last executing test programs:

53.517668524s ago: executing program 0 (id=1293):
mkdir(0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8002, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x2f, 0x2, 0x0, "d569e8e1dd2f1ae97ee8589301f453a0c04b1410b2eafa4496ba216b1e8ac11e"})
read$msr(r0, &(0x7f0000019540)=""/102400, 0x19000)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f00000005c0)={0x1, @pix_mp={0x3ff, 0x300, 0x20363159, 0x3, 0x0, [{0x8, 0xf}, {0x8, 0x7fffffff}, {0xd, 0x8}, {0x5, 0x2000008}, {0x2, 0x3}, {0x5, 0x3}, {0x6, 0x409}, {0x10001, 0x1800000}], 0x0, 0xd, 0x2, 0x3078182a3427730f, 0x1}})

52.897035355s ago: executing program 3 (id=1296):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r1 = dup(r0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x80001, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000440)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, @ib={0x1b, 0x6, 0x6, {"c2084b5d8fa37027f2e2cadd63fe3a91"}, 0xffffffffffffb4be, 0x7fffffff, 0x1}, @in={0x2, 0x4e24, @multicast2}}}, 0x118)
ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000240)={0x600, 0x1000000})
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x39, 0xffffffff})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r3, 0x5609, 0x0)

52.645480772s ago: executing program 0 (id=1297):
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x4, 0x0)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000040)={0x7}, 0x4)
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/vmcoreinfo', 0x280, 0x10)
write$P9_RREMOVE(r1, &(0x7f0000000140)={0x7, 0x7b, 0x9}, 0x7)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'})
sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={&(0x7f00000001c0), 0xc, &(0x7f0000000380)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_DELRULE={0x50, 0x8, 0xa, 0x0, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_COMPAT={0xc, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x84}]}]}, @NFT_MSG_NEWCHAIN={0x70, 0x3, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_POLICY={0x8}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}, @NFTA_CHAIN_COUNTERS={0x1c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x100000000}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xc63}]}]}, @NFT_MSG_NEWOBJ={0x28, 0x12, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x1}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_DATA={0x14, 0x4, 0x0, 0x1, [@NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x7}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x1}]}}, @NFT_MSG_NEWCHAIN={0x64, 0x3, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x2}, @NFTA_CHAIN_HOOK={0x2c, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'tunl0\x00'}, @NFTA_HOOK_DEV={0x14}]}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x174}, 0x1, 0x0, 0x0, 0x20}, 0x20000800)
sendmsg$NFT_BATCH(r0, &(0x7f0000000740)={&(0x7f0000000400), 0xc, &(0x7f0000000700)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELOBJ={0x2c, 0x14, 0xa, 0x0, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x10c, 0x14, 0xa, 0x201, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFTA_OBJ_USERDATA={0xdf, 0x8, "0a249af8868937f035b2f9b10f655809976d5fcdd4cf3f064520ce84d3ff6dcb6a38ee92c69942b52438b26fbb9344010728bd19af415adb9b57d740762463aeceab5de04a0f2c20f04901ce9d109695f05d993663960c8f0e501c47b29ed079dc7e8754d9cc67501119502362fcf715fbd9fa9b0b30513e8c9c5b85d5fa612e7eb248d8df9a753c0a3c7b62558b57bbba1bcb43a480cb422b210bb17ca073790f013b7a4482378c9352e5213a4b6a51ef02c605522caf73004c60f6248e6b184f36d5bfbcb8adcef8adf563ed61a7f4b36d8ecae0a188e37c0c1c"}, @NFTA_OBJ_USERDATA={0xc, 0x8, "0152380b759f26f6"}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELRULE={0x84, 0x8, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x8}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT={0xc, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x33}]}, @NFTA_RULE_COMPAT={0x1c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x33}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x6c}]}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWCHAIN={0xd4, 0x3, 0xa, 0x0, 0x0, 0x0, {0x7}, [@NFTA_CHAIN_USERDATA={0xbf, 0xc, "d3e0658c5eed00891b280248bd0be2cb873ce83c0ce0f4617ef6daef7f5b2b29bdd068a3743b2881ecc015039392b1fd24ffc075adfbc06f1ee1c7af47eba51db0b377d889707fcd552eee8abd2d5b8f8ade8427fcbde5948834f9a14220ea76cabbb24dc207feaf35b65d66ecb5d07bba384b80772c2c9cb3cb2ce29327cd51279d21269259fffe672c473a7b1d53afc74e2520ccbd8f6359ee013091f3d2fc0556fcefb4435368768807feb8302d40dbd252ab28a57f8c8d799f"}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x2b8}, 0x1, 0x0, 0x0, 0x4000}, 0x8001)
r2 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000800)=@o_path={&(0x7f0000000780)='./file0\x00', r0, 0x4000, r2}, 0x18)
symlink(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)='./file0\x00')
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000b80)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000900)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_DELSET={0x14, 0xb, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x3}}, @NFT_MSG_NEWSET={0x24, 0x9, 0xa, 0x801, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x1000}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x9a}]}, @NFT_MSG_DELRULE={0x2c, 0x8, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x801, 0x0, 0x0, {0x7}, @NFT_OBJECT_CT_HELPER=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x5}}, @NFT_MSG_DELFLOWTABLE={0x164, 0x18, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_FLOWTABLE_HOOK={0x24, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_hsr\x00'}]}]}, @NFTA_FLOWTABLE_HOOK={0x12c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x9}, @NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'team_slave_0\x00'}, {0x14, 0x1, 'xfrm0\x00'}, {0x14, 0x1, 'bridge0\x00'}, {0x14, 0x1, 'nicvf0\x00'}, {0x14, 0x1, 'batadv0\x00'}, {0x14, 0x1, 'lo\x00'}, {0x14, 0x1, 'veth0_to_bridge\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_vlan\x00'}, {0x14, 0x1, 'bridge_slave_1\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x54, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth1_macvtap\x00'}, {0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'sit0\x00'}, {0x14, 0x1, 'hsr0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x210}}, 0x4800)
r4 = creat(&(0x7f0000000bc0)='./file0\x00', 0x81)
ioctl$F2FS_IOC_DEFRAGMENT(r2, 0xc010f508, &(0x7f0000000c00)={0x7, 0x7})
r5 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000c40), 0x1, 0x0)
ioctl$BLKTRACESTART(r5, 0x1274, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
sendmsg$IPSET_CMD_TEST(r4, &(0x7f0000000e80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x15c, 0xb, 0x6, 0x401, 0x0, 0x0, {0x1, 0x0, 0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x38, 0x7, 0x0, 0x1, [@IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x6}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x6}, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast2}}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x4}]}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0xffffffffffffff81}, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x3}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x2}, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_ADT={0x68, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010102}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR={0x5, 0x3, 0x1}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x7}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @local}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x1}}]}, @IPSET_ATTR_DATA={0x38, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x6}, @IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}, @IPSET_ATTR_ETHER={0xa, 0x11, @random="92d78ec24371"}, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private1}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x3}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xee}]}, 0x15c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8002)
preadv(r3, &(0x7f0000001000)=[{&(0x7f0000000ec0)=""/95, 0x5f}, {&(0x7f0000000f40)=""/53, 0x35}, {&(0x7f0000000f80)=""/116, 0x74}], 0x3, 0x173, 0x40c104de)
r6 = syz_open_dev$ndb(&(0x7f0000001040), 0x0, 0x400)
ioctl$BLKTRACETEARDOWN(r6, 0x1276, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r5, 0x800442d2, &(0x7f0000001180)={0x7, &(0x7f0000001080)=[{0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @random}, {}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @broadcast}, {0x0, 0x0, 0x0, @local}, {0x0, 0x0, 0x0, @dev}]})
r7 = syz_genetlink_get_family_id$team(&(0x7f0000001200), 0xffffffffffffffff)
sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001280)={&(0x7f0000001240)={0x14, r7, 0x4, 0x70bd2a, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20000010)
connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000001300)={0x1f, @any, 0x4}, 0xa)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000001340)={{<r8=>0x0, 0x6, 0x8001, 0x2, 0x2c, 0x2, 0x1, 0x5, 0x9, 0x8, 0x8, 0x1f5, 0x1ff, 0x54, 0x3}})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000002340)={0xff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r9=>0x0}], 0x0, "6e795fc11264c6"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000003340)={0x0, ""/256, 0x0, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f000010f840)={0x4, [{r8, r9}, {0x0, r10}], 0x5, "1b9bd56da74104"})

52.461759803s ago: executing program 3 (id=1299):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x3d, &(0x7f0000000000)='cgroup\x00\x8d\f\xf3\xcd\xc6X$\x01n-Hg\x144-.\xe2\x053\xe2\xf4\xbf[\xe9\xdddU\x91\x9d,\t\x8d\xc3@\x86,\x7f\xe2Z\xe8L\x80\xdbe~c\xbc\x9b\xcf\x9b\x1cH\x95\xf3'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="020000"], 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6(0xa, 0x805, 0x0)

51.912383977s ago: executing program 0 (id=1300):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x3d, &(0x7f0000000000)='cgroup\x00\x8d\f\xf3\xcd\xc6X$\x01n-Hg\x144-.\xe2\x053\xe2\xf4\xbf[\xe9\xdddU\x91\x9d,\t\x8d\xc3@\x86,\x7f\xe2Z\xe8L\x80\xdbe~c\xbc\x9b\xcf\x9b\x1cH\x95\xf3'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="020000"], 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6(0xa, 0x805, 0x8400)

51.465841888s ago: executing program 3 (id=1302):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0, 0x1})

51.021876153s ago: executing program 3 (id=1307):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x9}, 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x11, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x75a559963a888ab9}, 0x200040d0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$dri(0x0, 0x1f, 0x0)
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f0000000100)=0x80000)
getsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000000), &(0x7f0000000240)=0x4)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000300)={@local, 0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0)
close(r3)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bic\x00', 0x4)
sendto$inet6(r0, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='westwood\x00', 0x9)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x0, 0x2})
madvise(&(0x7f00001b1000/0x1000)=nil, 0x1000, 0x64)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)

49.540459874s ago: executing program 0 (id=1309):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000500)={0x14, 0x2, 0x6, 0x801}, 0x14}}, 0x0)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x44080}, 0x4000002)

49.401848072s ago: executing program 0 (id=1312):
io_uring_setup(0x6e0f, &(0x7f0000000300)={0x0, 0xec91, 0x80, 0x3, 0x54})
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x1a1002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="100000000400000008000000080000000035f445010d0000003bc8eab276ca49e7b866df00001be97cdefebbe4f1947de0699ef6984994fd", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000034000000bc00000018110000", @ANYRES32=r1, @ANYRES64], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xe, 0x23, &(0x7f0000000280)="432275e2065074ef2415f73227b2", 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
recvmmsg(r4, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x40000100, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0x80000300, 0x0, 0x0)

26.354312442s ago: executing program 3 (id=1307):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x9}, 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x11, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x75a559963a888ab9}, 0x200040d0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$dri(0x0, 0x1f, 0x0)
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f0000000100)=0x80000)
getsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000000), &(0x7f0000000240)=0x4)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000300)={@local, 0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0)
close(r3)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bic\x00', 0x4)
sendto$inet6(r0, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='westwood\x00', 0x9)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x0, 0x2})
madvise(&(0x7f00001b1000/0x1000)=nil, 0x1000, 0x64)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)

22.804279052s ago: executing program 0 (id=1312):
io_uring_setup(0x6e0f, &(0x7f0000000300)={0x0, 0xec91, 0x80, 0x3, 0x54})
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x1a1002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0xffffffb3, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="100000000400000008000000080000000035f445010d0000003bc8eab276ca49e7b866df00001be97cdefebbe4f1947de0699ef6984994fd", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000034000000bc00000018110000", @ANYRES32=r1, @ANYRES64], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xe, 0x23, &(0x7f0000000280)="432275e2065074ef2415f73227b2", 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
recvmmsg(r4, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x40000100, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r5, 0x80000300, 0x0, 0x0)

8.040010319s ago: executing program 4 (id=1402):
prlimit64(0x0, 0x3, &(0x7f0000000140)={0x1ff, 0x8f}, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
shmctl$IPC_RMID(0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x810, &(0x7f0000000100)={[{@xino_auto}]})
chdir(&(0x7f00000000c0)='./bus\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x80, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'wlan1\x00', &(0x7f0000000240)=@ethtool_link_settings={0x4d, 0x3, 0x4, 0x80, 0x9, 0xa, 0x5, 0xc9, 0x6, 0x7, [0x3f, 0x200, 0x8, 0x7, 0x751, 0x10001, 0x400, 0x3], [0x9, 0x5, 0xd, 0x4]}})
r1 = syz_open_dev$sndctrl(&(0x7f0000000600), 0x0, 0x8801)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, 0x0)
io_setup(0x202, 0x0)
io_submit(0x0, 0x0, &(0x7f0000000540))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x13)
sched_setscheduler(0x0, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000040)={0x4003}, 0x10)

7.491573971s ago: executing program 4 (id=1404):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
getpeername(0xffffffffffffffff, 0x0, 0x0)
socket(0x200000000000011, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
tee(r2, r0, 0x6, 0xa)
setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000000080), 0x4)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000180)=@gcm_256={{0x303}, "c4915c7f49541ce8", "9b84f987950ff3df25fa8f46983d34157e047d27ae4a66a6d15608a32cbaa5bc", '\x00', "be0ea450d5a5fd03"}, 0x38)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x24000094)
recvmmsg(r1, &(0x7f00000017c0)=[{{&(0x7f0000000240)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000002a00)=[{&(0x7f0000000580)=""/199, 0xc7}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000680)=""/113, 0x6e}, {&(0x7f00000041c0)=""/4096, 0x1000}, {&(0x7f0000000700)=""/118, 0x76}, {&(0x7f00000028c0)=""/94, 0x5e}, {&(0x7f0000000780)=""/115, 0x73}, {&(0x7f0000002b00)=""/4105, 0x1009}], 0x8, &(0x7f0000002940)=""/172, 0xac}, 0x7}], 0x1, 0x10020, 0x0)

6.715290695s ago: executing program 2 (id=1405):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000600)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELFLOWTABLE={0x2c, 0x18, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0x20, 0x18, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x4}, 0x80) (fail_nth: 3)

6.028689445s ago: executing program 4 (id=1407):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x23, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x5c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timerfd_create(0x0, 0x800)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)

5.98922148s ago: executing program 2 (id=1408):
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$sock_SIOCGIFBR(r2, 0x8940, &(0x7f00000031c0)=@generic={0x1, 0x9, 0x401})
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
bind$inet(0xffffffffffffffff, &(0x7f00000003c0)={0x2, 0x4e9a, @multicast1}, 0x10)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r5=>r4, {0x8}}, './file0\x00'})
write$cgroup_devices(r5, &(0x7f0000000240)={'b', ' *:* ', 'm\x00'}, 0x8)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$SIOCPNENABLEPIPE(0xffffffffffffffff, 0x541b, 0x1000000000000)
chdir(&(0x7f0000000140)='./bus\x00')
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x38, r7, 0x1, 0x0, 0x1, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xfffffffd}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}]}]}, 0x38}}, 0x0)
r8 = open(&(0x7f0000000580)='./bus\x00', 0x84242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r8, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x3, 0x1, {0x400000000001, 0x180, 0x20ff, 0x6, 0x89, 0xd615, 0x9, 0x3, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x5, 0x1}}, {0x0, 0x13}}}, 0xa0)
ioctl$SNDCTL_SEQ_GETINCOUNT(r3, 0x80045105, &(0x7f0000000280))
sendfile(r8, r8, &(0x7f0000000080), 0x7f03)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x6d}, 0x8)

5.985302493s ago: executing program 1 (id=1409):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="1800000024001103000000000000000001"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x24000040)
recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000001540)=[{0x0}], 0x1}, 0xacd2}], 0x1, 0x10000, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x82)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0xa, 0x3, 0x3a)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
r2 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRESOCT], 0x27)
r3 = socket(0x10, 0x3, 0x0)
write(r3, &(0x7f0000000100)="140000001a004f7fb3e45f2024d2f1c9fb470000", 0x14)
recvmmsg(r3, &(0x7f0000005c80), 0x1b, 0x10122, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
getsockopt$sock_buf(r1, 0x1, 0x31, 0x0, &(0x7f00000001c0))
open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x8c, &(0x7f0000000300)='trans=rdma,')
socket$netlink(0x10, 0x3, 0x1)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

4.344177786s ago: executing program 2 (id=1410):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c) (async)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x90) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, 0x0, &(0x7f0000000080)=0x90)
ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000180)={'veth0_to_batadv\x00', {0x2, 0x0, @broadcast}})
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r1)
unshare(0x6020480) (async)
unshare(0x6020480)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x18)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000140)=@generic={0x0, r5}, 0x18)
sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fedbdf250100000008000100030000001c000480050003000100000005000100000000000500030002000000080002"], 0x40}}, 0x0)
r6 = syz_open_dev$media(&(0x7f0000000000), 0xf7, 0xa01)
ioctl$MEDIA_IOC_DEVICE_INFO(r6, 0xc1007c00, &(0x7f0000000040))
listen(r0, 0x0) (async)
listen(r0, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004) (async)
r7 = socket$netlink(0x10, 0x3, 0x8000000004)
r8 = fsopen(&(0x7f00000001c0)='reiserfs\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) (async)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r10}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r10}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0) (async)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
r11 = fsmount(r8, 0x0, 0x0)
fchdir(r11)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) (async)
r12 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r12, &(0x7f0000000f80)=""/4096, 0x1000)
writev(r7, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001400add427323b470c45b45602067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)

4.250229971s ago: executing program 1 (id=1411):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_SET_SWBIT(r3, 0x4004556d, 0x3)
r4 = syz_open_dev$vcsa(&(0x7f0000000000), 0xfffffffffffffffa, 0x8000)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYRES16=0x0, @ANYBLOB="000127bd7000ffdbdf253b0000004c9e8a547c892f26010000000400cd000a00cd0093638d07000000000400155f3091d5e7cf9db900e318e28e001f003300d0180800ffffffffffffffffffffffff4d4aa4581fe61a0007000100"], 0x54}}, 0x44815)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r9 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_qrtr_TIOCINQ(r9, 0x541b, &(0x7f00000000c0))
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000640)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615, 0xef}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x44}}, 0x0)

4.06971297s ago: executing program 2 (id=1412):
syz_usb_connect(0x2, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e40010203030902240001a82300000904000002ca744d00090503034d00ff99090805d84bdb"], &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x0, 0x3, 0x2b0})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000000)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000180)="9372b2c428aae53f78ae99ae4683ff4d98fae8c5b547c75d4f549fa76f05f9c50dd1db7f2c27793753c2fd696f95c149f16959c3affbf60a22f8749e066786a5e4fb78a8dd9aee282f7bb9ecd499be0beb825904cd130ce5f133e5ab2aa443ddbaf24130c0887dcce505743e1935a13cc8f969cb9640340f257e29a49a2311ff9d40b25be55e985d48f3a27bef7e1c46fdbc272643e848d2a9d121bdf909da9a8705662b61140a13df72292c8872d1bfd313889c6c535f760c4807439e1a99b2f47633c01307dcfd07fd6772c4", 0xcd}, {&(0x7f0000000340)="4a30cdc19de147e20e052ee1ea9ab76db7237273ea3d09eeab768b7a063ff17355f41f733486081cd248b58d967a7728c82407e41820dc0e720f4ca11d9c5498ce5a8114d7e21756d641d49237ddcb91d511f520a4944910e8962de62fa5e6435ba8b3db0a3e599534c6326d6b17996efa6236354d68802584b0e4ba1fdc7264914bbd422bfce43e3d6d8c281fe004c9f11ab7b8e4eb5bfbbe72b603801c0a8bd67e190af92e2a8c1727f4694ec5e87cb3c6d5b0d86746", 0xb7}, {&(0x7f00000000c0)="b42aa2a61049bab73bd49bac", 0xc}], 0x3, 0x0, 0x0, 0x20000080}, 0x4000)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
preadv(r1, &(0x7f0000000100)=[{&(0x7f0000000280)=""/190, 0xbe}], 0x1, 0xb, 0x3)

3.219647804s ago: executing program 1 (id=1413):
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xa860}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x3e, &(0x7f0000000140)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x5, 0x4, 0x3, @rand_addr=0x64010102, @local}}}}}}, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
syz_emit_ethernet(0x2a, &(0x7f0000000440)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x20, 0xdd, 0x2, 0x0, @rand_addr=0x64010102, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x67, 0x5}}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r2, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df05f496d0420922f45a71c1daa8b630468cd140526c41ef8d3a4a422", 0x3, 0x1, 0x85}, 0x3c)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0d05640, &(0x7f0000000480)={0x2, @sliced={0x2, [0x8, 0x8, 0x1, 0x0, 0x1, 0x8, 0x7fff, 0x8001, 0x6, 0x9, 0x9, 0x2c1a, 0x8, 0x4, 0x9e, 0x5a2, 0x695, 0x0, 0xd0, 0x9, 0x3, 0x5, 0x7fff, 0x8, 0x2, 0x5, 0x7, 0x8, 0x6, 0x1, 0x7, 0xb, 0x8, 0x2, 0xfffa, 0x2, 0x9, 0x2, 0x401, 0xc1, 0x3, 0x300, 0x8001, 0x1ff, 0x9, 0x8, 0x8, 0x100], 0x107e}})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={<r6=>0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r7, 0x0)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r8, 0x8983, &(0x7f0000000000)={0x6, 'ipvlan0\x00', {0x81}, 0x9})
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000019680)=""/102392, 0x18ff8)
ptrace$setregs(0xf, r6, 0x8, &(0x7f0000000200)="ba64890e5a60c293eea56c2c6b870b98c1fdf2053db600f5a0d30e513f73cf03fc0ff9536ace28cd17d366bbf607dd8aa088e1ee0e47b52b66935dbbebe9a4f0af6cfde765fbf18064a7f54247bdee522864c28aaebdc4b842941e2d3f82592c7d0976e6da76d41f469e893244cac2bd48de67ae3c614ed8ffb1a060a094acbb04c17a4934628c0930b8c917b538ed84a2111fd4d018ba668223195e39f9d617f2ad40cb2f47bc02acf675eb6bb07d5302cd67b7b30a20a5655b2611c645")
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x6, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b700000017000000bca30000000000002403000040feffff6b0af0ff0000000071a4f0ff000000001f030000000000002e0a0200000000002604fdffffff000061140800000000001d430000000000007a0a00fe0000001f6114100000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4fffe2158dfb8ef1e50becb19bc461e91a7168e5181554a090f30002af51efd601b6bf01c8e8b1fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb3fa3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5973acc706db6b861b8c10a7cbd0b723906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff6194732827a58f0177184b6a89adaf17b0a6041bdef728f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101ab062cd54e67051d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5901a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f1000000006eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab51380d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb1188883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcc536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d648532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2654026c6ea08b83b123145ab5703dad844ceb201efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0900000000000000ff0f4000000000f00700003c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fcdb4c1011e32f808890205f3a6da2819d2f9e77c7c64affa555ec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963442aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2869291b7d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e637d4219ef7ec61261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ecab5d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addbc4b3093c91b8068c5adfcb0d7fd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f0100e0eda300a43a13bd1b9f3322405d1efd78e578dc6b3fb84f37382000000000000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23577949a50f2d0455cf799b3746979f99f6a1527f004f37e84fb478199dc1020f4beb98b8074bf7df8b5e783637daf121f175a81cffff4ac55a4385e9a617aa6c8e10d4202c5afeb06e2f9115553f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5f07918e6fddcd821da67a0785585a4443440dc65600e64a6a274000000000000000000000000000000000000000000000009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4120260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa61071799e1acb3928143be1c1023a375e528285544d0064b91f00f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d3b332240d450fdb0a9a69f432e277f3a0386eb2bd1305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07e18b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e8c0a0d213c3ffad44d2a376def42e41e9fc3167a257e040fa7cf32c221aaac6cfdeb33c27500001a0000000000000000000017350000c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d10522a7a945b93fb705b95b6aa3f999ce700ffe794e27a8fab1e6984c8bdc12360627137ab6737b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481ffe46a4ce86be0b1f8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0b74903580ac987fd637c80d6c7d0de4614195e40d797c0348dd70f36a220e8b3710fb5358c27e90793bcb9ee6319342c4b239ca8cbc6fc83d32e6eb62ad92e43991f2447be9c2a1ae1119eafb901a43d57e885116d19aa152bfb89f8d0b2516f80120a1cddff771657f3d0288ec3899f1e3ba0151c4037148fb479de703fd52b6573349c28d1b107d859b4961324c17756dde99de1924a1d2b7095d34a55060f47f4407d89acf9f285b20c2e6b3d0491d0d3591b0d94713332b6b79c8297117b0d14eff64e0aca8a4b4aa773d8fba1217e9519952419bb9dd998d0ec870ff00b6d556018602738fbc6cec89d6dd13cf55b96f6fe9a137d2d6a56ad78e52c23ed080000000000002bc261a781fd14126c146a0aac4221839a4b9bbf61e4bba695a41e2109eba8e40c370267cc51ffadbd15cafc97a4d3edfdcb9b5729307c6bdaf7b69325fb05fa8a9869de0600ee477d71bf3e36d1d9019edfa27aae24b632f251df210c86a18fae731ecb8b0d48357378caf2b6789509b1bacfd4fa812fc341875cfa5e798bbf59770000000000000000c8a594ea3c3347962d9113b1fecdfad5a8da641053f02e49456f5d21674521e67a5b18ea451eccf69dd6af928d2d68da9304a2271d96c22fdcea26498d26229110b1aade386b113045033a6188d56e675564d8cb8d5b40114b0f5bf15dd64c9ece60b8588ee8777d0ea8f4713b258427c7d90f9e93348e17723ba9ab8ae790f74cc41ae5795d35f3cec40dff485d2802c08611454d9ea784a205bcc07ec26f906f3cf45bb37014ab6f22af6213618e242b283ea9d3f0677ee598072ec06f7170009d92bb7eddd12c378dfd3e74ec056ee83eef666423d934fc5908c9ff98715218a5964f1e00000000426ac9588e27aefe307f49662990ee823568bbc2f89596ced7c6c52d76b8096f1848410843b93fd404f535be474f456778b5ef85abb8fc2336abd5ea64a6efea8a5aca0015499b0200780a7bae4df603bd3c72808cf300440b1b638a6640f7de8d0d82f359ca2f779cd48cd8d3603f4f69e47f386988c9b7b5d6dd3d48a1fdca78fa04d7c87bea42161a4c0d7cf0125b43dc9d8845f3c05a08acda647e7143d0e0aee2949a45e2848890522c2288072467d2afe269f589fb7e034b92d3ca245b16b71998711bfe206c9690b6d0eebb06a29349229eb45ff15c63aa2c82c56d7420738cd1b04eb16e87cb524315d7361ea3635d3799bb7fcc56aa5e1dbe031a7a12554dee6754b72f43a6fddf427f32ec3df274a88097725679769beebf1aa6eb09d5154e4900000000000d0f7160a05911d969879953d3d4702b78825d5ed789711b77d40dc31e0b8fc651b45559da463f00000000000000005bae7859839f856e7a397913eec7977f6231c5f11849b3deabc60c5ccf240d16924eb760a969813be02a229c674045b88915518a17b683268f10358e1c0b20cfc2bd105e5e1db7fed951b8faf126267bb38b8d356f63d3433d3dee643503a8ba4968adf6673f720c474ecf324d989235f1b52aacfe52e4519af87b7e1594728d6d6fff1248e72d5b1b1b692b2b732f0f2ac0714079fd7bf97bf2b5687d1db91daa5210d09ebe66d00ff4f35143be01585e629d408f2d00a0a290db76adc5f57e160b2c188bb1ecc4e7d2948788e4f9c1bcaf91dac53a2f525f7385d5d82728b5217908748f4c22b6d79700"/4153], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x5, &(0x7f00000000c0), 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.92348026s ago: executing program 4 (id=1414):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000009d80), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000009dc0)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000009f00)={0x0, 0x0, &(0x7f0000009ec0)={&(0x7f0000009e40)={0x24, r6, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004084}, 0x4000000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0xfffffffffffffffa, &(0x7f0000006680))
socket$inet6_udp(0xa, 0x2, 0x0)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=@newtfilter={0x94, 0x2c, 0xd27, 0x70bd28, 0x8020, {0x0, 0x0, 0x0, r11, {0x5, 0x7}, {}, {0xa, 0x2}}, [@filter_kind_options=@f_u32={{0x8}, {0x68, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0x44f9c661}, @TCA_U32_POLICE={0x5c, 0x6, [@TCA_POLICE_RATE64={0xc, 0x8, 0x6}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x1}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1ff, 0x0, 0x5, 0x0, 0x9, {0x0, 0x0, 0x6, 0x800, 0x8, 0x1ff}, {0x9, 0x0, 0x2, 0x1, 0x9, 0x9}, 0x3, 0x71e6, 0x4}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x84}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0x200c0e9}, 0x20000004)
socket(0x400000000010, 0x3, 0x0)

2.094446443s ago: executing program 1 (id=1415):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x58}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x3, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x90)
socket$pppl2tp(0x18, 0x1, 0x1)
openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r2 = openat$yama_ptrace_scope(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$F2FS_IOC_RESIZE_FS(r2, 0x4008f510, &(0x7f0000000080)=0x7)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000180)=@encrypted_new={'new ', 'default', 0x20, 'trusted:', 'syz', 0x20, 0xffd}, 0x2d, 0x0)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0x5ba8, 0xfffffffffffffffd)
keyctl$read(0xb, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000280000002800000006000000040000000000000e0300000000000000010000000000001200000000000000000000000202000016002e00006100"], 0x0, 0x46, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa3158a9cc59002800020000002f9078e0000001ac1414aa40014e20", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5c00000090780000"], 0x0)

1.521649919s ago: executing program 4 (id=1416):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
write$sequencer(r3, &(0x7f00000001c0)=[@t={0x81, 0x5, 0x0, 0x0, @generic}, @raw={0xc, 0x2, "edc839543536"}], 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
read$FUSE(r5, &(0x7f0000001fc0)={0x2020}, 0x2020)
r6 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f00000003c0)=[@uexit={0x0, 0x18, 0x10001}, @code={0x1, 0x60, {"c4e22daae548b800980000000000000f23d00f21f835300000070f23f842c12f120fc72ab92a030000b862250000ba000000000f3066b8ab008ec86643d9faccb8010000000f01d966b8ee000f00d8"}}, @cpuid={0x2, 0x18, {0xdf7, 0x3}}, @uexit={0x0, 0x18, 0x6}, @uexit={0x0, 0x18, 0x1}, @cpuid={0x2, 0x18, {0x9, 0x1000}}, @cpuid={0x2, 0x18, {0x2}}, @cpuid={0x2, 0x18, {0x50000, 0x4}}, @uexit={0x0, 0x18}, @uexit={0x0, 0x18, 0x8}, @code={0x1, 0x64, {"64366fb9a7030000b8f7ffffffbaffffff7f0f3066b813000f00d036f344ded0430fc774e60067656765f30fc77200663666440f38805b4b66b846008ec066baf80cb8661d5680ef66bafc0cb00fee0f005b00"}}, @uexit={0x0, 0x18}, @cpuid={0x2, 0x18, {0x374b, 0x7ff}}, @code={0x1, 0x4a, {"f4c42349225721cd440f01c92e460fc7aa3187f572c4011560b75a808c612e0f01f566b820008ee826f3c0397ff26fc4e2b8f28cae08000000"}}, @code={0x1, 0x46, {"66b8fd000f00d866b861000f00d0410f01cff20f07f2400f38f07000c443cd42ebb299420f01cf8fa9b094b500000000c4e2e94502"}}, @cpuid={0x2, 0x18, {0x4, 0xdc}}, @uexit={0x0, 0x18, 0x3}, @uexit={0x0, 0x18, 0x10001}, @cpuid={0x2, 0x18, {0x6, 0xff}}, @code={0x1, 0x56, {"8f09609a82dfb5bf1a0f01c4450f788f008000006736460f2280440f20c0350c000000440f22c03e410fc77248c4a1c0563066b80b010f00d00fc79daa6f0000470f017205"}}, @uexit={0x0, 0x18}, @cpuid={0x2, 0x18, {0x3, 0x22e1be4e}}, @cpuid={0x2, 0x18, {0x5, 0x45d}}, @cpuid={0x2, 0x18, {0x8, 0xf0a8}}, @uexit={0x0, 0x18, 0xfffffffffffffff7}, @code={0x1, 0x62, {"66b83d018ed0c744240002000000c7442402ee000000ff1c24b9800000c00f3235004000000f30410f070f0766baf80cb8122ce885ef66bafc0c66ed430f009f4236ffff40abc4435902d412470fc5f64a"}}, @cpuid={0x2, 0x18, {0xa, 0x1}}, @cpuid={0x2, 0x18, {0x8, 0x1}}, @uexit={0x0, 0x18, 0x6}], 0x434})
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="f3a50f01c267640f235f66baf80cb890859c87ef66bafc0c66ed8fe878c38f00000000000f01c80f01cbb8ce5600000f23c00f21f835020009000f23f80fc7bd25b624c520e7", 0x46}], 0x1, 0x2c, &(0x7f0000000240)=[@cstype0={0x4, 0x9}, @dstype3={0x7, 0x6}], 0x2)
socket$alg(0x26, 0x5, 0x0)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r7, &(0x7f0000000140)={0x1f, 0x7fd, @none}, 0xe)
setsockopt$bt_BT_SECURITY(r7, 0x112, 0x4, &(0x7f0000003000)={0x1}, 0x2)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000340)={'nat\x00', 0x2, [{0x8800000000000000}, {}]}, 0x48)

1.097872644s ago: executing program 2 (id=1417):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x4, 0x25dfdbff, {0x6, 0x0, 0x8100, 0x0, {}, {0x10, 0x8}, {0xe, 0x10}}, [@TCA_RATE={0x6, 0x5, {0xd, 0x9}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)
r4 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000009000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r4, &(0x7f0000000000)={0x0, &(0x7f00000000c0)=ANY=[@ANYRESOCT=r0, @ANYRES8=r0, @ANYRES16=r2, @ANYRES8, @ANYRES16=r1, @ANYRES32=r3], 0x254})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.051272254s ago: executing program 1 (id=1418):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
getpeername(0xffffffffffffffff, 0x0, 0x0)
socket(0x200000000000011, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
tee(r2, r0, 0x6, 0xa)
setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000000080), 0x4)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000180)=@gcm_256={{0x303}, "c4915c7f49541ce8", "9b84f987950ff3df25fa8f46983d34157e047d27ae4a66a6d15608a32cbaa5bc", '\x00', "be0ea450d5a5fd03"}, 0x38)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x24000094)
recvmmsg(r1, &(0x7f00000017c0)=[{{&(0x7f0000000240)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000002a00)=[{&(0x7f0000000580)=""/199, 0xc7}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000680)=""/113, 0x6e}, {&(0x7f00000041c0)=""/4096, 0x1000}, {&(0x7f0000000700)=""/118, 0x76}, {&(0x7f00000028c0)=""/94, 0x5e}, {&(0x7f0000000780)=""/115, 0x73}, {&(0x7f0000002b00)=""/4105, 0x1009}], 0x8, &(0x7f0000002940)=""/172, 0xac}, 0x7}], 0x1, 0x10020, 0x0)

634.685918ms ago: executing program 3 (id=1307):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x9}, 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x11, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x75a559963a888ab9}, 0x200040d0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$dri(0x0, 0x1f, 0x0)
r3 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r3, 0x7a7, &(0x7f0000000100)=0x80000)
getsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000000), &(0x7f0000000240)=0x4)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000300)={@local, 0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, 0x0)
close(r3)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bic\x00', 0x4)
sendto$inet6(r0, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='westwood\x00', 0x9)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x0, 0x2})
madvise(&(0x7f00001b1000/0x1000)=nil, 0x1000, 0x64)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)

135.848893ms ago: executing program 2 (id=1419):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
getsockname(r0, 0x0, &(0x7f0000000600))
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f0000002300)='./file0\x00')
stat(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
open(0x0, 0x145142, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000100))
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0xb)

134.404114ms ago: executing program 4 (id=1420):
r0 = socket(0x2, 0x5, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000000)={@remote, @empty}, 0xc)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x10000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
pipe(&(0x7f0000000000))
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
io_setup(0x80000001, &(0x7f0000000400))
fcntl$dupfd(r4, 0x0, r4)
r5 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x4000000000000, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x9, 0x1, 0x8, 0x56e48d82, 0xfffffffffffffff7, 0x9, 0x0, 0xaa, 0x6, 0x7, 0x400000000000004, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x5, 0x0, 0x100, 0x4, 0x2, 0x401, 0x3, 0x8, 0x8})
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)

0s ago: executing program 1 (id=1421):
r0 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000280)={0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x10c4, 0x0, 0x0, 0x180000}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3e, &(0x7f00000000c0)=0xa, 0x4)

kernel console output (not intermixed with test programs):

 rcu_is_watching+0x12/0xc0
[  472.874150][T10317]  ? trace_sched_exit_tp+0xde/0x130
[  472.874179][T10317]  ? kvm_vcpu_ioctl+0x1236/0x1690
[  472.874197][T10317]  kvm_vcpu_ioctl+0x1236/0x1690
[  472.874227][T10317]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  472.874253][T10317]  ? __pfx___schedule+0x10/0x10
[  472.874277][T10317]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  472.874314][T10317]  ? rcu_is_watching+0x12/0xc0
[  472.874334][T10317]  ? irqentry_exit+0x3b/0x90
[  472.874358][T10317]  ? lockdep_hardirqs_on+0x7c/0x110
[  472.874392][T10317]  ? __x64_sys_ioctl+0x123/0x210
[  472.874411][T10317]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  472.874433][T10317]  __x64_sys_ioctl+0x18e/0x210
[  472.874454][T10317]  do_syscall_64+0xcd/0x4c0
[  472.874482][T10317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.874499][T10317] RIP: 0033:0x7fd9b2f8e929
[  472.874514][T10317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.874529][T10317] RSP: 002b:00007fd9b3e4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  472.874547][T10317] RAX: ffffffffffffffda RBX: 00007fd9b31b6160 RCX: 00007fd9b2f8e929
[  472.874558][T10317] RDX: 0000200000000300 RSI: 00000000c008ae88 RDI: 0000000000000005
[  472.874569][T10317] RBP: 00007fd9b3e4a090 R08: 0000000000000000 R09: 0000000000000000
[  472.874579][T10317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  472.874589][T10317] R13: 0000000000000000 R14: 00007fd9b31b6160 R15: 00007fffc57da078
[  472.874613][T10317]  </TASK>
[  473.290710][    C1] vkms_vblank_simulate: vblank timer overrun
[  473.317894][    C1] vkms_vblank_simulate: vblank timer overrun
[  473.425620][    C1] vkms_vblank_simulate: vblank timer overrun
[  473.543670][T10309] fido_id[10309]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[  473.661943][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  473.796388][   T30] kauditd_printk_skb: 61 callbacks suppressed
[  473.796404][   T30] audit: type=1400 audit(1749946910.380:2660): avc:  denied  { map_read map_write } for  pid=10320 comm="syz.3.1153" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  473.822698][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  474.052814][   T30] audit: type=1400 audit(1749946910.530:2661): avc:  denied  { create } for  pid=10325 comm="syz.4.1154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  474.100005][   T30] audit: type=1400 audit(1749946910.530:2662): avc:  denied  { mount } for  pid=10323 comm="syz.1.1156" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  474.819608][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  474.827294][   T30] audit: type=1400 audit(1749946910.750:2663): avc:  denied  { prog_load } for  pid=10331 comm="syz.3.1157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  474.847276][   T30] audit: type=1400 audit(1749946910.750:2664): avc:  denied  { bpf } for  pid=10331 comm="syz.3.1157" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  474.870155][   T30] audit: type=1400 audit(1749946910.820:2665): avc:  denied  { create } for  pid=10323 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  474.891017][   T30] audit: type=1400 audit(1749946910.820:2666): avc:  denied  { bind } for  pid=10323 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  474.911740][   T30] audit: type=1400 audit(1749946910.820:2667): avc:  denied  { accept } for  pid=10323 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  474.931245][    C1] vkms_vblank_simulate: vblank timer overrun
[  474.979786][   T30] audit: type=1400 audit(1749946910.820:2668): avc:  denied  { read } for  pid=10323 comm="syz.1.1156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  474.999167][   T30] audit: type=1400 audit(1749946910.940:2669): avc:  denied  { read } for  pid=10325 comm="syz.4.1154" dev="nsfs" ino=4026532807 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  475.396574][T10344] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1158'.
[  475.848294][  T115] net_ratelimit: 1 callbacks suppressed
[  475.848309][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  475.899791][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  476.648534][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  476.656842][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  476.939814][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  477.175792][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  477.237198][T10359] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  477.980499][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  478.875064][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  479.019796][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  479.041552][   T30] kauditd_printk_skb: 47 callbacks suppressed
[  479.041567][   T30] audit: type=1400 audit(1749946915.630:2717): avc:  denied  { read } for  pid=10371 comm="syz.3.1167" name="card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  479.150817][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  479.227611][   T30] audit: type=1400 audit(1749946915.670:2718): avc:  denied  { open } for  pid=10371 comm="syz.3.1167" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  479.432518][   T30] audit: type=1400 audit(1749946915.670:2719): avc:  denied  { ioctl } for  pid=10371 comm="syz.3.1167" path="/dev/dri/card0" dev="devtmpfs" ino=627 ioctlcmd=0x64b2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  479.777631][T10385] xt_policy: neither incoming nor outgoing policy selected
[  481.109801][    C0] net_ratelimit: 3 callbacks suppressed
[  481.109818][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  481.123513][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  481.231771][   T30] audit: type=1400 audit(1749946915.690:2720): avc:  denied  { read write } for  pid=10360 comm="syz.2.1166" name="fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  481.255243][   T30] audit: type=1400 audit(1749946915.690:2721): avc:  denied  { open } for  pid=10360 comm="syz.2.1166" path="/dev/fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  481.299791][   T30] audit: type=1400 audit(1749946915.710:2722): avc:  denied  { read write } for  pid=10360 comm="syz.2.1166" name="vbi1" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  481.323464][   T30] audit: type=1400 audit(1749946915.710:2723): avc:  denied  { open } for  pid=10360 comm="syz.2.1166" path="/dev/vbi1" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  481.349691][   T30] audit: type=1400 audit(1749946915.710:2724): avc:  denied  { ioctl } for  pid=10360 comm="syz.2.1166" path="/dev/vbi1" dev="devtmpfs" ino=954 ioctlcmd=0x561c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  481.374680][   T30] audit: type=1400 audit(1749946915.760:2725): avc:  denied  { mount } for  pid=10373 comm="syz.0.1168" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  481.396804][   T30] audit: type=1400 audit(1749946916.380:2726): avc:  denied  { write } for  pid=10375 comm="syz.3.1170" name="ppp" dev="devtmpfs" ino=710 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  482.139865][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  482.159907][ T5942] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  482.397526][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  482.639556][ T5942] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  482.653496][ T5942] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  482.733330][ T5942] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  482.750758][ T5942] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  482.768062][ T5942] usb 2-1: SerialNumber: syz
[  483.033954][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  483.042888][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  483.179796][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  483.437680][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  484.222910][ T4910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  484.231229][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  484.835946][ T5942] usb 2-1: 0:2 : does not exist
[  484.892883][ T5942] usb 2-1: USB disconnect, device number 46
[  484.963448][ T5830] udevd[5830]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  484.963600][   T30] kauditd_printk_skb: 52 callbacks suppressed
[  484.963631][   T30] audit: type=1400 audit(1749946921.550:2779): avc:  denied  { create } for  pid=10420 comm="syz.3.1181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  485.022939][   T30] audit: type=1400 audit(1749946921.600:2780): avc:  denied  { connect } for  pid=10420 comm="syz.3.1181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  485.044012][   T30] audit: type=1400 audit(1749946921.610:2781): avc:  denied  { create } for  pid=10422 comm="syz.0.1182" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  485.065982][   T30] audit: type=1400 audit(1749946921.610:2782): avc:  denied  { read write } for  pid=10425 comm="syz.1.1183" name="fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  485.102336][   T30] audit: type=1400 audit(1749946921.610:2783): avc:  denied  { open } for  pid=10425 comm="syz.1.1183" path="/dev/fuse" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  485.276872][   T30] audit: type=1400 audit(1749946921.610:2784): avc:  denied  { mounton } for  pid=10425 comm="syz.1.1183" path="/227/file0" dev="tmpfs" ino=1225 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  485.300407][   T30] audit: type=1400 audit(1749946921.610:2785): avc:  denied  { mount } for  pid=10425 comm="syz.1.1183" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  485.510772][   T30] audit: type=1400 audit(1749946921.990:2786): avc:  denied  { create } for  pid=10425 comm="syz.1.1183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  485.629909][   T30] audit: type=1400 audit(1749946921.990:2787): avc:  denied  { bind } for  pid=10425 comm="syz.1.1183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  485.649667][   T30] audit: type=1400 audit(1749946921.990:2788): avc:  denied  { accept } for  pid=10425 comm="syz.1.1183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  486.299798][    C0] net_ratelimit: 4 callbacks suppressed
[  486.299815][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  486.950334][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  487.339805][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  488.126589][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  488.140707][ T1163] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  488.149982][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  488.379786][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  489.228014][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  489.419832][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  490.106615][  T996] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  490.247144][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  490.247189][   T30] audit: type=1400 audit(1749946926.830:2812): avc:  denied  { map } for  pid=10474 comm="syz.1.1194" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=23429 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  490.317917][   T30] audit: type=1400 audit(1749946926.830:2813): avc:  denied  { read write } for  pid=10474 comm="syz.1.1194" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=23429 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  491.133139][T10491] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  491.381836][   T30] audit: type=1400 audit(1749946927.800:2814): avc:  denied  { create } for  pid=10488 comm="syz.1.1199" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  491.509790][    C0] net_ratelimit: 3 callbacks suppressed
[  491.509808][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  491.535797][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  491.544894][   T30] audit: type=1400 audit(1749946927.810:2815): avc:  denied  { ioctl } for  pid=10488 comm="syz.1.1199" path="socket:[24093]" dev="sockfs" ino=24093 ioctlcmd=0x89e8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  491.613627][   T30] audit: type=1400 audit(1749946928.140:2816): avc:  denied  { setopt } for  pid=10485 comm="syz.0.1197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  491.644878][   T30] audit: type=1400 audit(1749946928.140:2817): avc:  denied  { write } for  pid=10485 comm="syz.0.1197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  491.681829][   T30] audit: type=1400 audit(1749946928.140:2818): avc:  denied  { getopt } for  pid=10485 comm="syz.0.1197" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  491.725136][   T30] audit: type=1400 audit(1749946928.200:2819): avc:  denied  { create } for  pid=10498 comm="syz.4.1201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  491.746153][   T30] audit: type=1400 audit(1749946928.220:2820): avc:  denied  { read append } for  pid=10485 comm="syz.0.1197" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  491.772360][   T30] audit: type=1400 audit(1749946928.220:2821): avc:  denied  { open } for  pid=10485 comm="syz.0.1197" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  492.539818][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  492.547940][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  492.645804][T10511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1203'.
[  493.580048][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  494.276102][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  494.541518][ T1175] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  494.549938][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  494.619787][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  495.324770][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  495.324809][   T30] audit: type=1400 audit(1749946931.910:2829): avc:  denied  { create } for  pid=10528 comm="syz.2.1210" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  495.468322][   T30] audit: type=1400 audit(1749946931.920:2830): avc:  denied  { ioctl } for  pid=10528 comm="syz.2.1210" path="socket:[24245]" dev="sockfs" ino=24245 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  495.659788][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  496.140975][   T30] audit: type=1400 audit(1749946931.920:2831): avc:  denied  { connect } for  pid=10528 comm="syz.2.1210" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  496.400641][T10542] FAULT_INJECTION: forcing a failure.
[  496.400641][T10542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  496.414017][T10542] CPU: 0 UID: 0 PID: 10542 Comm: syz.2.1212 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[  496.414040][T10542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  496.414048][T10542] Call Trace:
[  496.414053][T10542]  <TASK>
[  496.414057][T10542]  dump_stack_lvl+0x16c/0x1f0
[  496.414077][T10542]  should_fail_ex+0x512/0x640
[  496.414092][T10542]  ? page_copy_sane+0xcd/0x2d0
[  496.414108][T10542]  copy_folio_from_iter_atomic+0x375/0x1aa0
[  496.414131][T10542]  ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[  496.414147][T10542]  ? shmem_write_begin+0x176/0x300
[  496.414162][T10542]  ? __pfx_shmem_write_begin+0x10/0x10
[  496.414177][T10542]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  496.414191][T10542]  generic_perform_write+0x22c/0x930
[  496.414206][T10542]  ? __mark_inode_dirty+0x650/0xe50
[  496.414220][T10542]  ? __pfx_generic_perform_write+0x10/0x10
[  496.414235][T10542]  ? generic_update_time+0xcf/0xf0
[  496.414252][T10542]  ? mnt_put_write_access_file+0x45/0xf0
[  496.414272][T10542]  shmem_file_write_iter+0x10e/0x140
[  496.414289][T10542]  do_iter_readv_writev+0x654/0x950
[  496.414304][T10542]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  496.414323][T10542]  vfs_writev+0x35f/0xde0
[  496.414340][T10542]  ? __pfx_vfs_writev+0x10/0x10
[  496.414362][T10542]  ? __fget_files+0x20e/0x3c0
[  496.414376][T10542]  ? _mutex_trylock_nest_lock+0x100/0x140
[  496.414397][T10542]  ? do_pwritev+0x1a6/0x270
[  496.414408][T10542]  do_pwritev+0x1a6/0x270
[  496.414421][T10542]  ? __pfx_do_pwritev+0x10/0x10
[  496.414434][T10542]  ? ksys_write+0x1ac/0x250
[  496.414447][T10542]  ? __pfx_ksys_write+0x10/0x10
[  496.414466][T10542]  __x64_sys_pwritev2+0xef/0x160
[  496.414493][T10542]  do_syscall_64+0xcd/0x4c0
[  496.414521][T10542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  496.414535][T10542] RIP: 0033:0x7f4622d8e929
[  496.414544][T10542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  496.414555][T10542] RSP: 002b:00007f4623bb4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  496.414566][T10542] RAX: ffffffffffffffda RBX: 00007f4622fb6080 RCX: 00007f4622d8e929
[  496.414573][T10542] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000006
[  496.414579][T10542] RBP: 00007f4623bb4090 R08: 0000000000000000 R09: 0000000000000000
[  496.414585][T10542] R10: 0000000000005405 R11: 0000000000000246 R12: 0000000000000001
[  496.414592][T10542] R13: 0000000000000000 R14: 00007f4622fb6080 R15: 00007ffc69912d48
[  496.414605][T10542]  </TASK>
[  496.415932][   T30] audit: type=1400 audit(1749946932.980:2832): avc:  denied  { read } for  pid=10538 comm="syz.2.1212" name="loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  496.699978][    C0] net_ratelimit: 3 callbacks suppressed
[  496.700004][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  496.796806][   T30] audit: type=1400 audit(1749946932.980:2833): avc:  denied  { open } for  pid=10538 comm="syz.2.1212" path="/dev/loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  496.831476][   T30] audit: type=1400 audit(1749946932.980:2834): avc:  denied  { ioctl } for  pid=10538 comm="syz.2.1212" path="/dev/loop-control" dev="devtmpfs" ino=646 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  496.858024][   T30] audit: type=1400 audit(1749946932.980:2835): avc:  denied  { watch } for  pid=10538 comm="syz.2.1212" path="/236" dev="tmpfs" ino=1260 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  497.158588][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  497.606009][   T30] audit: type=1400 audit(1749946933.920:2836): avc:  denied  { create } for  pid=10543 comm="syz.1.1214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  497.739819][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  497.774749][   T30] audit: type=1400 audit(1749946933.940:2837): avc:  denied  { ioctl } for  pid=10543 comm="syz.1.1214" path="socket:[23540]" dev="sockfs" ino=23540 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  497.869428][   T30] audit: type=1400 audit(1749946934.070:2838): avc:  denied  { module_request } for  pid=10543 comm="syz.1.1214" kmod="netdev-syzkaller0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  498.193572][T10565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1217'.
[  498.733419][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  498.779859][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  499.750086][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  499.829798][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  500.303695][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  500.312420][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  500.859782][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  500.943275][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  501.088163][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  501.899791][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  502.939793][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  502.982859][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  502.991126][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  503.762609][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  503.979803][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  504.842095][ T5942] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  504.857750][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  504.999815][ T5942] usb 5-1: Using ep0 maxpacket: 16
[  505.019798][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  505.142286][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  505.142315][   T30] audit: type=1400 audit(1749946941.710:2840): avc:  denied  { create } for  pid=10594 comm="syz.3.1225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  505.223498][ T5942] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  505.309606][ T5942] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  505.372512][ T5942] usb 5-1: Product: syz
[  505.382961][   T30] audit: type=1400 audit(1749946941.710:2841): avc:  denied  { write } for  pid=10594 comm="syz.3.1225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  505.404763][ T5942] usb 5-1: Manufacturer: syz
[  505.428531][ T5942] usb 5-1: SerialNumber: syz
[  505.472667][ T5942] usb 5-1: config 0 descriptor??
[  506.060342][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  506.323370][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  506.595032][T10622] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1229'.
[  506.685018][T10588] tipc: Started in network mode
[  507.038524][T10588] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  507.084436][T10588] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  507.099781][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  507.114308][T10619] netlink: 'syz.4.1223': attribute type 1 has an invalid length.
[  507.122349][T10619] netlink: 220 bytes leftover after parsing attributes in process `syz.4.1223'.
[  507.133398][T10619] netlink: 'syz.4.1223': attribute type 1 has an invalid length.
[  507.303684][ T5837] usb 5-1: USB disconnect, device number 24
[  507.310350][   T30] audit: type=1400 audit(1749946943.880:2842): avc:  denied  { setopt } for  pid=10620 comm="syz.2.1230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  507.520166][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  508.139800][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  508.181305][T10634] capability: warning: `syz.0.1233' uses deprecated v2 capabilities in a way that may be insecure
[  509.179782][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  509.326617][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  509.341226][   T49] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  509.350096][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  509.630328][  T115] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  509.809796][   T30] audit: type=1400 audit(1749946946.390:2843): avc:  denied  { sqpoll } for  pid=10659 comm="syz.4.1241" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  510.219875][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  510.618997][  T996] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  510.627367][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  510.649832][   T30] audit: type=1400 audit(1749946947.230:2844): avc:  denied  { bind } for  pid=10659 comm="syz.4.1241" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  510.789181][  T115] usb 3-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  510.798877][  T115] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  510.807312][  T115] usb 3-1: Product: syz
[  510.811739][  T115] usb 3-1: Manufacturer: syz
[  510.816576][  T115] usb 3-1: SerialNumber: syz
[  510.837196][  T115] usb 3-1: config 0 descriptor??
[  510.891337][   T30] audit: type=1400 audit(1749946947.230:2845): avc:  denied  { read } for  pid=10659 comm="syz.4.1241" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  510.933205][   T30] audit: type=1400 audit(1749946947.230:2846): avc:  denied  { open } for  pid=10659 comm="syz.4.1241" path="/dev/snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  511.089833][   T30] audit: type=1400 audit(1749946947.550:2847): avc:  denied  { write } for  pid=10659 comm="syz.4.1241" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  511.743182][T10660] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  511.807133][T10660] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  511.936924][   T30] audit: type=1400 audit(1749946947.760:2848): avc:  denied  { connect } for  pid=10669 comm="syz.0.1242" lport=7 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  512.029831][  T115] cx82310_eth 3-1:0.0: probe with driver cx82310_eth failed with error -22
[  512.084036][T10660] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  512.090376][T10660] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  512.097115][   T30] audit: type=1400 audit(1749946947.760:2849): avc:  denied  { setopt } for  pid=10669 comm="syz.0.1242" laddr=fe80::a lport=7 faddr=fe80::aa scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  512.130212][  T115] cxacru 3-1:0.0: usbatm_usb_probe: bind failed: -19!
[  512.146555][  T115] usb 3-1: USB disconnect, device number 26
[  512.182974][   T30] audit: type=1400 audit(1749946947.770:2850): avc:  denied  { write } for  pid=10669 comm="syz.0.1242" path="/dev/vhci" dev="devtmpfs" ino=1269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  512.274732][   T30] audit: type=1400 audit(1749946947.810:2851): avc:  denied  { write } for  pid=10669 comm="syz.0.1242" laddr=fe80::a lport=7 faddr=fe80::aa scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  512.299781][    C0] net_ratelimit: 6 callbacks suppressed
[  512.299796][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  512.347075][   T30] audit: type=1400 audit(1749946948.750:2852): avc:  denied  { write } for  pid=10678 comm="syz.2.1245" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  512.459396][   T30] audit: type=1400 audit(1749946948.810:2853): avc:  denied  { create } for  pid=10672 comm="syz.3.1243" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  512.495673][T10689] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1249'.
[  512.950957][ T5827] Bluetooth: hci1: command 0x0406 tx timeout
[  513.116896][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  513.277389][T10700] fuse: Bad value for 'fd'
[  513.339801][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  513.819893][ T5823] Bluetooth: hci2: command 0x0406 tx timeout
[  514.154132][ T5141] Bluetooth: hci3: command 0x0406 tx timeout
[  514.160932][T10709] Bluetooth: hci4: command 0x0405 tx timeout
[  514.379829][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  514.387956][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  514.436252][T10716] netlink: 16144 bytes leftover after parsing attributes in process `syz.4.1255'.
[  514.654341][T10727] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1259'.
[  515.049419][ T4910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  515.058166][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  515.419780][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  515.465877][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  516.050719][T10742] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  516.057472][T10742] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  516.174892][T10742] vhci_hcd vhci_hcd.0: Device attached
[  516.213691][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  516.213705][   T30] audit: type=1400 audit(1749946952.680:2868): avc:  denied  { write } for  pid=10741 comm="syz.1.1262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  516.229909][T10709] Bluetooth: hci4: command 0x0405 tx timeout
[  516.293793][T10746] vhci_hcd vhci_hcd.0: port 0 already used
[  516.460071][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.312787][   T12] net_ratelimit: 1 callbacks suppressed
[  517.312798][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.326541][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.500469][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.694237][  T115] usb 36-1: SetAddress Request (2) to port 0
[  518.299883][T10709] Bluetooth: hci4: command 0x0405 tx timeout
[  518.540472][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  518.873273][  T115] usb 36-1: new SuperSpeed USB device number 2 using vhci_hcd
[  519.074864][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  519.165581][T10743] vhci_hcd: connection closed
[  519.188901][  T996] vhci_hcd: stop threads
[  519.205732][  T996] vhci_hcd: release socket
[  519.211500][  T996] vhci_hcd: disconnect device
[  519.216382][   T30] audit: type=1400 audit(1749946952.690:2869): avc:  denied  { nlmsg_write } for  pid=10741 comm="syz.1.1262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  519.237603][ T5837] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  519.280546][   T30] audit: type=1400 audit(1749946952.960:2870): avc:  denied  { execute } for  pid=10745 comm="syz.3.1264" path="/274/file0/bus" dev="tmpfs" ino=1487 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  519.295087][T10757] fuse: Bad value for 'fd'
[  519.579784][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  519.858674][ T5837] usb 5-1: device not accepting address 25, error -71
[  520.592289][ T5827] Bluetooth: hci4: command 0x0405 tx timeout
[  520.612349][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  520.620654][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  520.780133][  T996] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  520.788398][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  521.052383][   T30] audit: type=1400 audit(1749946957.640:2871): avc:  denied  { write } for  pid=10779 comm="syz.1.1273" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  521.162054][T10785] FAULT_INJECTION: forcing a failure.
[  521.162054][T10785] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  521.175908][T10785] CPU: 1 UID: 0 PID: 10785 Comm: syz.3.1270 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[  521.175931][T10785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  521.175940][T10785] Call Trace:
[  521.175947][T10785]  <TASK>
[  521.175953][T10785]  dump_stack_lvl+0x16c/0x1f0
[  521.175984][T10785]  should_fail_ex+0x512/0x640
[  521.176012][T10785]  _copy_from_user+0x2e/0xd0
[  521.176037][T10785]  get_timespec64+0x8b/0x240
[  521.176062][T10785]  ? __pfx_get_timespec64+0x10/0x10
[  521.176084][T10785]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  521.176110][T10785]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  521.176137][T10785]  __do_sys_io_uring_enter+0x109b/0x1630
[  521.176162][T10785]  ? __fget_files+0x20e/0x3c0
[  521.176186][T10785]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  521.176210][T10785]  ? fput+0x70/0xf0
[  521.176246][T10785]  do_syscall_64+0xcd/0x4c0
[  521.176275][T10785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.176292][T10785] RIP: 0033:0x7fcc6b38e929
[  521.176307][T10785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.176323][T10785] RSP: 002b:00007fcc6c293038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  521.176341][T10785] RAX: ffffffffffffffda RBX: 00007fcc6b5b6160 RCX: 00007fcc6b38e929
[  521.176352][T10785] RDX: 0000000000000002 RSI: 0000000000100000 RDI: 0000000000000005
[  521.176362][T10785] RBP: 00007fcc6c293090 R08: 0000200000000000 R09: 0000000000000018
[  521.176373][T10785] R10: 000000000000000f R11: 0000000000000246 R12: 0000000000000001
[  521.176383][T10785] R13: 0000000000000000 R14: 00007fcc6b5b6160 R15: 00007ffeddd866c8
[  521.176406][T10785]  </TASK>
[  522.699961][    C0] net_ratelimit: 2 callbacks suppressed
[  522.699987][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  523.020786][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  523.701585][   T30] audit: type=1400 audit(1749946959.700:2872): avc:  denied  { name_bind } for  pid=10796 comm="syz.3.1276" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  523.739790][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  523.924728][   T30] audit: type=1400 audit(1749946959.700:2873): avc:  denied  { node_bind } for  pid=10796 comm="syz.3.1276" saddr=255.255.255.255 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  524.009333][T10809] fuse: Bad value for 'fd'
[  524.216486][   T30] audit: type=1400 audit(1749946959.710:2874): avc:  denied  { read } for  pid=10796 comm="syz.3.1276" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  524.225576][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  524.245530][  T115] usb 36-1: device descriptor read/8, error -110
[  524.779805][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  525.000334][T10815] overlayfs: missing 'lowerdir'
[  525.005697][   T30] audit: type=1400 audit(1749946961.570:2875): avc:  denied  { getopt } for  pid=10805 comm="syz.3.1279" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  525.029075][ T1175] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  525.037818][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  525.265897][  T115] usb usb36-port1: attempt power cycle
[  525.324607][   T48] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  525.432375][ T5837] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  525.719866][ T5837] usb 4-1: Using ep0 maxpacket: 32
[  525.768538][ T5837] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  525.778728][ T5837] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  525.791769][ T5837] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  525.800911][ T5837] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.816012][ T5837] usb 4-1: Product: syz
[  525.820891][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  525.833268][ T5837] usb 4-1: Manufacturer: syz
[  525.837863][ T5837] usb 4-1: SerialNumber: syz
[  525.859981][ T5837] usb 4-1: config 0 descriptor??
[  526.009951][  T115] usb usb36-port1: unable to enumerate USB device
[  526.049417][T10834] FAULT_INJECTION: forcing a failure.
[  526.049417][T10834] name failslab, interval 1, probability 0, space 0, times 0
[  526.062661][T10834] CPU: 1 UID: 0 PID: 10834 Comm: syz.1.1285 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[  526.062684][T10834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  526.062695][T10834] Call Trace:
[  526.062701][T10834]  <TASK>
[  526.062707][T10834]  dump_stack_lvl+0x16c/0x1f0
[  526.062737][T10834]  should_fail_ex+0x512/0x640
[  526.062759][T10834]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  526.062781][T10834]  should_failslab+0xc2/0x120
[  526.062806][T10834]  __kmalloc_cache_noprof+0x6a/0x3e0
[  526.062826][T10834]  ? sctp_endpoint_new+0x11f/0xcd0
[  526.062847][T10834]  sctp_endpoint_new+0x11f/0xcd0
[  526.062869][T10834]  sctp_init_sock+0xe2d/0x1330
[  526.062891][T10834]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  526.062908][T10834]  sctp_v6_init_sock+0x16/0x70
[  526.062922][T10834]  ? __pfx_sctp_v6_init_sock+0x10/0x10
[  526.062937][T10834]  inet6_create+0xb30/0x1300
[  526.062956][T10834]  ? inet6_create+0x7f/0x1300
[  526.062977][T10834]  __sock_create+0x338/0x8d0
[  526.063003][T10834]  __sys_socket+0x14d/0x260
[  526.063021][T10834]  ? fput+0x70/0xf0
[  526.063045][T10834]  ? __pfx___sys_socket+0x10/0x10
[  526.063063][T10834]  ? ksys_write+0x1ac/0x250
[  526.063084][T10834]  ? __pfx_ksys_write+0x10/0x10
[  526.063112][T10834]  __x64_sys_socket+0x72/0xb0
[  526.063130][T10834]  ? lockdep_hardirqs_on+0x7c/0x110
[  526.063154][T10834]  do_syscall_64+0xcd/0x4c0
[  526.063182][T10834]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.063200][T10834] RIP: 0033:0x7fd9b2f8e929
[  526.063215][T10834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.063231][T10834] RSP: 002b:00007fd9b3e6b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  526.063249][T10834] RAX: ffffffffffffffda RBX: 00007fd9b31b6080 RCX: 00007fd9b2f8e929
[  526.063260][T10834] RDX: 0000000000000000 RSI: 0000000000000805 RDI: 000000000000000a
[  526.063270][T10834] RBP: 00007fd9b3e6b090 R08: 0000000000000000 R09: 0000000000000000
[  526.063281][T10834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  526.063291][T10834] R13: 0000000000000000 R14: 00007fd9b31b6080 R15: 00007fffc57da078
[  526.063317][T10834]  </TASK>
[  526.531931][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  526.601366][   T30] audit: type=1400 audit(1749946963.190:2876): avc:  denied  { name_bind } for  pid=10805 comm="syz.3.1279" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  526.755587][   T30] audit: type=1326 audit(1749946963.340:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10829 comm="syz.2.1283" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4622d8e929 code=0x0
[  526.801858][   T30] audit: type=1400 audit(1749946963.390:2878): avc:  denied  { bind } for  pid=10838 comm="syz.1.1286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  526.846804][   T30] audit: type=1400 audit(1749946963.410:2879): avc:  denied  { read } for  pid=10838 comm="syz.1.1286" name="btrfs-control" dev="devtmpfs" ino=1310 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  526.872400][   T30] audit: type=1400 audit(1749946963.410:2880): avc:  denied  { open } for  pid=10838 comm="syz.1.1286" path="/dev/btrfs-control" dev="devtmpfs" ino=1310 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  526.897751][   T30] audit: type=1400 audit(1749946963.410:2881): avc:  denied  { setopt } for  pid=10838 comm="syz.1.1286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  527.051184][T10854] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1290'.
[  527.279827][ T5837] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  527.663097][ T5837] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  527.671369][ T5837] usb 2-1: config 0 has no interface number 0
[  527.713581][ T5837] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  527.724980][ T5837] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  527.735117][ T5837] usb 2-1: Product: syz
[  527.741526][ T5837] usb 2-1: Manufacturer: syz
[  527.778491][T10270] usb 4-1: USB disconnect, device number 34
[  527.885203][ T5837] usb 2-1: SerialNumber: syz
[  527.899769][    C0] net_ratelimit: 4 callbacks suppressed
[  527.899783][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  527.994132][ T5837] usb 2-1: config 0 descriptor??
[  528.000554][T10866] capability: warning: `syz.3.1296' uses 32-bit capabilities (legacy support in use)
[  528.216468][ T5837] usb 2-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  528.258135][ T5837] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  528.284296][ T5837] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  528.434154][ T5837] usb 2-1: media controller created
[  528.779982][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  528.788772][ T5837] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  528.939786][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  528.967802][ T5837] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  529.032352][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  529.032367][   T30] audit: type=1400 audit(1749946965.620:2889): avc:  denied  { map } for  pid=10882 comm="syz.4.1301" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  529.353113][   T30] audit: type=1400 audit(1749946965.660:2890): avc:  denied  { execute } for  pid=10882 comm="syz.4.1301" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  529.404825][ T5837] usb 2-1: USB disconnect, device number 47
[  529.598079][T10888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.607680][T10888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.616248][T10888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.624913][T10888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.633339][T10888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.641627][T10888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.656919][   T30] audit: type=1400 audit(1749946966.190:2891): avc:  denied  { read } for  pid=10891 comm="syz.4.1305" name="vhost-vsock" dev="devtmpfs" ino=1276 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  529.686383][   T30] audit: type=1400 audit(1749946966.190:2892): avc:  denied  { open } for  pid=10891 comm="syz.4.1305" path="/dev/vhost-vsock" dev="devtmpfs" ino=1276 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  529.724972][   T30] audit: type=1400 audit(1749946966.190:2893): avc:  denied  { ioctl } for  pid=10891 comm="syz.4.1305" path="/dev/vhost-vsock" dev="devtmpfs" ino=1276 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  529.861449][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  530.246053][   T30] audit: type=1400 audit(1749946966.830:2894): avc:  denied  { mount } for  pid=10891 comm="syz.4.1305" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  530.537148][  T996] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.002351][   T30] audit: type=1400 audit(1749946967.070:2895): avc:  denied  { mounton } for  pid=10891 comm="syz.4.1305" path="/252/file0/file0" dev="afs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  531.201120][  T996] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.229786][ T5882] usb 5-1: new low-speed USB device number 27 using dummy_hcd
[  531.500858][T10709] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  531.515705][T10709] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  531.524403][T10709] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  531.535306][T10709] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  531.544262][ T5882] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  531.553952][T10709] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  531.828704][  T996] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  531.911256][   T30] audit: type=1400 audit(1749946968.460:2896): avc:  denied  { mounton } for  pid=10912 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  531.971954][ T5882] usb 5-1: config 179 has no interface number 0
[  531.978385][ T5882] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  531.993225][ T5882] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 8
[  532.019762][ T5882] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[  532.046739][ T5882] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 8
[  532.075500][ T5882] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  532.089411][ T5882] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  532.101970][ T5882] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  532.102535][  T996] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  532.122055][T10899] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  532.129489][T10899] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  532.337949][ T5827] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  532.348327][ T5827] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  532.372064][T10922] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1314'.
[  532.381362][ T5827] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  532.393214][ T5827] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  532.420834][ T5827] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  532.449842][ T5837] usb 5-1: USB disconnect, device number 27
[  532.449842][ T5881] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  532.449940][    C1] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  532.471769][    C1] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  532.533381][   T30] audit: type=1400 audit(1749946969.120:2897): avc:  denied  { read } for  pid=5486 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  532.567230][   T30] audit: type=1400 audit(1749946969.140:2898): avc:  denied  { search } for  pid=5486 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  532.654666][ T5881] usb 2-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  532.682874][ T5881] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  532.697858][T10928] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  532.715822][ T5881] usb 2-1: config 0 descriptor??
[  532.739404][ T5881] gspca_main: spca508-2.14.0 probing 8086:0110
[  532.753576][T10928] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  532.895156][T10270] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  532.941484][ T5881] gspca_spca508: reg_read err -32
[  533.052617][T10270] usb 3-1: config 2 has an invalid interface number: 131 but max is 2
[  533.068191][T10270] usb 3-1: config 2 has an invalid interface number: 66 but max is 2
[  533.077984][T10270] usb 3-1: config 2 has an invalid interface number: 224 but max is 2
[  533.099872][    C0] net_ratelimit: 14 callbacks suppressed
[  533.099887][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.115338][T10270] usb 3-1: config 2 has an invalid interface number: 255 but max is 2
[  533.123556][T10270] usb 3-1: config 2 has an invalid descriptor of length 117, skipping remainder of the config
[  533.133831][T10270] usb 3-1: config 2 has 4 interfaces, different from the descriptor's value: 3
[  533.146876][T10270] usb 3-1: config 2 has no interface number 0
[  533.167103][T10270] usb 3-1: config 2 has no interface number 1
[  533.182816][T10270] usb 3-1: config 2 has no interface number 2
[  533.188941][T10270] usb 3-1: config 2 has no interface number 3
[  533.219787][T10270] usb 3-1: config 2 interface 66 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[  533.243161][T10270] usb 3-1: config 2 interface 66 altsetting 9 has an endpoint descriptor with address 0xD2, changing to 0x82
[  533.270341][T10270] usb 3-1: config 2 interface 66 altsetting 9 endpoint 0x82 has an invalid bInterval 125, changing to 7
[  533.289754][T10270] usb 3-1: config 2 interface 66 altsetting 9 endpoint 0x82 has invalid maxpacket 34520, setting to 1024
[  533.340584][   T48] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.343086][T10270] usb 3-1: config 2 interface 66 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[  533.371803][T10270] usb 3-1: config 2 interface 66 altsetting 9 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[  533.383483][T10270] usb 3-1: config 2 interface 66 altsetting 9 has a duplicate endpoint with address 0x7, skipping
[  533.425508][T10270] usb 3-1: config 2 interface 66 altsetting 9 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  533.450501][ T5881] gspca_spca508: reg_read err -110
[  533.462814][ T5881] gspca_spca508: reg_read err -32
[  533.493713][ T5881] gspca_spca508: reg_read err -32
[  533.503696][ T5881] gspca_spca508: reg write: error -32
[  533.510014][ T5881] spca508 2-1:0.0: probe with driver spca508 failed with error -32
[  533.728902][T10270] usb 3-1: config 2 interface 66 altsetting 9 endpoint 0xA has invalid maxpacket 512, setting to 64
[  533.740036][T10270] usb 3-1: config 2 interface 66 altsetting 9 has a duplicate endpoint with address 0xA, skipping
[  533.750922][T10270] usb 3-1: config 2 interface 66 altsetting 9 has 13 endpoint descriptors, different from the interface descriptor's value: 15
[  533.764288][T10270] usb 3-1: too many endpoints for config 2 interface 224 altsetting 127: 199, using maximum allowed: 30
[  533.775886][T10270] usb 3-1: config 2 interface 224 altsetting 127 has a duplicate endpoint with address 0xA, skipping
[  533.787482][T10270] usb 3-1: config 2 interface 224 altsetting 127 has a duplicate endpoint with address 0xD, skipping
[  533.804678][ T5837] usb 2-1: USB disconnect, device number 48
[  533.812357][T10270] usb 3-1: config 2 interface 224 altsetting 127 has 3 endpoint descriptors, different from the interface descriptor's value: 199
[  533.830098][T10709] Bluetooth: hci0: command tx timeout
[  533.840338][T10270] usb 3-1: config 2 interface 255 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  533.854177][T10270] usb 3-1: config 2 interface 131 has no altsetting 0
[  533.856034][  T996] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  533.861026][T10270] usb 3-1: config 2 interface 66 has no altsetting 0
[  533.861047][T10270] usb 3-1: config 2 interface 224 has no altsetting 0
[  533.861065][T10270] usb 3-1: config 2 interface 255 has no altsetting 0
[  533.862813][T10270] usb 3-1: New USB device found, idVendor=0a46, idProduct=0269, bcdDevice=1d.89
[  533.899583][T10270] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  533.907732][T10270] usb 3-1: Product: syz
[  533.908006][  T996] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  533.911909][T10270] usb 3-1: Manufacturer: syz
[  533.911926][T10270] usb 3-1: SerialNumber: syz
[  533.933379][  T996] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  533.949066][  T996] bond0 (unregistering): Released all slaves
[  534.007508][T10912] chnl_net:caif_netlink_parms(): no params data found
[  534.012001][  T996] tipc: Left network mode
[  534.041132][  T996] IPVS: stopping master sync thread 6355 ...
[  534.128804][T10912] bridge0: port 1(bridge_slave_0) entered blocking state
[  534.137271][T10912] bridge0: port 1(bridge_slave_0) entered disabled state
[  534.144988][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  534.156035][T10270] dm9601 3-1:2.131: probe with driver dm9601 failed with error -22
[  534.166232][T10912] bridge_slave_0: entered allmulticast mode
[  534.173122][T10270] cdc_ether 3-1:2.66: skipping garbage
[  534.174175][T10912] bridge_slave_0: entered promiscuous mode
[  534.178578][T10270] usb 3-1: bad CDC descriptors
[  534.179115][T10270] dm9601 3-1:2.66: probe with driver dm9601 failed with error -22
[  534.211081][T10270] dm9601 3-1:2.224: probe with driver dm9601 failed with error -22
[  534.216651][T10912] bridge0: port 2(bridge_slave_1) entered blocking state
[  534.222874][T10270] dm9601 3-1:2.255: probe with driver dm9601 failed with error -22
[  534.228534][T10912] bridge0: port 2(bridge_slave_1) entered disabled state
[  534.238765][T10270] usbhid 3-1:2.255: couldn't find an input interrupt endpoint
[  534.244378][T10912] bridge_slave_1: entered allmulticast mode
[  534.259878][T10912] bridge_slave_1: entered promiscuous mode
[  534.274657][T10270] usb 3-1: USB disconnect, device number 27
[  534.380227][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  534.423959][T10912] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  534.472768][T10912] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  534.702314][T10709] Bluetooth: hci4: command tx timeout
[  535.189862][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  535.584623][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  535.647837][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  535.647852][   T30] audit: type=1400 audit(1749946972.230:2916): avc:  denied  { create } for  pid=10969 comm="syz.4.1320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  535.718082][   T30] audit: type=1400 audit(1749946972.300:2917): avc:  denied  { write } for  pid=10969 comm="syz.4.1320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  535.758734][  T996] hsr_slave_0: left promiscuous mode
[  535.816624][  T996] hsr_slave_1: left promiscuous mode
[  535.844014][  T996] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  535.909997][T10709] Bluetooth: hci0: command tx timeout
[  535.961954][   T30] audit: type=1400 audit(1749946972.550:2918): avc:  denied  { create } for  pid=10982 comm="syz.1.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  536.012575][  T996] batman_adv: batadv0: Removing interface: batadv_slave_0
[  536.022751][   T30] audit: type=1400 audit(1749946972.550:2919): avc:  denied  { bind } for  pid=10982 comm="syz.1.1323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  536.050531][   T30] audit: type=1400 audit(1749946972.640:2920): avc:  denied  { name_bind 0x1000000 } for  pid=10979 comm="syz.2.1322" path="socket:[25554]" dev="sockfs" ino=25554 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  536.080098][  T996] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  536.088399][T10980] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  536.108965][  T996] batman_adv: batadv0: Removing interface: batadv_slave_1
[  536.128512][  T996] batman_adv: batadv0: Removing interface: ipvlan1
[  536.159688][  T996] veth0_macvtap: left promiscuous mode
[  536.167431][  T996] veth1_vlan: left promiscuous mode
[  536.185308][  T996] veth0_vlan: left promiscuous mode
[  536.219874][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  536.501093][  T115] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  536.627218][   T48] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  536.635901][ T5881] usb 2-1: new full-speed USB device number 49 using dummy_hcd
[  536.653795][  T996] team0 (unregistering): Port device team_slave_1 removed
[  536.665724][  T115] usb 3-1: Using ep0 maxpacket: 16
[  536.676195][  T115] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 112, changing to 10
[  536.713787][  T996] team0 (unregistering): Port device team_slave_0 removed
[  536.716755][  T115] usb 3-1: New USB device found, idVendor=05ac, idProduct=0224, bcdDevice= 0.00
[  536.730896][  T115] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  536.741482][  T115] usb 3-1: config 0 descriptor??
[  536.803052][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  536.811608][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  536.877055][T10709] Bluetooth: hci4: command tx timeout
[  537.067110][ T5881] usb 2-1: config 0 has an invalid interface number: 175 but max is 0
[  537.164336][ T5881] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  537.178379][ T5881] usb 2-1: config 0 has no interface number 0
[  537.186999][ T5881] usb 2-1: config 0 interface 175 altsetting 0 has an endpoint descriptor with address 0xBC, changing to 0x8C
[  537.202914][ T5881] usb 2-1: config 0 interface 175 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 10
[  537.214767][ T5881] usb 2-1: config 0 interface 175 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0
[  537.235218][ T5881] usb 2-1: config 0 interface 175 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 16
[  537.284631][ T5881] usb 2-1: New USB device found, idVendor=05e0, idProduct=0600, bcdDevice=f9.9b
[  537.295225][ T5881] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  537.310668][ T5881] usb 2-1: Product: syz
[  537.314909][ T5881] usb 2-1: Manufacturer: syz
[  537.319592][ T5881] usb 2-1: SerialNumber: syz
[  537.346151][ T5881] usb 2-1: config 0 descriptor??
[  537.356968][ T5881] symbolserial 2-1:0.175: symbol converter detected
[  537.368060][ T5881] usb 2-1: symbol converter now attached to ttyUSB0
[  537.584896][T10912] team0: Port device team_slave_0 added
[  537.651531][T10912] team0: Port device team_slave_1 added
[  537.693515][T10919] chnl_net:caif_netlink_parms(): no params data found
[  537.793544][ T5881] usb 2-1: USB disconnect, device number 49
[  537.823280][ T5881] symbol ttyUSB0: symbol converter now disconnected from ttyUSB0
[  537.833395][ T5881] symbolserial 2-1:0.175: device disconnected
[  537.872358][T10912] batman_adv: batadv0: Adding interface: batadv_slave_0
[  537.880749][T10912] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  537.907235][T10912] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  537.920349][T10912] batman_adv: batadv0: Adding interface: batadv_slave_1
[  537.927318][T10912] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  537.953410][T10912] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  537.980027][T10709] Bluetooth: hci0: command tx timeout
[  538.038086][T10919] bridge0: port 1(bridge_slave_0) entered blocking state
[  538.045734][T10919] bridge0: port 1(bridge_slave_0) entered disabled state
[  538.053568][T10919] bridge_slave_0: entered allmulticast mode
[  538.061123][T10919] bridge_slave_0: entered promiscuous mode
[  538.095233][T10919] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.102802][T10919] bridge0: port 2(bridge_slave_1) entered disabled state
[  538.115067][T10919] bridge_slave_1: entered allmulticast mode
[  538.122534][T10919] bridge_slave_1: entered promiscuous mode
[  538.197510][T10919] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  538.213912][T10912] hsr_slave_0: entered promiscuous mode
[  538.222770][T10912] hsr_slave_1: entered promiscuous mode
[  538.240466][T10912] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  538.253195][T10912] Cannot create hsr debugfs directory
[  538.273437][T10919] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  538.299778][    C0] net_ratelimit: 4 callbacks suppressed
[  538.299791][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  538.469085][T10919] team0: Port device team_slave_0 added
[  538.634444][T10919] team0: Port device team_slave_1 added
[  538.700407][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  538.780253][   T30] audit: type=1400 audit(1749946975.360:2921): avc:  denied  { create } for  pid=11029 comm="syz.1.1329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  539.000923][T10709] Bluetooth: hci4: command tx timeout
[  539.222373][  T996] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  539.339793][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  539.371701][T10919] batman_adv: batadv0: Adding interface: batadv_slave_0
[  539.376205][  T115] usb 3-1: string descriptor 0 read error: -71
[  539.388908][T10919] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  539.439673][  T115] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input28
[  539.442492][T11038] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=11038 comm=syz.1.1330
[  539.474049][   T30] audit: type=1400 audit(1749946976.030:2922): avc:  denied  { create } for  pid=11037 comm="syz.1.1330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  539.496690][T10919] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  539.532288][ T5176] bcm5974 3-1:0.0: could not read from device
[  539.554336][T10919] batman_adv: batadv0: Adding interface: batadv_slave_1
[  539.563871][   T30] audit: type=1400 audit(1749946976.120:2923): avc:  denied  { read } for  pid=5176 comm="acpid" name="mouse1" dev="devtmpfs" ino=3180 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  539.564226][T11038] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1330'.
[  539.605967][T10919] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  539.646041][   T30] audit: type=1400 audit(1749946976.120:2924): avc:  denied  { open } for  pid=5176 comm="acpid" path="/dev/input/mouse1" dev="devtmpfs" ino=3180 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  539.658356][  T115] usb 3-1: USB disconnect, device number 28
[  539.687205][ T5830] bcm5974 3-1:0.0: could not read from device
[  539.698483][T10919] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  539.777374][ T5176] bcm5974 3-1:0.0: could not read from device
[  539.835783][ T5176] bcm5974 3-1:0.0: could not read from device
[  539.896932][   T30] audit: type=1400 audit(1749946976.230:2925): avc:  denied  { create } for  pid=11041 comm="syz.4.1332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  539.984045][ T5176] bcm5974 3-1:0.0: could not read from device
[  540.059795][T10709] Bluetooth: hci0: command tx timeout
[  540.067376][ T5176] bcm5974 3-1:0.0: could not read from device
[  540.130051][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  540.173757][ T5176] bcm5974 3-1:0.0: could not read from device
[  540.375901][  T996] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  540.386261][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  540.406333][T11051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  540.415595][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  540.663615][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  540.663630][   T30] audit: type=1400 audit(1749946977.250:2936): avc:  denied  { execute } for  pid=11047 comm="syz.2.1333" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=26771 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  540.766478][T11058] ubi: mtd0 is already attached to ubi31
[  540.960702][  T115] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  541.046435][T10709] Bluetooth: hci4: command tx timeout
[  541.062018][   T30] audit: type=1400 audit(1749946977.420:2937): avc:  denied  { execute_no_trans } for  pid=11054 comm="syz.4.1335" path="/259/file0" dev="tmpfs" ino=1377 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  541.101886][T10919] hsr_slave_0: entered promiscuous mode
[  541.108032][   T30] audit: type=1400 audit(1749946977.690:2938): avc:  denied  { bind } for  pid=11050 comm="syz.1.1334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  541.133413][T10919] hsr_slave_1: entered promiscuous mode
[  541.154745][T10919] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  541.174230][T10919] Cannot create hsr debugfs directory
[  541.181626][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  541.226050][  T996] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.429863][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  541.541626][  T996] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.616924][ T5881] libceph: connect (1)[c::]:6789 error -101
[  541.635908][ T5881] libceph: mon0 (1)[c::]:6789 connect error
[  541.904846][   T30] audit: type=1400 audit(1749946978.490:2939): avc:  denied  { unmount } for  pid=5817 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  541.935516][ T5881] libceph: connect (1)[c::]:6789 error -101
[  541.941895][ T5881] libceph: mon0 (1)[c::]:6789 connect error
[  542.065750][   T30] audit: type=1400 audit(1749946978.650:2940): avc:  denied  { read write } for  pid=11085 comm="syz.2.1338" name="uhid" dev="devtmpfs" ino=1274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  542.112882][   T30] audit: type=1400 audit(1749946978.650:2941): avc:  denied  { open } for  pid=11085 comm="syz.2.1338" path="/dev/uhid" dev="devtmpfs" ino=1274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  542.234123][T11069] ceph: No mds server is up or the cluster is laggy
[  542.357892][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.079969][  T996] bridge_slave_1: left allmulticast mode
[  543.094092][  T996] bridge_slave_1: left promiscuous mode
[  543.219048][  T996] bridge0: port 2(bridge_slave_1) entered disabled state
[  543.499775][    C0] net_ratelimit: 3 callbacks suppressed
[  543.499790][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.513488][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.707637][  T996] bridge_slave_0: left allmulticast mode
[  543.714674][  T996] bridge_slave_0: left promiscuous mode
[  543.720912][  T996] bridge0: port 1(bridge_slave_0) entered disabled state
[  543.757676][   T30] audit: type=1400 audit(1749946980.340:2942): avc:  denied  { append } for  pid=11103 comm="syz.2.1343" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  543.784371][T11108] random: crng reseeded on system resumption
[  543.833790][ T7027] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.842276][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.326938][  T996] batman_adv: batadv0: Removing interface: vxlan0
[  544.340539][  T996] batman_adv: batadv0: Interface deactivated: ipvlan2
[  544.355574][  T996] batman_adv: batadv0: Removing interface: ipvlan2
[  544.540709][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.549474][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.561255][  T996] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  544.573074][  T996] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  544.583194][  T996] bond0 (unregistering): Released all slaves
[  544.725786][T10912] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  544.760712][T10912] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  544.918768][T10912] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  544.961624][T10912] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  545.071536][  T115] usb 2-1: new low-speed USB device number 50 using dummy_hcd
[  545.124210][  T996] hsr_slave_0: left promiscuous mode
[  545.131837][  T996] hsr_slave_1: left promiscuous mode
[  545.138140][  T996] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  545.148141][  T996] batman_adv: batadv0: Removing interface: batadv_slave_0
[  545.160633][  T996] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  545.168805][  T996] batman_adv: batadv0: Removing interface: batadv_slave_1
[  545.186948][  T996] veth1_macvtap: left promiscuous mode
[  545.193051][  T996] veth0_macvtap: left promiscuous mode
[  545.199049][  T996] veth1_vlan: left promiscuous mode
[  545.207806][  T996] veth0_vlan: left promiscuous mode
[  545.233878][  T115] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  545.256750][  T115] usb 2-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  545.281752][  T115] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  545.304852][  T115] usb 2-1: config 0 descriptor??
[  545.318178][  T115] ldusb 2-1:0.0: Interrupt in endpoint not found
[  545.522499][  T115] usb 2-1: USB disconnect, device number 50
[  545.580285][   T48] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  545.592760][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  545.688213][  T996] team0 (unregistering): Port device team_slave_1 removed
[  545.736939][  T996] team0 (unregistering): Port device team_slave_0 removed
[  546.623102][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  546.767021][T11149] FAULT_INJECTION: forcing a failure.
[  546.767021][T11149] name failslab, interval 1, probability 0, space 0, times 0
[  546.810092][T11149] CPU: 0 UID: 0 PID: 11149 Comm: syz.1.1349 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[  546.810121][T11149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  546.810133][T11149] Call Trace:
[  546.810139][T11149]  <TASK>
[  546.810146][T11149]  dump_stack_lvl+0x16c/0x1f0
[  546.810177][T11149]  should_fail_ex+0x512/0x640
[  546.810199][T11149]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  546.810223][T11149]  should_failslab+0xc2/0x120
[  546.810247][T11149]  __kmalloc_cache_noprof+0x6a/0x3e0
[  546.810268][T11149]  ? ip_set_create+0x346/0x14d0
[  546.810298][T11149]  ip_set_create+0x346/0x14d0
[  546.810329][T11149]  ? __pfx_ip_set_create+0x10/0x10
[  546.810373][T11149]  ? find_held_lock+0x2b/0x80
[  546.810401][T11149]  nfnetlink_rcv_msg+0x9fc/0x1200
[  546.810433][T11149]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  546.810458][T11149]  ? __lock_acquire+0x622/0x1c90
[  546.810507][T11149]  ? avc_has_perm_noaudit+0x149/0x3b0
[  546.810534][T11149]  netlink_rcv_skb+0x158/0x420
[  546.810553][T11149]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  546.810577][T11149]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  546.810608][T11149]  ? ns_capable+0xd7/0x110
[  546.810631][T11149]  nfnetlink_rcv+0x1b3/0x430
[  546.810658][T11149]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  546.810687][T11149]  netlink_unicast+0x53a/0x7f0
[  546.810710][T11149]  ? __pfx_netlink_unicast+0x10/0x10
[  546.810736][T11149]  netlink_sendmsg+0x8d1/0xdd0
[  546.810760][T11149]  ? __pfx_netlink_sendmsg+0x10/0x10
[  546.810781][T11149]  ? __pfx_netlink_sendmsg+0x10/0x10
[  546.810805][T11149]  ____sys_sendmsg+0xa98/0xc70
[  546.810826][T11149]  ? copy_msghdr_from_user+0x10a/0x160
[  546.810851][T11149]  ? __pfx_____sys_sendmsg+0x10/0x10
[  546.810875][T11149]  ? lock_acquire+0x179/0x350
[  546.810900][T11149]  ? find_held_lock+0x2b/0x80
[  546.810924][T11149]  ___sys_sendmsg+0x134/0x1d0
[  546.810947][T11149]  ? rcu_is_watching+0x12/0xc0
[  546.810971][T11149]  ? __pfx____sys_sendmsg+0x10/0x10
[  546.810993][T11149]  ? __lock_acquire+0x622/0x1c90
[  546.811053][T11149]  __sys_sendmsg+0x16d/0x220
[  546.811079][T11149]  ? __pfx___sys_sendmsg+0x10/0x10
[  546.811102][T11149]  ? rcu_is_watching+0x12/0xc0
[  546.811134][T11149]  ? trace_irq_enable.constprop.0+0x2f/0x120
[  546.811162][T11149]  do_syscall_64+0xcd/0x4c0
[  546.811191][T11149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.811209][T11149] RIP: 0033:0x7fd9b2f8e929
[  546.811225][T11149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  546.811242][T11149] RSP: 002b:00007fd9b3e8c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  546.811260][T11149] RAX: ffffffffffffffda RBX: 00007fd9b31b5fa0 RCX: 00007fd9b2f8e929
[  546.811271][T11149] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000003
[  546.811282][T11149] RBP: 00007fd9b3e8c090 R08: 0000000000000000 R09: 0000000000000000
[  546.811293][T11149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  546.811303][T11149] R13: 0000000000000000 R14: 00007fd9b31b5fa0 R15: 00007fffc57da078
[  546.811328][T11149]  </TASK>
[  547.187988][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  548.543030][   T30] audit: type=1400 audit(1749946985.120:2943): avc:  denied  { ioctl } for  pid=11167 comm="syz.1.1354" path="/dev/sg0" dev="devtmpfs" ino=763 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  548.577329][T10912] 8021q: adding VLAN 0 to HW filter on device bond0
[  548.699761][    C0] net_ratelimit: 4 callbacks suppressed
[  548.699777][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  548.767966][T10912] 8021q: adding VLAN 0 to HW filter on device team0
[  548.808175][ T7027] bridge0: port 1(bridge_slave_0) entered blocking state
[  548.815355][ T7027] bridge0: port 1(bridge_slave_0) entered forwarding state
[  549.131195][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  549.138539][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  549.341094][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.498278][T10919] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  549.517244][  T996] IPVS: stop unused estimator thread 0...
[  549.538919][T10919] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  549.580579][ T7027] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.588829][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.625380][T10919] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  549.666325][T10919] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  549.739778][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.950013][   T48] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  550.237855][   T48] usb 5-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=7a.ac
[  550.644814][T10919] 8021q: adding VLAN 0 to HW filter on device bond0
[  550.659082][T10919] 8021q: adding VLAN 0 to HW filter on device team0
[  550.674764][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  550.682084][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  550.697026][   T48] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  550.720203][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.730544][   T48] usb 5-1: Product: syz
[  550.739948][   T48] usb 5-1: Manufacturer: syz
[  550.744743][   T48] usb 5-1: SerialNumber: syz
[  550.767306][   T48] usb 5-1: config 0 descriptor??
[  550.780085][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.806362][   T48] usb 5-1: interface 1 not found
[  550.818595][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  550.825748][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  550.868853][   T30] audit: type=1400 audit(1749946987.430:2944): avc:  denied  { create } for  pid=11206 comm="syz.1.1359" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  550.983875][   T30] audit: type=1400 audit(1749946987.430:2945): avc:  denied  { listen } for  pid=11206 comm="syz.1.1359" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  551.027082][T11187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  551.059380][T11215] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  551.069910][   T30] audit: type=1400 audit(1749946987.440:2946): avc:  denied  { accept } for  pid=11206 comm="syz.1.1359" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  551.070195][T11187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  551.104413][T10912] 8021q: adding VLAN 0 to HW filter on device batadv0
[  551.121329][T11215] overlayfs: missing 'lowerdir'
[  551.175834][T11187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  551.247096][T11187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  551.295004][   T30] audit: type=1400 audit(1749946987.880:2947): avc:  denied  { append } for  pid=11186 comm="syz.4.1357" name="event2" dev="devtmpfs" ino=923 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  551.328625][T11187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  551.341876][T11187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  551.383456][ T5942] usb 5-1: USB disconnect, device number 28
[  551.438349][   T30] audit: type=1400 audit(1749946988.020:2948): avc:  denied  { unlink } for  pid=11214 comm="syz.2.1360" name="#e" dev="tmpfs" ino=1471 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  551.439409][T10912] veth0_vlan: entered promiscuous mode
[  551.744251][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.819676][T10912] veth1_vlan: entered promiscuous mode
[  551.825304][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.835010][   T30] audit: type=1400 audit(1749946988.420:2949): avc:  denied  { watch_mount } for  pid=11237 comm="syz.1.1361" path="/275" dev="tmpfs" ino=1467 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  551.905517][T11215] overlayfs: statfs failed on './file0'
[  552.120956][T10912] veth0_macvtap: entered promiscuous mode
[  552.183997][T10912] veth1_macvtap: entered promiscuous mode
[  552.261927][T10912] batman_adv: batadv0: Interface activated: batadv_slave_0
[  552.327955][T10919] 8021q: adding VLAN 0 to HW filter on device batadv0
[  552.379937][ T5837] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  552.395496][T10912] batman_adv: batadv0: Interface activated: batadv_slave_1
[  552.471958][T10912] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  552.503132][T10912] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  552.543469][ T5837] usb 5-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=7a.ac
[  552.559524][T10912] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  552.575707][ T5837] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.589297][T10912] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  552.602280][ T5837] usb 5-1: Product: syz
[  552.611841][ T5837] usb 5-1: Manufacturer: syz
[  552.631199][ T5837] usb 5-1: SerialNumber: syz
[  552.675311][ T5837] usb 5-1: config 0 descriptor??
[  552.697198][ T5837] usb 5-1: interface 1 not found
[  552.784302][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  552.828942][   T30] audit: type=1400 audit(1749946989.410:2950): avc:  denied  { read } for  pid=11252 comm="syz.2.1363" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  552.969539][T10919] veth0_vlan: entered promiscuous mode
[  552.989461][T11244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  552.999998][   T30] audit: type=1400 audit(1749946989.410:2951): avc:  denied  { open } for  pid=11252 comm="syz.2.1363" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  553.033342][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  553.053885][T10919] veth1_vlan: entered promiscuous mode
[  553.056015][   T30] audit: type=1400 audit(1749946989.410:2952): avc:  denied  { connect } for  pid=11252 comm="syz.2.1363" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  553.090888][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  553.109167][T11244] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  553.179625][T11244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  553.213016][ T1175] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  553.216916][T11244] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  553.358501][T10919] veth0_macvtap: entered promiscuous mode
[  553.374264][ T1175] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  553.573366][   T30] audit: type=1400 audit(1749946990.020:2953): avc:  denied  { bind } for  pid=11261 comm="syz.2.1364" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  553.609016][T10919] veth1_macvtap: entered promiscuous mode
[  553.635637][T10919] batman_adv: batadv0: Interface activated: batadv_slave_0
[  553.653141][T11244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  553.675763][T11244] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  553.685156][T10919] batman_adv: batadv0: Interface activated: batadv_slave_1
[  553.732060][T10919] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  553.756457][T10919] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  553.778491][T10919] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  553.798310][T10919] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  553.822270][ T5881] net_ratelimit: 1 callbacks suppressed
[  553.822283][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  553.855574][ T5882] usb 5-1: USB disconnect, device number 29
[  553.869920][   T30] audit: type=1400 audit(1749946990.210:2954): avc:  denied  { mounton } for  pid=10912 comm="syz-executor" path="/root/syzkaller.Fm0rIN/syz-tmp" dev="sda1" ino=2048 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  553.909831][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.062106][  T996] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.070375][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.088944][   T30] audit: type=1400 audit(1749946990.210:2955): avc:  denied  { mounton } for  pid=10912 comm="syz-executor" path="/root/syzkaller.Fm0rIN/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  554.284512][   T30] audit: type=1400 audit(1749946990.210:2956): avc:  denied  { mounton } for  pid=10912 comm="syz-executor" path="/root/syzkaller.Fm0rIN/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=27352 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  554.389887][   T30] audit: type=1400 audit(1749946990.210:2957): avc:  denied  { unmount } for  pid=10912 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  554.459773][   T30] audit: type=1400 audit(1749946990.290:2958): avc:  denied  { mounton } for  pid=10912 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2776 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  554.577791][T11277] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  554.589176][T11277] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  554.750883][   T30] audit: type=1400 audit(1749946990.290:2959): avc:  denied  { mount } for  pid=10912 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  554.776792][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.785096][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.832621][   T30] audit: type=1400 audit(1749946990.290:2960): avc:  denied  { mounton } for  pid=10912 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  554.874343][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.899851][   T30] audit: type=1400 audit(1749946991.160:2961): avc:  denied  { mount } for  pid=11276 comm="syz.2.1365" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  554.914021][ T1175] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  554.939774][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.987713][   T30] audit: type=1400 audit(1749946991.160:2962): avc:  denied  { mounton } for  pid=11276 comm="syz.2.1365" path="/276/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  555.130830][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  555.138666][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  555.934566][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  555.979790][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.173576][ T1175] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.345028][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  556.405552][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  556.555924][ T1175] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  556.759910][ T5882] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  557.078251][ T5882] usb 2-1: config 1 has an invalid descriptor of length 32, skipping remainder of the config
[  557.111556][ T5827] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  557.122004][ T5827] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  557.130182][ T5827] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  557.138377][ T5827] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  557.146109][ T5827] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  557.183359][ T5882] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  557.206765][ T1175] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  557.214391][ T5882] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  557.252143][ T5882] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  557.564597][T11318] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  557.642277][ T5882] usb 2-1: SerialNumber: syz
[  557.664511][T11318] team0: Device ipvlan2 is already an upper device of the team interface
[  557.889321][T11326] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (65535)
[  558.055113][ T5882] usb 2-1: 0:2 : does not exist
[  558.113637][ T5882] usb 2-1: USB disconnect, device number 51
[  558.348714][T11332] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  558.678828][ T5830] udevd[5830]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  558.983766][ T1175] bridge_slave_1: left allmulticast mode
[  558.990925][ T1175] bridge_slave_1: left promiscuous mode
[  558.996843][ T1175] bridge0: port 2(bridge_slave_1) entered disabled state
[  559.021988][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  559.022002][   T30] audit: type=1400 audit(1749946995.610:2968): avc:  denied  { ioctl } for  pid=11338 comm="syz.1.1377" path="/dev/binderfs/binder0" dev="binder" ino=16 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  559.055370][ T1175] bridge_slave_0: left allmulticast mode
[  559.062097][   T30] audit: type=1400 audit(1749946995.610:2969): avc:  denied  { set_context_mgr } for  pid=11338 comm="syz.1.1377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  559.082586][ T1175] bridge_slave_0: left promiscuous mode
[  559.088434][ T1175] bridge0: port 1(bridge_slave_0) entered disabled state
[  559.099765][    C0] net_ratelimit: 4 callbacks suppressed
[  559.099777][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  559.113406][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  559.182597][T10709] Bluetooth: hci0: command tx timeout
[  559.200139][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  559.208354][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  559.278071][ T5827] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  559.287590][ T5827] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  559.296195][ T5827] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  559.304497][ T5827] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  559.312052][ T5827] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  560.139784][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.156119][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.196924][   T30] audit: type=1400 audit(1749946996.780:2970): avc:  denied  { map_create } for  pid=11338 comm="syz.1.1377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  560.217574][   T30] audit: type=1400 audit(1749946996.780:2971): avc:  denied  { prog_load } for  pid=11338 comm="syz.1.1377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  560.246834][   T30] audit: type=1400 audit(1749946996.780:2972): avc:  denied  { bpf } for  pid=11338 comm="syz.1.1377" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  560.268738][   T30] audit: type=1400 audit(1749946996.780:2973): avc:  denied  { perfmon } for  pid=11338 comm="syz.1.1377" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  560.298507][   T30] audit: type=1400 audit(1749946996.780:2974): avc:  denied  { map_read map_write } for  pid=11338 comm="syz.1.1377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  560.320510][   T30] audit: type=1400 audit(1749946996.780:2975): avc:  denied  { prog_run } for  pid=11338 comm="syz.1.1377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  560.339748][   T30] audit: type=1400 audit(1749946996.830:2976): avc:  denied  { read write } for  pid=11338 comm="syz.1.1377" name="raw-gadget" dev="devtmpfs" ino=821 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  560.364371][   T30] audit: type=1400 audit(1749946996.830:2977): avc:  denied  { open } for  pid=11338 comm="syz.1.1377" path="/dev/raw-gadget" dev="devtmpfs" ino=821 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  560.433476][ T1175] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  560.443586][ T1175] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  560.454026][ T1175] bond0 (unregistering): Released all slaves
[  560.460591][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.468903][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.502846][ T5881] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[  560.571746][T11316] chnl_net:caif_netlink_parms(): no params data found
[  560.670024][ T5881] usb 2-1: Using ep0 maxpacket: 16
[  560.692087][ T5881] usb 2-1: config 7 has an invalid interface number: 247 but max is 0
[  560.721324][ T5881] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  560.741972][ T5881] usb 2-1: config 7 has no interface number 0
[  560.748269][ T5881] usb 2-1: config 7 interface 247 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  560.775406][ T5881] usb 2-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=6c.22
[  560.799383][ T5881] usb 2-1: New USB device strings: Mfr=1, Product=74, SerialNumber=147
[  560.818132][ T5881] usb 2-1: Product: syz
[  560.825126][ T5881] usb 2-1: Manufacturer: syz
[  560.851505][ T5881] usb 2-1: SerialNumber: syz
[  560.858841][ T1175] hsr_slave_0: left promiscuous mode
[  560.881703][ T5881] comedi comedi0: Wrong number of endpoints
[  560.894108][ T1175] hsr_slave_1: left promiscuous mode
[  560.901221][ T5881] ni6501 2-1:7.247: driver 'ni6501' failed to auto-configure device.
[  560.910907][ T1175] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  560.923483][ T1175] batman_adv: batadv0: Removing interface: batadv_slave_0
[  560.949109][ T1175] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  560.968290][ T1175] batman_adv: batadv0: Removing interface: batadv_slave_1
[  560.994783][ T1175] veth1_macvtap: left promiscuous mode
[  561.001380][ T1175] veth0_macvtap: left promiscuous mode
[  561.007129][ T1175] veth1_vlan: left promiscuous mode
[  561.012917][ T1175] veth0_vlan: left promiscuous mode
[  561.185218][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  561.193420][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  561.262834][ T5827] Bluetooth: hci0: command tx timeout
[  561.342896][ T5827] Bluetooth: hci4: command tx timeout
[  561.358760][ T1175] team0 (unregistering): Port device team_slave_1 removed
[  561.393706][ T1175] team0 (unregistering): Port device team_slave_0 removed
[  561.717597][T11316] bridge0: port 1(bridge_slave_0) entered blocking state
[  561.725133][T11316] bridge0: port 1(bridge_slave_0) entered disabled state
[  561.732739][T11316] bridge_slave_0: entered allmulticast mode
[  561.740774][T11316] bridge_slave_0: entered promiscuous mode
[  561.753898][T11346] chnl_net:caif_netlink_parms(): no params data found
[  561.768980][T11316] bridge0: port 2(bridge_slave_1) entered blocking state
[  561.776855][T11316] bridge0: port 2(bridge_slave_1) entered disabled state
[  561.786900][T11316] bridge_slave_1: entered allmulticast mode
[  561.793694][T11316] bridge_slave_1: entered promiscuous mode
[  561.838203][T11316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  561.850092][T11316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  561.908231][T11316] team0: Port device team_slave_0 added
[  561.928522][T11316] team0: Port device team_slave_1 added
[  561.971036][T11346] bridge0: port 1(bridge_slave_0) entered blocking state
[  561.979390][T11346] bridge0: port 1(bridge_slave_0) entered disabled state
[  561.988475][T11346] bridge_slave_0: entered allmulticast mode
[  561.997506][T11346] bridge_slave_0: entered promiscuous mode
[  562.005262][T11316] batman_adv: batadv0: Adding interface: batadv_slave_0
[  562.013619][T11316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  562.040409][T11316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  562.056318][T11346] bridge0: port 2(bridge_slave_1) entered blocking state
[  562.065664][T11346] bridge0: port 2(bridge_slave_1) entered disabled state
[  562.073235][T11346] bridge_slave_1: entered allmulticast mode
[  562.083136][T11346] bridge_slave_1: entered promiscuous mode
[  562.097420][T11316] batman_adv: batadv0: Adding interface: batadv_slave_1
[  562.108073][T11316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  562.138181][T11316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  562.179516][   T10] usb 2-1: USB disconnect, device number 52
[  562.268625][T11346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  562.284603][T11316] hsr_slave_0: entered promiscuous mode
[  562.291807][T11316] hsr_slave_1: entered promiscuous mode
[  562.303267][T11316] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  562.321609][T11316] Cannot create hsr debugfs directory
[  562.387475][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  562.396207][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  562.423626][T11346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  562.507623][T11346] team0: Port device team_slave_0 added
[  562.699819][ T1151] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  563.958964][ T5827] Bluetooth: hci0: command tx timeout
[  563.964550][ T5827] Bluetooth: hci4: command tx timeout
[  564.008919][T11346] team0: Port device team_slave_1 added
[  564.034726][   T30] kauditd_printk_skb: 43 callbacks suppressed
[  564.034740][   T30] audit: type=1400 audit(1749947000.620:3021): avc:  denied  { unlink } for  pid=5815 comm="syz-executor" name="file0" dev="tmpfs" ino=1446 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  564.108923][ T1151] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  564.136329][   T30] audit: type=1400 audit(1749947000.720:3022): avc:  denied  { mounton } for  pid=11411 comm="syz.4.1385" path="/273/file0" dev="tmpfs" ino=1452 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  564.300693][    C0] net_ratelimit: 4 callbacks suppressed
[  564.300710][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  564.315136][ T5881] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  564.390210][   T30] audit: type=1400 audit(1749947000.720:3023): avc:  denied  { mount } for  pid=11411 comm="syz.4.1385" name="/" dev="hugetlbfs" ino=29741 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  564.609749][   T30] audit: type=1400 audit(1749947000.830:3024): avc:  denied  { execmem } for  pid=11411 comm="syz.4.1385" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  564.701110][T11346] batman_adv: batadv0: Adding interface: batadv_slave_0
[  564.722597][T11346] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  564.752950][   T30] audit: type=1400 audit(1749947000.830:3025): avc:  denied  { execute } for  pid=11411 comm="syz.4.1385" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=29744 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  564.779968][   T30] audit: type=1400 audit(1749947000.970:3026): avc:  denied  { setopt } for  pid=11411 comm="syz.4.1385" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  564.810863][T11346] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  564.843573][ T1151] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  564.901695][   T30] audit: type=1400 audit(1749947001.260:3027): avc:  denied  { unmount } for  pid=5815 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  564.911022][T11346] batman_adv: batadv0: Adding interface: batadv_slave_1
[  564.941586][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  564.949813][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  565.018839][T11346] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  565.045738][T11346] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  565.093925][T11400] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  565.102432][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  565.147144][   T30] audit: type=1400 audit(1749947001.460:3028): avc:  denied  { create } for  pid=11416 comm="syz.4.1386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  565.182742][   T30] audit: type=1400 audit(1749947001.460:3029): avc:  denied  { bind } for  pid=11416 comm="syz.4.1386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  565.249503][ T1151] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.308089][   T30] audit: type=1400 audit(1749947001.460:3030): avc:  denied  { connect } for  pid=11416 comm="syz.4.1386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  565.339782][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  565.347875][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  565.985427][T10709] Bluetooth: hci4: command tx timeout
[  565.990970][ T5827] Bluetooth: hci0: command tx timeout
[  565.999470][ T1175] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  566.007669][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  566.615800][T11346] hsr_slave_0: entered promiscuous mode
[  566.644061][T11346] hsr_slave_1: entered promiscuous mode
[  566.687982][T11346] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  566.707348][T11346] Cannot create hsr debugfs directory
[  567.149055][ T1151] bridge_slave_1: left allmulticast mode
[  567.216270][ T1151] bridge_slave_1: left promiscuous mode
[  567.288493][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[  567.421581][ T1151] bridge_slave_0: left allmulticast mode
[  567.467322][ T1151] bridge_slave_0: left promiscuous mode
[  567.488658][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[  568.059875][T10709] Bluetooth: hci4: command tx timeout
[  568.469759][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  568.481008][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  568.491265][ T1151] bond0 (unregistering): Released all slaves
[  569.402737][  T115] net_ratelimit: 5 callbacks suppressed
[  569.402753][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  569.499999][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  569.710427][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  569.710479][   T30] audit: type=1400 audit(1749947006.300:3049): avc:  denied  { read write } for  pid=11478 comm="syz.2.1395" name="uinput" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  569.824837][ T1151] hsr_slave_0: left promiscuous mode
[  569.852271][ T1151] hsr_slave_1: left promiscuous mode
[  569.882771][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  569.895084][   T30] audit: type=1400 audit(1749947006.330:3050): avc:  denied  { open } for  pid=11478 comm="syz.2.1395" path="/dev/uinput" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  569.918965][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[  569.926810][   T30] audit: type=1400 audit(1749947006.330:3051): avc:  denied  { ioctl } for  pid=11478 comm="syz.2.1395" path="/dev/uinput" dev="devtmpfs" ino=921 ioctlcmd=0x556d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  569.929917][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  569.962445][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[  570.151115][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  570.159389][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  570.420573][   T30] audit: type=1400 audit(1749947006.620:3052): avc:  denied  { create } for  pid=11478 comm="syz.2.1395" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  570.464657][ T1151] veth1_macvtap: left promiscuous mode
[  570.470533][ T1151] veth0_macvtap: left promiscuous mode
[  570.476157][   T30] audit: type=1400 audit(1749947007.030:3053): avc:  denied  { append } for  pid=11483 comm="syz.1.1396" name="dlm-control" dev="devtmpfs" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  570.503058][ T1151] veth1_vlan: left promiscuous mode
[  570.514410][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  570.514577][ T1151] veth0_vlan: left promiscuous mode
[  570.539795][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  571.185469][   T30] audit: type=1400 audit(1749947007.770:3054): avc:  denied  { mounton } for  pid=11489 comm="syz.4.1398" path="/279/file0" dev="tmpfs" ino=1483 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  571.225546][   T30] audit: type=1400 audit(1749947007.780:3055): avc:  denied  { write } for  pid=11489 comm="syz.4.1398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  571.247711][ T1151] team0 (unregistering): Port device team_slave_1 removed
[  571.350060][ T1151] team0 (unregistering): Port device team_slave_0 removed
[  571.353098][ T1175] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  571.365389][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  571.579763][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  571.588428][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  571.663627][   T10] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[  571.726337][   T30] audit: type=1400 audit(1749947008.320:3056): avc:  denied  { write } for  pid=11495 comm="syz.4.1400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  571.747538][   T30] audit: type=1400 audit(1749947008.320:3057): avc:  denied  { connect } for  pid=11495 comm="syz.4.1400" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  571.767493][   T30] audit: type=1400 audit(1749947008.320:3058): avc:  denied  { name_connect } for  pid=11495 comm="syz.4.1400" dest=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  571.833123][   T10] usb 2-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=7a.ac
[  571.842490][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  571.850868][   T10] usb 2-1: Product: syz
[  571.855106][   T10] usb 2-1: Manufacturer: syz
[  571.860027][   T10] usb 2-1: SerialNumber: syz
[  571.872926][   T10] usb 2-1: config 0 descriptor??
[  571.882370][   T10] usb 2-1: interface 1 not found
[  572.000998][T11316] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  572.016498][T11316] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  572.028043][T11316] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  572.057474][T11316] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  572.086642][T11494] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  572.108360][T11494] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  572.145492][T11494] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  572.175086][T11494] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  572.192932][T11494] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  572.215193][T11494] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  572.243582][   T10] usb 2-1: USB disconnect, device number 53
[  572.476017][T11316] 8021q: adding VLAN 0 to HW filter on device bond0
[  572.529328][T11316] 8021q: adding VLAN 0 to HW filter on device team0
[  572.549252][ T1151] bridge0: port 1(bridge_slave_0) entered blocking state
[  572.556619][ T1151] bridge0: port 1(bridge_slave_0) entered forwarding state
[  572.631018][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  572.638876][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  572.685895][T11316] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  572.697201][T11316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  573.089400][T11346] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  573.153763][T11346] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  573.334597][T11346] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  573.359276][T11346] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  574.699763][    C0] net_ratelimit: 4 callbacks suppressed
[  574.699779][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  574.799891][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  574.799906][   T30] audit: type=1400 audit(1749947011.370:3064): avc:  denied  { create } for  pid=11551 comm="syz.2.1408" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  574.854782][   T30] audit: type=1400 audit(1749947011.370:3065): avc:  denied  { ioctl } for  pid=11551 comm="syz.2.1408" path="socket:[30237]" dev="sockfs" ino=30237 ioctlcmd=0x8940 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  574.882146][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  574.930929][T11553] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1409'.
[  575.749767][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  575.758019][   T30] audit: type=1400 audit(1749947011.950:3066): avc:  denied  { unlink } for  pid=11551 comm="syz.2.1408" name="#12" dev="tmpfs" ino=1577 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  575.829309][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  575.833574][T11316] 8021q: adding VLAN 0 to HW filter on device batadv0
[  575.837737][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  575.876181][   T30] audit: type=1400 audit(1749947011.970:3067): avc:  denied  { mount } for  pid=11551 comm="syz.2.1408" name="/" dev="overlay" ino=1572 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  575.889021][T11346] 8021q: adding VLAN 0 to HW filter on device bond0
[  575.898766][   T30] audit: type=1800 audit(1749947012.080:3068): pid=11560 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.1408" name="bus" dev="overlay" ino=1579 res=0 errno=0
[  575.934603][ T5882] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  576.247386][T11316] veth0_vlan: entered promiscuous mode
[  576.303129][T11346] 8021q: adding VLAN 0 to HW filter on device team0
[  576.337482][T11316] veth1_vlan: entered promiscuous mode
[  576.345316][   T30] audit: type=1400 audit(1749947012.920:3069): avc:  denied  { unmount } for  pid=5817 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  576.444290][   T30] audit: type=1400 audit(1749947012.980:3070): avc:  denied  { name_bind } for  pid=11568 comm="syz.2.1410" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  576.466471][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  576.475049][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  576.479620][   T30] audit: type=1400 audit(1749947012.980:3071): avc:  denied  { node_bind } for  pid=11568 comm="syz.2.1410" saddr=::ffff:0.0.0.0 src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  576.519255][   T30] audit: type=1400 audit(1749947012.990:3072): avc:  denied  { getopt } for  pid=11568 comm="syz.2.1410" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  576.547422][  T996] bridge0: port 1(bridge_slave_0) entered blocking state
[  576.554543][  T996] bridge0: port 1(bridge_slave_0) entered forwarding state
[  576.698496][T11346] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  576.717028][T11346] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  576.735020][ T1151] bridge0: port 2(bridge_slave_1) entered blocking state
[  576.742169][ T1151] bridge0: port 2(bridge_slave_1) entered forwarding state
[  576.779873][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  576.817925][T11316] veth0_macvtap: entered promiscuous mode
[  576.880423][ T5882] usb 3-1: new full-speed USB device number 30 using dummy_hcd
[  576.957347][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  576.997088][T11316] veth1_macvtap: entered promiscuous mode
[  577.119223][ T5882] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  577.171805][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  577.189321][T11583] bridge0: entered promiscuous mode
[  577.237757][T11316] batman_adv: batadv0: Interface activated: batadv_slave_0
[  577.252055][ T5882] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xD8, changing to 0x88
[  577.268414][T11316] batman_adv: batadv0: Interface activated: batadv_slave_1
[  577.280003][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  577.305278][T11316] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  577.306380][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x88 has invalid maxpacket 219, setting to 64
[  577.337701][T11316] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  577.340684][ T5882] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  577.348174][T11316] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  577.364354][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  577.370173][T11316] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  577.419470][T11346] 8021q: adding VLAN 0 to HW filter on device batadv0
[  577.454424][ T5882] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xD8, changing to 0x88
[  577.466958][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  577.484658][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x88 has invalid maxpacket 219, setting to 64
[  577.498383][ T5882] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  577.516620][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 64
[  577.539372][ T5882] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xD8, changing to 0x88
[  577.553550][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  577.565925][ T5882] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x88 has invalid maxpacket 219, setting to 64
[  577.580825][ T5882] usb 3-1: string descriptor 0 read error: -22
[  577.595272][T11591] syz_tun: entered allmulticast mode
[  577.602684][ T5882] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  577.604176][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  577.639941][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  577.668297][   T30] audit: type=1400 audit(1749947014.240:3073): avc:  denied  { read } for  pid=11590 comm="syz.1.1413" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  577.754192][ T5882] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.775348][T11346] veth0_vlan: entered promiscuous mode
[  577.797234][ T5882] adutux 3-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  577.947764][T11346] veth1_vlan: entered promiscuous mode
[  577.971659][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  577.983108][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  578.492211][T11590] syz_tun: left allmulticast mode
[  578.563032][ T5889] usb 3-1: USB disconnect, device number 30
[  578.622841][T11346] veth0_macvtap: entered promiscuous mode
[  578.644821][T11346] veth1_macvtap: entered promiscuous mode
[  578.891189][T11346] batman_adv: batadv0: Interface activated: batadv_slave_0
[  578.916609][T11346] batman_adv: batadv0: Interface activated: batadv_slave_1
[  579.475779][T11346] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  579.485201][T11346] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  579.494577][T11346] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  579.505220][T11346] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  579.684500][T11619] netlink: 'syz.2.1417': attribute type 16 has an invalid length.
[  579.707435][T11619] netlink: 'syz.2.1417': attribute type 17 has an invalid length.
[  579.899758][    C0] net_ratelimit: 4 callbacks suppressed
[  579.899773][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  580.282694][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  580.303333][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  580.328796][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  580.356474][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  580.404274][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  580.531769][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  580.566476][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  580.628524][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  580.646572][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  580.659771][   T30] kauditd_printk_skb: 16 callbacks suppressed
[  580.659783][   T30] audit: type=1400 audit(1749947017.230:3090): avc:  denied  { create } for  pid=11637 comm="syz.2.1419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  580.939786][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  581.879736][   T30] audit: type=1400 audit(1749947017.610:3091): avc:  denied  { append } for  pid=11635 comm="syz.4.1420" name="001" dev="devtmpfs" ino=740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  581.906821][  T115] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  686.029664][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  686.036626][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P11634/1:b..l
[  686.045050][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=41761, q=264 ncpus=2)
[  686.052755][    C1] task:syz-executor    state:R  running task     stack:25512 pid:11634 tgid:11634 ppid:5803   task_flags:0x400000 flags:0x00004000
[  686.066659][    C1] Call Trace:
[  686.069930][    C1]  <TASK>
[  686.072860][    C1]  __schedule+0x116a/0x5de0
[  686.077378][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  686.083531][    C1]  ? is_bpf_text_address+0x94/0x1a0
[  686.088727][    C1]  ? __kernel_text_address+0xd/0x40
[  686.093920][    C1]  ? arch_stack_walk+0xa6/0x100
[  686.098771][    C1]  ? __pfx___schedule+0x10/0x10
[  686.103619][    C1]  ? __lock_acquire+0x622/0x1c90
[  686.108581][    C1]  preempt_schedule_irq+0x51/0x90
[  686.113606][    C1]  irqentry_exit+0x36/0x90
[  686.118022][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  686.123998][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x10/0x70
[  686.130145][    C1] Code: 00 00 5b e9 72 ef 1f 03 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 34 24 65 48 8b 15 18 a4 10 12 <65> 8b 05 29 a4 10 12 a9 00 01 ff 00 74 1d f6 c4 01 74 43 a9 00 00
[  686.149743][    C1] RSP: 0018:ffffc900039d77a8 EFLAGS: 00000246
[  686.155804][    C1] RAX: 0000000000000000 RBX: 0000000000033afc RCX: ffffffff822e83db
[  686.163766][    C1] RDX: ffff888028f1a440 RSI: ffffffff822e83e5 RDI: 0000000000000007
[  686.171728][    C1] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[  686.179690][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801c500000
[  686.187653][    C1] R13: ffff88823ffef400 R14: 0000000000000000 R15: dffffc0000000000
[  686.195623][    C1]  ? lookup_page_ext+0x13b/0x1d0
[  686.200560][    C1]  ? lookup_page_ext+0x145/0x1d0
[  686.205499][    C1]  lookup_page_ext+0x145/0x1d0
[  686.210262][    C1]  __page_table_check_zero+0x1a4/0x5d0
[  686.215723][    C1]  ? __pfx___page_table_check_zero+0x10/0x10
[  686.221701][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  686.226900][    C1]  post_alloc_hook+0x1af/0x230
[  686.231666][    C1]  get_page_from_freelist+0x1321/0x3890
[  686.237220][    C1]  ? prepare_alloc_pages+0x3c2/0x610
[  686.242497][    C1]  ? rcu_is_watching+0x12/0xc0
[  686.247264][    C1]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  686.253157][    C1]  ? __pfx_vmap_small_pages_range_noflush+0x10/0x10
[  686.259752][    C1]  ? alloc_pages_bulk_noprof+0xa67/0x1410
[  686.265485][    C1]  ? __vmap_pages_range_noflush+0x1d0/0x230
[  686.271381][    C1]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  686.277709][    C1]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  686.283685][    C1]  ? __vmalloc_node_range_noprof+0xf8c/0x14b0
[  686.289749][    C1]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  686.295650][    C1]  ? policy_nodemask+0xea/0x4e0
[  686.300513][    C1]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  686.306406][    C1]  ? policy_nodemask+0xea/0x4e0
[  686.311258][    C1]  alloc_pages_mpol+0x1fb/0x550
[  686.316112][    C1]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  686.321499][    C1]  alloc_pages_noprof+0x131/0x390
[  686.326524][    C1]  __vmalloc_node_range_noprof+0x72f/0x14b0
[  686.332421][    C1]  ? kcov_ioctl+0x4c/0x730
[  686.336838][    C1]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  686.343166][    C1]  ? hook_file_ioctl_common+0x145/0x410
[  686.348709][    C1]  ? kcov_ioctl+0x4c/0x730
[  686.353127][    C1]  vmalloc_user_noprof+0x9e/0xe0
[  686.358059][    C1]  ? kcov_ioctl+0x4c/0x730
[  686.362474][    C1]  kcov_ioctl+0x4c/0x730
[  686.366716][    C1]  ? __pfx_kcov_ioctl+0x10/0x10
[  686.371566][    C1]  __x64_sys_ioctl+0x18e/0x210
[  686.376328][    C1]  do_syscall_64+0xcd/0x4c0
[  686.380838][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  686.386725][    C1] RIP: 0033:0x7ffb19f8e52b
[  686.391135][    C1] RSP: 002b:00007ffc3d3d4680 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  686.399544][    C1] RAX: ffffffffffffffda RBX: 0000000000080000 RCX: 00007ffb19f8e52b
[  686.407510][    C1] RDX: 0000000000080000 RSI: ffffffff80086301 RDI: 00000000000000de
[  686.415472][    C1] RBP: 00007ffb1a1b6578 R08: 00000000000000da R09: 0000000000000000
[  686.423435][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  686.431401][    C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  686.439379][    C1]  </TASK>
[  686.442390][    C1] rcu: rcu_preempt kthread starved for 10411 jiffies! g41761 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  686.453572][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  686.463527][    C1] rcu: RCU grace-period kthread stack dump:
[  686.469399][    C1] task:rcu_preempt     state:R  running task     stack:27784 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  686.482882][    C1] Call Trace:
[  686.486163][    C1]  <TASK>
[  686.489094][    C1]  __schedule+0x116a/0x5de0
[  686.493619][    C1]  ? __lock_acquire+0x622/0x1c90
[  686.498569][    C1]  ? __pfx___schedule+0x10/0x10
[  686.503426][    C1]  ? find_held_lock+0x2b/0x80
[  686.508100][    C1]  ? schedule+0x2d7/0x3a0
[  686.512438][    C1]  schedule+0xe7/0x3a0
[  686.516517][    C1]  schedule_timeout+0x123/0x290
[  686.521368][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  686.526736][    C1]  ? __pfx_process_timeout+0x10/0x10
[  686.532022][    C1]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  686.537831][    C1]  ? prepare_to_swait_event+0xf5/0x480
[  686.543295][    C1]  rcu_gp_fqs_loop+0x1ea/0xb00
[  686.548065][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  686.553362][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  686.558569][    C1]  ? __pfx_rcu_gp_init+0x10/0x10
[  686.563508][    C1]  ? rcu_gp_cleanup+0x7c1/0xd90
[  686.568368][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  686.574175][    C1]  rcu_gp_kthread+0x270/0x380
[  686.578854][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  686.584050][    C1]  ? rcu_is_watching+0x12/0xc0
[  686.588811][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[  686.594009][    C1]  ? __kthread_parkme+0x19e/0x250
[  686.599034][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  686.604233][    C1]  kthread+0x3c2/0x780
[  686.608295][    C1]  ? __pfx_kthread+0x10/0x10
[  686.612884][    C1]  ? rcu_is_watching+0x12/0xc0
[  686.617643][    C1]  ? __pfx_kthread+0x10/0x10
[  686.622226][    C1]  ret_from_fork+0x5d7/0x6f0
[  686.626815][    C1]  ? __pfx_kthread+0x10/0x10
[  686.631396][    C1]  ret_from_fork_asm+0x1a/0x30
[  686.636167][    C1]  </TASK>
[  686.639177][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  686.645491][    C1] CPU: 1 UID: 0 PID: 1151 Comm: kworker/u8:6 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) 
[  686.657629][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  686.667676][    C1] Workqueue: events_unbound toggle_allocation_gate
[  686.674180][    C1] RIP: 0010:smp_call_function_many_cond+0xd7b/0x1510
[  686.680849][    C1] Code: e8 1a 17 0c 00 45 85 ed 74 46 48 8b 14 24 49 89 d6 49 89 d5 49 c1 ee 03 41 83 e5 07 4d 01 e6 41 83 c5 03 e8 b7 1b 0c 00 f3 90 <41> 0f b6 06 41 38 c5 7c 08 84 c0 0f 85 6f 05 00 00 8b 43 08 31 ff
[  686.700447][    C1] RSP: 0018:ffffc90003fff8a0 EFLAGS: 00000293
[  686.706505][    C1] RAX: 0000000000000000 RBX: ffff8880b8443ba0 RCX: ffffffff81b0005d
[  686.714471][    C1] RDX: ffff888028512440 RSI: ffffffff81b00039 RDI: 0000000000000005
[  686.722434][    C1] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[  686.730394][    C1] R10: 0000000000000001 R11: 0000000000000001 R12: dffffc0000000000
[  686.738357][    C1] R13: 0000000000000003 R14: ffffed1017088775 R15: ffff8880b853cf40
[  686.746319][    C1] FS:  0000000000000000(0000) GS:ffff888124854000(0000) knlGS:0000000000000000
[  686.755241][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  686.761817][    C1] CR2: 00007f4623b50f98 CR3: 000000000e382000 CR4: 00000000003526f0
[  686.769783][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  686.777743][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  686.785703][    C1] Call Trace:
[  686.788973][    C1]  <TASK>
[  686.791897][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  686.796927][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  686.803255][    C1]  ? __pfx___text_poke+0x10/0x10
[  686.808188][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  686.813203][    C1]  on_each_cpu_cond_mask+0x40/0x90
[  686.818312][    C1]  ? __kmalloc_node_track_caller_noprof+0xeb/0x510
[  686.824810][    C1]  smp_text_poke_batch_finish+0x27b/0xdb0
[  686.830523][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  686.835550][    C1]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  686.841788][    C1]  ? arch_jump_label_transform_queue+0xc0/0x120
[  686.848023][    C1]  ? find_held_lock+0x2b/0x80
[  686.852704][    C1]  arch_jump_label_transform_apply+0x1c/0x30
[  686.858678][    C1]  jump_label_update+0x376/0x550
[  686.863613][    C1]  static_key_enable_cpuslocked+0x1b7/0x270
[  686.869500][    C1]  static_key_enable+0x1a/0x20
[  686.874259][    C1]  toggle_allocation_gate+0xfa/0x280
[  686.879544][    C1]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  686.885437][    C1]  ? rcu_is_watching+0x12/0xc0
[  686.890201][    C1]  process_one_work+0x9cc/0x1b70
[  686.895143][    C1]  ? __pfx_process_one_work+0x10/0x10
[  686.900517][    C1]  ? assign_work+0x1a0/0x250
[  686.905112][    C1]  worker_thread+0x6c8/0xf10
[  686.909712][    C1]  ? __pfx_worker_thread+0x10/0x10
[  686.914815][    C1]  kthread+0x3c2/0x780
[  686.918878][    C1]  ? __pfx_kthread+0x10/0x10
[  686.923463][    C1]  ? rcu_is_watching+0x12/0xc0
[  686.928223][    C1]  ? __pfx_kthread+0x10/0x10
[  686.932807][    C1]  ret_from_fork+0x5d7/0x6f0
[  686.937396][    C1]  ? __pfx_kthread+0x10/0x10
[  686.941977][    C1]  ret_from_fork_asm+0x1a/0x30
[  686.946746][    C1]  </TASK>