5816] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.088024][ T5816] Cannot create hsr debugfs directory
[   64.106471][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.113550][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.140126][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.140166][   T55] Bluetooth: hci0: command tx timeout
[   64.156215][ T5826] Bluetooth: hci4: command tx timeout
[   64.156221][ T5819] Bluetooth: hci1: command tx timeout
[   64.202650][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.209961][ T5826] Bluetooth: hci3: command tx timeout
[   64.215509][ T5826] Bluetooth: hci2: command tx timeout
[   64.220401][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.247435][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.265867][ T5830] hsr_slave_0: entered promiscuous mode
[   64.272725][ T5830] hsr_slave_1: entered promiscuous mode
[   64.278620][ T5830] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.286275][ T5830] Cannot create hsr debugfs directory
[   64.302637][ T5824] hsr_slave_0: entered promiscuous mode
[   64.308585][ T5824] hsr_slave_1: entered promiscuous mode
[   64.314901][ T5824] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.322694][ T5824] Cannot create hsr debugfs directory
[   64.381689][ T5828] hsr_slave_0: entered promiscuous mode
[   64.387651][ T5828] hsr_slave_1: entered promiscuous mode
[   64.394219][ T5828] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.401803][ T5828] Cannot create hsr debugfs directory
[   64.642022][ T5820] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   64.676269][ T5820] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   64.704380][ T5820] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   64.721159][ T5820] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   64.781511][ T5830] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   64.794907][ T5830] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   64.803859][ T5830] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   64.814771][ T5830] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   64.883700][ T5816] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   64.922950][ T5816] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   64.935782][ T5816] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   64.945867][ T5816] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   64.972309][ T5820] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.005796][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   65.019576][ T5820] 8021q: adding VLAN 0 to HW filter on device team0
[   65.031590][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   65.056195][  T970] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.063389][  T970] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.071546][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   65.107535][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   65.130578][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.137671][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.150781][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.174477][ T5824] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   65.207277][ T5824] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   65.219997][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   65.234437][ T5824] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   65.254348][ T5824] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   65.283086][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.290216][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.302713][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.309790][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.403419][ T5816] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.424541][   T30] audit: type=1400 audit(1743887469.248:111): avc:  denied  { sys_module } for  pid=5820 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   65.426201][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.474304][ T5816] 8021q: adding VLAN 0 to HW filter on device team0
[   65.512431][ T3736] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.519957][ T3736] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.557798][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.564919][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.593046][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   65.646579][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.653721][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.677942][ T5820] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.701274][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.708391][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.729790][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.748685][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.767740][ T5828] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   65.779521][ T5828] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   65.821733][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[   65.876069][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.883188][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.931603][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.938690][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.054451][ T5830] veth0_vlan: entered promiscuous mode
[   66.087795][ T5830] veth1_vlan: entered promiscuous mode
[   66.107836][ T5824] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   66.118818][ T5824] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   66.165640][ T5816] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.179331][ T5820] veth0_vlan: entered promiscuous mode
[   66.197305][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.210068][ T5826] Bluetooth: hci4: command tx timeout
[   66.215470][ T5826] Bluetooth: hci0: command tx timeout
[   66.223057][   T55] Bluetooth: hci1: command tx timeout
[   66.233306][ T5820] veth1_vlan: entered promiscuous mode
[   66.291279][ T5819] Bluetooth: hci3: command tx timeout
[   66.296753][ T5826] Bluetooth: hci2: command tx timeout
[   66.306506][ T5820] veth0_macvtap: entered promiscuous mode
[   66.323816][ T5820] veth1_macvtap: entered promiscuous mode
[   66.335250][ T5830] veth0_macvtap: entered promiscuous mode
[   66.355125][ T5830] veth1_macvtap: entered promiscuous mode
[   66.364666][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.392723][ T5816] veth0_vlan: entered promiscuous mode
[   66.403135][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.425255][ T5828] veth0_vlan: entered promiscuous mode
[   66.434464][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.445539][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.456734][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.468690][ T5820] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.484395][ T5830] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.495275][ T5830] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.506835][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.515290][ T5816] veth1_vlan: entered promiscuous mode
[   66.528359][ T5830] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.537684][ T5830] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.547772][ T5830] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.556700][ T5830] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.571205][ T5820] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.580016][ T5820] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.588688][ T5820] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.598305][ T5820] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.624684][ T5828] veth1_vlan: entered promiscuous mode
[   66.677367][ T5824] veth0_vlan: entered promiscuous mode
[   66.710297][ T5816] veth0_macvtap: entered promiscuous mode
[   66.731069][ T5824] veth1_vlan: entered promiscuous mode
[   66.746277][ T5816] veth1_macvtap: entered promiscuous mode
[   66.768072][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.776141][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.776170][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.776179][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.776190][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.777155][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.819937][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.847345][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.864266][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.877117][ T5828] veth0_macvtap: entered promiscuous mode
[   66.887533][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.898506][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.908601][ T5816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.919424][ T5816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.932930][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.952642][ T5828] veth1_macvtap: entered promiscuous mode
[   66.979841][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.990991][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.995377][ T5816] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.007277][ T5816] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.016736][ T5816] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.025477][ T5816] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.041316][  T970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.043871][   T30] audit: type=1400 audit(1743887470.868:112): avc:  denied  { mounton } for  pid=5820 comm="syz-executor" path="/root/syzkaller.UvgU8E/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   67.052174][  T970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.082705][   T30] audit: type=1400 audit(1743887470.908:113): avc:  denied  { mount } for  pid=5820 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   67.108880][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.121599][   T30] audit: type=1400 audit(1743887470.908:114): avc:  denied  { mounton } for  pid=5820 comm="syz-executor" path="/root/syzkaller.UvgU8E/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   67.123613][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.157079][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.174070][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.176986][   T30] audit: type=1400 audit(1743887470.908:115): avc:  denied  { mount } for  pid=5820 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   67.188952][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.206318][   T30] audit: type=1400 audit(1743887470.908:116): avc:  denied  { mounton } for  pid=5820 comm="syz-executor" path="/root/syzkaller.UvgU8E/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   67.244366][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.245681][   T30] audit: type=1400 audit(1743887470.918:117): avc:  denied  { mounton } for  pid=5820 comm="syz-executor" path="/root/syzkaller.UvgU8E/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=6657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   67.256899][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.288599][   T30] audit: type=1400 audit(1743887470.928:118): avc:  denied  { unmount } for  pid=5820 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   67.311750][   T30] audit: type=1400 audit(1743887470.948:119): avc:  denied  { mounton } for  pid=5820 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2728 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   67.316421][ T5820] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   67.340109][   T30] audit: type=1400 audit(1743887470.948:120): avc:  denied  { mount } for  pid=5820 comm="syz-executor" name="/" dev="gadgetfs" ino=6677 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   67.375080][   T30] audit: type=1400 audit(1743887471.018:121): avc:  denied  { mounton } for  pid=5820 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   67.383614][ T5824] veth0_macvtap: entered promiscuous mode
[   67.431864][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.448458][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.458347][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.471397][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.484757][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.514118][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.525813][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.536731][ T5824] veth1_macvtap: entered promiscuous mode
[   67.626937][ T5889] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.628547][ T5828] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.669222][ T5889] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.797061][ T5828] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.838056][ T5828] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.846919][ T5828] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.932964][ T5910] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6'.
[   67.943212][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.954259][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.964554][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.975919][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.130314][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   68.141312][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.151571][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   68.162382][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.174017][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   68.188307][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.197149][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.204690][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   68.318116][ T5918] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6'.
[   68.429213][ T5826] Bluetooth: hci0: command tx timeout
[   68.434943][ T5819] Bluetooth: hci1: command tx timeout
[   68.440796][   T55] Bluetooth: hci4: command tx timeout
[   68.446448][ T5826] Bluetooth: hci2: command tx timeout
[   68.454832][ T5819] Bluetooth: hci3: command tx timeout
[   68.561954][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   68.578274][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.588159][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   68.598604][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.608776][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   68.619593][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.630427][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   68.642721][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.653729][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   68.717690][ T5824] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.732030][ T5824] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.741405][ T5824] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.756628][ T5824] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.996175][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.010569][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.210780][ T5868] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   69.227748][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.235994][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.429716][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   69.449372][ T5868] usb 5-1: Using ep0 maxpacket: 32
[   69.462196][ T5868] usb 5-1: config 8 has an invalid interface number: 203 but max is 0
[   69.490870][ T5868] usb 5-1: config 8 has no interface number 0
[   69.524935][ T5868] usb 5-1: config 8 interface 203 altsetting 1 has an endpoint descriptor with address 0x93, changing to 0x83
[   69.540114][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   69.550230][ T5868] usb 5-1: config 8 interface 203 altsetting 1 bulk endpoint 0x83 has invalid maxpacket 1024
[   69.563284][ T5868] usb 5-1: config 8 interface 203 has no altsetting 0
[   69.575462][  T970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.582008][ T5868] usb 5-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a
[   69.596014][ T3736] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.596892][ T5868] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   69.612071][  T970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.624391][ T5868] usb 5-1: Product: syz
[   69.628820][ T5868] usb 5-1: Manufacturer: syz
[   69.633678][ T3736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.642743][ T5868] usb 5-1: SerialNumber: syz
[   69.670484][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   69.699545][ T5923] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   69.960602][ T5923] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.003473][ T5923] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.040772][ T5946] warning: `syz.0.1' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   70.080020][ T5868] port100 5-1:8.203: NFC: Could not find bulk-in or bulk-out endpoint
[   70.127660][ T5949] Zero length message leads to an empty skb
[   70.142235][ T5946] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'.
[   70.189390][ T5868] usb 5-1: USB disconnect, device number 2
[   70.278960][ T5955] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   70.529964][ T5819] Bluetooth: hci3: command tx timeout
[   70.535422][ T5826] Bluetooth: hci2: command tx timeout
[   70.540866][   T55] Bluetooth: hci4: command tx timeout
[   70.546659][ T5835] Bluetooth: hci1: command tx timeout
[   70.549682][ T5834] Bluetooth: hci0: command tx timeout
[   70.961426][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[   70.967927][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[   71.364493][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   71.510868][ T5825] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[   71.678183][ T5975] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   71.771637][ T5825] usb 3-1: unable to get BOS descriptor or descriptor too short
[   71.794721][ T5825] usb 3-1: not running at top speed; connect to a high speed hub
[   71.843623][ T5825] usb 3-1: config 106 has an invalid interface number: 159 but max is 0
[   71.843648][ T5825] usb 3-1: config 106 has no interface number 0
[   71.843904][ T5825] usb 3-1: config 106 interface 159 has no altsetting 0
[   71.872053][ T5825] usb 3-1: New USB device found, idVendor=10c4, idProduct=1601, bcdDevice=61.ee
[   71.872080][ T5825] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.872098][ T5825] usb 3-1: Product: syz
[   71.872111][ T5825] usb 3-1: Manufacturer: syz
[   71.872125][ T5825] usb 3-1: SerialNumber: syz
[   71.986612][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   72.049327][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   72.090771][   T30] kauditd_printk_skb: 119 callbacks suppressed
[   72.090785][   T30] audit: type=1326 audit(1743887475.918:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5968 comm="syz.2.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   72.130962][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   72.187694][ T5825] cp210x 3-1:106.159: cp210x converter detected
[   72.240849][ T5825] cp210x 3-1:106.159: failed to get vendor val 0x370b size 1: -71
[   72.262828][   T30] audit: type=1326 audit(1743887475.918:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5968 comm="syz.2.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   72.292849][ T5825] cp210x 3-1:106.159: querying part number failed
[   72.370090][ T5986] syz.1.21 uses obsolete (PF_INET,SOCK_PACKET)
[   72.376980][ T5825] usb 3-1: cp210x converter now attached to ttyUSB0
[   72.456482][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   72.467003][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   72.741306][ T5825] usb 3-1: USB disconnect, device number 2
[   72.790384][   T30] audit: type=1326 audit(1743887476.008:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5968 comm="syz.2.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   72.833550][ T5825] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[   72.884680][ T5825] cp210x 3-1:106.159: device disconnected
[   72.950229][   T30] audit: type=1326 audit(1743887476.008:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5968 comm="syz.2.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   73.130978][   T30] audit: type=1326 audit(1743887476.008:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5968 comm="syz.2.17" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   73.258531][   T30] audit: type=1400 audit(1743887476.188:246): avc:  denied  { name_bind } for  pid=5985 comm="syz.1.21" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   73.407184][   T30] audit: type=1400 audit(1743887476.558:247): avc:  denied  { create } for  pid=5985 comm="syz.1.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   73.571343][ T5825] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   73.598240][   T30] audit: type=1400 audit(1743887476.558:248): avc:  denied  { connect } for  pid=5985 comm="syz.1.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   73.760734][   T30] audit: type=1400 audit(1743887477.588:249): avc:  denied  { prog_run } for  pid=5989 comm="syz.2.22" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   73.829130][ T5825] usb 2-1: Using ep0 maxpacket: 8
[   73.845476][ T5825] usb 2-1: New USB device found, idVendor=0fe9, idProduct=db59, bcdDevice=e9.9b
[   73.872014][ T5825] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   73.910681][ T5825] usb 2-1: Product: syz
[   73.922682][ T5825] usb 2-1: Manufacturer: syz
[   73.944688][ T5825] usb 2-1: SerialNumber: syz
[   73.973197][ T5825] usb 2-1: config 0 descriptor??
[   73.990902][ T5825] dvb-usb: found a 'DViCO FusionHDTV DVB-T Dual Digital 2' in warm state.
[   74.022206][ T5825] dvb-usb: bulk message failed: -22 (2/0)
[   74.029524][   T30] audit: type=1400 audit(1743887477.848:250): avc:  denied  { ioctl } for  pid=5995 comm="syz.4.24" path="/dev/vhost-net" dev="devtmpfs" ino=1274 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   74.098981][ T5825] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   74.139810][ T5825] dvbdev: DVB: registering new adapter (DViCO FusionHDTV DVB-T Dual Digital 2)
[   74.160706][ T5825] usb 2-1: media controller created
[   74.186274][ T5825] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   74.287639][ T5825] cxusb: set interface failed
[   74.304260][ T5825] dvb-usb: bulk message failed: -22 (1/0)
[   74.416237][ T5825] DVB: Unable to find symbol mt352_attach()
[   74.455726][ T5825] dvb-usb: bulk message failed: -22 (5/0)
[   74.479648][ T5825] zl10353_read_register: readreg error (reg=127, ret==-121)
[   74.497254][ T5825] dvb-usb: no frontend was attached by 'DViCO FusionHDTV DVB-T Dual Digital 2'
[   74.642866][ T5825] rc_core: IR keymap rc-dvico-mce not found
[   74.663528][ T5825] Registered IR keymap rc-empty
[   74.698224][ T5825] rc rc0: DViCO FusionHDTV DVB-T Dual Digital 2 as /devices/platform/dummy_hcd.1/usb2/2-1/rc/rc0
[   74.732022][ T5825] input: DViCO FusionHDTV DVB-T Dual Digital 2 as /devices/platform/dummy_hcd.1/usb2/2-1/rc/rc0/input5
[   74.773986][ T5825] dvb-usb: schedule remote query interval to 100 msecs.
[   74.781729][ T5825] dvb-usb: DViCO FusionHDTV DVB-T Dual Digital 2 successfully initialized and connected.
[   74.806429][ T6010] mac80211_hwsim hwsim5 wlan1: entered promiscuous mode
[   74.831843][ T5825] usb 2-1: USB disconnect, device number 2
[   74.841504][ T6010] macsec1: entered promiscuous mode
[   74.935137][ T5825] dvb-usb: DViCO FusionHDTV DVB-T Dual Digital 2 successfully deinitialized and disconnected.
[   75.033746][ T6013] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   75.874989][ T6015] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[   76.091104][   T92] cfg80211: failed to load regulatory.db
[   76.393827][ T6042] netlink: 'syz.3.37': attribute type 12 has an invalid length.
[   76.410155][ T6042] netlink: 'syz.3.37': attribute type 29 has an invalid length.
[   76.419169][ T6042] netlink: 148 bytes leftover after parsing attributes in process `syz.3.37'.
[   76.464442][ T6042] netlink: 'syz.3.37': attribute type 2 has an invalid length.
[   76.490050][ T6042] netlink: 35 bytes leftover after parsing attributes in process `syz.3.37'.
[   76.703579][ T6054] fuse: Unknown parameter 'usj¡_id'
[   76.762159][ T6055] mac80211_hwsim hwsim4 wlan1: entered promiscuous mode
[   76.769293][ T6055] macsec1: entered promiscuous mode
[   76.775947][   T92] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   76.939245][   T92] usb 4-1: Using ep0 maxpacket: 16
[   76.947707][   T92] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   77.047793][   T92] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   77.078944][   T92] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[   77.111390][   T92] usb 4-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[   77.151598][   T92] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.202830][   T92] usb 4-1: config 0 descriptor??
[   77.275582][ T6065] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[   77.359267][ T5870] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   77.490565][ T6067] FAULT_INJECTION: forcing a failure.
[   77.490565][ T6067] name failslab, interval 1, probability 0, space 0, times 0
[   77.531186][ T5870] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[   77.541825][ T6067] CPU: 1 UID: 0 PID: 6067 Comm: syz.4.45 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[   77.541848][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   77.541857][ T6067] Call Trace:
[   77.541862][ T6067]  <TASK>
[   77.541868][ T6067]  dump_stack_lvl+0x16c/0x1f0
[   77.541894][ T6067]  should_fail_ex+0x512/0x640
[   77.541912][ T6067]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[   77.541931][ T6067]  should_failslab+0xc2/0x120
[   77.541949][ T6067]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[   77.541968][ T6067]  ? __d_alloc+0x31/0xaa0
[   77.541990][ T6067]  __d_alloc+0x31/0xaa0
[   77.542010][ T6067]  d_alloc+0x4a/0x1e0
[   77.542030][ T6067]  d_alloc_parallel+0xe3/0x12e0
[   77.542054][ T6067]  ? find_held_lock+0x2b/0x80
[   77.542080][ T6067]  ? register_lock_class+0x41/0x4c0
[   77.542096][ T6067]  ? __lock_acquire+0xaa4/0x1ba0
[   77.542114][ T6067]  ? __pfx_d_alloc_parallel+0x10/0x10
[   77.542139][ T6067]  ? lockdep_init_map_type+0x5c/0x280
[   77.542156][ T6067]  ? lockdep_init_map_type+0x5c/0x280
[   77.542177][ T6067]  __lookup_slow+0x193/0x460
[   77.542199][ T6067]  ? __pfx___lookup_slow+0x10/0x10
[   77.542237][ T6067]  ? lookup_fast+0x156/0x610
[   77.542264][ T6067]  walk_component+0x353/0x5b0
[   77.542289][ T6067]  path_lookupat+0x17e/0x780
[   77.542319][ T6067]  filename_lookup+0x224/0x5f0
[   77.542337][ T6067]  ? __pfx_filename_lookup+0x10/0x10
[   77.542376][ T6067]  ? getname_flags.part.0+0x1c2/0x540
[   77.542402][ T6067]  user_path_at+0x3a/0x60
[   77.542418][ T6067]  __x64_sys_umount+0x10a/0x1a0
[   77.542435][ T6067]  ? __pfx___x64_sys_umount+0x10/0x10
[   77.542455][ T6067]  ? rcu_is_watching+0x12/0xc0
[   77.542477][ T6067]  do_syscall_64+0xcd/0x260
[   77.542502][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.542519][ T6067] RIP: 0033:0x7f601498d169
[   77.542532][ T6067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.542546][ T6067] RSP: 002b:00007f601589a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   77.542562][ T6067] RAX: ffffffffffffffda RBX: 00007f6014ba5fa0 RCX: 00007f601498d169
[   77.542573][ T6067] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[   77.542582][ T6067] RBP: 00007f601589a090 R08: 0000000000000000 R09: 0000000000000000
[   77.542592][ T6067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.542601][ T6067] R13: 0000000000000000 R14: 00007f6014ba5fa0 R15: 00007ffc534a4cf8
[   77.542624][ T6067]  </TASK>
[   77.553821][ T5870] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.678436][   T30] kauditd_printk_skb: 26 callbacks suppressed
[   77.678449][   T30] audit: type=1400 audit(1743887481.498:277): avc:  denied  { name_bind } for  pid=6069 comm="syz.2.46" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   77.864293][ T6042] random: crng reseeded on system resumption
[   77.880314][   T30] audit: type=1400 audit(1743887481.688:278): avc:  denied  { read write } for  pid=6041 comm="syz.3.37" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   77.955796][ T6047] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   77.969063][ T6047] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   77.979635][   T30] audit: type=1400 audit(1743887481.688:279): avc:  denied  { ioctl open } for  pid=6041 comm="syz.3.37" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   78.076398][   T92] usbhid 4-1:0.0: can't add hid device: -71
[   78.083802][   T92] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[   78.239191][   T92] usb 4-1: USB disconnect, device number 2
[   78.482480][ T5870] usb 1-1: config 0 descriptor??
[   78.598796][   T30] audit: type=1400 audit(1743887482.418:280): avc:  denied  { create } for  pid=6077 comm="syz.3.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   78.644827][   T30] audit: type=1400 audit(1743887482.418:281): avc:  denied  { bind } for  pid=6077 comm="syz.3.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   78.695701][ T6032] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.722181][   T30] audit: type=1400 audit(1743887482.418:282): avc:  denied  { accept } for  pid=6077 comm="syz.3.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   78.742354][ T6032] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.773882][ T5870] [drm] vendor descriptor length:6 data:06 5f 01 00 00 00 00 00 00 00 00
[   78.783465][ T6080] overlayfs: conflicting options: userxattr,redirect_dir=on
[   78.790234][   T30] audit: type=1400 audit(1743887482.418:283): avc:  denied  { write } for  pid=6077 comm="syz.3.48" path="socket:[8387]" dev="sockfs" ino=8387 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   78.809145][ T5870] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[   78.813580][    C1] vkms_vblank_simulate: vblank timer overrun
[   78.825435][   T30] audit: type=1400 audit(1743887482.488:284): avc:  denied  { setopt } for  pid=6077 comm="syz.3.48" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   78.858912][ T6070] netlink: 4 bytes leftover after parsing attributes in process `syz.2.46'.
[   78.914395][   T30] audit: type=1400 audit(1743887482.498:285): avc:  denied  { read } for  pid=6077 comm="syz.3.48" path="socket:[8387]" dev="sockfs" ino=8387 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   78.961364][ T6070] hsr_slave_0: left promiscuous mode
[   78.973997][ T6070] hsr_slave_1: left promiscuous mode
[   78.982578][   T30] audit: type=1400 audit(1743887482.678:286): avc:  denied  { create } for  pid=6069 comm="syz.2.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   79.427022][ T6086] bridge0: port 3(netdevsim0) entered blocking state
[   79.434138][ T6086] bridge0: port 3(netdevsim0) entered disabled state
[   79.441645][ T6086] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[   79.458634][ T6086] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[   79.467474][ T6086] bridge0: port 3(netdevsim0) entered blocking state
[   79.474371][ T6086] bridge0: port 3(netdevsim0) entered forwarding state
[   79.930676][ T5870] [drm:udl_init] *ERROR* Selecting channel failed
[   79.957007][ T5870] [drm] Initialized udl 0.0.1 for 1-1:0.0 on minor 2
[   79.982841][ T6082] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[   79.990664][ T5870] [drm] Initialized udl on minor 2
[   80.096779][ T5870] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[   80.104818][ T6018] syz.1.30 (6018): drop_caches: 3
[   80.148628][ T5870] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[   80.165403][ T5825] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[   80.190056][ T5870] usb 1-1: USB disconnect, device number 2
[   80.226561][ T5825] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[   80.424132][ T6092] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode
[   80.455698][ T6092] macsec1: entered promiscuous mode
[   80.825889][ T6110] netlink: 8 bytes leftover after parsing attributes in process `syz.1.58'.
[   81.769215][ T6124] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   82.751378][   T30] kauditd_printk_skb: 8 callbacks suppressed
[   82.751393][   T30] audit: type=1400 audit(1743887486.578:295): avc:  denied  { create } for  pid=6138 comm="syz.1.67" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   82.776489][    C1] vkms_vblank_simulate: vblank timer overrun
[   82.869917][   T30] audit: type=1400 audit(1743887486.618:296): avc:  denied  { connect } for  pid=6138 comm="syz.1.67" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   82.965341][   T30] audit: type=1400 audit(1743887486.628:297): avc:  denied  { write } for  pid=6138 comm="syz.1.67" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   82.994866][ T5834] Bluetooth: hci4: unexpected cc 0x1002 length: 42 < 65
[   83.218177][ T6129] syz.2.63 (6129): drop_caches: 3
[   83.330192][ T6146] netlink: 32 bytes leftover after parsing attributes in process `syz.0.70'.
[   83.426043][   T30] audit: type=1400 audit(1743887487.248:298): avc:  denied  { mount } for  pid=6145 comm="syz.0.70" name="/" dev="ramfs" ino=8182 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   83.481859][   T30] audit: type=1400 audit(1743887487.288:299): avc:  denied  { bind } for  pid=6145 comm="syz.0.70" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   83.529326][   T30] audit: type=1400 audit(1743887487.288:300): avc:  denied  { name_bind } for  pid=6145 comm="syz.0.70" src=18979 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[   83.551112][   T30] audit: type=1400 audit(1743887487.288:301): avc:  denied  { node_bind } for  pid=6145 comm="syz.0.70" saddr=::1 src=18979 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[   83.573634][   T30] audit: type=1400 audit(1743887487.348:302): avc:  denied  { create } for  pid=6148 comm="syz.4.71" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   83.600391][ T6150] netlink: 16 bytes leftover after parsing attributes in process `syz.4.71'.
[   83.636875][   T30] audit: type=1400 audit(1743887487.408:303): avc:  denied  { write } for  pid=6148 comm="syz.4.71" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   83.695048][   T30] audit: type=1400 audit(1743887487.518:304): avc:  denied  { mounton } for  pid=6162 comm="syz.2.74" path="/syzcgroup/unified/syz2" dev="cgroup2" ino=125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   83.705051][ T6163] syz.2.74: attempt to access beyond end of device
[   83.705051][ T6163] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[   83.767578][ T6163] efs: cannot read volume header
[   83.925082][ T6168] process 'syz.4.71' launched './file1' with NULL argv: empty string added
[   83.971162][ T5834] Bluetooth: hci0: command tx timeout
[   84.249635][ T6145] [U] 
[   84.962370][ T6185] tipc: Started in network mode
[   84.969513][ T6185] tipc: Node identity 4, cluster identity 4711
[   84.975970][ T6185] tipc: Node number set to 4
[   85.050521][ T6185] IPv6: NLM_F_REPLACE set, but no existing node found!
[   85.232753][ T6191] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   85.701888][ T6197] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   85.884720][ T6197] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   86.103331][ T6197] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   87.119917][ T6197] could not allocate digest TFM handle sm3-ce
[   87.195971][ T6195] syz.0.83 (6195): drop_caches: 3
[   87.225871][ T6228] FAULT_INJECTION: forcing a failure.
[   87.225871][ T6228] name failslab, interval 1, probability 0, space 0, times 0
[   87.580823][ T5834] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[   87.595267][ T5834] Bluetooth: hci4: Injecting HCI hardware error event
[   87.604421][ T5834] Bluetooth: hci4: hardware error 0x00
[   87.814103][ T6228] CPU: 1 UID: 0 PID: 6228 Comm: syz.3.90 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[   87.814127][ T6228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   87.814136][ T6228] Call Trace:
[   87.814142][ T6228]  <TASK>
[   87.814149][ T6228]  dump_stack_lvl+0x16c/0x1f0
[   87.814176][ T6228]  should_fail_ex+0x512/0x640
[   87.814194][ T6228]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[   87.814215][ T6228]  should_failslab+0xc2/0x120
[   87.814235][ T6228]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[   87.814252][ T6228]  ? hugetlbfs_alloc_inode+0x8c/0x1d0
[   87.814280][ T6228]  hugetlbfs_alloc_inode+0x8c/0x1d0
[   87.814300][ T6228]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[   87.814322][ T6228]  alloc_inode+0x61/0x240
[   87.814344][ T6228]  new_inode+0x22/0x1c0
[   87.814368][ T6228]  hugetlbfs_fill_super+0x56d/0x9e0
[   87.814394][ T6228]  ? __pfx_hugetlbfs_fill_super+0x10/0x10
[   87.814416][ T6228]  get_tree_nodev+0xda/0x190
[   87.814433][ T6228]  hugetlbfs_get_tree+0x1e7/0x2d0
[   87.814458][ T6228]  vfs_get_tree+0x8b/0x340
[   87.814481][ T6228]  vfs_cmd_create+0xd7/0x2a0
[   87.814502][ T6228]  __do_sys_fsconfig+0x7b8/0xbe0
[   87.814525][ T6228]  ? __pfx___do_sys_fsconfig+0x10/0x10
[   87.814544][ T6228]  ? fput+0x70/0xf0
[   87.814565][ T6228]  ? rcu_is_watching+0x12/0xc0
[   87.814592][ T6228]  do_syscall_64+0xcd/0x260
[   87.814617][ T6228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.814635][ T6228] RIP: 0033:0x7fb695f8d169
[   87.814648][ T6228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.814664][ T6228] RSP: 002b:00007fb696d50038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[   87.814681][ T6228] RAX: ffffffffffffffda RBX: 00007fb6961a6080 RCX: 00007fb695f8d169
[   87.814691][ T6228] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000003
[   87.814700][ T6228] RBP: 00007fb696d50090 R08: 0000000000000000 R09: 0000000000000000
[   87.814709][ T6228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.814718][ T6228] R13: 0000000000000000 R14: 00007fb6961a6080 R15: 00007fffdfbc5418
[   87.814736][ T6228]  </TASK>
[   88.026936][    C1] vkms_vblank_simulate: vblank timer overrun
[   88.133305][   T30] kauditd_printk_skb: 17 callbacks suppressed
[   88.133318][   T30] audit: type=1400 audit(1743887491.958:322): avc:  denied  { create } for  pid=6236 comm="syz.3.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   88.158894][    C1] vkms_vblank_simulate: vblank timer overrun
[   88.229204][   T30] audit: type=1400 audit(1743887492.048:323): avc:  denied  { connect } for  pid=6236 comm="syz.3.94" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   88.284032][   T30] audit: type=1400 audit(1743887492.098:324): avc:  denied  { write } for  pid=6236 comm="syz.3.94" path="socket:[8700]" dev="sockfs" ino=8700 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   88.417705][   T30] audit: type=1400 audit(1743887492.238:325): avc:  denied  { ioctl } for  pid=6244 comm="syz.2.96" path="socket:[8718]" dev="sockfs" ino=8718 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   88.442256][    C1] vkms_vblank_simulate: vblank timer overrun
[   88.452607][ T6249] netlink: 16 bytes leftover after parsing attributes in process `syz.3.98'.
[   88.454590][ T6245] can: request_module (can-proto-0) failed.
[   88.473770][ T6250] ptrace attach of "./syz-executor exec"[5820] was attempted by "./syz-executor exec"[6250]
[   89.165383][   T30] audit: type=1400 audit(1743887492.988:326): avc:  denied  { unlink } for  pid=6244 comm="syz.2.96" name="#1" dev="tmpfs" ino=136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   89.218032][   T30] audit: type=1400 audit(1743887492.988:327): avc:  denied  { mount } for  pid=6244 comm="syz.2.96" name="/" dev="overlay" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   89.344537][ T5835] Bluetooth: hci4: unexpected event for opcode 0x2019
[   89.594537][ T6267] bridge0: port 3(netdevsim0) entered blocking state
[   89.601620][ T6267] bridge0: port 3(netdevsim0) entered disabled state
[   89.609174][ T6267] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[   89.624802][ T6267] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[   89.633866][ T6267] bridge0: port 3(netdevsim0) entered blocking state
[   89.641210][ T6267] bridge0: port 3(netdevsim0) entered forwarding state
[   89.951144][   T30] audit: type=1400 audit(1743887493.768:328): avc:  denied  { unmount } for  pid=5816 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[   90.160213][ T6260] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[   90.370285][ T5834] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[   91.467193][ T5834] Bluetooth: hci3: command 0x0406 tx timeout
[   91.478681][   T30] audit: type=1400 audit(1743887494.788:329): avc:  denied  { write } for  pid=6281 comm="syz.1.107" path="socket:[8772]" dev="sockfs" ino=8772 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   91.899172][ T5871] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   92.005031][   T30] audit: type=1400 audit(1743887495.828:330): avc:  denied  { write } for  pid=6309 comm="syz.2.114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   92.062160][ T5871] usb 5-1: Using ep0 maxpacket: 8
[   92.081369][ T5871] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[   92.109656][ T5871] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[   92.128523][ T6314] netlink: 96 bytes leftover after parsing attributes in process `syz.2.115'.
[   92.144026][ T5871] usb 5-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[   92.164487][ T5871] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[   92.264699][ T5871] usb 5-1: config 250 has no interface number 0
[   92.271125][ T5871] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[   92.283689][ T5871] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[   92.293977][ T5871] usb 5-1: config 250 interface 228 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[   92.337668][ T5871] usb 5-1: config 250 interface 228 has no altsetting 0
[   92.462419][ T5871] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   92.563728][ T5871] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   92.569214][ T6320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.117'.
[   92.597506][ T5871] usb 5-1: Product: syz
[   92.614015][ T5871] usb 5-1: SerialNumber: syz
[   92.813264][ T5871] hub 5-1:250.228: bad descriptor, ignoring hub
[   92.842162][ T5871] hub 5-1:250.228: probe with driver hub failed with error -5
[   93.042644][ T5871] usblp 5-1:250.228: usblp0: USB Unidirectional printer dev 3 if 228 alt 255 proto 1 vid 0x0525 pid 0xD292
[   93.231099][ T6329] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   93.292315][   T30] audit: type=1326 audit(1743887496.988:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   93.522248][   T30] audit: type=1326 audit(1743887496.998:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   93.643702][ T5871] usb 5-1: USB disconnect, device number 3
[   93.688352][ T5871] usblp0: removed
[   93.809575][   T30] audit: type=1326 audit(1743887496.998:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   93.838463][   T30] audit: type=1326 audit(1743887496.998:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   93.928618][ T6335] overlay: Unknown parameter 'fowner<00000000000000016384'
[   94.145203][   T30] audit: type=1326 audit(1743887496.998:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   94.168438][    C1] vkms_vblank_simulate: vblank timer overrun
[   94.205813][   T30] audit: type=1326 audit(1743887496.998:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   94.303224][   T30] audit: type=1326 audit(1743887497.008:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   94.423054][ T5825] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   94.482958][   T30] audit: type=1326 audit(1743887497.008:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   94.539963][   T30] audit: type=1326 audit(1743887497.008:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   94.587717][   T30] audit: type=1326 audit(1743887497.018:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6326 comm="syz.2.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74cab8d169 code=0x7ffc0000
[   94.642906][ T5825] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   94.652730][ T5825] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   94.662327][ T5825] usb 3-1: Product: syz
[   94.666531][ T5825] usb 3-1: Manufacturer: syz
[   94.674759][ T5825] usb 3-1: SerialNumber: syz
[   94.769457][ T5835] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[   94.777157][ T5826] Bluetooth: hci5: command 0xfc11 tx timeout
[   94.803168][ T5825] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   94.831239][ T5870] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   95.312126][ T5835] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[   95.321969][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: kworker/u9:9 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[   95.321998][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   95.322011][ T5835] Workqueue: hci1 hci_rx_work
[   95.322035][ T5835] Call Trace:
[   95.322042][ T5835]  <TASK>
[   95.322049][ T5835]  dump_stack_lvl+0x16c/0x1f0
[   95.322075][ T5835]  sysfs_warn_dup+0x7f/0xa0
[   95.322096][ T5835]  sysfs_create_dir_ns+0x24b/0x2b0
[   95.322114][ T5835]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   95.322130][ T5835]  ? find_held_lock+0x2b/0x80
[   95.322158][ T5835]  ? do_raw_spin_unlock+0x172/0x230
[   95.322179][ T5835]  kobject_add_internal+0x2c4/0x9b0
[   95.322208][ T5835]  kobject_add+0x16e/0x240
[   95.322233][ T5835]  ? __pfx_kobject_add+0x10/0x10
[   95.322260][ T5835]  ? do_raw_spin_unlock+0x172/0x230
[   95.322280][ T5835]  ? kobject_put+0xab/0x5a0
[   95.322312][ T5835]  device_add+0x288/0x1a70
[   95.322331][ T5835]  ? __pfx_dev_set_name+0x10/0x10
[   95.322350][ T5835]  ? __pfx_device_add+0x10/0x10
[   95.322369][ T5835]  ? mgmt_send_event_skb+0x2fb/0x460
[   95.322394][ T5835]  hci_conn_add_sysfs+0x17e/0x230
[   95.322416][ T5835]  le_conn_complete_evt+0x1075/0x1d70
[   95.322451][ T5835]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   95.322479][ T5835]  ? hci_event_packet+0x43c/0x1190
[   95.322504][ T5835]  hci_le_conn_complete_evt+0x23c/0x370
[   95.322528][ T5835]  hci_le_meta_evt+0x2f3/0x5e0
[   95.322547][ T5835]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[   95.322568][ T5835]  hci_event_packet+0x669/0x1190
[   95.322587][ T5835]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   95.322607][ T5835]  ? __pfx_hci_event_packet+0x10/0x10
[   95.322628][ T5835]  ? kcov_remote_start+0x3c9/0x6d0
[   95.322647][ T5835]  ? lockdep_hardirqs_on+0x7c/0x110
[   95.322681][ T5835]  hci_rx_work+0x2c5/0x16b0
[   95.322702][ T5835]  ? rcu_is_watching+0x12/0xc0
[   95.322727][ T5835]  process_one_work+0x9cc/0x1b70
[   95.322758][ T5835]  ? __pfx_process_one_work+0x10/0x10
[   95.322787][ T5835]  ? assign_work+0x1a0/0x250
[   95.322810][ T5835]  worker_thread+0x6c8/0xf10
[   95.322839][ T5835]  ? __kthread_parkme+0x19e/0x250
[   95.322869][ T5835]  ? __pfx_worker_thread+0x10/0x10
[   95.322890][ T5835]  kthread+0x3c2/0x780
[   95.322910][ T5835]  ? __pfx_kthread+0x10/0x10
[   95.322927][ T5835]  ? __pfx_kthread+0x10/0x10
[   95.322944][ T5835]  ? __pfx_kthread+0x10/0x10
[   95.322960][ T5835]  ? __pfx_kthread+0x10/0x10
[   95.322978][ T5835]  ? rcu_is_watching+0x12/0xc0
[   95.323000][ T5835]  ? __pfx_kthread+0x10/0x10
[   95.323020][ T5835]  ret_from_fork+0x45/0x80
[   95.323038][ T5835]  ? __pfx_kthread+0x10/0x10
[   95.323056][ T5835]  ret_from_fork_asm+0x1a/0x30
[   95.323095][ T5835]  </TASK>
[   95.323160][ T5835] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   95.597689][ T5835] Bluetooth: hci1: failed to register connection device
[   95.969332][ T5870] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[   95.977500][ T5870] ath9k_htc: Failed to initialize the device
[   96.012870][ T5870] usb 3-1: ath9k_htc: USB layer deinitialized
[   96.060043][ T6355] netlink: 'syz.4.125': attribute type 2 has an invalid length.
[   96.075820][ T6352] Invalid ELF header magic: != ELF
[   96.124004][ T6355] ¤ì: entered promiscuous mode
[   96.923234][   T92] usb 3-1: USB disconnect, device number 3
[   98.704205][ T6402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   98.840310][ T6402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   98.928747][   T30] kauditd_printk_skb: 22 callbacks suppressed
[   98.928775][   T30] audit: type=1326 audit(1743887502.748:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6409 comm="syz.4.140" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f601498d169 code=0x0
[   98.965735][ T6402] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   99.006424][ T6412] bridge0: port 3(netdevsim0) entered blocking state
[   99.014302][ T6412] bridge0: port 3(netdevsim0) entered disabled state
[   99.022600][ T6412] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[   99.037774][ T6412] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   99.047677][ T6412] bridge0: port 3(netdevsim0) entered blocking state
[   99.054474][ T6412] bridge0: port 3(netdevsim0) entered forwarding state
[   99.338968][ T6402] could not allocate digest TFM handle sm3-ce
[   99.509392][ T4616] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   99.544818][   T30] audit: type=1400 audit(1743887503.368:364): avc:  denied  { create } for  pid=6428 comm="syz.0.144" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   99.562874][ T6406] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[   99.619790][   T30] audit: type=1400 audit(1743887503.438:365): avc:  denied  { read write } for  pid=6428 comm="syz.0.144" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   99.667551][   T30] audit: type=1400 audit(1743887503.438:366): avc:  denied  { open } for  pid=6428 comm="syz.0.144" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   99.696408][   T30] audit: type=1400 audit(1743887503.438:367): avc:  denied  { ioctl } for  pid=6428 comm="syz.0.144" path="/dev/fb0" dev="devtmpfs" ino=629 ioctlcmd=0x460f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[   99.721298][    C1] vkms_vblank_simulate: vblank timer overrun
[   99.738610][   T30] audit: type=1326 audit(1743887503.448:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6428 comm="syz.0.144" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f98f358d169 code=0x0
[   99.773711][ T4616] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   99.969401][ T4616] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.973035][   T30] audit: type=1400 audit(1743887503.798:369): avc:  denied  { getopt } for  pid=6431 comm="syz.1.145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   99.999797][ T4616] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  100.013218][ T4616] usb 4-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  100.025841][ T4616] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.042083][   T30] audit: type=1400 audit(1743887503.858:370): avc:  denied  { rename } for  pid=5176 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  100.071432][ T4616] usb 4-1: config 0 descriptor??
[  100.089468][   T30] audit: type=1400 audit(1743887503.858:371): avc:  denied  { unlink } for  pid=5176 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  100.119302][   T30] audit: type=1400 audit(1743887503.858:372): avc:  denied  { create } for  pid=5176 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  100.299224][   T92] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  100.418279][ T6441] netlink: 24 bytes leftover after parsing attributes in process `syz.2.147'.
[  100.427225][ T6441] netlink: 24 bytes leftover after parsing attributes in process `syz.2.147'.
[  100.462545][   T92] usb 2-1: Using ep0 maxpacket: 8
[  100.472419][   T92] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  100.492361][   T92] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  100.494071][ T4616] usbhid 4-1:0.0: can't add hid device: -71
[  100.508842][   T92] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  100.546978][ T4616] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  100.591272][ T4616] usb 4-1: USB disconnect, device number 3
[  100.591622][   T92] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  100.601955][ T6444] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.653789][   T92] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  100.671900][   T92] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.721470][ T6444] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.792695][ T6446] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.897705][   T92] usb 2-1: GET_CAPABILITIES returned 0
[  100.904680][   T92] usbtmc 2-1:16.0: can't read capabilities
[  100.912617][ T6444] could not allocate digest TFM handle sm3-ce
[  101.148744][ T6433] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.167540][ T6433] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  101.196826][ T6433] syzkaller1: entered promiscuous mode
[  101.202479][ T6433] syzkaller1: entered allmulticast mode
[  101.478242][ T6455] fuse: Unknown parameter 'ÿ0x000000000000000c'
[  103.036513][ T5826] Bluetooth: hci1: command 0x0406 tx timeout
[  103.594191][ T6449] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[  103.739994][ T6463] FAULT_INJECTION: forcing a failure.
[  103.739994][ T6463] name failslab, interval 1, probability 0, space 0, times 0
[  103.758495][ T6463] CPU: 0 UID: 0 PID: 6463 Comm: syz.4.154 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  103.758512][ T6463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  103.758519][ T6463] Call Trace:
[  103.758523][ T6463]  <TASK>
[  103.758527][ T6463]  dump_stack_lvl+0x16c/0x1f0
[  103.758545][ T6463]  should_fail_ex+0x512/0x640
[  103.758557][ T6463]  ? fs_reclaim_acquire+0xae/0x150
[  103.758573][ T6463]  ? tomoyo_encode2+0x100/0x3e0
[  103.758588][ T6463]  should_failslab+0xc2/0x120
[  103.758600][ T6463]  __kmalloc_noprof+0xd2/0x510
[  103.758619][ T6463]  tomoyo_encode2+0x100/0x3e0
[  103.758636][ T6463]  tomoyo_encode+0x29/0x50
[  103.758651][ T6463]  tomoyo_mount_acl+0x144/0x850
[  103.758664][ T6463]  ? kernel_text_address+0x8d/0x100
[  103.758678][ T6463]  ? __kernel_text_address+0xd/0x40
[  103.758690][ T6463]  ? unwind_get_return_address+0x59/0xa0
[  103.758704][ T6463]  ? arch_stack_walk+0xa6/0x100
[  103.758719][ T6463]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  103.758747][ T6463]  ? tomoyo_domain+0xbb/0x150
[  103.758756][ T6463]  ? tomoyo_profile+0x47/0x60
[  103.758768][ T6463]  tomoyo_mount_permission+0x16d/0x420
[  103.758782][ T6463]  ? tomoyo_mount_permission+0x14f/0x420
[  103.758797][ T6463]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  103.758818][ T6463]  security_sb_mount+0x9b/0x260
[  103.758834][ T6463]  path_mount+0x128/0x1f30
[  103.758847][ T6463]  ? kmem_cache_free+0x2d4/0x4d0
[  103.758857][ T6463]  ? __pfx_path_mount+0x10/0x10
[  103.758870][ T6463]  ? putname+0x154/0x1a0
[  103.758884][ T6463]  __x64_sys_mount+0x28d/0x310
[  103.758896][ T6463]  ? __pfx___x64_sys_mount+0x10/0x10
[  103.758908][ T6463]  ? rcu_is_watching+0x12/0xc0
[  103.758924][ T6463]  do_syscall_64+0xcd/0x260
[  103.758940][ T6463]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.758951][ T6463] RIP: 0033:0x7f601498d169
[  103.758960][ T6463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.758970][ T6463] RSP: 002b:00007f601589a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  103.758979][ T6463] RAX: ffffffffffffffda RBX: 00007f6014ba5fa0 RCX: 00007f601498d169
[  103.758986][ T6463] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 0000000000000000
[  103.758991][ T6463] RBP: 00007f601589a090 R08: 0000200000000340 R09: 0000000000000000
[  103.758997][ T6463] R10: 0000000000800000 R11: 0000000000000246 R12: 0000000000000001
[  103.759003][ T6463] R13: 0000000000000000 R14: 00007f6014ba5fa0 R15: 00007ffc534a4cf8
[  103.759015][ T6463]  </TASK>
[  103.810097][ T5869] usb 2-1: USB disconnect, device number 3
[  103.813815][ T5870] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  104.074631][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  104.074641][   T30] audit: type=1400 audit(1743887507.898:376): avc:  denied  { accept } for  pid=6467 comm="syz.4.156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  104.100168][    C1] vkms_vblank_simulate: vblank timer overrun
[  104.165874][ T6470] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.186414][   T30] audit: type=1400 audit(1743887508.008:377): avc:  denied  { map } for  pid=6467 comm="syz.4.156" path="socket:[9181]" dev="sockfs" ino=9181 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  104.232480][ T6470] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.243621][   T30] audit: type=1400 audit(1743887508.008:378): avc:  denied  { accept } for  pid=6467 comm="syz.4.156" path="socket:[9181]" dev="sockfs" ino=9181 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  104.371043][ T6474] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.569099][   T30] audit: type=1400 audit(1743887508.338:379): avc:  denied  { bind } for  pid=6472 comm="syz.3.158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  104.892073][   T30] audit: type=1326 audit(1743887508.338:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6472 comm="syz.3.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb695f8d169 code=0x7ffc0000
[  104.918402][   T30] audit: type=1326 audit(1743887508.338:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6472 comm="syz.3.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb695f8d169 code=0x7ffc0000
[  104.968318][   T30] audit: type=1326 audit(1743887508.348:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6472 comm="syz.3.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fb695f8d169 code=0x7ffc0000
[  105.002616][ T5870] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  105.023786][ T5870] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  105.033263][ T6470] could not allocate digest TFM handle sm3-ce
[  105.040898][   T30] audit: type=1326 audit(1743887508.348:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6472 comm="syz.3.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb695f8d169 code=0x7ffc0000
[  105.139348][ T5870] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  105.148396][ T5870] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.174356][   T30] audit: type=1326 audit(1743887508.348:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6472 comm="syz.3.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb695f8d169 code=0x7ffc0000
[  105.221634][ T5870] usb 1-1: config 0 descriptor??
[  105.253481][   T30] audit: type=1326 audit(1743887508.348:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6472 comm="syz.3.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb695f8d169 code=0x7ffc0000
[  105.844971][ T5870] cm6533_jd 0003:0D8C:0022.0001: unknown main item tag 0x0
[  105.855542][ T5870] cm6533_jd 0003:0D8C:0022.0001: unknown main item tag 0x0
[  105.867540][ T5870] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0D8C:0022.0001/input/input6
[  105.900351][ T5870] cm6533_jd 0003:0D8C:0022.0001: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.0-1/input0
[  105.905234][ T6495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.928336][ T5870] usb 1-1: USB disconnect, device number 3
[  105.947854][ T5869] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  105.960197][ T5869] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  106.027281][   T12] wlan1: authenticated
[  106.033868][ T6499] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  106.044209][   T13] wlan1: associate with 08:02:11:00:00:00 (try 1/3)
[  106.127215][   T12] wlan1: RX AssocResp from 08:02:11:00:00:00 (capab=0x1 status=0 aid=1)
[  106.127406][ T6495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  106.153161][   T12] wlan1: associated
[  106.289419][ T6495] could not allocate digest TFM handle sm3-ce
[  106.367201][ T6508] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  106.479045][ T6510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.169'.
[  106.694414][ T6508] syz.4.168 (6508): drop_caches: 3
[  106.799173][   T92] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  106.826628][ T6520] netlink: 16 bytes leftover after parsing attributes in process `syz.3.172'.
[  106.963412][   T92] usb 2-1: config 135 has an invalid interface number: 230 but max is 0
[  106.977305][   T92] usb 2-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  106.988237][   T92] usb 2-1: config 135 has no interface number 0
[  107.001276][   T92] usb 2-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  107.022923][   T92] usb 2-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  107.035727][   T92] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.173035][   T92] usb 2-1: Product: syz
[  107.177240][   T92] usb 2-1: Manufacturer: syz
[  107.182005][   T92] usb 2-1: SerialNumber: syz
[  107.192510][   T92] usb 2-1: Found UVC 0.00 device syz (18ec:3288)
[  107.198892][   T92] usb 2-1: No valid video chain found.
[  107.311500][ T6533] netlink: 20 bytes leftover after parsing attributes in process `syz.4.175'.
[  109.080659][   T30] kauditd_printk_skb: 21 callbacks suppressed
[  109.080674][   T30] audit: type=1400 audit(1743887512.899:407): avc:  denied  { read write } for  pid=6548 comm="syz.3.178" name="raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  109.113714][   T30] audit: type=1400 audit(1743887512.909:408): avc:  denied  { open } for  pid=6548 comm="syz.3.178" path="/dev/raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  109.137400][   T30] audit: type=1400 audit(1743887512.909:409): avc:  denied  { ioctl } for  pid=6548 comm="syz.3.178" path="/dev/raw-gadget" dev="devtmpfs" ino=820 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  109.279230][   T30] audit: type=1400 audit(1743887513.099:410): avc:  denied  { search } for  pid=5176 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  109.300682][    C1] vkms_vblank_simulate: vblank timer overrun
[  109.399144][ T4616] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  109.468345][ T5869] usb 2-1: USB disconnect, device number 4
[  109.512945][   T30] audit: type=1400 audit(1743887513.339:411): avc:  denied  { bind } for  pid=6555 comm="syz.1.180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  109.536371][   T30] audit: type=1400 audit(1743887513.349:412): avc:  denied  { connect } for  pid=6555 comm="syz.1.180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  109.559749][ T4616] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  109.571944][ T4616] usb 4-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[  109.581187][ T4616] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.589383][ T4616] usb 4-1: Product: syz
[  109.593527][ T4616] usb 4-1: Manufacturer: syz
[  109.598090][ T4616] usb 4-1: SerialNumber: syz
[  109.604355][ T4616] usb 4-1: config 0 descriptor??
[  109.612483][ T4616] ims_pcu 4-1:0.0: Missing CDC union descriptor
[  109.618761][ T4616] ims_pcu 4-1:0.0: probe with driver ims_pcu failed with error -22
[  109.879170][ T5869] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  109.888822][ T5870] usb 4-1: USB disconnect, device number 4
[  110.040443][ T5869] usb 2-1: config 0 has an invalid interface number: 128 but max is 0
[  110.053245][ T5869] usb 2-1: config 0 has no interface number 0
[  110.062822][ T5869] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  110.064930][   T30] audit: type=1400 audit(1743887513.889:413): avc:  denied  { read } for  pid=6561 comm="syz.2.182" path="socket:[9950]" dev="sockfs" ino=9950 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  110.095959][ T5869] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.095981][ T5869] usb 2-1: Product: syz
[  110.095995][ T5869] usb 2-1: Manufacturer: syz
[  110.096009][ T5869] usb 2-1: SerialNumber: syz
[  110.124059][ T5869] usb 2-1: config 0 descriptor??
[  110.536087][ T5869] usb 2-1: Firmware: major: 22, minor: 220, hardware type: UNKNOWN (68)
[  110.578459][ T6577] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.656116][ T6571] could not allocate digest TFM handle sm3-ce
[  110.672777][ T6570] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.738144][ T5869] usb 2-1: Read permanent extended address b2:c5:05:8b:fa:8b:7f:4f from device
[  110.833468][ T6582] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  111.279441][   T92] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  111.578582][ T5869] usb 2-1: atusb_probe: initialization failed, error = -524
[  111.606213][ T5869] atusb 2-1:0.128: probe with driver atusb failed with error -524
[  111.609649][   T30] audit: type=1400 audit(1743887514.959:414): avc:  denied  { listen } for  pid=6555 comm="syz.1.180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  111.671682][   T30] audit: type=1400 audit(1743887515.019:415): avc:  denied  { write } for  pid=6555 comm="syz.1.180" path="socket:[9993]" dev="sockfs" ino=9993 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  111.763648][ T6577] syz.0.186 (6577): drop_caches: 3
[  111.794637][   T92] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  111.811110][   T92] usb 5-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[  111.830210][   T92] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.840522][   T92] usb 5-1: Product: syz
[  111.844978][   T92] usb 5-1: Manufacturer: syz
[  111.850534][   T92] usb 5-1: SerialNumber: syz
[  111.870970][   T92] usb 5-1: config 0 descriptor??
[  111.880751][   T92] ims_pcu 5-1:0.0: Missing CDC union descriptor
[  111.889165][   T92] ims_pcu 5-1:0.0: probe with driver ims_pcu failed with error -22
[  112.051171][ T6589] netlink: 16 bytes leftover after parsing attributes in process `syz.2.188'.
[  112.087343][   T92] usb 5-1: USB disconnect, device number 4
[  112.237490][   T30] audit: type=1400 audit(1743887516.059:416): avc:  denied  { write } for  pid=6593 comm="syz.0.189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  112.699256][ T5871] usb 2-1: USB disconnect, device number 5
[  113.459408][   T92] usb 1-1: new low-speed USB device number 4 using dummy_hcd
[  113.672817][   T92] usb 1-1: Invalid ep0 maxpacket: 16
[  113.849532][   T92] usb 1-1: new low-speed USB device number 5 using dummy_hcd
[  113.889421][ T5826] Bluetooth: hci5: command 0x1003 tx timeout
[  113.899046][ T5835] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  114.009150][   T92] usb 1-1: Invalid ep0 maxpacket: 16
[  114.015837][   T92] usb usb1-port1: attempt power cycle
[  114.181331][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  114.181345][   T30] audit: type=1400 audit(1743887517.999:422): avc:  denied  { shutdown } for  pid=6628 comm="syz.3.200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  114.207170][    C0] vkms_vblank_simulate: vblank timer overrun
[  114.254442][   T30] audit: type=1400 audit(1743887517.999:423): avc:  denied  { connect } for  pid=6628 comm="syz.3.200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  114.274233][    C0] vkms_vblank_simulate: vblank timer overrun
[  114.284852][   T30] audit: type=1400 audit(1743887518.009:424): avc:  denied  { ioctl } for  pid=6628 comm="syz.3.200" path="socket:[10080]" dev="sockfs" ino=10080 ioctlcmd=0x89f3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  114.309340][    C0] vkms_vblank_simulate: vblank timer overrun
[  114.316876][   T30] audit: type=1400 audit(1743887518.139:425): avc:  denied  { create } for  pid=6628 comm="syz.3.200" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  114.459150][   T92] usb 1-1: new low-speed USB device number 6 using dummy_hcd
[  114.530908][   T92] usb 1-1: Invalid ep0 maxpacket: 16
[  114.736495][   T92] usb 1-1: new low-speed USB device number 7 using dummy_hcd
[  114.896310][   T92] usb 1-1: Invalid ep0 maxpacket: 16
[  114.904154][   T92] usb usb1-port1: unable to enumerate USB device
[  114.988972][   T30] audit: type=1400 audit(1743887518.809:426): avc:  denied  { append } for  pid=6639 comm="syz.3.202" name="video8" dev="devtmpfs" ino=951 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  115.097539][   T30] audit: type=1400 audit(1743887518.919:427): avc:  denied  { create } for  pid=6639 comm="syz.3.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  115.193931][   T30] audit: type=1400 audit(1743887519.019:428): avc:  denied  { ioctl } for  pid=6639 comm="syz.3.202" path="socket:[10587]" dev="sockfs" ino=10587 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  116.177924][   T30] audit: type=1400 audit(1743887519.749:429): avc:  denied  { setopt } for  pid=6649 comm="syz.3.204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  116.282257][   T30] audit: type=1400 audit(1743887519.749:430): avc:  denied  { bind } for  pid=6649 comm="syz.3.204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  116.349492][   T30] audit: type=1400 audit(1743887519.749:431): avc:  denied  { name_bind } for  pid=6649 comm="syz.3.204" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  116.418744][ T5835] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  116.431484][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: kworker/u9:9 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  116.431501][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  116.431508][ T5835] Workqueue: hci2 hci_rx_work
[  116.431524][ T5835] Call Trace:
[  116.431528][ T5835]  <TASK>
[  116.431533][ T5835]  dump_stack_lvl+0x16c/0x1f0
[  116.431548][ T5835]  sysfs_warn_dup+0x7f/0xa0
[  116.431560][ T5835]  sysfs_create_dir_ns+0x24b/0x2b0
[  116.431570][ T5835]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  116.431580][ T5835]  ? find_held_lock+0x2b/0x80
[  116.431597][ T5835]  ? do_raw_spin_unlock+0x172/0x230
[  116.431611][ T5835]  kobject_add_internal+0x2c4/0x9b0
[  116.431629][ T5835]  kobject_add+0x16e/0x240
[  116.431644][ T5835]  ? __pfx_kobject_add+0x10/0x10
[  116.431662][ T5835]  ? do_raw_spin_unlock+0x172/0x230
[  116.431675][ T5835]  ? kobject_put+0xab/0x5a0
[  116.431695][ T5835]  device_add+0x288/0x1a70
[  116.431706][ T5835]  ? __pfx_dev_set_name+0x10/0x10
[  116.431718][ T5835]  ? __pfx_device_add+0x10/0x10
[  116.431728][ T5835]  ? mgmt_send_event_skb+0x2fb/0x460
[  116.431742][ T5835]  hci_conn_add_sysfs+0x17e/0x230
[  116.431754][ T5835]  le_conn_complete_evt+0x1075/0x1d70
[  116.431775][ T5835]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  116.431792][ T5835]  ? hci_event_packet+0x43c/0x1190
[  116.431806][ T5835]  hci_le_conn_complete_evt+0x23c/0x370
[  116.431819][ T5835]  hci_le_meta_evt+0x2f3/0x5e0
[  116.431831][ T5835]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  116.431844][ T5835]  hci_event_packet+0x669/0x1190
[  116.431854][ T5835]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  116.431866][ T5835]  ? __pfx_hci_event_packet+0x10/0x10
[  116.431877][ T5835]  ? kcov_remote_start+0x3c9/0x6d0
[  116.431888][ T5835]  ? lockdep_hardirqs_on+0x7c/0x110
[  116.431905][ T5835]  hci_rx_work+0x2c5/0x16b0
[  116.431916][ T5835]  ? rcu_is_watching+0x12/0xc0
[  116.431931][ T5835]  process_one_work+0x9cc/0x1b70
[  116.431949][ T5835]  ? __pfx_process_one_work+0x10/0x10
[  116.431964][ T5835]  ? assign_work+0x1a0/0x250
[  116.431977][ T5835]  worker_thread+0x6c8/0xf10
[  116.431993][ T5835]  ? __kthread_parkme+0x19e/0x250
[  116.432009][ T5835]  ? __pfx_worker_thread+0x10/0x10
[  116.432021][ T5835]  kthread+0x3c2/0x780
[  116.432031][ T5835]  ? __pfx_kthread+0x10/0x10
[  116.432041][ T5835]  ? __pfx_kthread+0x10/0x10
[  116.432051][ T5835]  ? __pfx_kthread+0x10/0x10
[  116.432060][ T5835]  ? __pfx_kthread+0x10/0x10
[  116.432070][ T5835]  ? rcu_is_watching+0x12/0xc0
[  116.432082][ T5835]  ? __pfx_kthread+0x10/0x10
[  116.432093][ T5835]  ret_from_fork+0x45/0x80
[  116.432104][ T5835]  ? __pfx_kthread+0x10/0x10
[  116.432115][ T5835]  ret_from_fork_asm+0x1a/0x30
[  116.432138][ T5835]  </TASK>
[  116.432150][ T5835] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  116.705650][ T5835] Bluetooth: hci2: failed to register connection device
[  117.273029][ T6669] bridge0: port 3(netdevsim0) entered blocking state
[  117.280145][ T6669] bridge0: port 3(netdevsim0) entered disabled state
[  117.287289][ T6669] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  117.302175][ T6669] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  117.311182][ T6669] bridge0: port 3(netdevsim0) entered blocking state
[  117.317918][ T6669] bridge0: port 3(netdevsim0) entered forwarding state
[  117.851023][ T6666] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[  118.052258][ T6676] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  118.170767][ T6676] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  118.299906][ T6676] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  118.467158][ T6676] could not allocate digest TFM handle sm3-ce
[  118.732605][ T6671] netlink: 24 bytes leftover after parsing attributes in process `syz.3.207'.
[  118.768328][ T6671] netlink: 24 bytes leftover after parsing attributes in process `syz.3.207'.
[  120.258533][ T6711] netlink: 28 bytes leftover after parsing attributes in process `syz.1.219'.
[  120.467153][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  120.467165][   T30] audit: type=1400 audit(1743887524.289:441): avc:  denied  { read write } for  pid=6714 comm="syz.1.220" name="uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  120.539009][   T30] audit: type=1400 audit(1743887524.289:442): avc:  denied  { open } for  pid=6714 comm="syz.1.220" path="/dev/uhid" dev="devtmpfs" ino=1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  121.397407][   T30] audit: type=1400 audit(1743887524.469:443): avc:  denied  { read } for  pid=6716 comm="syz.0.222" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.424758][   T30] audit: type=1400 audit(1743887524.469:444): avc:  denied  { open } for  pid=6716 comm="syz.0.222" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.534212][   T30] audit: type=1400 audit(1743887524.469:445): avc:  denied  { ioctl } for  pid=6716 comm="syz.0.222" path="/dev/nullb0" dev="devtmpfs" ino=696 ioctlcmd=0x1269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.654005][ T6719] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[  122.539289][ T5871] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  122.859222][ T5825] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  123.079817][ T5825] usb 3-1: Using ep0 maxpacket: 16
[  123.089526][ T5871] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  123.095188][ T5825] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  123.109493][ T5825] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.122180][ T5825] usb 3-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  123.122735][ T5871] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  123.171035][ T5825] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 22
[  123.178993][ T6744] FAULT_INJECTION: forcing a failure.
[  123.178993][ T6744] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  123.227960][ T6744] CPU: 1 UID: 0 PID: 6744 Comm: syz.1.228 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  123.227984][ T6744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  123.227996][ T6744] Call Trace:
[  123.228001][ T6744]  <TASK>
[  123.228008][ T6744]  dump_stack_lvl+0x16c/0x1f0
[  123.228034][ T6744]  should_fail_ex+0x512/0x640
[  123.228056][ T6744]  _copy_to_user+0x32/0xd0
[  123.228077][ T6744]  move_addr_to_user+0x16f/0x1e0
[  123.228103][ T6744]  __sys_getsockname+0x1a4/0x260
[  123.228120][ T6744]  ? __pfx___sys_getsockname+0x10/0x10
[  123.228136][ T6744]  ? __fget_files+0x20e/0x3c0
[  123.228160][ T6744]  ? __pfx_ksys_write+0x10/0x10
[  123.228174][ T6744]  ? rcu_is_watching+0x12/0xc0
[  123.228196][ T6744]  __x64_sys_getsockname+0x72/0xb0
[  123.228212][ T6744]  ? lockdep_hardirqs_on+0x7c/0x110
[  123.228231][ T6744]  do_syscall_64+0xcd/0x260
[  123.228253][ T6744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.228269][ T6744] RIP: 0033:0x7fc4e5d8d169
[  123.228282][ T6744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.228296][ T6744] RSP: 002b:00007fc4e3bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000033
[  123.228312][ T6744] RAX: ffffffffffffffda RBX: 00007fc4e5fa6160 RCX: 00007fc4e5d8d169
[  123.228322][ T6744] RDX: 0000200000001480 RSI: 0000200000000200 RDI: 0000000000000008
[  123.228332][ T6744] RBP: 00007fc4e3bf6090 R08: 0000000000000000 R09: 0000000000000000
[  123.228341][ T6744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.228350][ T6744] R13: 0000000000000000 R14: 00007fc4e5fa6160 R15: 00007ffc0793faa8
[  123.228377][ T6744]  </TASK>
[  123.228511][ T5871] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  123.411434][ T5825] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  123.419120][   T30] audit: type=1400 audit(1743887527.179:446): avc:  denied  { create } for  pid=6745 comm="syz.0.229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  123.423829][ T5825] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  123.458643][   T30] audit: type=1400 audit(1743887527.269:447): avc:  denied  { read } for  pid=6747 comm="syz.3.230" name="loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  123.499174][   T30] audit: type=1400 audit(1743887527.269:448): avc:  denied  { open } for  pid=6747 comm="syz.3.230" path="/dev/loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  123.519236][ T5825] usb 3-1: SerialNumber: syz
[  123.539286][   T30] audit: type=1400 audit(1743887527.279:449): avc:  denied  { ioctl } for  pid=6747 comm="syz.3.230" path="/dev/loop-control" dev="devtmpfs" ino=646 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  123.581093][ T5825] cdc_acm 3-1:1.0: skipping garbage
[  123.678573][ T5871] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.706957][ T5871] usb 5-1: Product: syz
[  123.752825][ T5871] usb 5-1: Manufacturer: syz
[  123.761664][ T5871] usb 5-1: SerialNumber: syz
[  123.781615][   T30] audit: type=1400 audit(1743887527.609:450): avc:  denied  { read } for  pid=6730 comm="syz.2.226" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  123.841823][ T5871] usb 5-1: config 0 descriptor??
[  123.852620][ T6734] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  123.859954][ T6734] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  123.908093][ T6753] FAULT_INJECTION: forcing a failure.
[  123.908093][ T6753] name failslab, interval 1, probability 0, space 0, times 0
[  123.953087][ T6753] CPU: 0 UID: 0 PID: 6753 Comm: syz.0.231 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  123.953118][ T6753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  123.953127][ T6753] Call Trace:
[  123.953133][ T6753]  <TASK>
[  123.953140][ T6753]  dump_stack_lvl+0x16c/0x1f0
[  123.953167][ T6753]  should_fail_ex+0x512/0x640
[  123.953185][ T6753]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  123.953206][ T6753]  should_failslab+0xc2/0x120
[  123.953226][ T6753]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  123.953244][ T6753]  ? alloc_inode+0xc3/0x240
[  123.953270][ T6753]  alloc_inode+0xc3/0x240
[  123.953292][ T6753]  iget_locked+0x2e4/0x830
[  123.953316][ T6753]  ? __pfx_iget_locked+0x10/0x10
[  123.953340][ T6753]  ? find_held_lock+0x2b/0x80
[  123.953362][ T6753]  ? kernfs_root+0xee/0x2a0
[  123.953386][ T6753]  kernfs_get_inode+0x48/0x460
[  123.953404][ T6753]  kernfs_iop_lookup+0x1a7/0x2d0
[  123.953426][ T6753]  lookup_one_qstr_excl+0x1d2/0x260
[  123.953447][ T6753]  ? mnt_want_write+0x161/0x450
[  123.953472][ T6753]  do_renameat2+0x56d/0xc90
[  123.953499][ T6753]  ? __pfx_do_renameat2+0x10/0x10
[  123.953521][ T6753]  ? find_held_lock+0x2b/0x80
[  123.953541][ T6753]  ? __might_fault+0xe3/0x190
[  123.953557][ T6753]  ? __might_fault+0x13b/0x190
[  123.953585][ T6753]  ? getname_flags.part.0+0x1c2/0x540
[  123.953611][ T6753]  __x64_sys_rename+0x7d/0xa0
[  123.953631][ T6753]  do_syscall_64+0xcd/0x260
[  123.953656][ T6753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.953673][ T6753] RIP: 0033:0x7f98f358d169
[  123.953687][ T6753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.953702][ T6753] RSP: 002b:00007f98f4314038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  123.953717][ T6753] RAX: ffffffffffffffda RBX: 00007f98f37a5fa0 RCX: 00007f98f358d169
[  123.953728][ T6753] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000200000000140
[  123.953738][ T6753] RBP: 00007f98f4314090 R08: 0000000000000000 R09: 0000000000000000
[  123.953747][ T6753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.953756][ T6753] R13: 0000000000000000 R14: 00007f98f37a5fa0 R15: 00007fff3e6c2d68
[  123.953778][ T6753]  </TASK>
[  124.311913][ T6734] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  124.329351][ T6734] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  124.684340][ T6764] capability: warning: `syz.1.234' uses deprecated v2 capabilities in a way that may be insecure
[  124.770956][ T5871] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  124.856864][    T9] usb 3-1: USB disconnect, device number 4
[  124.862933][ T5826] Bluetooth: hci2: command 0x0406 tx timeout
[  125.385648][ T5871] dm9601 5-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  125.407479][ T5871] dm9601 5-1:0.0 eth1: register 'dm9601' at usb-dummy_hcd.4-1, Davicom DM96xx USB 10/100 Ethernet, a6:2e:4a:7e:63:58
[  125.906265][ T5871] usb 5-1: USB disconnect, device number 5
[  126.016300][ T5871] dm9601 5-1:0.0 eth1: unregister 'dm9601' usb-dummy_hcd.4-1, Davicom DM96xx USB 10/100 Ethernet
[  126.109788][ T6771] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[  126.331518][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  126.331607][   T30] audit: type=1400 audit(1743887530.159:456): avc:  denied  { read write } for  pid=6782 comm="syz.2.240" name="uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  126.472510][   T30] audit: type=1400 audit(1743887530.159:457): avc:  denied  { open } for  pid=6782 comm="syz.2.240" path="/dev/uinput" dev="devtmpfs" ino=920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  126.528103][ T6784] input: syz0 as /devices/virtual/input/input7
[  126.640541][   T30] audit: type=1400 audit(1743887530.349:458): avc:  denied  { create } for  pid=6782 comm="syz.2.240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  126.660649][   T30] audit: type=1400 audit(1743887530.349:459): avc:  denied  { bind } for  pid=6782 comm="syz.2.240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  126.683464][   T30] audit: type=1400 audit(1743887530.349:460): avc:  denied  { connect } for  pid=6782 comm="syz.2.240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  126.703955][   T30] audit: type=1400 audit(1743887530.349:461): avc:  denied  { ioctl } for  pid=6782 comm="syz.2.240" path="/dev/uinput" dev="devtmpfs" ino=920 ioctlcmd=0x5564 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  126.728803][    C0] vkms_vblank_simulate: vblank timer overrun
[  127.087689][   T30] audit: type=1400 audit(1743887530.899:462): avc:  denied  { search } for  pid=6787 comm="dhcpcd-run-hook" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  127.109670][    C0] vkms_vblank_simulate: vblank timer overrun
[  127.269853][   T30] audit: type=1400 audit(1743887531.089:463): avc:  denied  { read } for  pid=6794 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1708 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  127.292791][    C0] vkms_vblank_simulate: vblank timer overrun
[  127.346518][   T30] audit: type=1400 audit(1743887531.089:464): avc:  denied  { open } for  pid=6794 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1708 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  127.447500][   T30] audit: type=1400 audit(1743887531.149:465): avc:  denied  { getattr } for  pid=6794 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1708 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  127.472749][    C0] vkms_vblank_simulate: vblank timer overrun
[  127.940422][ T6790] netlink: 'syz.0.232': attribute type 12 has an invalid length.
[  127.974953][ T6698] syz.0.215 (6698) used greatest stack depth: 20936 bytes left
[  128.285146][ T6809] netlink: 88 bytes leftover after parsing attributes in process `syz.3.244'.
[  128.620279][ T6816] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.705403][ T6816] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.811911][ T6816] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  129.099213][ T5835] Bluetooth: hci0: command 0x0c1a tx timeout
[  129.106015][ T4616] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  129.122376][ T6816] could not allocate digest TFM handle sm3-ce
[  129.174373][ T4616] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  129.493849][ T6834] 9pnet_virtio: no channels available for device syz
[  129.742036][ T6838] kvm: user requested TSC rate below hardware speed
[  130.769837][ T6843] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[  131.209131][   T92] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  131.249999][ T5835] Bluetooth: hci1: command 0x0406 tx timeout
[  131.253367][ T4616] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  131.426141][ T4616] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  131.437309][   T92] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  131.459305][   T92] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  131.802552][   T92] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  131.829124][   T92] usb 4-1: config 1 has no interface number 1
[  131.857005][   T92] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  131.899130][   T92] usb 4-1: too many endpoints for config 1 interface 2 altsetting 0: 255, using maximum allowed: 30
[  131.977186][   T92] usb 4-1: config 1 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  132.059269][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  132.059286][   T30] audit: type=1400 audit(1743887535.829:479): avc:  denied  { mount } for  pid=6880 comm="syz.2.257" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  132.429847][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  132.436280][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  132.461958][   T92] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  132.471119][   T92] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.483225][   T92] usb 4-1: Product: syz
[  132.489785][   T92] usb 4-1: Manufacturer: syz
[  132.496529][   T92] usb 4-1: SerialNumber: syz
[  132.886409][   T92] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  132.916099][   T92] usb 4-1: MIDIStreaming interface descriptor not found
[  133.020886][   T92] usb 4-1: USB disconnect, device number 5
[  133.501970][ T6896] netlink: 32 bytes leftover after parsing attributes in process `syz.2.258'.
[  133.934496][ T5824] cgroup: fork rejected by pids controller in /syz2
[  133.993518][ T5944] udevd[5944]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  134.619135][ T4616] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  134.659370][ T5835] Bluetooth: hci2: command 0x0406 tx timeout
[  134.774619][ T4616] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  134.932044][ T6902] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[  136.994650][   T30] audit: type=1401 audit(1743887540.819:480): op=setxattr invalid_context=""
[  137.232435][ T5835] Bluetooth: hci3: command 0x0406 tx timeout
[  137.238550][ T4616] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  137.249158][ T4616] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  137.738705][ T4616] wlan1: deauthenticating from 08:02:11:00:00:00 by local choice (Reason: 3=DEAUTH_LEAVING)
[  138.605721][ T6983] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  138.618106][ T6983] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  138.829177][   T92] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  139.379191][   T92] usb 4-1: Using ep0 maxpacket: 32
[  139.385592][   T92] usb 4-1: config 8 has an invalid interface number: 203 but max is 0
[  139.393821][   T92] usb 4-1: config 8 has no interface number 0
[  139.399937][   T92] usb 4-1: config 8 interface 203 altsetting 1 has an endpoint descriptor with address 0x93, changing to 0x83
[  139.412304][   T92] usb 4-1: config 8 interface 203 altsetting 1 bulk endpoint 0x83 has invalid maxpacket 1024
[  139.422513][   T92] usb 4-1: config 8 interface 203 has no altsetting 0
[  139.431073][   T92] usb 4-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a
[  139.440175][   T92] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.448146][   T92] usb 4-1: Product: syz
[  139.452343][   T92] usb 4-1: Manufacturer: syz
[  139.456932][   T92] usb 4-1: SerialNumber: syz
[  139.464836][ T6984] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  139.616023][ T6988] ALSA: mixer_oss: invalid OSS volume 'SPEA'
[  139.738796][   T30] audit: type=1400 audit(1743887543.559:481): avc:  denied  { setopt } for  pid=6992 comm="syz.0.273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  139.762910][   T30] audit: type=1400 audit(1743887543.559:482): avc:  denied  { ioctl } for  pid=6992 comm="syz.0.273" path="socket:[12413]" dev="sockfs" ino=12413 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  139.787304][    C0] vkms_vblank_simulate: vblank timer overrun
[  139.870767][   T92] port100 4-1:8.203: NFC: Could not find bulk-in or bulk-out endpoint
[  139.902987][   T92] usb 4-1: USB disconnect, device number 6
[  139.976865][ T6998] =======================================================
[  139.976865][ T6998] WARNING: The mand mount option has been deprecated and
[  139.976865][ T6998]          and is ignored by this kernel. Remove the mand
[  139.976865][ T6998]          option from the mount to silence this warning.
[  139.976865][ T6998] =======================================================
[  140.240818][   T30] audit: type=1400 audit(1743887544.039:483): avc:  denied  { remount } for  pid=6997 comm="syz.3.275" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  140.394063][   T30] audit: type=1400 audit(1743887544.219:484): avc:  denied  { setopt } for  pid=7004 comm="syz.3.277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  140.569942][ T7007] MPI: mpi too large (16392 bits)
[  140.619511][   T92] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  140.789307][   T92] usb 1-1: Using ep0 maxpacket: 32
[  140.805628][   T92] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  140.831874][   T92] usb 1-1: config 0 has no interface number 0
[  140.838051][   T92] usb 1-1: config 0 interface 1 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[  140.861398][   T92] usb 1-1: config 0 interface 1 has no altsetting 0
[  140.873450][   T92] usb 1-1: New USB device found, idVendor=0572, idProduct=58a5, bcdDevice=27.0a
[  140.882701][   T92] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.894416][   T92] usb 1-1: Product: syz
[  140.898597][   T92] usb 1-1: Manufacturer: syz
[  140.905981][   T92] usb 1-1: SerialNumber: syz
[  140.960389][   T92] usb 1-1: config 0 descriptor??
[  140.968091][ T7020] netlink: 4 bytes leftover after parsing attributes in process `syz.4.283'.
[  141.192156][   T92] cx231xx 1-1:0.1: New device syz syz @ 480 Mbps (0572:58a5) with 1 interfaces
[  141.205018][   T92] cx231xx 1-1:0.1: Failed to read PCB config
[  141.212305][   T92] cx231xx 1-1:0.1: probe with driver cx231xx failed with error -71
[  141.233162][   T92] usb 1-1: USB disconnect, device number 8
[  141.925704][   T92] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  142.129223][   T92] usb 1-1: Using ep0 maxpacket: 32
[  142.143289][   T92] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  142.151444][   T92] usb 1-1: config 0 has no interface number 0
[  142.165189][   T92] usb 1-1: config 0 interface 1 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[  142.204203][   T92] usb 1-1: config 0 interface 1 has no altsetting 0
[  142.237086][   T92] usb 1-1: New USB device found, idVendor=0572, idProduct=58a5, bcdDevice=27.0a
[  142.246229][   T92] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.254691][   T92] usb 1-1: Product: syz
[  142.258865][   T92] usb 1-1: Manufacturer: syz
[  142.263780][   T92] usb 1-1: SerialNumber: syz
[  142.270889][   T92] usb 1-1: config 0 descriptor??
[  142.445930][   T30] audit: type=1400 audit(1743887546.269:485): avc:  denied  { map } for  pid=7032 comm="syz.3.286" path="socket:[11920]" dev="sockfs" ino=11920 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  142.538389][   T92] cx231xx 1-1:0.1: New device syz syz @ 480 Mbps (0572:58a5) with 1 interfaces
[  142.548579][   T92] cx231xx 1-1:0.1: bad config in buspower!!!!
[  142.548579][   T92] config_info=40
[  142.585209][   T92] cx231xx 1-1:0.1: Identified as Conexant Hybrid TV - RDU253S (card=4)
[  142.593729][   T30] audit: type=1400 audit(1743887546.269:486): avc:  denied  { read } for  pid=7032 comm="syz.3.286" path="socket:[11920]" dev="sockfs" ino=11920 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  142.699692][   T92] cx231xx 1-1:0.1: cx231xx_send_gpio_cmd: failed with status --110
[  142.715947][   T92] cx231xx 1-1:0.1: cx231xx_send_gpio_cmd: failed with status --32
[  142.822458][   T92] cx231xx 1-1:0.1: cx231xx_send_gpio_cmd: failed with status --32
[  142.854916][   T30] audit: type=1400 audit(1743887546.309:487): avc:  denied  { read } for  pid=7002 comm="syz.0.276" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  142.863130][   T92] cx231xx 1-1:0.1: cx231xx_send_gpio_cmd: failed with status --32
[  142.927884][   T30] audit: type=1400 audit(1743887546.459:488): avc:  denied  { create } for  pid=7032 comm="syz.3.286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  142.950481][   T30] audit: type=1400 audit(1743887546.459:489): avc:  denied  { execute } for  pid=7032 comm="syz.3.286" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=11930 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  142.951372][   T92] cx231xx 1-1:0.1: cx231xx_send_gpio_cmd: failed with status --32
[  142.999319][   T92] cx231xx 1-1:0.1: Failed to set devmode to analog: error: -32
[  143.025874][   T92] i2c i2c-2: Added multiplexed i2c bus 4
[  143.067657][   T92] i2c i2c-2: Added multiplexed i2c bus 5
[  143.089230][   T92] cx231xx 1-1:0.1: cx231xx_dev_init: Failed to set Power - errCode [-32]!
[  143.097751][   T92] cx231xx 1-1:0.1: cx231xx_init_dev: cx231xx_i2c_register - errCode [-32]!
[  143.136112][   T92] cx231xx 1-1:0.1: probe with driver cx231xx failed with error -32
[  143.143884][   T30] audit: type=1400 audit(1743887546.959:490): avc:  denied  { checkpoint_restore } for  pid=7037 comm="syz.4.287" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  143.870048][    T9] usb 1-1: USB disconnect, device number 9
[  144.137907][ T7054] macsec1: entered promiscuous mode
[  144.143497][ T7054] mac80211_hwsim hwsim10 wlan1: entered promiscuous mode
[  144.366111][ T7062] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  145.417524][ T7062] syz.0.295 (7062): drop_caches: 3
[  146.265896][ T7090] bridge0: port 4(syz_tun) entered blocking state
[  146.303282][ T7090] bridge0: port 4(syz_tun) entered disabled state
[  146.318966][ T7090] syz_tun: entered allmulticast mode
[  146.325687][ T7091] netlink: 8 bytes leftover after parsing attributes in process `syz.0.305'.
[  146.326181][ T7090] syz_tun: entered promiscuous mode
[  146.340006][ T7090] bridge0: port 4(syz_tun) entered blocking state
[  146.347088][ T7090] bridge0: port 4(syz_tun) entered forwarding state
[  146.724385][ T7100] netlink: 'syz.4.308': attribute type 4 has an invalid length.
[  146.733049][ T7100] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.308'.
[  147.620654][ T7109] overlayfs: missing 'workdir'
[  147.985802][ T7124] netlink: 'syz.4.320': attribute type 4 has an invalid length.
[  147.994058][ T7124] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.320'.
[  148.420195][ T7129] netlink: 'syz.3.319': attribute type 6 has an invalid length.
[  149.610778][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  149.610795][   T30] audit: type=1326 audit(1743887553.439:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7132 comm="syz.0.322" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f98f358d169 code=0x0
[  150.194633][ T7143] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  150.205976][ T7143] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  150.439178][   T30] audit: type=1400 audit(1743887553.999:494): avc:  denied  { mount } for  pid=7137 comm="syz.4.325" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  150.800785][   T30] audit: type=1400 audit(1743887554.629:495): avc:  denied  { unmount } for  pid=5820 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  152.157398][   T30] audit: type=1400 audit(1743887555.969:496): avc:  denied  { append } for  pid=7167 comm="syz.4.335" name="001" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  193.811044][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  193.817350][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  255.250887][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  255.257161][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  281.489156][   T31] INFO: task kworker/1:2:4616 blocked for more than 143 seconds.
[  281.496909][   T31]       Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0
[  281.504255][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  281.512975][   T31] task:kworker/1:2     state:D stack:24120 pid:4616  tgid:4616  ppid:2      task_flags:0x4208060 flags:0x00004000
[  281.525026][   T31] Workqueue: events rfkill_op_handler
[  281.530419][   T31] Call Trace:
[  281.533684][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  281.536594][   T31]  __schedule+0x116f/0x5de0
[  281.541268][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  281.546218][   T31]  ? __pfx___schedule+0x10/0x10
[  281.551438][   T31]  ? find_held_lock+0x2b/0x80
[  281.556339][   T31]  ? schedule+0x2d7/0x3a0
[  281.592219][   T31]  schedule+0xe7/0x3a0
[  281.596327][   T31]  schedule_preempt_disabled+0x13/0x30
[  281.605212][   T31]  __mutex_lock+0x6c7/0xb90
[  281.610636][   T31]  ? nfc_dev_down+0x2d/0x2e0
[  281.615245][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  281.620611][   T31]  ? kfree+0x2b6/0x4d0
[  281.624704][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  281.629939][   T31]  ? nfc_dev_down+0x2d/0x2e0
[  281.634536][   T31]  ? mark_held_locks+0x49/0x80
[  281.639369][   T31]  nfc_dev_down+0x2d/0x2e0
[  281.643783][   T31]  nfc_rfkill_set_block+0x39/0xe0
[  281.648786][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  281.654671][   T31]  rfkill_set_block+0x1fb/0x550
[  281.659564][   T31]  rfkill_epo+0x8e/0x1d0
[  281.664242][   T31]  rfkill_op_handler+0x262/0x280
[  281.669196][   T31]  process_one_work+0x9cc/0x1b70
[  281.674132][   T31]  ? __pfx_process_one_work+0x10/0x10
[  281.679536][   T31]  ? assign_work+0x1a0/0x250
[  281.684120][   T31]  worker_thread+0x6c8/0xf10
[  281.688703][   T31]  ? __kthread_parkme+0x19e/0x250
[  281.693737][   T31]  ? __pfx_worker_thread+0x10/0x10
[  281.698840][   T31]  kthread+0x3c2/0x780
[  281.702943][   T31]  ? __pfx_kthread+0x10/0x10
[  281.707520][   T31]  ? __pfx_kthread+0x10/0x10
[  281.712142][   T31]  ? __pfx_kthread+0x10/0x10
[  281.716730][   T31]  ? __pfx_kthread+0x10/0x10
[  281.721334][   T31]  ? rcu_is_watching+0x12/0xc0
[  281.726092][   T31]  ? __pfx_kthread+0x10/0x10
[  281.730759][   T31]  ret_from_fork+0x45/0x80
[  281.735168][   T31]  ? __pfx_kthread+0x10/0x10
[  281.739790][   T31]  ret_from_fork_asm+0x1a/0x30
[  281.744576][   T31]  </TASK>
[  281.747595][   T31] INFO: task syz-executor:5824 blocked for more than 143 seconds.
[  281.755424][   T31]       Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0
[  281.762849][   T31]       Blocked by coredump.
[  281.767427][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  281.776129][   T31] task:syz-executor    state:D stack:23560 pid:5824  tgid:5824  ppid:1      task_flags:0x40014c flags:0x00004002
[  281.788085][   T31] Call Trace:
[  281.791372][   T31]  <TASK>
[  281.794297][   T31]  __schedule+0x116f/0x5de0
[  281.798816][   T31]  ? __lock_acquire+0x5ca/0x1ba0
[  281.803774][   T31]  ? __pfx___schedule+0x10/0x10
[  281.808621][   T31]  ? find_held_lock+0x2b/0x80
[  281.813431][   T31]  ? schedule+0x2d7/0x3a0
[  281.817755][   T31]  schedule+0xe7/0x3a0
[  281.821863][   T31]  schedule_preempt_disabled+0x13/0x30
[  281.827317][   T31]  __mutex_lock+0x6c7/0xb90
[  281.831927][   T31]  ? rfkill_unregister+0xec/0x2c0
[  281.836943][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  281.842033][   T31]  ? device_del+0x6b6/0x9f0
[  281.846539][   T31]  ? __pfx_device_del+0x10/0x10
[  281.851410][   T31]  ? _raw_read_unlock+0x28/0x50
[  281.856256][   T31]  ? rfkill_unregister+0xec/0x2c0
[  281.861304][   T31]  rfkill_unregister+0xec/0x2c0
[  281.866147][   T31]  hci_unregister_dev+0x323/0x620
[  281.871319][   T31]  ? __pfx_vhci_release+0x10/0x10
[  281.876340][   T31]  vhci_release+0x79/0xf0
[  281.880713][   T31]  __fput+0x3ff/0xb70
[  281.884691][   T31]  task_work_run+0x14d/0x240
[  281.889335][   T31]  ? __pfx_task_work_run+0x10/0x10
[  281.894449][   T31]  ? switch_task_namespaces+0xeb/0x100
[  281.899961][   T31]  do_exit+0xafb/0x2c30
[  281.904111][   T31]  ? do_raw_spin_lock+0x12c/0x2b0
[  281.909146][   T31]  ? __pfx_do_exit+0x10/0x10
[  281.913733][   T31]  ? rcu_is_watching+0x12/0xc0
[  281.918498][   T31]  do_group_exit+0xd3/0x2a0
[  281.923045][   T31]  __x64_sys_exit_group+0x3e/0x50
[  281.928053][   T31]  x64_sys_call+0x1530/0x1730
[  281.932741][   T31]  do_syscall_64+0xcd/0x260
[  281.937242][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  281.943157][   T31] RIP: 0033:0x7f74cab8d169
[  281.947559][   T31] RSP: 002b:00007ffd739e7aa8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  281.956000][   T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f74cab8d169
[  281.963996][   T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[  281.974286][   T31] RBP: 00007f74cac0faba R08: 00007ffd739e5846 R09: 00000000000927c0
[  281.982425][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000b
[  281.990419][   T31] R13: 00000000000927c0 R14: 0000000000020a52 R15: 00007ffd739e7c60
[  281.998470][   T31]  </TASK>
[  282.001542][   T31] INFO: task kworker/1:5:5871 blocked for more than 143 seconds.
[  282.009305][   T31]       Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0
[  282.016593][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  282.025308][   T31] task:kworker/1:5     state:D stack:23528 pid:5871  tgid:5871  ppid:2      task_flags:0x4208060 flags:0x00004000
[  282.037357][   T31] Workqueue: events rfkill_global_led_trigger_worker
[  282.044103][   T31] Call Trace:
[  282.047381][   T31]  <TASK>
[  282.050463][   T31]  __schedule+0x116f/0x5de0
[  282.054994][   T31]  ? __pfx___schedule+0x10/0x10
[  282.059898][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  282.065279][   T31]  ? find_held_lock+0x2b/0x80
[  282.069997][   T31]  ? schedule+0x2d7/0x3a0
[  282.074328][   T31]  schedule+0xe7/0x3a0
[  282.078393][   T31]  schedule_preempt_disabled+0x13/0x30
[  282.083895][   T31]  __mutex_lock+0x6c7/0xb90
[  282.088411][   T31]  ? __lock_acquire+0xaa4/0x1ba0
[  282.093495][   T31]  ? rfkill_global_led_trigger_worker+0x1b/0x160
[  282.099874][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  282.104899][   T31]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  282.110755][   T31]  ? rfkill_global_led_trigger_worker+0x1b/0x160
[  282.117095][   T31]  rfkill_global_led_trigger_worker+0x1b/0x160
[  282.123284][   T31]  process_one_work+0x9cc/0x1b70
[  282.128223][   T31]  ? __pfx_process_one_work+0x10/0x10
[  282.133662][   T31]  ? assign_work+0x1a0/0x250
[  282.138250][   T31]  worker_thread+0x6c8/0xf10
[  282.142875][   T31]  ? __kthread_parkme+0x19e/0x250
[  282.147899][   T31]  ? __pfx_worker_thread+0x10/0x10
[  282.153069][   T31]  kthread+0x3c2/0x780
[  282.157144][   T31]  ? __pfx_kthread+0x10/0x10
[  282.161764][   T31]  ? __pfx_kthread+0x10/0x10
[  282.166343][   T31]  ? __pfx_kthread+0x10/0x10
[  282.170949][   T31]  ? __pfx_kthread+0x10/0x10
[  282.175528][   T31]  ? rcu_is_watching+0x12/0xc0
[  282.180337][   T31]  ? __pfx_kthread+0x10/0x10
[  282.184929][   T31]  ret_from_fork+0x45/0x80
[  282.189380][   T31]  ? __pfx_kthread+0x10/0x10
[  282.193961][   T31]  ret_from_fork_asm+0x1a/0x30
[  282.198713][   T31]  </TASK>
[  282.201901][   T31] INFO: task syz.1.234:6756 blocked for more than 143 seconds.
[  282.212083][   T31]       Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0
[  282.219407][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  282.228062][   T31] task:syz.1.234       state:D stack:26488 pid:6756  tgid:6756  ppid:5816   task_flags:0x400040 flags:0x00004004
[  282.239997][   T31] Call Trace:
[  282.243261][   T31]  <TASK>
[  282.246169][   T31]  __schedule+0x116f/0x5de0
[  282.250736][   T31]  ? __pfx___schedule+0x10/0x10
[  282.255595][   T31]  ? find_held_lock+0x2b/0x80
[  282.260303][   T31]  ? schedule+0x2d7/0x3a0
[  282.264625][   T31]  schedule+0xe7/0x3a0
[  282.268671][   T31]  schedule_preempt_disabled+0x13/0x30
[  282.274160][   T31]  __mutex_lock+0x6c7/0xb90
[  282.278662][   T31]  ? rfkill_unregister+0xec/0x2c0
[  282.283719][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  282.288741][   T31]  ? device_del+0x6b6/0x9f0
[  282.293262][   T31]  ? __pfx_device_del+0x10/0x10
[  282.298112][   T31]  ? rfkill_unregister+0xec/0x2c0
[  282.303168][   T31]  rfkill_unregister+0xec/0x2c0
[  282.308010][   T31]  nfc_unregister_device+0x94/0x330
[  282.313361][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  282.319112][   T31]  virtual_ncidev_close+0x4b/0xa0
[  282.324150][   T31]  __fput+0x3ff/0xb70
[  282.328140][   T31]  task_work_run+0x14d/0x240
[  282.332773][   T31]  ? __pfx_task_work_run+0x10/0x10
[  282.337875][   T31]  ? __pfx___do_sys_close_range+0x10/0x10
[  282.343624][   T31]  syscall_exit_to_user_mode+0x27b/0x2a0
[  282.349297][   T31]  do_syscall_64+0xda/0x260
[  282.353799][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.359728][   T31] RIP: 0033:0x7fc4e5d8d169
[  282.364139][   T31] RSP: 002b:00007ffc0793fc08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  282.372635][   T31] RAX: 0000000000000000 RBX: 00007fc4e5fa7ba0 RCX: 00007fc4e5d8d169
[  282.380640][   T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  282.388611][   T31] RBP: 00007fc4e5fa7ba0 R08: 0000000000020d60 R09: 0000001b0793feff
[  282.396590][   T31] R10: 00007fc4e5fa7ac0 R11: 0000000000000246 R12: 000000000001f2fb
[  282.404582][   T31] R13: 00007ffc0793fd00 R14: ffffffffffffffff R15: 00007ffc0793fd20
[  282.412569][   T31]  </TASK>
[  282.415610][   T31] 
[  282.415610][   T31] Showing all locks held in the system:
[  282.423476][   T31] 1 lock held by khungtaskd/31:
[  282.428310][   T31]  #0: ffffffff8e3c1580 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0
[  282.438197][   T31] 4 locks held by kworker/1:2/4616:
[  282.443422][   T31]  #0: ffff88801b478d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  282.453918][   T31]  #1: ffffc9000f52fd18 ((rfkill_op_work).work){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  282.464319][   T31]  #2: ffffffff905d3328 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_epo+0x55/0x1d0
[  282.473838][   T31]  #3: ffff88805bbbb100 (&dev->mutex){....}-{4:4}, at: nfc_dev_down+0x2d/0x2e0
[  282.482862][   T31] 2 locks held by getty/5578:
[  282.487525][   T31]  #0: ffff88814cb840a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  282.497298][   T31]  #1: ffffc900033132f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x14f0
[  282.507439][   T31] 1 lock held by syz-executor/5824:
[  282.512634][   T31]  #0: ffffffff905d3328 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xec/0x2c0
[  282.522764][   T31] 3 locks held by kworker/1:5/5871:
[  282.527940][   T31]  #0: ffff88801b478d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70
[  282.538522][   T31]  #1: ffffc90003a9fd18 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70
[  282.551434][   T31]  #2: ffffffff905d3328 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x1b/0x160
[  282.562868][   T31] 2 locks held by syz.1.234/6756:
[  282.567886][   T31]  #0: ffff88805bbbb100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x60/0x330
[  282.577652][   T31]  #1: ffffffff905d3328 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xec/0x2c0
[  282.587765][   T31] 2 locks held by syz-executor/7001:
[  282.593074][   T31]  #0: ffff888059f72118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b4/0x480
[  282.602513][   T31]  #1: ffffffff905d3328 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40
[  282.612559][   T31] 2 locks held by syz.0.327/7147:
[  282.617566][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.626019][   T31]  #1: ffffffff905d3328 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_open+0x136/0x750
[  282.636058][   T31] 1 lock held by syz-executor/7149:
[  282.641389][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.649871][   T31] 1 lock held by syz.3.332/7159:
[  282.654803][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.663289][   T31] 1 lock held by syz.4.340/7183:
[  282.668210][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.676694][   T31] 1 lock held by syz-executor/7186:
[  282.681902][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.690359][   T31] 1 lock held by syz-executor/7188:
[  282.695550][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.703994][   T31] 1 lock held by syz-executor/7190:
[  282.709209][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.717652][   T31] 1 lock held by syz-executor/7192:
[  282.722867][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.731395][   T31] 1 lock held by syz-executor/7194:
[  282.736581][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.745067][   T31] 1 lock held by syz-executor/7200:
[  282.750427][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.758889][   T31] 1 lock held by syz-executor/7202:
[  282.764115][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.772612][   T31] 1 lock held by syz-executor/7204:
[  282.777791][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.786242][   T31] 1 lock held by syz-executor/7206:
[  282.791452][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.799927][   T31] 1 lock held by syz-executor/7208:
[  282.805108][   T31]  #0: ffffffff8f0e0328 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x63/0x420
[  282.813597][   T31] 
[  282.815921][   T31] =============================================
[  282.815921][   T31] 
[  282.824368][   T31] NMI backtrace for cpu 1
[  282.824379][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  282.824398][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  282.824406][   T31] Call Trace:
[  282.824411][   T31]  <TASK>
[  282.824416][   T31]  dump_stack_lvl+0x116/0x1f0
[  282.824447][   T31]  nmi_cpu_backtrace+0x27b/0x390
[  282.824466][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  282.824486][   T31]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  282.824505][   T31]  watchdog+0xf70/0x12c0
[  282.824527][   T31]  ? __pfx_watchdog+0x10/0x10
[  282.824542][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  282.824565][   T31]  ? __kthread_parkme+0x19e/0x250
[  282.824591][   T31]  ? __pfx_watchdog+0x10/0x10
[  282.824609][   T31]  kthread+0x3c2/0x780
[  282.824626][   T31]  ? __pfx_kthread+0x10/0x10
[  282.824642][   T31]  ? __pfx_kthread+0x10/0x10
[  282.824658][   T31]  ? __pfx_kthread+0x10/0x10
[  282.824675][   T31]  ? __pfx_kthread+0x10/0x10
[  282.824690][   T31]  ? rcu_is_watching+0x12/0xc0
[  282.824713][   T31]  ? __pfx_kthread+0x10/0x10
[  282.824731][   T31]  ret_from_fork+0x45/0x80
[  282.824749][   T31]  ? __pfx_kthread+0x10/0x10
[  282.824766][   T31]  ret_from_fork_asm+0x1a/0x30
[  282.824802][   T31]  </TASK>
[  282.824808][   T31] Sending NMI from CPU 1 to CPUs 0:
[  282.955731][    C0] NMI backtrace for cpu 0
[  282.955745][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  282.955761][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  282.955768][    C0] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  282.955788][    C0] Code: 95 5d 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d d3 bc 17 00 fb f4 <c3> cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  282.955800][    C0] RSP: 0018:ffffffff8e007e10 EFLAGS: 000002c6
[  282.955811][    C0] RAX: 0000000000350f85 RBX: 0000000000000000 RCX: ffffffff8b723439
[  282.955819][    C0] RDX: 0000000000000000 RSI: ffffffff8dbeeb53 RDI: ffffffff8bf46580
[  282.955827][    C0] RBP: fffffbfff1c12ee8 R08: 0000000000000001 R09: ffffed10170865bd
[  282.955835][    C0] R10: ffff8880b8432deb R11: 0000000000000000 R12: 0000000000000000
[  282.955843][    C0] R13: ffffffff8e097740 R14: ffffffff90865310 R15: 0000000000000000
[  282.955851][    C0] FS:  0000000000000000(0000) GS:ffff8881249b3000(0000) knlGS:0000000000000000
[  282.955863][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  282.955871][    C0] CR2: 0000562f0fdc5038 CR3: 000000000e182000 CR4: 00000000003526f0
[  282.955880][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  282.955887][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  282.955894][    C0] Call Trace:
[  282.955898][    C0]  <TASK>
[  282.955903][    C0]  default_idle+0x13/0x20
[  282.955921][    C0]  default_idle_call+0x6d/0xb0
[  282.955937][    C0]  do_idle+0x391/0x510
[  282.955954][    C0]  ? __pfx_do_idle+0x10/0x10
[  282.955969][    C0]  ? trace_sched_exit_tp+0x31/0x130
[  282.955989][    C0]  cpu_startup_entry+0x4f/0x60
[  282.956004][    C0]  rest_init+0x16b/0x2b0
[  282.956014][    C0]  ? acpi_subsystem_init+0x133/0x180
[  282.956029][    C0]  ? __pfx_x86_late_time_init+0x10/0x10
[  282.956047][    C0]  start_kernel+0x3e9/0x4d0
[  282.956063][    C0]  x86_64_start_reservations+0x18/0x30
[  282.956079][    C0]  x86_64_start_kernel+0xb0/0xc0
[  282.956095][    C0]  common_startup_64+0x13e/0x148
[  282.956116][    C0]  </TASK>
[  282.956749][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  283.170694][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) 
[  283.182143][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  283.192179][   T31] Call Trace:
[  283.195441][   T31]  <TASK>
[  283.198355][   T31]  dump_stack_lvl+0x3d/0x1f0
[  283.202937][   T31]  panic+0x71c/0x800
[  283.206812][   T31]  ? __pfx_panic+0x10/0x10
[  283.211209][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  283.216564][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  283.222523][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  283.227877][   T31]  ? watchdog+0xdda/0x12c0
[  283.232276][   T31]  ? watchdog+0xdcd/0x12c0
[  283.236688][   T31]  watchdog+0xdeb/0x12c0
[  283.240918][   T31]  ? __pfx_watchdog+0x10/0x10
[  283.245574][   T31]  ? lockdep_hardirqs_on+0x7c/0x110
[  283.250758][   T31]  ? __kthread_parkme+0x19e/0x250
[  283.255770][   T31]  ? __pfx_watchdog+0x10/0x10
[  283.260443][   T31]  kthread+0x3c2/0x780
[  283.264497][   T31]  ? __pfx_kthread+0x10/0x10
[  283.269066][   T31]  ? __pfx_kthread+0x10/0x10
[  283.273634][   T31]  ? __pfx_kthread+0x10/0x10
[  283.278202][   T31]  ? __pfx_kthread+0x10/0x10
[  283.282771][   T31]  ? rcu_is_watching+0x12/0xc0
[  283.287520][   T31]  ? __pfx_kthread+0x10/0x10
[  283.292093][   T31]  ret_from_fork+0x45/0x80
[  283.296492][   T31]  ? __pfx_kthread+0x10/0x10
[  283.301076][   T31]  ret_from_fork_asm+0x1a/0x30
[  283.305841][   T31]  </TASK>
[  283.309032][   T31] Kernel Offset: disabled
[  283.313344][   T31] Rebooting in 86400 seconds..