last executing test programs:

11.544237629s ago: executing program 1 (id=609):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e1c, 0x3, 'wrr\x00', 0x1, 0x2, 0x6e}, 0x2c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x0, &(0x7f0000000200)=0x40005)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x15d74000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
keyctl$setperm(0x5, 0x0, 0x1100100)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x4, 0x8, 0x77}, {@rand_addr=0x64010102, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0x103)
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r5)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000600))
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f00000005c0)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, &(0x7f0000000080)=""/62, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, 0x0, &(0x7f0000000880)=""/72, 0x8080000})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$VHOST_SET_LOG_BASE(r4, 0x4008af04, &(0x7f0000000040)=&(0x7f0000000200))
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f00000004c0)={0x3, 0x9, 0x0, 0x7, 0x6, 0x0, [{0xae, 0x7fffffffffffffff, 0x1, '\x00', 0x100}, {0x7f, 0x696, 0xc99, '\x00', 0x1}, {0x6, 0x6, 0x4, '\x00', 0x401}, {0x800, 0x4, 0x6, '\x00', 0x8}, {0x5, 0x7, 0xc, '\x00', 0xe}, {0x8, 0x8, 0x0, '\x00', 0x2004}]})
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

9.895398745s ago: executing program 4 (id=618):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioperm(0x1, 0x9, 0xfffffffffffffffd)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0}, 0x10)
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x3, 0x0, 0x1}, 0x0, 0x0)

8.627421066s ago: executing program 4 (id=622):
ioctl$RNDGETENTCNT(0xffffffffffffffff, 0x80045200, &(0x7f0000000140))
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200))
socket$caif_seqpacket(0x25, 0x5, 0x4)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b001d000000000000000000d00902cd4c2f2f93f57cd65172000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x13, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000181100001c057a2af4e2b585cf4541d51b2782bdfa779ee77457dee021dfbb3d84b3261d6adada36e6f7c170cfb7a84800877f6e72426bb5d5d2a9f4a0f22d4e8091820ba07d4ff65cfc620c8e785a63a6487ab070f1a40e83806267d05b99a495cccfa3bd9eb1c5f50326637f94fe157cd39d9dbb9184030e396d0fd0354a84bbc9f334a1", @ANYRES8=r0, @ANYRESDEC=0x0], &(0x7f00000002c0)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x3, 0x3a)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000100)={0xffffffffffffffff, r0}, 0xc)
r1 = socket(0x8, 0x800, 0xffff)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x600800, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x8, 0x5, 0x1)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32=r2, @ANYBLOB="14000100"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="fd1f", 0x2, 0x40, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x4, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000280)={0x1, 0x7, 0x6})
read$msr(0xffffffffffffffff, &(0x7f0000000bc0)=""/102400, 0x9b6c)
openat$proc_mixer(0xffffff9c, 0x0, 0x80a2, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f00000000c0), 0x1034000, 0x1000, 0x2e, 0x2}, 0x20)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0xa, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000000)={r6}, 0x8)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x1})

8.600489448s ago: executing program 1 (id=623):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000003c0)='net/wireless\x00')
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, &(0x7f00000001c0))
lsetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="6f73323e55e2befde78160bd5a7ce096afb8cab800"], &(0x7f00000000c0)='/dev/net/tun\x00', 0xd, 0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="db93662646942156341aabba6c89f79020081c62b300b4b44d8402c6cad87c54f4039c3977c27958a047b9bcbe9ba561c8ce89013a3f4b98c4f36a98a1dd9856a26f8a322e2ba7eb1dfd89f53aa4b8a53483c9486ab9ba7f0c72", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf25360000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x34}}, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, 0x0)
read$midi(0xffffffffffffffff, 0x0, 0x43)
mkdir(0x0, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r5, 0xc0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
read$FUSE(r6, &(0x7f000000c1c0)={0x2020}, 0xfffffea5)

8.312085227s ago: executing program 4 (id=627):
r0 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x9, [@var={0x8, 0x0, 0x0, 0xe, 0x5, 0x2}, @float={0x9, 0x0, 0x0, 0x10, 0x10}]}, {0x0, [0x4f, 0x5f, 0x61, 0x5f, 0x5f, 0x30, 0x5f]}}, &(0x7f0000000140)=""/167, 0x3d, 0xa7, 0x0, 0x1ff, 0x0, @void, @value}, 0x28)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r2, 0x20, &(0x7f0000000100)={0x0, 0x0, <r3=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r3, 0x4)
r4 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)
fcntl$setsig(r4, 0xa, 0x21)
fcntl$setlease(r4, 0x400, 0x1)
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1f}, {0x85, 0x0, 0x0, 0x15}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x1, 0x4, 0x401, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x14, 0x1, 0x4, 0x101}, 0x14}, 0x1, 0x0, 0x0, 0x20048805}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r7=>r0, {0x4}}, './file0\x00'})
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0xe, 0x0, 0xffffffffffffffff, 0x80000001, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
r9 = openat2(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x101001, 0x60, 0xa}, 0x18)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x7d, 0x0, 0x1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002100)='numa_maps\x00')
read$FUSE(r11, &(0x7f0000002140)={0x2020}, 0x2020)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r13=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0100000007000000612200000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r13, @ANYRES32, @ANYBLOB='\x00'/18], 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000008c0)=@bpf_tracing={0x1a, 0x17, &(0x7f0000000640)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r10}}, {}, [@map_idx={0x18, 0xb, 0x5, 0x0, 0x9}, @exit, @alu={0x4, 0x0, 0x4, 0x3, 0x2, 0xffffffffffffffff, 0x10}, @map_val={0x18, 0x6, 0x2, 0x0, r8, 0x0, 0x0, 0x0, 0x7fff}, @map_idx_val={0x18, 0x8, 0x6, 0x0, 0x9, 0x0, 0x0, 0x0, 0x7}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000700)='GPL\x00', 0x1, 0x46, &(0x7f0000000740)=""/70, 0x41000, 0x40, '\x00', r13, 0x17, 0xffffffffffffffff, 0x8, &(0x7f00000007c0)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000800)={0x3, 0x8, 0xfffffffc}, 0x10, 0x28cb6, 0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000840)=[{0x0, 0x2, 0x7, 0x1}, {0x1, 0x2, 0x4, 0xc}, {0x1, 0x4, 0xa, 0xc}, {0x0, 0x5, 0xa, 0x3}, {0x0, 0x5, 0x7, 0x3}, {0x1, 0x2, 0x7, 0x2}], 0x10, 0x3, @void, @value}, 0x94)
r14 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000480)={0xffffffffffffffff, 0x10, 0x8}, 0xc)
r15 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="050000b5d2b3c856a657b621a1d7be8880000c00", @ANYBLOB='\x00'/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100), &(0x7f00000001c0), 0x10f0, r15}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000640), 0x16c5, r15}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x10, 0x9, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x8}, [@cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffb}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xe, 0x0, 0x0, 0x0, 0x5}, @map_idx_val={0x18, 0x8, 0x6, 0x0, 0xf, 0x0, 0x0, 0x0, 0x3}]}, &(0x7f0000000080)='GPL\x00', 0x4f2563df, 0xd, &(0x7f00000000c0)=""/13, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x16, r1, 0x8, &(0x7f0000000240)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x9, 0x9, 0x80000000}, 0x10, r3, 0xffffffffffffffff, 0x5, &(0x7f00000004c0)=[r4, 0x1, r5, r7, r8, r9, r10, r11, r14, r15], &(0x7f0000000500)=[{0x1, 0x1, 0xd, 0x9}, {0x4, 0x4, 0xe, 0x2}, {0x0, 0x4, 0xe, 0xb}, {0x4, 0x5, 0xb}, {0x1, 0x4, 0x9, 0xc}], 0x10, 0x3, @void, @value}, 0x94)
ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f0000000040)=ANY=[])

7.435306823s ago: executing program 1 (id=629):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r2=>0x0})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x38, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xa0}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x100000, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb1000000080086dd4803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r5}, 0x14)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x24, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x8000)
syz_genetlink_get_family_id$batadv(0x0, r3)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r6, 0x0, 0x4040025)
poll(&(0x7f0000000100)=[{r3}], 0x1, 0x9d)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x1a99000, 0x1, 0x0, 0xc, 0x3a4a, 0x7}, 0x20)
timer_settime(0x0, 0x1, &(0x7f0000000300)={{}, {0x77359400}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000000017c0000040000000c0001800600060086"], 0x528}}, 0xc000)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
syz_open_dev$video(&(0x7f00000009c0), 0x7, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000140)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {0x2}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x240000}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0xfd}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x400d4}, 0x84)
acct(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00')
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYRES8=r2, @ANYRESDEC=r0], 0x1c}, 0x1, 0x3000000, 0x0, 0x20000000}, 0x24048800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2e, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

7.331858269s ago: executing program 4 (id=631):
syz_open_dev$vim2m(&(0x7f0000000000), 0x89, 0x2)
mlockall(0x1)
mlockall(0x7)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000340)={0x0, 0x1, 0x0, 0x0, @vifc_lcl_addr=@rand_addr=0xc0000200, @private}, 0x10)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = eventfd(0x3)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000040)={0xb0000000})
ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000200)={0x28, 0x1, 0x0, 0x0, &(0x7f0000fff000/0x1000)=nil, 0x1000, 0x9})
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000100)={r3, 0xfffffffe})
mount$cgroup2(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x2000010, &(0x7f0000000180)={[], [{@obj_type={'obj_type', 0x3d, ':&+%'}}]})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_exit\x00', r6}, 0x10)
landlock_restrict_self(0xffffffffffffffff, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, &(0x7f0000000040)='}\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, &(0x7f0000000240)='}\x00')
r7 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCSRS485(r7, 0x542f, &(0x7f0000000040)={0x667, 0x4, 0x1})
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000080)={r3, 0xfffffffe, 0x3, r3})

7.056820402s ago: executing program 1 (id=632):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)={0x1b, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0xba8, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x984, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180), 0x4)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000e80)='/sys/kernel/profiling', 0x22042, 0x0)
splice(r3, 0x0, r4, 0x0, 0xbfd1, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000003c0)={0x37bc}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000400)={{0x1, 0x1, 0x18, r1, {0x80000001}}, './file0\x00'})
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r5 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f0000001600)='./file1\x00', 0xc000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r5, &(0x7f0000000200)='./file1\x00', r5, &(0x7f0000000240)='./file0\x00', 0x0)
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./bus\x00')

6.026133938s ago: executing program 1 (id=636):
unshare(0x46060480)
socket$netlink(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x60240, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000280)={{0x6, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffefffffffff, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffbfffffff, 0x0, 0x0, 0x0, 0x3, 0x80000000, 0x3, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0x40, 0x0, 0xfffffffffffffffd, 0x100200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x10000, 0x1000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0x10000, 0x7785, 0x0, 0x4, 0x0, 0x8, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x4, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x100, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xc0c0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0xffffffffffeffffc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x80]})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f00000001c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x114, &(0x7f0000000300)={0x0, 0x0, 0x1}, &(0x7f0000000000), 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='timerslack_ns\x00')
write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f0000000180)={0x30}, 0x30)
quotactl$Q_QUOTAON(0xffffffff80000200, 0x0, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000ed94060dea0d26c1954971366306e08678021e987b409649a9c6baf681845ad3f8d6852555cddee51fb7b483c1bb135641685837652b76d738e31499414ece8723afadb5c2c340e7e28101ff28a822ff8a452820ee8469be05116e502be159c5546308cb787fe56c908d2a8ee8c7b058f5a294615329415fdf9b54433189dc78b1db88cee7e4b9d10695b24c9fa2be3399aea78c1cd90ce3720524db5300f7b9b7169d8119fb178b377955795bb08e202ee4ae620f499cc2500a"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)={r5, 0x0, 0x0, 0x4}, 0x20)

4.314129469s ago: executing program 3 (id=643):
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="ffff"], 0x50) (async, rerun: 64)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000100000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001"], 0xb0}}, 0x0) (async)
syz_usb_connect(0x4, 0x8ee, &(0x7f0000000940)={{0x12, 0x1, 0x200, 0xd7, 0x44, 0xcb, 0x20, 0x1b3d, 0x15c, 0xe855, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8dc, 0x4, 0x4, 0x3, 0x80, 0x4, [{{0x9, 0x4, 0x24, 0x0, 0xd, 0xa1, 0x12, 0x32, 0x98, [@cdc_ecm={{0x9, 0x24, 0x6, 0x0, 0x0, "ec32f569"}, {0x5, 0x24, 0x0, 0xd107}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x9, 0x200, 0xbf}, [@call_mgmt={0x5, 0x24, 0x1, 0x2, 0x6}, @network_terminal={0x7, 0x24, 0xa, 0x6, 0x44, 0x82, 0xc}, @country_functional={0xe, 0x24, 0x7, 0x9, 0x2, [0x8, 0x3, 0x7, 0x4]}, @mdlm={0x15}, @obex={0x5, 0x24, 0x15, 0x9eef}]}], [{{0x9, 0x5, 0x80, 0x0, 0x20, 0x8, 0xd, 0x1}}, {{0x9, 0x5, 0x6, 0x1, 0x200, 0x2e, 0xff}}, {{0x9, 0x5, 0x5, 0x0, 0x0, 0x1, 0x8, 0xc, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x1, 0x3}]}}, {{0x9, 0x5, 0x9, 0x2, 0x20, 0x8, 0x9, 0x80, [@generic={0x83, 0xf, "c2529ff57779483d31fa43936aa6ad9231cc5df577bed566441824b336c49b9aad26e4bd349f7e30413f67e3ce91176a8c83d484975ff8ef3b26c8ab6b2de3cc770843bf8427b40834871cd52be18cf5a5e75bd5920cbd229a2f1403ba2d94041b15f35d30a19f6455d66e76b15eaf3642cf47e8540ebcd65e5dcd8a25f174e8bc"}, @generic={0xb9, 0x30, "536fcc864a1549c32b0418ec10d11cb521d7ba8a7fbfc4538892eb51f8a70b0bc364606b448a00f760f443547fb27869c198c2d3b1e108ba1afe30845aa7536689403ffe8f1455e8875820356a91eab70dd9cd333c5d1f2aa5771e4c07b7e487df4826968432b0a8de6b5cfd5ba5c0547462e11714a84c9202cf2b8133d4e6c116f82bc36e2fd0557e4864192b58b0802077f6a7d041e0fc7568e0e87acf7b10703487ebe498a9ef9e4a7830e2034116a9e746a2f67e20"}]}}, {{0x9, 0x5, 0x0, 0x0, 0x40, 0x3, 0x7, 0x4, [@generic={0xf3, 0x34, "b06a517fdb02f9701155e3187fdcbef4ae491e7b5c455fd06782102bf00cb2cc75e8b5554f73ae31ef52f65e4c8bdc8ab059d326c1e012777a3c6f8e8353f68376c07ad794e913836db5bfa4369ae9ae4c0868e5c7125c2bfd59668ef7fb9274ba5947404895e2a1804639182558d33758f710da2afad9a9e9551ff69379c77583c9c3886af0a468a27e8ee9a656c79e06451a1068e96d9fb6076646c9df4e2a5357b6ca3ad1a2364b27c190fe56989275e5ffb30ad9cdf611f8d77ec35c324ed4b2e25810d38eb1e7a699c5095381d5cc7dff5bde058c68d345e487c0d75694b327f656d0419ba4c36aace1d260a358cc"}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x1}]}}, {{0x9, 0x5, 0xd, 0x1, 0x400, 0x10, 0xb, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x1, 0x3}]}}, {{0x9, 0x5, 0x0, 0x0, 0x400, 0x4, 0x93, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x1, 0x5}, @generic={0xf4, 0x24, "6dcda04ee306b868d31826d1653909cb5e55c217ef71a34e07ab67dd607510236c145937e3a44be42aa5a07d12e9b068bc2a10793a9efed2a9caa97b7cac746d9717fba99a4892c69315ef799debb3abf06526f11459feebf9fe263eb199ee23df9850f7b32eed1d06e18cb08b4c30aedc8c1db711100b665cacc625f163383d10b2b140841c7c16e92789d86de5eae836c539d7630535891ae2728c849bcb98077a83b4dd3d3148e92e89a1ed4a2484ff9537b8a56f7459a9b9fd17f19a394783bc82b2d130229d05dfd5f8a5406c7d31cc92f3e7cd9c3088ad0c560ac2b73f2a7792f5050e50584d7148b29fc2916f81e4"}]}}, {{0x9, 0x5, 0x8, 0x4, 0x3ff, 0xd7, 0x7, 0x84, [@generic={0xe7, 0x8, "886d7645146bf81d54b40ea2ccfb54a7dad129bd73ec8a5fdca3dd8ad928c1a4a57c3566266d1e1d7ccf4713234d4adb12af718dd8d772c7fea6f3a42dbd4c20da55370e808c33f2297e4b49e79156e309d951398b42d878fe8fe4717ba370e7c969f6a130b5d22c6a75c30ed9af12ab77bc2e0f5e02ef4476f87a20d246d06da0f1c4a9101b3510f755382efc98aa6f19967c665292dd91dff94710108b05fbcb879a747cfb0b2a995a410b274440d7a815db1c7e020c8d6743438927c4d5c4fc35a63a41e42fe7dead64548a2668a9e86f39f2d374b47b7a3ba3ce9d775f6af8b7c29542"}]}}, {{0x9, 0x5, 0x6, 0x0, 0x0, 0x9, 0x1, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0xa, 0x5}, @generic={0xe, 0x6, "8322cb297b09ecf720c46d9b"}]}}, {{0x9, 0x5, 0x2, 0x0, 0x200, 0x6, 0x8a, 0x6}}, {{0x9, 0x5, 0x80, 0x3, 0x8, 0x8, 0x6, 0xbf, [@generic={0x3e, 0x21, "bc5fcd1587467ce0519972fd3de3b0620cac59dc55f239db84cc9a063f2093c3b299d9e55c198faf5cbc0c9b37e969912ce791a99658471555767275"}, @generic={0xf1, 0x21, "877b13e6a42ad79847506c51178ea1ec9ecd063e55bb13be3ea8c75f063eaefc4ed4a38c24291bf421b5116a8913404b1c74f4d5be6c7c2eff2f19e1ffe6608df499a40cbac7c5477611474295849597862a67758a66a00b4a59f6196af188e0ab41ca282cfdf11fa55ff9897e91c089d557f4efabddb98c83a90fa6d33bfe2bd4d022e45d99fceecb746d18025b75b78c2aa3982873ac913cef9238eb3509730c25153d8d7880c338faa81ecd8ae719d2bdf2cfdd11693f3dc3e43ab841dd73d274a4adb2d50e8b8fafc14cb27d037292bdaca24e6fb7eecc84f7d3af57876b8cc68012b3f69498ad32c5c081feb9"}]}}, {{0x9, 0x5, 0xf, 0xc, 0x8, 0x5, 0x7, 0x2}}, {{0x9, 0x5, 0x9, 0x10, 0x10, 0x1, 0x7f, 0x3, [@generic={0xf6, 0x10, "59e40d02348359e198da47689bfd5b27463f296d04e12c148e0e2008c5f15ea2b71d6f87d65c3dac6146e67896f3074f8de21ddd40b68515527b0b0d5be5cfcd0ab384b0e73ba8f80e49c8645f5834c82677ad1d32a6f7e2976665aa0ed7568f9e959804e0e4882e687bc2b5773b53b62538e7bbec0b5398f4e696fde18cecd6f5dc0956a953e803ffb18f5ef2011d49d547c7ec73cdfbf6f440ce28bcc206ac531d5c3ff9e47d959fb390e05b107e8770a3454501c5d95dd35dcf7df836fde5362c225611630061f605415a26186377873f2086bb841781bcaddc810819c1a678500387e6839ca1cc5d6edd0e759425bd6d6af1"}]}}]}}, {{0x9, 0x4, 0xad, 0x0, 0x4, 0xd1, 0x46, 0x73, 0x50, [@hid_hid={0x9, 0x21, 0xfffd, 0x2d, 0x1, {0x22, 0x5be}}], [{{0x9, 0x5, 0x7, 0x0, 0x40, 0x3, 0xfc, 0x5, [@generic={0x91, 0x8, "ece95c8c3d045ab8dea03428500685de743d98f032571dede40734e08e5763e20877937ec09a9087a3202c70554e67d7e02b1d9a776ab296dd0528568385adac3ea2d843cdb795621c1294ef01314bd07e5a9b17322940f7ef5d6c177e84c6597b1a03eb9fa2cb19d99d6725aa8d7b196b1fb7b4b170a73937dc048ded4d6e1aa88e7a4f74d1ff7310eb48febc6ff7"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x3ff, 0x8, 0x80, 0xb}}, {{0x9, 0x5, 0x0, 0x8, 0x400, 0x8, 0x49, 0x3}}, {{0x9, 0x5, 0x80, 0x0, 0x200, 0x7f, 0x3a, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x1, 0x80}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x5, 0x2}]}}]}}, {{0x9, 0x4, 0xd4, 0x0, 0x6, 0xfb, 0x24, 0xff, 0x5, [@cdc_ecm={{0xa, 0x24, 0x6, 0x0, 0x0, "1b4a14f0f8"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x9aa5, 0x8, 0x1ff, 0x3}, [@country_functional={0x12, 0x24, 0x7, 0x3, 0x7ff, [0xaefe, 0x9, 0x2, 0x3, 0x7, 0x7fff]}, @mbim_extended={0x8, 0x24, 0x1c, 0x7, 0xa0, 0x2}, @obex={0x5, 0x24, 0x15, 0x4}, @country_functional={0x6, 0x24, 0x7, 0xd, 0x2}, @country_functional={0x6, 0x24, 0x7, 0x3, 0x3}]}], [{{0x9, 0x5, 0xa, 0x0, 0x3ef, 0x2, 0x8, 0x69}}, {{0x9, 0x5, 0xa, 0xc, 0x3ff, 0x6, 0x9, 0xe, [@generic={0x19, 0x6, "2483826296344f8bca18d8b01dae207e0f766ef18ef87e"}]}}, {{0x9, 0x5, 0x3, 0x0, 0x8, 0xf, 0x1, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x4, 0x2}]}}, {{0x9, 0x5, 0x8, 0x2, 0x3ff, 0x8, 0x4, 0x81, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x6, 0x2}]}}, {{0x9, 0x5, 0x4, 0x1, 0x14, 0x2, 0x10, 0xc}}, {{0x9, 0x5, 0x9, 0x14, 0x8, 0x3, 0x5, 0x9}}]}}, {{0x9, 0x4, 0x35, 0xa, 0x2, 0xa2, 0x39, 0xb0, 0x2, [@uac_control={{0xa, 0x24, 0x1, 0x5, 0x4}}], [{{0x9, 0x5, 0xa, 0x0, 0x200, 0x7, 0x81, 0x9}}, {{0x9, 0x5, 0x6, 0x0, 0x20, 0x9c, 0x5e, 0xc}}]}}]}}]}}, &(0x7f0000000380)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x250, 0x4, 0x9, 0x6, 0x8, 0xff}, 0x61, &(0x7f0000000100)={0x5, 0xf, 0x61, 0x6, [@ssp_cap={0x24, 0x10, 0xa, 0x5, 0x6, 0x7fffffc, 0xf0f, 0x7, [0xff000f, 0xff81c0, 0xc000, 0x0, 0x60, 0x0]}, @wireless={0xb, 0x10, 0x1, 0xc, 0x81, 0x7, 0x1, 0x2, 0x10}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0xa, 0x9, 0x6}, @ssp_cap={0xc, 0x10, 0xa, 0x2, 0x0, 0x7, 0x0, 0x1}, @ssp_cap={0x10, 0x10, 0xa, 0x6, 0x1, 0x800, 0xff00, 0x8169, [0xf]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x7, 0x7f, 0x9}]}, 0x3, [{0x4, &(0x7f0000000040)=@lang_id={0x4, 0x3, 0x810}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x180a}}, {0x1d, &(0x7f0000000200)=@string={0x1d, 0x3, "59b2670bebbbd7caac044cb3d11ccbf7d75003a07e79421e7fab16"}}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) (async, rerun: 64)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async, rerun: 64)
lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file1\x00', &(0x7f00000002c0), &(0x7f0000000280), 0x57, 0x0) (async)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

4.219652045s ago: executing program 2 (id=644):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x12, 0x0, 0x0)
r3 = syz_io_uring_complete(0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="0fc7280f083e0f01c3ba6100b000ee0f01c9f20f5938260c01f00fbab4ab1400bad10466ed2e0f0015", 0x29}], 0x1, 0x24, &(0x7f0000000140)=[@dstype3, @cr0], 0x2)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x8, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @local}, @local, {[], @echo_request={0x2}}}}}}, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205649, &(0x7f00000000c0)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f907, 0x0, '\x00', @ptr}})

4.004337643s ago: executing program 3 (id=646):
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = memfd_create(&(0x7f0000000540)='\x01\xfd\xae.+\xa6\x8c\xb6?2\x199\x94S,|x?Ue[\xbd\xe1!\x033\xbc\'#\xff\x17\x9b%\xf3[d \x06\x00\x00\x00\x97A\xc2\xd8\xf0Uq!\xe4\xc4\xb1\xa2\x1c\xffC;\x94Q\r\xb6}\x9c\xecC\v\xcf\xeb\xe4\x9aR\xe5,\x82\x03\x00\x19\x8d\xe8\xc6\xb9\xe4\xb4\x99\x8a\x19P\xb8\x8cx\b\x99\x04R\x05\xaf\xa2\xea5\f\xcc\x1a\x9b\x00Uf\xa5\xf7\x80Tgiz\nX\b\x91\xfd0\x8e\xb6\xa3\v#\x16\xdf\xb4\xc0\xe6\xb4\xef\xa8i\xd8\xa2\xd2(\x98\x9bA\x8f\x13\xeb\xf4b/\xef!\x8f\xf6]-\xf1k\xb62\x89gEv\x13\xf4\xc7\xb2\xf5\\\x17\x90\xb5\xa6\xa8\xb8o\x0f\xe2 \xe7\x9c$\xd7\xf2@\xf7cdv[\t\x00\x8d\xf3\xcc1\r$\x1e\xff\xf0P\xb2\x97\xb8\xbc\xeb\x91\x87\x8bu\xbf\xd4\'\xff\x1f\f\x016\x9dQ\xeeT\xe8\bY\x00\xb2\x06\xa6\xbel\x9b.o\xbe\x80\x9dx\xd5O\xd6h\\I\xc9\x8d\a\x1d\xc9k\x83\xfc\xa4\xad4\x03\xa2X\x0f\x82\xdbs\xc7\x83L\x9e\xa2\xd1\xb3\xac\x8d\xd8\xb4\xb4\xea\x90Q\xd8\xc7\xeb%\x8bOp\x1ab\x96\xcf\xbb\x15\xcf\xfcN\xed\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00s\xaf\xa2\x14]p+\x96\x1ei|n\xda\xee\\\xae\x96*\x82*\xb8j\xda\xaa\x14\x1f\x1d\xf8\xf8\xae\xfcH\xc4\xb3j\xe8\xcfO\xef\x0e\xafe\xb5*\x89\x18\xb2w\x96\b\x1by\xeaT\xdd\xb3g6\xbc\x85\xb2Y\xccv\x06\x00\x00\x00\xc5e\x90\xc51\x9f\v_# \b\xa5\xbcP,|\xe9\xd6s\x1f\x1f\xbe\xd3\x80\xb1\xa8 \xce|df\x903\v\x02\xea.\x03X\xb5\xe4,8\xb7\xadEI\xdcA\xa7\xcc\xd7\xf9n\x1b\x95\xf8\x11Z\xe6:\x03\xce\xfe\x02\x8ctdy~_oC\x9e\xef\xf0\xa2K\xe9;\x8e:\x01\x03C\x92\xeb\x16\x1c\xbf\xbe\xef\xccUxhg\xdfY\xe6\x83\xa6z\xff\x01\x9d o_{!O\xaajU\x84 \xe9\xb59r\x9cw\x18Z\xd3\xcd\x0e\xba\\\xdb\xf0\xe1\x86\t\xaf\vi\xdc\xbf?\xf5\n\xbd^\x05\xc0\xceuC}\xa8\xc7\xad\x86\xd7\x15&\xb9]1\x05J\x96\xf0\x84\xc1\f\xa6p\x96?\x00\x00\x00\x00\x00\x00\x00\x12\x88\xc8\x9c\xc9Cn\xd4\xa47V\'+\xcc\xbf\r\xa9\x10\x1d\xcf\xebKlb\xe5:\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00G\xdf\xbb\xc0_\x99F\xf4n]\x14\xbc\xcd\xd3\x9f\x9fe\xc5\xe6\xe8Mb\xc6\x82\x82\xcb\xcaXe\xe1\xa2\xaa\x02\x86\xb8\x18\xe2C\xeb\xa9\x17&\x01&\'w\xa1t0\x80\xf0\x93\x80\x9f\x9b\xe0\x9f\xea\xb9\x9eD]#V\xda\x92\xca\xc6\xfa.\xd6\xe31\xfe\xe8\x02\xebX\xbd\nz\x01O\xd3r\xa2\xa9u\x93>m\xd7q\'\xdf\xfajo\xd8n\xa7\xecJi\xde\xdf\x7f\xe3\xc4*Z 4\xe8S$\xa1H=\xdf\x05\xf3\xe3T\xd1\xdd\xc6f\xa4\xb4\x96\\\xa0\xf9\x0f\x17\x11{\xb6\x9d\xd21\xc1\x90Vj\x13r\x00\x00\xde\x03\xab\xff\x8as0\xc6E\xca\"\xd9*\x9a\x15\xb95r\x8f\xaaj\x82\xd6\xd2%\xed\xa2WQ\xec2\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xccX\xfdRB\xffU\xe9\xfa\x1f\xf6\xce\b\xde@\x061\xc6z\xe4\xe0\xc9?\xa7\x94>\x9c\xd1\xa5o\x04\xaaim\xae\xfe\xc7f\xa3\x96\xd7\xb4c)r{\r#\xddI&\n\xf2\xec\xd4\xff\x9f\x136zZ-2\x80\xfbH+\x9b8\xf3\xed\xdf\xa2my\xb28c[\xc3\xfe\xb5M\x84\x97\xa5\'s\xe9\xdc=)I\xabLt2\x9c\v\xd9S', 0x6)
fallocate(r0, 0x0, 0x9, 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000040)={0xfffffffd, 0x0, 0x0, 0x7453245a, 0x6, "585406ff0001e900000000000000000400"})
readv(r1, &(0x7f0000000080)=[{&(0x7f0000000140)=""/135, 0x87}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00'}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB], 0x310)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB="00000000080002"], 0x24}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)

3.777804151s ago: executing program 0 (id=647):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000003800010324bd7002fa0000ca07"], 0x14}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
mmap(&(0x7f000045f000/0x3000)=nil, 0x3000, 0xa, 0x810, r1, 0xb35ef000)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x4000000)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r8 = accept(r5, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
recvfrom(r7, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs2/binder1\x00', 0x2, 0x0)

3.093795456s ago: executing program 4 (id=648):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x58, 0x2, 0x6, 0x5, 0x1f, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x58}}, 0x0)

3.012182252s ago: executing program 2 (id=649):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYRES8, @ANYRESOCT=r0], 0x28}}, 0x20068011)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080), 0x2, 0x0) (async)
r2 = openat$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080), 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x200)
write(0xffffffffffffffff, &(0x7f0000000200)="9fa02f3164115b76eb751ca30d5f8388a3a7c5257ce964c80db7ab7204f9002563015d2d3a03191a1d70f3d1b8b1b447f02a42035e6713f598f88d286bc505ae5576b994ce58d4cbbece00000000000000", 0x51) (async)
write(0xffffffffffffffff, &(0x7f0000000200)="9fa02f3164115b76eb751ca30d5f8388a3a7c5257ce964c80db7ab7204f9002563015d2d3a03191a1d70f3d1b8b1b447f02a42035e6713f598f88d286bc505ae5576b994ce58d4cbbece00000000000000", 0x51)
r3 = socket(0x18, 0x80805, 0x1)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r3, 0x84, 0x83, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0) (async)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
socket$inet(0x2, 0x2, 0x0) (async)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(r5, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
getsockopt$inet_opts(r3, 0x0, 0x4, 0x0, &(0x7f00000001c0)=0xffffffffffffff57)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_clone(0x42080000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x18, 0x4, 0xf9)
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x8) (async)
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r6 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x80000)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r6, 0xc01864c6, &(0x7f0000000300)={0x0, 0x0, 0x80000})
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
socket(0x2, 0x80805, 0x0) (async)
r7 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r7, &(0x7f0000003540)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, &(0x7f0000000880)=[{&(0x7f0000000340)="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", 0x131}, {&(0x7f0000002400)="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", 0x4e4}], 0x2}}, {{&(0x7f0000000740)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000780)="e4", 0x1}, {&(0x7f0000000480)="debc616c4d48e6539d8494b850e81040b5a10f1425335450207fe86f6a01e57b463bff2763fd75dee5899a4f4449259e20c722dc385ae8d5677e5b4da49dcc89e0038f4892d6b62c55d16d3ed829483541cc675ca47efef7ac446c5ca7f427d97fc65c36afc59ca1f0a22e086b1ed4f625bd9f40497ae20bb88b2cb4386b31d1813a", 0x82}, {&(0x7f0000000280)="3f324af92131d9e0881bc7cd15939fc6ec7fde4b6caca4e5bc184977749fb898bc9f88d014552aaa0be66a4c7f99dbde9cd936c862c4c43467be521a0c07e93ba510d9647ffefa", 0x47}, {&(0x7f0000000540)="47637c36334e985c4a1bdb500d35519f1e366b8c454b702a60bd608350118061a6df4a7a929723043ccbb7931ddce0eba69d8aeffaf1bd0439cf5c8d52ed45885af9722aae90581f1208cef63acbde87cf47729fee9525179fe2bd94a60198a26e1f828c3826b210f32c08d7f4514ca500b88d43c96740383339243855084de944e148a7883904da348508cbc9d08f9c16f126911f21767f4de12f81237d6936db69883414466e7329a5", 0xaa}, {&(0x7f0000000600)="27497aeb0a1e651682c987eac63458984c8403496a9bd81c4ea5a32f23cea87ff6d1af7c4a3fa74aafabc18715c6ed852f4c6055a7911396b9f1afcfcfe00f228bf28f42251a20df677a56d7cbd911c66fb34869bb569164eea2bf2bdd1eda30a1428241759b755999ec6cf826e8d8437266c9f10bb4eac260e15f422023b540bf67a4ab8d0a7de8c3db424620cf4e6329a43676a0e497bf26f8db8601168271994072792bf6d59ac99dc40bb633b8478f356674626a3d1238e51e1dee83c518f4191930e02851634fa8b6700e05c00bc59c2ca2e532a8cadf798a7b06b4bde6", 0xe0}], 0x5}}], 0x2, 0x0) (async)
sendmmsg$inet(r7, &(0x7f0000003540)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, &(0x7f0000000880)=[{&(0x7f0000000340)="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", 0x131}, {&(0x7f0000002400)="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", 0x4e4}], 0x2}}, {{&(0x7f0000000740)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000780)="e4", 0x1}, {&(0x7f0000000480)="debc616c4d48e6539d8494b850e81040b5a10f1425335450207fe86f6a01e57b463bff2763fd75dee5899a4f4449259e20c722dc385ae8d5677e5b4da49dcc89e0038f4892d6b62c55d16d3ed829483541cc675ca47efef7ac446c5ca7f427d97fc65c36afc59ca1f0a22e086b1ed4f625bd9f40497ae20bb88b2cb4386b31d1813a", 0x82}, {&(0x7f0000000280)="3f324af92131d9e0881bc7cd15939fc6ec7fde4b6caca4e5bc184977749fb898bc9f88d014552aaa0be66a4c7f99dbde9cd936c862c4c43467be521a0c07e93ba510d9647ffefa", 0x47}, {&(0x7f0000000540)="47637c36334e985c4a1bdb500d35519f1e366b8c454b702a60bd608350118061a6df4a7a929723043ccbb7931ddce0eba69d8aeffaf1bd0439cf5c8d52ed45885af9722aae90581f1208cef63acbde87cf47729fee9525179fe2bd94a60198a26e1f828c3826b210f32c08d7f4514ca500b88d43c96740383339243855084de944e148a7883904da348508cbc9d08f9c16f126911f21767f4de12f81237d6936db69883414466e7329a5", 0xaa}, {&(0x7f0000000600)="27497aeb0a1e651682c987eac63458984c8403496a9bd81c4ea5a32f23cea87ff6d1af7c4a3fa74aafabc18715c6ed852f4c6055a7911396b9f1afcfcfe00f228bf28f42251a20df677a56d7cbd911c66fb34869bb569164eea2bf2bdd1eda30a1428241759b755999ec6cf826e8d8437266c9f10bb4eac260e15f422023b540bf67a4ab8d0a7de8c3db424620cf4e6329a43676a0e497bf26f8db8601168271994072792bf6d59ac99dc40bb633b8478f356674626a3d1238e51e1dee83c518f4191930e02851634fa8b6700e05c00bc59c2ca2e532a8cadf798a7b06b4bde6", 0xe0}], 0x5}}], 0x2, 0x0)

2.977115861s ago: executing program 2 (id=650):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vxcan1\x00', <r1=>0x0})
sendmsg$can_raw(r0, &(0x7f0000000080)={&(0x7f00000003c0)={0x1d, r1}, 0x10, &(0x7f0000000040)={&(0x7f0000000480)=@canfd={{0x4, 0x0, 0x1, 0x1}, 0x21, 0x0, 0x0, 0x0, "48c140916f4f8a275602b18147a3efca629b54ac165dcb85596e5426ec5206ccaed8156dad356b0c6a70a658fe5aec77c9d86951a3c698e984da9115e892efad"}, 0x48}, 0x2, 0x0, 0x0, 0x40c5}, 0x810)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x10, "0062ba7d82000000000000ff00"})
r3 = syz_open_pts(r2, 0x0)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000380)=0x1)
ioctl$PPPIOCSMAXCID(r4, 0x4004743c, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f0000000440)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
getdents64(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r6, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
r7 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg(r6, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x558}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
sendto$inet6(r5, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f00000001c0)=ANY=[@ANYRES64=r4, @ANYRESOCT=r1, @ANYRESOCT=0x0, @ANYRES8=r2, @ANYRES8=r0], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000300), 0x8)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x800})
r8 = dup3(r3, r2, 0x0)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000000))

2.825183717s ago: executing program 0 (id=651):
r0 = fsopen(&(0x7f0000000400)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000340)='cgroup.stat\x00', 0x300, 0x0)
open_by_handle_at(r2, &(0x7f0000000000)=ANY=[], 0x1082c0)

2.75997798s ago: executing program 4 (id=652):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x18)
r1 = socket$inet(0x2, 0x2, 0x1)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000440)=[@in6={0xa, 0x4e21, 0x13, @local, 0xc}, @in6={0xa, 0x4e23, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x1}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e21, 0x0, @local, 0x2}, @in={0x2, 0x4e22, @private=0xa010101}], 0x74)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xe, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="f6180000000095000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000cc0)={r3, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000013c0)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x2}], 0x2}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@loopback, 0x1, 0x0, 0x3, 0x8, 0x1, 0x7}, 0x20)
pipe2(&(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$VIDIOC_TRY_FMT(r4, 0xc0d05640, &(0x7f0000000680)={0x1, @pix_mp={0x5, 0x8, 0x3031334d, 0x1, 0x7, [{0x555, 0x1}, {0x4, 0x3}, {0x9, 0x2}, {0x2, 0x9}, {0x80}, {0xfffff801, 0x6}, {0x3174, 0x73}, {0x0, 0x9}], 0x9, 0x8e, 0x2, 0x1, 0x1}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x39426000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
move_pages(r5, 0x1, &(0x7f00000002c0)=[&(0x7f0000327000/0x4000)=nil], &(0x7f0000000300)=[0x1ff], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0], 0x0)
r8 = socket$kcm(0x25, 0x1, 0x0)
recvmsg$kcm(r8, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x160)
syz_usb_connect$uac1(0x0, 0xa4, 0x0, 0x0)

2.651105282s ago: executing program 3 (id=653):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0x4, "35c2fe54877c12121c77424089fe32d44ac5f5c477628d28e5bd5ce4fde2bbbe"})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000f40)={0x8, "b546baa5cc590d3033de259c2996817bb959ebab028deda525e19bdeffafde25", <r1=>0xffffffffffffffff})
r2 = socket$kcm(0x23, 0x2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x3e, &(0x7f00000000c0)=r3, 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000940)={r3, r3})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x88000, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x7)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000380)=0x7f)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r6, 0xc004500a, &(0x7f0000000240)=0x7)
ioctl$SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f0000000300)=0x7e)
ioctl$SNDCTL_DSP_SPEED(r6, 0xc0045002, &(0x7f00000000c0))
read$dsp(r6, &(0x7f00000002c0)=""/58, 0x3a)
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40046201, &(0x7f0000000040)='/sys/kernel/debug/sync/sw_sync\x00')
ftruncate(r1, 0x7)
ioctl$SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000340)=0x400f)

2.617936358s ago: executing program 0 (id=654):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)

2.574751953s ago: executing program 1 (id=655):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e1c, 0x3, 'wrr\x00', 0x1, 0x2, 0x6e}, 0x2c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x0, &(0x7f0000000200)=0x40005)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x15d74000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
keyctl$setperm(0x5, 0x0, 0x1100100)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x4, 0x8, 0x77}, {@rand_addr=0x64010102, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0x103)
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000240)=r5)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000600))
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f00000005c0)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, &(0x7f0000000080)=""/62, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, 0x0, &(0x7f0000000880)=""/72, 0x8080000})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$VHOST_SET_LOG_BASE(r4, 0x4008af04, &(0x7f0000000040)=&(0x7f0000000200))
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f00000004c0)={0x3, 0x9, 0x0, 0x7, 0x6, 0x0, [{0xae, 0x7fffffffffffffff, 0x1, '\x00', 0x100}, {0x7f, 0x696, 0xc99, '\x00', 0x1}, {0x6, 0x6, 0x4, '\x00', 0x401}, {0x800, 0x4, 0x6, '\x00', 0x8}, {0x5, 0x7, 0xc, '\x00', 0xe}, {0x8, 0x8, 0x0, '\x00', 0x2004}]})
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

1.984223087s ago: executing program 0 (id=656):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000190c0)=0x8)
r0 = gettid()
r1 = syz_clone(0x26200000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0x9, &(0x7f00000007c0)={0x100000000008, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x9)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x9)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
prctl$PR_SET_IO_FLUSHER(0x43, 0x0)
kcmp(r0, r1, 0x4, 0xffffffffffffffff, 0xffffffffffffffff)

1.731731458s ago: executing program 2 (id=657):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
mmap(&(0x7f000045f000/0x3000)=nil, 0x3000, 0xa, 0x810, r0, 0xb35ef000)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r7, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0xfffffffe}, 0x1c)
listen(r6, 0x4000000)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r9 = accept(r4, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
recvfrom(r8, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs2/binder1\x00', 0x2, 0x0)
mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x11, 0xffffffffffffffff, 0xfffffffffffffff8)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r10=>0xffffffffffffffff, {0x7}}, './file0\x00'})
ioctl$DRM_IOCTL_MARK_BUFS(r10, 0x40206417, &(0x7f0000000180)={0xfffffffe, 0x9, 0x401, 0x3, 0x1, 0x6})

1.515838339s ago: executing program 3 (id=658):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x8, 0x70, [@NL80211_MESH_SETUP_USERSPACE_MPM={0x4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000000}, 0x0) (fail_nth: 4)

265.049203ms ago: executing program 0 (id=659):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xffffff00})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

260.247373ms ago: executing program 2 (id=660):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="310300000000000000000500000008000300", @ANYRES32=r2], 0x1c}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0) (fail_nth: 11)

259.270987ms ago: executing program 3 (id=661):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x400, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = socket$key(0xf, 0x3, 0x2)
close(0xffffffffffffffff)
r4 = socket(0x10, 0x803, 0x0)
listen(0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000001340)=@file={0x1, './file1\x00'}, 0x48)
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x42, 0x0)
sendmmsg$unix(r6, &(0x7f0000002a40)=[{{&(0x7f0000000240)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f00000009c0)=[{&(0x7f00000002c0)="d39f4c4ed321fd4518f9f3936a2908c8a4f007c24dc220f02a01f70cc5e7b55c3ec39ce49d7e81a184a334cf173b22dc8f3d00e2b0d0ae13ee90cc0d078bc01fe77cfbcb6649c08163dc0577e6bd7d23fd42e4b38534212da696374eb910c88806f661dfce9ec68857b0a70fec0d724919e20fa52edfba916a29da6a326daa908b338ae2886e82e6bcb28b4133c7ced8fae44440bd88581b", 0x98}, {&(0x7f0000000580)="5f20f9b674f51cc12cfd5dce4b1dfce3de2cd273b5df9266164b74103d37faf83dba3282239e00c827a7f9562473fe0486e054ab16da666679614cb8c538b94b3c19401f", 0x44}, {&(0x7f0000000040)="dbe14e72170df0d4213e9c96da5913d50d73b777812b06e4823cde706b649ec86a0f3d6ec7c5b07a", 0x28}, {&(0x7f0000000600)="c0e26036e09c7943cf0494475428b6c6d74bebed84751e27e00bc05dcbe25dd7f718c42b21abb45981f08abb51a423fabe39276a975b85a87ac59114bd779f652548fc2527ee8bb87e044c710fa062b3761bcbf8ad246b11a5478d827217c16e8b4a5996c2cffb27af54a2306dfcffcd07909d8d8c6a82998e2946329928c762e4ed8836893d130866b9324d1410310be1c447dc9e831c9c5926a44fc4f33dc8e803d3866f076f4e4fed8c4c4443f8f3531ecbea49148035e4d43d5cdf4f9541f8196bb2a5215a160f10fb9da9f8a74d0ac00d81a308581ba40af24b9f220b9468990c22563617b849ef2a31f136527ac127", 0xf2}, {&(0x7f0000000840)="9f360e3b5c7b3c68d2a4fd34e594059a28f929546bcc1869b8b75fbfdd880539853ead47d47c0d5afc95d1e938bbfb20a475fdc7f179618f04831171249ecea2830cf2345b43d4e58b313a14b130ce51f9cfe02f0e97a10fe0879337bd1c9c7276c1acb6c31d4665a20b", 0x6a}, {&(0x7f00000001c0)="c0bc006f722e3196718e7a7edda924e8881d33a76c7aa850d845653c133bf0e420da8d6f1b5348a117d6ffa62f522204d4043255a45cc8e71d0e538cf7ee", 0x3e}, {&(0x7f00000008c0)="8ac0510951bd87cd3b8613ac4d90710acae74ed60d14d8443cf3532f06659d38aefaee425ff0753e6736498203ec89a49f3c88a9c998f6cdae29ea2b6f1be2bbf2c5e4c6e074c0d7f58ffe43054bdc8e29e482347587950d2614cf6225ee7606b62481ebaa1e79947534a58cd680578495cec2cff38079decb1cef980b0bd5b7ee6cb3e68a650d0d35599616d6f1e150e3d602f3e815d4e14e83cda019eccb3773db153b8474606228562269a1a67850f83860373ea8f5bf11f2d5d2487597f4fc38", 0xc2}], 0x7, &(0x7f0000000b80)=[@cred={{0x1c}}], 0x20, 0x8000}}, {{&(0x7f0000000bc0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000001280)=[{&(0x7f0000000c40)="48813898ea07cd99e3768561b609b238f2203797022ac5187d88d08836a8d88ffeab67f074bf2edc50910f82cb44e2be5af60c3363be5975e1801f07180f9be8cdc72c081e62fe3053d0846213e1516a0dc2", 0x52}, {&(0x7f0000000cc0)="6150caa4b7cf7f5cd673c5c9e785f0eb0a2ab629d9de037b1688c3c43ca3cc19565af7c4cf8b955859ac58642a7e70fe04a71aedbb3cd84006d285d64861411089a213122477e1ef9ccbfafb209e873a7eeb20328a8ba9750d28c9a9349125fe9d2e82779902652d58656e04ed521b93a34de9a71c5e43b3538341f4e9c7f85fb7b62ed6da354aae07f1b61bc34b83a4e59fb005f348a4af7bc5b5d6324212b7bb9d72b56ac4e67e5bbecfba42fcaccb11fddf215a94450ada", 0xb9}, {&(0x7f0000000d80)="f2a52121073a75065d1ed53afc6fef4c2d101bb7ddb83533d0d072a00da87ebe51ce6bc479f28481ac59f79fd9976e", 0x2f}, {&(0x7f0000000dc0)="11f5ed7faa7f323ea6d45396ae951a579d13e84a4d0661e55ca650d4a49a1328547c685b3e0d04a745bec30dbc47ccd40f958b47b25ff272d4d02a3f72ef335886870b1b3fbda5434b6c4ee9ab9b69765aff27e8294e6242d2e5661aa1e7fb36d848c7ae23febd43f07565d07187d2a0f60bd04dadef250a0588412a1862b5", 0x7f}, {&(0x7f0000000e40)="ec0ae16802ff0f7363b2fc85dade346c76794fdc8f31332402d650e10ed69330d393cc695a4e96add65e1420bd6ac4d39c1d00e7449c3d63c06e9b871fa8da06b4f4892d461c10f1f0cada389d1aa4d810421c7674948639474b5c1403b38e35cbd02276f4c852e165e6f8261ea228696e13cb4dc9e8ab29755c478a12ecee96c06cb092a40d6f51cc884eae2254d40e659dac0d2fca89b013a6df30ceb241a5e1812dc38cc39c665888c7c5d1aa2b7f4180d8c7de8ddeee96520b68aebd48cfc46797436f743d18b3e89a68fc67bc45e081fcc0ddac5c5b0836b672c8", 0xdd}, {&(0x7f0000000f40)="fd583cfad2c556b336d127649e3fef39989253dbce3c9fc7e82a9a590dc28c0035867687ce29861c1005ee55068159bc38e4cfb0f49757681fbb1727034add381390670a19677239f787ac98434fe71dd2e6a5f1e03b3e3278d15a34be44a542bebd4f8a73ee124b8c8a17cf1945a67834366b232fac4969575ecec78ab8ad4725fae938d4b847d9bc883f46dcfc1345ecfaa7fdac3f775ad31b01bb71a1460d081e19be956d9826ef2b337acd25a3a93333211b578a8cca0f9b4391aa", 0xbd}, {&(0x7f0000001000)="0c44be06a174d56335d1d5d1d6efd349e056878be262fd98d547d5f5d5ec61083777b4a897512dec9615115c371a81c1c148e9439d661417b0219ee3e80d5daac58b002ffe8481b0f2b7ccd0ca66867c074a5f9ee02f6ca688db6b3b8df2bb5794d7a0578313fb63d4a571672d1c581747e8e668faa3fab05c83f422ad8c0964d877a174f43f04a551ca57819d5e4905213cdfc94deb4cd954996ea8ce1c98afcbf6e56235d1b1a303e9592cd5b450758f6cad759578765375a4eccd1080229382169f6d233e1fac1b53e4a9a6bf2424c074d6796a08dd49b00d6a4d1d6f2ce7d8b964014b42", 0xe6}, {&(0x7f0000001100)="e73bbf263575e32b09065d5bd3d058948ab35222a72b579ebd606837677c7c95ead3e0ab4fa7302828ba339a27ae1cae91e6d98565259f1a02cd7c543444627ecd6ef397fd55d01c02c47e91427aa349dd9f244925b0422e71db8d510cb7e0a0ffcfc038bd1cc24771992ffa87349456d1e89b830b0b67fe350eec617c95c42f4fa03ce5b871fdd86d9e7fe5610191b6e00d202476eb1c7fdf2c55dc37bcad99f6ecf0896ad1eae5d5377e21509a0ddc073d1ff4321c475d", 0xb8}, {&(0x7f00000011c0)="8fa39f83aa7cfe0de7be5531421fd1b39fd49899cd9e4366ef61b586fc05f47c9e1c94875864faf34e693c5a7751c793057ba63f68337ae7f483f737b5277ff0e1dc41d4d05da5ae9d048dffcd7eaa443d8a756520121bfa04cb7833a17a93794b6d1e5de3ac5acc97c91f608e0ae1901480d0d3db64b25e995996cc2a12618febe2016aa5eed8c2d599aa129ac1007abccc8e177e8089df95dd0b5eee35c15aeb29696ace7c576c49eccfe4764f8d3318", 0xb1}], 0x9, &(0x7f0000001400)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r4, @ANYRES32=r6, @ANYRES32=r6, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000000001000000010a0000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES16=r4, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r5, @ANYRES32=r0, @ANYRES32=r5, @ANYRES32=r2, @ANYRES32=r1, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r1], 0x130, 0x34000010}}, {{&(0x7f0000001540)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000001a80)=[{&(0x7f00000015c0)="df7dcc441fad70b882ac68a157fa94b46308b35d2ab1be51b2102b988a3f9389717388f6d88d9f279dcf875bf6ab878f17ea2b36f613a7397409d125e9d0c004a631169dbf9428b2dc4209820d172e7dc78081061fcd09ef1c2cbce577f95f5de0be8ec91a572123f9742476234a04d06bfbfc14596a07fefad91cfc604ffe76a2e58990ffa557c9f4e575f2a96a", 0x8e}, {&(0x7f0000001680)}, {&(0x7f00000016c0)="c0bbf4f39afef0c00ea6a049300f16017ed5fcb22bf520870d1a092bf055f339248c44156daeb71789210acd2cc9afabd43f1ab77249707de69ce0", 0x3b}, {&(0x7f0000001700)="fd731df7642036d3f882376c887c980bad5ff195dd86f6be00aa23ff18e7eee5b0105dff5817cc9c7968c3104f2168898ece19ae834a986cab1b297522bc95a8c03b52f947d0537fd066998cdd9f291efdb3c5fbe6bd40564de8b78a665e29fae379fad8bdef35b5924a2375dca6e43a914a0ffe84089c995df3903a3f067b6e9248bbe2d84517637b65572005548780770d5a283c192f481ed97dc1b75a2e3324f9e177bda65e9e8576715cf643337075e961473984", 0xb6}, {&(0x7f00000017c0)}, {&(0x7f0000001800)="4df9d8d3b71cd826c6d7de31e5577233345223f49f147d65b7544a52c1a46285a677bac5a9ba52a5aaaefdb9ab2429a9384b873a3e32f4f968241f9a71f7d54d8b8a50bc45964fcef896a17ea62f2566333b449c14b76b57553998b951dfa0be4714362b26ac8c38e817702cde4084a41aac53e16f40e7324386ba54c9e3aacdafa9a548d76466393df05f00b3d5643d07d136172a2ddfc4b6706d6bcae08f9deda76b5f1dbce964627a4cb0d4f25613f86d2fb2fe26d832405d0b7cbfd077a05807f3a6e9219cfb9651e0325a", 0xcd}, {&(0x7f0000001900)="c91f8348b2b1f52b9a5bf18004d260ecd4685d3adda1bf1979ee295ae1a818114b28ceb72afd86809f5a75e6fa7c22f8eb0e2e5fa76bfd0880ae8dd5838652f0d1f32aee7077b100d8a319e8b4f26fa0b1fbd2a4fbbfe28655d4810738389ec2e38736498fc31274c8a4222130ce6f2e7aa346844e979cfcf862fd3b97d247d4c42e70da4d453ba798ec7c16705099c0c93475c6d7d4725f4af037887a6085400878244c2da58189eb130d91b4ec5a8d", 0xb0}, {&(0x7f00000019c0)="471a", 0x2}, {&(0x7f0000001a00)="48b135726c5304b49bdb7355f3aca481f0af39cf7d9a724572fd88348b472543e5ed4366ee014c181986b3", 0x2b}, {&(0x7f0000001a40)="52c6eb59394d5bf8f26ffbe752dfc2", 0xf}], 0xa, &(0x7f0000001b40)=[@rights={{0x1c, 0x1, 0x1, [r5, r4, r4]}}], 0x20, 0x84}}, {{&(0x7f0000001b80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001f00)=[{&(0x7f0000001c00)="45774298327f6f7423b23025d5446fd41008311df1fe9fcf49c0a9b66a81111c48ebc913c192f64d61bc372b598a46f006944e0b1374f5387c49b156e71ea0841c9fe1b5fa551d11bb5a42703bcf1a2742a898a12a6572ae14bb6eb0dfd681fcbf9abec79f94cd9c0127f7256c027e771e616ee383cd12ec2915db543a2ab49542f92cdce52cb8c23dcd07804a2b37e9cdb8b6de9593d9574541790f8e3550674ba66942a0903eec97b8eb437a9c17922ee0fea300a680b799", 0xb9}, {&(0x7f0000001cc0)="9e7a7d7da794458ec0942d50b2dac54b483add5b85178ddf9d0c1c4fc8c220aa8e69b60561c3688e509070670968e7db3d0d0fa52f7260b2c14745a376f17263ca61ad6959a5a2763b4ce5f75da418d707ff20236a1a6a99ac2bed9f2622d8085716a17b50cfd8a8bd4a05937633e145b101d2f14fa2b61ac38ab17a95146e2d56f4e537710b67aef7e7dd537259ea716f600dcadffe47fac6457eecc9e558c9f0da2a900d3c24ba9a1674a00dbc276bb95f840ed1432111b77187f88b729ea82645a6985fd254dd8334c9e49024d4bddb8ffe359c7a32cb9fc9b4ee0ccc9019f413d0590bfd87250c10371fdc94d8160c86984da3e2", 0xf6}, {&(0x7f0000001dc0)="64beaec6e4fe27ea128994a99f309863cadaf67e70705e", 0x17}, {&(0x7f0000001e00)="b40621f4cbcfc90c519cdf7f47d5344eeaec3a04e86d6d171e97e356edd5d71aeb77cd176c42eb6be3bcfd148b5c2ebd4975ad0cd2f73444ced7013997a6af4ef0cf47a6ee8f54d299101db46a9ef2585970c5135c09a712407fe97eff39a2239b003452b96f800b9616eb", 0x6b}, {&(0x7f0000001e80)="f730907c9d26f68f30e878bf191a196a52e3c0f958a9c6ec84e563ae60fc8716461a534122967a7936baa29ef90b2e0d60ae3a983f5a16b93ae5bd60b67291edca7ccdfa9b56e2a3adbee9b5c39df8336c35ad2daede6752796c452e427abcdb7b131bd47d", 0x65}], 0x5, &(0x7f0000001f80)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32=r6, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000021000000000000000100210042000000acf96872239c52979ff1c8756de11b5bb2aa21c8925009e0b3bc9a45ccf1037690ef8b6df33f6726631977a5b61019ce06a58ea257ce1337b0078eb2dc4e802d3b6f0e219bd9b75dc3a9fbdacb66d56bfd73332f076e8105e6dccf32d0f011a5c81ae90160d700ed3de5f929b0dbea8cb54e4a094dbaba0c243fbfee4500000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xe8, 0x40004}}, {{&(0x7f0000002200)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000002480)=[{&(0x7f0000002280)="3b861b2ac129f671eb0b9b08276ae0ca6a164ce36b7d1461c7d91467809540c979da597031ac8f47427c8aab3d369508e4efa30e1db8eb1ceafc7adfca6a313e458a0c9eb4b900939d2229a440e679f62764241b98730eccc960a52fb80a8b788cb1d32dbb72edccd78b553835b129cc2c1a3a7d43d900d3b10faa7ca426e705825f7f9facd566709464ce6102798a52ac", 0x91}, {&(0x7f0000000a40)="458bb4966773dfec789f1187f77cf70f788e7624703a45dfe036613595cc17fefc7b124bdf2280617414c0dd0ed0e1e238a10edfd19cb8c4a24248a105e30939c363f62303efb2d2232e6250ac83ef02c01ba1db7f1c2d83ee2b232eea7a2bd69f5d49f943ef1a5abd84dda249a7d7d4c8ae61faa59ec0c7288fffbb04348170704523b457390b24fa213fb779bc97ccd7", 0x91}, {&(0x7f0000002400)="bc61e9e77116a3150a47e139270e6dd47bdf0c7302eba58f67c2491af8e8f3c121ab304581ef58349d890867f0cdf0939c055929d228c929aca876bf6ec1c748eb17c8ef2debb400a44c01b7dbbb3c35327414ca83dace8d987b5347062050663a12b2ecd6ac", 0x66}], 0x3, &(0x7f00000024c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r6, @ANYBLOB="000000001000000000000000010000000100000018000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r5, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r6, @ANYRES32, @ANYRES32=r3, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESDEC=r7, @ANYBLOB="000000002c0000000000000001000000010000003c0b4ca96a582420f75fc4af666a651bec16b197842fe8e07c691e0dc95527dc95b9eb11f3367fd51c8c955abc578940b3f5037e9de01d16f707", @ANYRES32=r4, @ANYRES32, @ANYRES32=r7, @ANYRES32=r5, @ANYRES32=r5, @ANYRES32, @ANYRES32=r5, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x138, 0x4000}}, {{&(0x7f0000002740)=@file={0x1, './file1\x00'}, 0x6e, &(0x7f0000002980)=[{&(0x7f00000027c0)="fb2176ac72c2a620460b197e0fe42c6c498d051ef6", 0x15}, {&(0x7f0000002800)="4b0d7c32e593fa4addd2f927cc51d2779778a0292283bbaf0c36edc2bd43c14957614eeec122b8912e70d9eacb2594a4d3cbf5155cf3dc61a126e162506829137b50f0039a852a1ba91221447482f549bbeb7ae132a2b2dafaf293858c18787334422ea10ae15d530e93dd7148696daba13e0ade82115d7869e2ead09def5fee5645d3b385e24d4d79b40ee495613a38548fa287c13e3f135287ccf4023ac3d6bef5b7627f09034861cdcae1d16c9ba019414b534c100925f386e5e326769e7c", 0xc0}, {&(0x7f00000028c0)="f32c0fc0fdbec81c8139eb96e0232a4ca0f1bdb7641ebdc9811645741593adad687bb5b524acae164990ed23119018d42ab647bd89ba66ced1c1e6a01b70763f8bef6c3ddda2a420901fff4fc7ec9ba626f5630f71b31a9c708772c129d00ff03c10cdd13ca2c61fb296630ff56c13faddd6e80edac06f85e94f7d38d9cfc72f736706975c17aae9417b2c7358a81f930aff", 0x92}], 0x3, &(0x7f0000000b00)=ANY=[@ANYBLOB="9cb7a1ed7e8341000000010000000000013dd19bcfa23205cc68920821b06255816f94a8eed4df71887601fdf2ca996b144739dd80d539a7312e20838bcbf5411f6807736d1a00ae70aca02ac395c5fd34c2dd55cebe0b078fedc62a2f088915e206", @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32], 0x28, 0x20000090}}], 0x6, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$chown(0x4, r8, 0xffffffffffffffff, 0xee01)
sendmsg(r6, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$inet6(0xa, 0x8000f, 0x5)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4624, @multicast2}, 0x10)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000100)={0x1, 0x80000001}, 0x8)
r9 = syz_open_procfs(0x0, &(0x7f0000000380)='auxv\x00')
preadv(r9, &(0x7f0000000700)=[{&(0x7f00000003c0)=""/153, 0x99}, {&(0x7f0000000480)=""/179, 0xb3}, {&(0x7f0000000780)=""/139, 0x8b}], 0x3, 0x1fd, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180))
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
r11 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r11, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r11, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x40000012})

168.340773ms ago: executing program 2 (id=662):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000040000000030a01080000000000000000010000000900030073797a320000000014000480080002400000004008000140000000000900010073797a300000000018000000060a010400000000000000000100000004000480140000001100010000000000000000000000000a"], 0xa0}}, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0x2a382)
r2 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000030000005800018044000400200001000a00000000000000fe800000000000000000000000000010f8000000200002000a00000000000000ff010000000800000000000000000001000000000d0001007564703a73"], 0x6c}}, 0x0)
pwritev(r2, &(0x7f0000000600)=[{&(0x7f0000000180)="10", 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c00, r2)
sendfile(r1, r1, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0x9, 0x0, 0x8003, 0x1, "efddb7c25540b73ad642248c7b0157ce0dc9b4e500476392cd6cb416f686ce0058265f66cdddf2e9ce8bb87ae03e87a61fb648d5c6a3e9977956be87176a30a9", "a863a5170a11d26a00", [0x3, 0x7fe]})
ioctl$LOOP_CLR_FD(r1, 0x4c01)

255.846µs ago: executing program 3 (id=663):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x700, &(0x7f0000001140)={&(0x7f0000000380)=ANY=[@ANYBLOB="8400000010000305000000040000000000000000", @ANYRES32=0x0, @ANYBLOB="1546010000000000540012800c0001006d6163766c616e0044000280060002000100000008000100010000000800030003000000080007000500000008000100100000000600020001000000100009800a000400aaaaaaaaaa2e000008000500", @ANYRES32=r1], 0x84}}, 0x20008040)

0s ago: executing program 0 (id=664):
r0 = fsopen(&(0x7f0000000400)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000340)='cgroup.stat\x00', 0x300, 0x0)
open_by_handle_at(r2, &(0x7f0000000000)=ANY=[], 0x1082c0)

kernel console output (not intermixed with test programs):

10): avc:  denied  { search } for  pid=5490 comm="dhcpcd" name="netdev:wlan2" dev="debugfs" ino=10428 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  129.653003][ T6626] usb 3-1: Using ep0 maxpacket: 8
[  129.663719][ T6626] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  130.028490][    T9] usb 4-1: New USB device found, idVendor=0bb4, idProduct=0a74, bcdDevice=ef.97
[  130.040702][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.042024][   T30] audit: type=1400 audit(1743819054.002:311): avc:  denied  { search } for  pid=5178 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  130.054116][    T9] usb 4-1: Product: syz
[  130.092157][    T9] usb 4-1: Manufacturer: syz
[  130.093502][ T6626] usb 3-1: config 1 interface 0 altsetting 16 endpoint 0x82 has invalid wMaxPacketSize 0
[  130.101979][    T9] usb 4-1: SerialNumber: syz
[  130.125445][ T6626] usb 3-1: config 1 interface 0 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 0
[  130.138503][    T9] usb 4-1: config 0 descriptor??
[  130.145361][   T30] audit: type=1400 audit(1743819054.012:312): avc:  denied  { ioctl } for  pid=6730 comm="syz.4.195" path="socket:[11674]" dev="sockfs" ino=11674 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  130.177130][ T6626] usb 3-1: config 1 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  130.199830][ T6626] usb 3-1: config 1 interface 0 has no altsetting 0
[  130.208159][   T30] audit: type=1400 audit(1743819054.092:313): avc:  denied  { create } for  pid=6730 comm="syz.4.195" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  130.229164][ T6626] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  130.238954][ T6626] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.247458][ T6626] usb 3-1: Product: syz
[  130.252406][   T30] audit: type=1400 audit(1743819054.092:314): avc:  denied  { read } for  pid=6730 comm="syz.4.195" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  130.275763][ T6626] usb 3-1: Manufacturer: syz
[  130.280375][ T6626] usb 3-1: SerialNumber: syz
[  130.311460][ T6626] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22
[  130.316811][ T6730] delete_channel: no stack
[  130.320634][ T6626] usbtest 3-1:1.0: couldn't get endpoints, -22
[  130.413175][   T30] audit: type=1400 audit(1743819054.692:315): avc:  denied  { mounton } for  pid=6715 comm="syz.3.191" path="/33/file0" dev="tmpfs" ino=216 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  130.730793][ T6728] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  130.747768][ T6728] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  130.935413][ T6626] usbtest 3-1:1.0: probe with driver usbtest failed with error -22
[  131.051291][ T6626] usb 3-1: USB disconnect, device number 3
[  131.637053][    T9] ipaq 4-1:0.76: PocketPC PDA converter detected
[  131.677986][    T9] usb 4-1: active config #0 != 1 ??
[  131.722472][    T9] usb 4-1: USB disconnect, device number 5
[  132.483703][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  132.623082][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  132.706948][   T30] audit: type=1400 audit(1743819057.032:316): avc:  denied  { connect } for  pid=6782 comm="syz.0.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  133.039905][   T30] audit: type=1400 audit(1743819057.362:317): avc:  denied  { getopt } for  pid=6774 comm="syz.1.201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  133.112824][   T30] audit: type=1400 audit(1743819057.362:318): avc:  denied  { read } for  pid=6774 comm="syz.1.201" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  133.151226][ T6801] dns_resolver: Unsupported content type (152)
[  133.239260][   T30] audit: type=1400 audit(1743819057.562:319): avc:  denied  { name_bind } for  pid=6796 comm="syz.0.203" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  133.687146][ T6813] overlayfs: failed to resolve './file1': -2
[  134.083031][    T9] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  134.258624][    T9] usb 3-1: config 2 has an invalid interface number: 181 but max is 0
[  134.349674][    T9] usb 3-1: config 2 has no interface number 0
[  134.678525][    T9] usb 3-1: config 2 interface 181 has no altsetting 0
[  134.738485][    T9] usb 3-1: New USB device found, idVendor=1776, idProduct=501c, bcdDevice=7e.08
[  134.771783][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.805957][    T9] usb 3-1: Product: syz
[  135.082533][    T9] usb 3-1: Manufacturer: syz
[  135.110744][    T9] usb 3-1: SerialNumber: syz
[  135.145235][    T9] gspca_main: spca501-2.14.0 probing 1776:501c
[  135.218797][ T6826] 9pnet_fd: Insufficient options for proto=fd
[  135.365725][ T6811] 9pnet_fd: Insufficient options for proto=fd
[  135.373062][   T30] audit: type=1400 audit(1743819059.692:320): avc:  denied  { create } for  pid=6808 comm="syz.2.206" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  135.404018][    T9] gspca_spca501: reg write: error -71
[  135.416752][    T9] spca501 3-1:2.181: Reg write failed for 0x02,0x07,0x05
[  135.428065][    T9] spca501 3-1:2.181: probe with driver spca501 failed with error -22
[  135.436388][ T5907] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  135.450945][    T9] usb 3-1: USB disconnect, device number 4
[  135.527517][   T30] audit: type=1400 audit(1743819059.702:321): avc:  denied  { ioctl } for  pid=6808 comm="syz.2.206" path="socket:[10656]" dev="sockfs" ino=10656 ioctlcmd=0x5322 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  135.578383][   T30] audit: type=1400 audit(1743819059.702:322): avc:  denied  { bind } for  pid=6808 comm="syz.2.206" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  135.602305][ T5907] usb 4-1: Using ep0 maxpacket: 16
[  135.736493][ T6837] pim6reg1: entered promiscuous mode
[  135.741829][ T6837] pim6reg1: entered allmulticast mode
[  136.051729][   T30] audit: type=1400 audit(1743819059.842:323): avc:  denied  { create } for  pid=6829 comm="syz.4.212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  136.073143][ T5907] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  136.081544][ T6840] netlink: 'syz.0.213': attribute type 4 has an invalid length.
[  136.095659][ T6840] netlink: 152 bytes leftover after parsing attributes in process `syz.0.213'.
[  136.097526][   T30] audit: type=1400 audit(1743819059.852:324): avc:  denied  { write } for  pid=6829 comm="syz.4.212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  136.109672][ T6840] : renamed from bond0 (while UP)
[  136.132337][ T5907] usb 4-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[  136.143060][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.182281][   T30] audit: type=1400 audit(1743819059.902:325): avc:  denied  { bind } for  pid=6829 comm="syz.4.212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  136.219903][ T5907] usb 4-1: config 0 descriptor??
[  136.261195][   T30] audit: type=1400 audit(1743819059.902:326): avc:  denied  { setopt } for  pid=6829 comm="syz.4.212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  136.289089][   T30] audit: type=1400 audit(1743819059.902:327): avc:  denied  { connect } for  pid=6829 comm="syz.4.212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  136.317108][ T6850] netlink: 100 bytes leftover after parsing attributes in process `syz.2.216'.
[  136.787206][ T6856] overlayfs: failed to resolve './file1': -2
[  137.222393][ T6858] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  138.442967][   T30] audit: type=1400 audit(1743819061.592:328): avc:  denied  { mount } for  pid=6823 comm="syz.3.209" name="/" dev="autofs" ino=10701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  138.615391][   T30] audit: type=1400 audit(1743819062.942:329): avc:  denied  { bind } for  pid=6862 comm="syz.1.218" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  138.814112][ T6858] block device autoloading is deprecated and will be removed.
[  139.128792][ T5907] usbhid 4-1:0.0: can't add hid device: -71
[  139.138962][ T5907] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  139.175637][ T5907] usb 4-1: USB disconnect, device number 6
[  139.294957][ T6874] 9pnet_fd: Insufficient options for proto=fd
[  139.375679][   T52] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  139.603014][   T52] usb 2-1: Using ep0 maxpacket: 32
[  139.620468][   T52] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  139.683242][   T52] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  139.717454][   T52] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  139.731149][   T52] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  139.747394][   T52] usb 2-1: Product: syz
[  139.767359][   T52] usb 2-1: Manufacturer: syz
[  139.818125][ T6889] netlink: 100 bytes leftover after parsing attributes in process `syz.0.229'.
[  139.840496][   T52] hub 2-1:4.0: USB hub found
[  140.040172][   T52] hub 2-1:4.0: 7 ports detected
[  140.076754][   T52] hub 2-1:4.0: insufficient power available to use all downstream ports
[  140.102210][ T6896] netlink: 100 bytes leftover after parsing attributes in process `syz.3.232'.
[  140.591239][ T6899] overlayfs: failed to resolve './file1': -2
[  141.481781][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  141.481794][   T30] audit: type=1400 audit(1743819065.802:335): avc:  denied  { setopt } for  pid=6907 comm="syz.2.234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  141.514762][   T30] audit: type=1400 audit(1743819065.842:336): avc:  denied  { append } for  pid=6907 comm="syz.2.234" name="dlm-control" dev="devtmpfs" ino=94 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  141.713151][    T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  141.801240][ T6924] overlayfs: failed to resolve './file0': -2
[  141.819092][ T6924] netlink: 'syz.4.238': attribute type 11 has an invalid length.
[  141.826849][ T5876] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  141.841372][ T6924] netlink: 224 bytes leftover after parsing attributes in process `syz.4.238'.
[  141.859647][   T52] hub 2-1:4.0: set hub depth failed
[  141.873057][    T9] usb 4-1: device descriptor read/64, error -71
[  141.885839][   T52] usb 2-1: USB disconnect, device number 5
[  141.953008][ T5876] usb 3-1: device descriptor read/64, error -71
[  142.123166][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  142.193047][ T5876] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  142.262988][    T9] usb 4-1: device descriptor read/64, error -71
[  142.333200][ T5876] usb 3-1: device descriptor read/64, error -71
[  142.387578][    T9] usb usb4-port1: attempt power cycle
[  142.445482][ T5876] usb usb3-port1: attempt power cycle
[  142.673184][   T30] audit: type=1400 audit(1743819066.992:337): avc:  denied  { mount } for  pid=6946 comm="syz.0.241" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  142.729290][   T30] audit: type=1400 audit(1743819067.032:338): avc:  denied  { write } for  pid=6946 comm="syz.0.241" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  142.753177][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  142.789126][    T9] usb 4-1: device descriptor read/8, error -71
[  142.814440][   T30] audit: type=1400 audit(1743819067.032:339): avc:  denied  { open } for  pid=6946 comm="syz.0.241" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  142.835932][ T5876] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  142.856052][   T30] audit: type=1400 audit(1743819067.042:340): avc:  denied  { read } for  pid=6946 comm="syz.0.241" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  142.881975][   T30] audit: type=1800 audit(1743819067.142:341): pid=6947 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.241" name="/" dev="9p" ino=2 res=0 errno=0
[  142.905250][ T5876] usb 3-1: device descriptor read/8, error -71
[  142.947248][   T30] audit: type=1400 audit(1743819067.162:342): avc:  denied  { mount } for  pid=6958 comm="syz.4.242" name="/" dev="hugetlbfs" ino=11105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  142.972444][   T30] audit: type=1400 audit(1743819067.172:343): avc:  denied  { unmount } for  pid=6958 comm="syz.4.242" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  143.007805][   T30] audit: type=1400 audit(1743819067.322:344): avc:  denied  { unmount } for  pid=5828 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  143.066666][    T9] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  143.113579][    T9] usb 4-1: device descriptor read/8, error -71
[  143.153207][ T5876] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  143.183993][ T5876] usb 3-1: device descriptor read/8, error -71
[  143.266938][  T911] usb 2-1: new low-speed USB device number 6 using dummy_hcd
[  143.275296][    T9] usb usb4-port1: unable to enumerate USB device
[  143.294853][ T5876] usb usb3-port1: unable to enumerate USB device
[  143.467749][ T6983] overlayfs: failed to resolve './file1': -2
[  143.478923][  T911] usb 2-1: config 252 has an invalid interface number: 101 but max is 0
[  143.751643][  T911] usb 2-1: config 252 has no interface number 0
[  143.779833][  T911] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  143.822157][  T911] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.932384][  T911] pvrusb2: Hardware description: Terratec Grabster AV400
[  143.964002][  T911] pvrusb2: **********
[  143.982148][  T911] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  144.076297][  T911] pvrusb2: Important functionality might not be entirely working.
[  144.151569][  T911] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  144.285572][  T911] pvrusb2: **********
[  144.722811][ T6994] overlayfs: failed to resolve './file0': -2
[  144.787899][ T6996] unknown channel width for channel at 909000KHz?
[  144.830483][ T6994] netlink: 'syz.2.248': attribute type 11 has an invalid length.
[  144.917509][ T6994] netlink: 224 bytes leftover after parsing attributes in process `syz.2.248'.
[  145.879514][ T2335] pvrusb2: Invalid write control endpoint
[  145.883175][  T911] usb 2-1: USB disconnect, device number 6
[  145.933133][   T52] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  145.984762][ T2335] pvrusb2: Invalid write control endpoint
[  145.990636][ T2335] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  146.024643][ T2335] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  146.042972][ T2335] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  146.066724][ T2335] pvrusb2: Device being rendered inoperable
[  146.083069][ T2335] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  146.101109][ T2335] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  146.126378][ T2335] pvrusb2: Attached sub-driver cx25840
[  146.136230][ T2335] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  146.148053][ T2335] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  146.160183][   T52] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  146.176478][   T52] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  146.194385][   T52] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  146.205968][   T52] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  146.217069][   T52] usb 1-1: SerialNumber: syz
[  146.264844][ T7039] bridge_slave_0: left allmulticast mode
[  146.270524][ T7039] bridge_slave_0: left promiscuous mode
[  146.276477][ T7039] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.389780][ T7039] bridge_slave_1: left allmulticast mode
[  146.435819][ T7039] bridge_slave_1: left promiscuous mode
[  146.590465][ T7018] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  146.602242][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  146.602275][   T30] audit: type=1400 audit(1743819070.912:350): avc:  denied  { ioctl } for  pid=7017 comm="syz.0.253" path="socket:[12190]" dev="sockfs" ino=12190 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  146.637000][ T7018] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  146.773868][ T7058] overlayfs: failed to resolve './file1': -2
[  147.159677][ T7039] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.236106][   T52] usb 1-1: 0:2 : does not exist
[  147.241041][   T52] usb 1-1: unit 5: unexpected type 0x0a
[  147.746033][   T52] usb 1-1: USB disconnect, device number 5
[  147.752222][ T7039] bond0: (slave bond_slave_0): Releasing backup interface
[  147.768340][   T30] audit: type=1400 audit(1743819072.092:351): avc:  denied  { bind } for  pid=7063 comm="syz.3.261" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  147.903228][ T7039] bond0: (slave bond_slave_1): Releasing backup interface
[  148.447896][ T7039] team0: Port device team_slave_0 removed
[  148.468923][ T6060] udevd[6060]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  148.794206][ T7074] overlayfs: failed to resolve './file1': -2
[  149.097442][ T7039] team0: Port device team_slave_1 removed
[  149.105382][ T7039] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  149.112822][ T7039] batman_adv: batadv0: Removing interface: batadv_slave_0
[  149.157033][ T7039] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  149.168254][ T7039] batman_adv: batadv0: Removing interface: batadv_slave_1
[  149.214752][   T30] audit: type=1400 audit(1743819073.542:352): avc:  denied  { unmount } for  pid=5825 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  149.575233][   T30] audit: type=1400 audit(1743819073.902:353): avc:  denied  { read } for  pid=7079 comm="syz.1.265" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  149.676213][   T30] audit: type=1400 audit(1743819073.902:354): avc:  denied  { open } for  pid=7079 comm="syz.1.265" path="/dev/fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  151.469120][ T7109] overlayfs: failed to resolve './file1': -2
[  151.569070][ T7116] 9pnet_fd: Insufficient options for proto=fd
[  152.787704][ T7125] overlayfs: failed to resolve './file1': -2
[  154.597968][ T7141] overlayfs: failed to resolve './file0': -2
[  154.889515][ T7149] ubi31: attaching mtd0
[  155.022204][ T7150] overlayfs: failed to resolve './file1': -2
[  155.040167][ T7149] ubi31: scanning is finished
[  155.231160][ T7149] ubi31: empty MTD device detected
[  156.124530][ T7149] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[  156.333155][ T5876] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  156.474195][ T7141] netlink: 'syz.1.278': attribute type 11 has an invalid length.
[  156.487356][ T7141] netlink: 224 bytes leftover after parsing attributes in process `syz.1.278'.
[  156.545751][ T5876] usb 1-1: Using ep0 maxpacket: 16
[  156.684787][ T7174] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  156.923492][ T7170] 9pnet_fd: Insufficient options for proto=fd
[  156.954541][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.966636][ T5876] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.976726][ T5876] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  156.991292][ T5876] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00
[  157.001440][ T5876] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.038041][ T5876] usb 1-1: config 0 descriptor??
[  157.561210][ T5876] koneplus 0003:1E7D:2E22.0002: unknown main item tag 0x0
[  157.917629][ T5876] koneplus 0003:1E7D:2E22.0002: unknown main item tag 0x0
[  157.960631][ T5876] koneplus 0003:1E7D:2E22.0002: hidraw0: USB HID v0.00 Device [HID 1e7d:2e22] on usb-dummy_hcd.0-1/input0
[  158.112429][ T5876] koneplus 0003:1E7D:2E22.0002: couldn't init struct koneplus_device
[  158.155221][ T5876] koneplus 0003:1E7D:2E22.0002: couldn't install mouse
[  158.166057][ T5876] koneplus 0003:1E7D:2E22.0002: probe with driver koneplus failed with error -32
[  158.199205][ T5876] usb 1-1: USB disconnect, device number 6
[  158.243031][    T9] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  159.193227][    T9] usb 2-1: Using ep0 maxpacket: 32
[  159.207319][    T9] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  159.254084][    T9] usb 2-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  159.265075][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.275842][    T9] usb 2-1: Product: syz
[  159.280081][    T9] usb 2-1: Manufacturer: syz
[  159.285882][    T9] usb 2-1: SerialNumber: syz
[  159.293520][    T9] usb 2-1: config 0 descriptor??
[  159.310092][    T9] usb 2-1: bad CDC descriptors
[  159.329676][    T9] usb 2-1: unsupported MDLM descriptors
[  159.537118][ T7211] 9pnet_fd: Insufficient options for proto=fd
[  159.587067][   T52] usb 2-1: USB disconnect, device number 7
[  159.861722][   T30] audit: type=1400 audit(1743819084.182:355): avc:  denied  { write } for  pid=7209 comm="syz.2.292" name="fb0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  160.345263][ T7229] overlayfs: failed to resolve './file0': -2
[  160.778871][ T7239] overlayfs: failed to resolve './file0': -2
[  160.915809][   T30] audit: type=1400 audit(1743819085.202:356): avc:  denied  { create } for  pid=7223 comm="syz.1.295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  160.954289][ T7239] netlink: 'syz.4.297': attribute type 11 has an invalid length.
[  160.994984][ T7239] netlink: 224 bytes leftover after parsing attributes in process `syz.4.297'.
[  161.064460][   T30] audit: type=1400 audit(1743819085.212:357): avc:  denied  { bind } for  pid=7223 comm="syz.1.295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  161.084311][   T30] audit: type=1400 audit(1743819085.212:358): avc:  denied  { listen } for  pid=7223 comm="syz.1.295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  161.320744][ T7249] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  161.651975][   T52] kernel write not supported for file [eventfd] (pid: 52 comm: kworker/1:1)
[  161.853029][   T30] audit: type=1400 audit(1743819086.172:359): avc:  denied  { connect } for  pid=7250 comm="syz.2.299" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  161.949671][   T30] audit: type=1400 audit(1743819086.172:360): avc:  denied  { write } for  pid=7250 comm="syz.2.299" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  162.988538][ T7229] netlink: 'syz.0.296': attribute type 11 has an invalid length.
[  162.996368][ T7229] netlink: 224 bytes leftover after parsing attributes in process `syz.0.296'.
[  163.994964][ T7274] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  164.136511][   T30] audit: type=1400 audit(1743819088.462:361): avc:  denied  { create } for  pid=7264 comm="syz.3.304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  164.313002][   T30] audit: type=1400 audit(1743819088.482:362): avc:  denied  { getopt } for  pid=7264 comm="syz.3.304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  164.349605][   T30] audit: type=1400 audit(1743819088.672:363): avc:  denied  { write } for  pid=7279 comm="syz.1.306" name="net" dev="proc" ino=12769 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  164.616579][   T30] audit: type=1400 audit(1743819088.672:364): avc:  denied  { add_name } for  pid=7279 comm="syz.1.306" name="pfkey" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  164.905522][ T7307] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  164.943656][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  164.959760][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  164.970459][ T7307] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  165.021284][ T7304] vivid-000: =================  START STATUS  =================
[  165.029175][ T7304] vivid-000: Generate PTS: 
[  165.103190][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  165.248377][ T7304] true
[  165.251670][ T7304] vivid-000: Generate SCR: true
[  165.265624][ T7309] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  165.293253][ T7304] tpg source WxH: 640x360 (Y'CbCr)
[  165.727770][ T7304] tpg field: 1
[  165.954637][ T7304] tpg crop: (0,0)/640x360
[  165.969538][ T7309] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  165.985417][ T7304] tpg compose: (0,0)/640x360
[  165.990031][ T7304] tpg colorspace: 8
[  166.000642][ T7304] tpg transfer function: 0/0
[  166.461041][ T7304] tpg Y'CbCr encoding: 0/0
[  166.469095][ T7304] tpg quantization: 0/0
[  166.481622][ T7304] tpg RGB range: 0/2
[  166.491750][ T7304] vivid-000: ==================  END STATUS  ==================
[  167.109620][ T7302] syz.4.309 (7302) used greatest stack depth: 19992 bytes left
[  167.325387][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  170.546820][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  170.546832][   T30] audit: type=1400 audit(1743819094.872:370): avc:  denied  { map } for  pid=7349 comm="syz.1.317" path="/dev/video4" dev="devtmpfs" ino=936 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  170.649611][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  170.718304][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  170.901759][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  171.348592][ T7309] ip6gretap0 speed is unknown, defaulting to 1000
[  171.419376][ T7369] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7369 comm=syz.4.321
[  171.432553][   T30] audit: type=1400 audit(1743819095.742:371): avc:  denied  { write } for  pid=7367 comm="syz.4.321" path="socket:[13669]" dev="sockfs" ino=13669 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  171.458361][ T7369] netlink: 'syz.4.321': attribute type 1 has an invalid length.
[  171.500968][ T7369] 8021q: adding VLAN 0 to HW filter on device bond1
[  172.362321][ T7374] bond1: (slave ip6gretap1): making interface the new active one
[  172.462852][ T7374] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  173.309005][ T7390] ubi31: attaching mtd0
[  173.348397][ T7390] ubi31: scanning is finished
[  174.155906][ T7417] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  174.754276][ T7390] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  174.762386][ T7390] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  174.769763][ T7390] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  174.812563][ T7406] ip6gretap0 speed is unknown, defaulting to 1000
[  174.822138][ T7390] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  174.830513][ T7390] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  174.842043][ T7390] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  174.854734][ T7390] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 4253658933
[  174.864870][ T7390] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  174.895620][ T7419] ubi31: background thread "ubi_bgt31d" started, PID 7419
[  175.166675][   T30] audit: type=1400 audit(1743819099.492:372): avc:  denied  { write } for  pid=7427 comm="syz.4.332" name="usbmon9" dev="devtmpfs" ino=747 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  177.821727][   T30] audit: type=1400 audit(1743819102.142:373): avc:  denied  { write } for  pid=7456 comm="syz.4.337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  177.822208][ T7458] input: syz1 as /devices/virtual/input/input6
[  177.861001][   T30] audit: type=1400 audit(1743819102.142:374): avc:  denied  { nlmsg_read } for  pid=7456 comm="syz.4.337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  178.291552][   T30] audit: type=1400 audit(1743819102.612:375): avc:  denied  { read } for  pid=5181 comm="acpid" name="event4" dev="devtmpfs" ino=2825 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  178.363719][ T7464] netlink: 'syz.4.337': attribute type 9 has an invalid length.
[  178.371409][ T7464] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.337'.
[  178.445230][   T30] audit: type=1400 audit(1743819102.612:376): avc:  denied  { open } for  pid=5181 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2825 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  178.636817][   T30] audit: type=1400 audit(1743819102.612:377): avc:  denied  { ioctl } for  pid=5181 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2825 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  179.154307][ T7488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.343'.
[  179.209553][ T7491] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  179.213327][  T911] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  179.283011][   T30] audit: type=1400 audit(1743819103.602:378): avc:  denied  { ioctl } for  pid=7487 comm="syz.1.343" path="/dev/nullb0" dev="devtmpfs" ino=696 ioctlcmd=0x8904 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  179.369172][   T30] audit: type=1400 audit(1743819103.672:379): avc:  denied  { map } for  pid=7476 comm="syz.2.340" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  179.413036][  T911] usb 4-1: Using ep0 maxpacket: 32
[  179.458621][  T911] usb 4-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  179.470158][  T911] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.482487][   T30] audit: type=1400 audit(1743819103.672:380): avc:  denied  { execute } for  pid=7476 comm="syz.2.340" path="/dev/dri/card0" dev="devtmpfs" ino=627 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  179.483383][ T7499] netlink: 100 bytes leftover after parsing attributes in process `syz.4.344'.
[  179.517172][  T911] usb 4-1: config 0 descriptor??
[  179.530280][  T911] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  179.557980][   T30] audit: type=1400 audit(1743819103.812:381): avc:  denied  { bind } for  pid=7498 comm="syz.4.344" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  179.583687][   T52] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  179.603901][   T30] audit: type=1400 audit(1743819103.812:382): avc:  denied  { write } for  pid=7498 comm="syz.4.344" path="socket:[13007]" dev="sockfs" ino=13007 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  179.745485][   T52] usb 2-1: Using ep0 maxpacket: 8
[  179.752206][   T52] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  179.761469][   T52] usb 2-1: config 179 has no interface number 0
[  179.775797][   T52] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  179.797134][   T52] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  179.822093][   T52] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  179.852121][   T52] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  179.891146][   T52] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  179.940574][   T52] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  179.956855][   T52] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.108058][ T7516] overlayfs: failed to resolve './file0': -2
[  180.391127][ T7491] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  180.607690][ T5839] Bluetooth: hci0: command 0x0406 tx timeout
[  180.614140][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  180.620167][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  180.627878][ T5839] Bluetooth: hci4: command 0x0406 tx timeout
[  180.835501][  T911] gspca_vc032x: reg_w err -71
[  180.840220][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  180.858349][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  180.869218][ T7527] netlink: 100 bytes leftover after parsing attributes in process `syz.0.347'.
[  180.888711][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  180.902102][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  180.929164][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  180.945720][ T5872] usb 2-1: USB disconnect, device number 8
[  180.945720][    C1] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  180.945762][    C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  180.955024][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.110132][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.119396][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.130281][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.136665][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.142281][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.157040][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.162659][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.169575][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.177331][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.182770][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.195904][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.201441][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  181.208391][  T911] gspca_vc032x: Unknown sensor...
[  181.215911][  T911] vc032x 4-1:0.0: probe with driver vc032x failed with error -22
[  181.246199][  T911] usb 4-1: USB disconnect, device number 11
[  181.263367][    T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  181.439245][    T9] usb 1-1: Using ep0 maxpacket: 16
[  181.459676][    T9] usb 1-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  181.485986][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.506208][    T9] usb 1-1: Product: syz
[  181.516823][    T9] usb 1-1: Manufacturer: syz
[  181.536507][    T9] usb 1-1: SerialNumber: syz
[  181.561294][    T9] usb 1-1: config 0 descriptor??
[  181.589214][    T9] ssu100 1-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  181.599551][ T5836] Bluetooth: hci4: ACL packet for unknown connection handle 0
[  181.937080][    T9] ssu100 1-1:0.0: probe with driver ssu100 failed with error -110
[  182.129876][    T9] usb 1-1: USB disconnect, device number 7
[  182.556475][   T52] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  182.599644][ T7592] FAULT_INJECTION: forcing a failure.
[  182.599644][ T7592] name failslab, interval 1, probability 0, space 0, times 0
[  182.625007][ T7592] CPU: 0 UID: 0 PID: 7592 Comm: syz.4.354 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  182.625032][ T7592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  182.625041][ T7592] Call Trace:
[  182.625047][ T7592]  <TASK>
[  182.625053][ T7592]  dump_stack_lvl+0x16c/0x1f0
[  182.625079][ T7592]  should_fail_ex+0x512/0x640
[  182.625097][ T7592]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  182.625115][ T7592]  should_failslab+0xc2/0x120
[  182.625131][ T7592]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  182.625146][ T7592]  ? copy_process+0x4bd/0x91a0
[  182.625168][ T7592]  copy_process+0x4bd/0x91a0
[  182.625189][ T7592]  ? _kstrtoull+0x145/0x200
[  182.625211][ T7592]  ? __pfx__kstrtoull+0x10/0x10
[  182.625237][ T7592]  ? find_held_lock+0x2b/0x80
[  182.625262][ T7592]  ? __pfx_copy_process+0x10/0x10
[  182.625292][ T7592]  ? find_held_lock+0x2b/0x80
[  182.625322][ T7592]  kernel_clone+0xfc/0x960
[  182.625346][ T7592]  ? __pfx_kernel_clone+0x10/0x10
[  182.625378][ T7592]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  182.625402][ T7592]  __do_sys_clone+0xce/0x120
[  182.625423][ T7592]  ? __pfx___do_sys_clone+0x10/0x10
[  182.625452][ T7592]  ? ksys_write+0x1b9/0x240
[  182.625466][ T7592]  ? __pfx_ksys_write+0x10/0x10
[  182.625479][ T7592]  ? rcu_is_watching+0x12/0xc0
[  182.625505][ T7592]  do_syscall_64+0xcd/0x260
[  182.625528][ T7592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.625543][ T7592] RIP: 0033:0x7fcbb1f8d169
[  182.625556][ T7592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.625571][ T7592] RSP: 002b:00007fcbb2eb2fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  182.625586][ T7592] RAX: ffffffffffffffda RBX: 00007fcbb21a5fa0 RCX: 00007fcbb1f8d169
[  182.625597][ T7592] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000001000
[  182.625606][ T7592] RBP: 00007fcbb2eb3090 R08: 0000000000000000 R09: 0000000000000000
[  182.625622][ T7592] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  182.625631][ T7592] R13: 0000000000000000 R14: 00007fcbb21a5fa0 R15: 00007ffd15eda4e8
[  182.625653][ T7592]  </TASK>
[  182.843403][    C0] vkms_vblank_simulate: vblank timer overrun
[  182.873293][   T52] usb 2-1: Using ep0 maxpacket: 16
[  182.879845][   T52] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  182.890222][   T52] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  183.039033][   T52] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  183.085363][   T52] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.123556][   T52] usb 2-1: Product: syz
[  183.134603][   T52] usb 2-1: Manufacturer: syz
[  183.155853][   T52] usb 2-1: SerialNumber: syz
[  183.384902][ T7621] overlayfs: failed to resolve './file1': -2
[  183.403644][    T9] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  184.080330][ T7623] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  184.233135][    T9] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  184.249949][    T9] usb 3-1: config 0 interface 0 has no altsetting 0
[  184.279751][    T9] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  184.303256][    T9] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  184.319369][   T52] usb 2-1: 0:2 : does not exist
[  184.341475][    T9] usb 3-1: Product: syz
[  184.353815][   T52] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  184.355853][    T9] usb 3-1: Manufacturer: syz
[  184.401182][    T9] usb 3-1: SerialNumber: syz
[  184.423830][    T9] usb 3-1: config 0 descriptor??
[  184.462724][   T52] usb 2-1: USB disconnect, device number 9
[  184.467610][    T9] usb 3-1: selecting invalid altsetting 0
[  184.662610][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  184.662624][   T30] audit: type=1400 audit(1743819108.982:390): avc:  denied  { write } for  pid=7674 comm="syz.0.366" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  184.781700][   T30] audit: type=1400 audit(1743819109.052:391): avc:  denied  { create } for  pid=7681 comm="syz.3.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  184.835877][ T6060] udevd[6060]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  184.915928][   T30] audit: type=1400 audit(1743819109.062:392): avc:  denied  { bind } for  pid=7681 comm="syz.3.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  184.954573][   T30] audit: type=1400 audit(1743819109.082:393): avc:  denied  { setopt } for  pid=7601 comm="syz.2.358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  185.033195][   T30] audit: type=1400 audit(1743819109.302:394): avc:  denied  { create } for  pid=7698 comm="syz.1.369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  185.431620][ T7714] overlayfs: failed to resolve './file1': -2
[  185.881149][    T9] usb 3-1: USB disconnect, device number 9
[  186.161390][ T7741] netlink: 4 bytes leftover after parsing attributes in process `syz.2.373'.
[  186.162594][ T7744] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  186.197756][ T7741] tipc: Started in network mode
[  186.206255][ T7741] tipc: Node identity aaaaaaaaaaaa, cluster identity 4711
[  186.209057][   T30] audit: type=1400 audit(1743819110.532:395): avc:  denied  { getopt } for  pid=7743 comm="syz.1.374" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  186.249134][ T7750] netlink: 14 bytes leftover after parsing attributes in process `syz.2.373'.
[  186.259605][ T7741] tipc: Enabled bearer <eth:syz_tun>, priority 10
[  186.326580][ T7750] tipc: Resetting bearer <eth:syz_tun>
[  186.412678][ T7750] tipc: Disabling bearer <eth:syz_tun>
[  186.500719][ T7765] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  186.507541][ T7765] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  186.556364][   T30] audit: type=1400 audit(1743819110.882:396): avc:  denied  { name_bind } for  pid=7764 comm="syz.1.377" src=28195 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  186.562197][ T7765] vhci_hcd vhci_hcd.0: Device attached
[  186.630390][ T7773] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  186.636939][ T7773] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  186.639797][   T30] audit: type=1400 audit(1743819110.882:397): avc:  denied  { node_bind } for  pid=7764 comm="syz.1.377" saddr=fc02:: src=28195 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  186.647402][ T7773] vhci_hcd vhci_hcd.0: Device attached
[  186.666031][    C0] vkms_vblank_simulate: vblank timer overrun
[  186.843053][ T5876] vhci_hcd: vhci_device speed not set
[  186.849005][   T52] usb 35-1: new low-speed USB device number 2 using vhci_hcd
[  186.892965][    T9] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  186.924397][ T5876] usb 33-1: new full-speed USB device number 2 using vhci_hcd
[  186.926801][   T30] audit: type=1400 audit(1743819110.882:398): avc:  denied  { map } for  pid=7764 comm="syz.1.377" path="socket:[13198]" dev="sockfs" ino=13198 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  186.935979][ T7795] xt_hashlimit: size too large, truncated to 1048576
[  187.056800][   T30] audit: type=1400 audit(1743819110.882:399): avc:  denied  { read accept } for  pid=7764 comm="syz.1.377" path="socket:[13198]" dev="sockfs" ino=13198 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  187.062422][ T7795] syz.3.381: vmalloc error: size 10485760, failed to allocated page array size 20480, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null)
[  187.080565][    C0] vkms_vblank_simulate: vblank timer overrun
[  187.103601][ T7795] ,cpuset=/,mems_allowed=0-1
[  187.124392][ T7795] CPU: 0 UID: 0 PID: 7795 Comm: syz.3.381 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  187.124419][ T7795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  187.124428][ T7795] Call Trace:
[  187.124433][ T7795]  <TASK>
[  187.124441][ T7795]  dump_stack_lvl+0x16c/0x1f0
[  187.124469][ T7795]  warn_alloc+0x248/0x3a0
[  187.124489][ T7795]  ? __pfx_warn_alloc+0x10/0x10
[  187.124514][ T7795]  ? __get_vm_area_node+0x1b9/0x300
[  187.124535][ T7795]  ? __get_vm_area_node+0x1e5/0x300
[  187.124562][ T7795]  __vmalloc_node_range_noprof+0x1110/0x1540
[  187.124595][ T7795]  ? hashlimit_mt_check_common+0x8bb/0x1460
[  187.124626][ T7795]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  187.124658][ T7795]  __kvmalloc_node_noprof+0x2ff/0x600
[  187.124674][ T7795]  ? hashlimit_mt_check_common+0x8bb/0x1460
[  187.124694][ T7795]  ? hashlimit_mt_check_common+0x8bb/0x1460
[  187.124714][ T7795]  ? hashlimit_mt_check_common+0x625/0x1460
[  187.124741][ T7795]  ? hashlimit_mt_check_common+0x8bb/0x1460
[  187.124763][ T7795]  hashlimit_mt_check_common+0x8bb/0x1460
[  187.124796][ T7795]  hashlimit_mt_check+0x71/0x90
[  187.124817][ T7795]  ? __pfx_hashlimit_mt_check+0x10/0x10
[  187.124840][ T7795]  xt_check_match+0x283/0xa50
[  187.124863][ T7795]  ? yield_to+0x2c2/0x7f0
[  187.124882][ T7795]  ? __pfx_xt_check_match+0x10/0x10
[  187.124907][ T7795]  ? xt_find_target+0x1f2/0x290
[  187.124931][ T7795]  ? xt_find_match+0x1f6/0x290
[  187.124963][ T7795]  find_check_entry.constprop.0+0x34e/0xa20
[  187.124990][ T7795]  ? __pfx_find_check_entry.constprop.0+0x10/0x10
[  187.125016][ T7795]  ? kasan_quarantine_put+0x10a/0x240
[  187.125031][ T7795]  ? lockdep_hardirqs_on+0x7c/0x110
[  187.125054][ T7795]  ? kfree+0x2b6/0x4d0
[  187.125075][ T7795]  ? translate_table+0xc0e/0x17b0
[  187.125098][ T7795]  translate_table+0xd0b/0x17b0
[  187.125130][ T7795]  ? __pfx_translate_table+0x10/0x10
[  187.125150][ T7795]  ? xt_alloc_table_info+0x3e/0xa0
[  187.125178][ T7795]  do_ip6t_set_ctl+0x570/0xb00
[  187.125200][ T7795]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  187.125225][ T7795]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  187.125250][ T7795]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  187.125284][ T7795]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  187.125307][ T7795]  nf_setsockopt+0x8a/0xf0
[  187.125328][ T7795]  ipv6_setsockopt+0x135/0x170
[  187.125352][ T7795]  rawv6_setsockopt+0xc2/0x510
[  187.125371][ T7795]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  187.125391][ T7795]  ? selinux_socket_setsockopt+0x6a/0x80
[  187.125410][ T7795]  ? sock_common_setsockopt+0x2e/0xf0
[  187.125434][ T7795]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  187.125457][ T7795]  do_sock_setsockopt+0x221/0x470
[  187.125480][ T7795]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  187.125516][ T7795]  __sys_setsockopt+0x1a0/0x230
[  187.125538][ T7795]  __x64_sys_setsockopt+0xbd/0x160
[  187.125555][ T7795]  ? do_syscall_64+0x91/0x260
[  187.125575][ T7795]  ? lockdep_hardirqs_on+0x7c/0x110
[  187.125594][ T7795]  do_syscall_64+0xcd/0x260
[  187.125615][ T7795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.125632][ T7795] RIP: 0033:0x7fe14038d169
[  187.125645][ T7795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.125660][ T7795] RSP: 002b:00007fe141270038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  187.125677][ T7795] RAX: ffffffffffffffda RBX: 00007fe1405a6160 RCX: 00007fe14038d169
[  187.125688][ T7795] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000006
[  187.125696][ T7795] RBP: 00007fe14040e2a0 R08: 0000000000000588 R09: 0000000000000000
[  187.125706][ T7795] R10: 00002000000014c0 R11: 0000000000000246 R12: 0000000000000000
[  187.125716][ T7795] R13: 0000000000000000 R14: 00007fe1405a6160 R15: 00007fffa3f69928
[  187.125738][ T7795]  </TASK>
[  187.348501][ T7795] Mem-Info:
[  187.351845][ T7766] vhci_hcd: connection reset by peer
[  187.372274][ T7795] active_anon:5911 inactive_anon:0 isolated_anon:25
[  187.372274][ T7795]  active_file:11367 inactive_file:39029 isolated_file:0
[  187.372274][ T7795]  unevictable:792 dirty:249 writeback:0
[  187.372274][ T7795]  slab_reclaimable:11084 slab_unreclaimable:101722
[  187.372274][ T7795]  mapped:29835 shmem:1481 pagetables:1139
[  187.372274][ T7795]  sec_pagetables:0 bounce:0
[  187.372274][ T7795]  kernel_misc_reclaimable:0
[  187.372274][ T7795]  free:1323510 free_pcp:594 free_cma:0
[  187.561378][    T9] usb 1-1: Using ep0 maxpacket: 8
[  187.579913][   T12] vhci_hcd: stop threads
[  187.590117][   T12] vhci_hcd: release socket
[  187.627933][    T9] usb 1-1: config 0 has no interfaces?
[  187.638338][ T7795] Node 0 active_anon:23260kB inactive_anon:0kB active_file:45412kB inactive_file:156044kB unevictable:1632kB isolated(anon):0kB isolated(file):0kB mapped:119276kB dirty:1088kB writeback:0kB shmem:4304kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11124kB pagetables:3620kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  187.674085][   T12] vhci_hcd: disconnect device
[  187.698271][    T9] usb 1-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1
[  187.710800][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.733136][ T7795] Node 1 active_anon:0kB inactive_anon:0kB active_file:56kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:56kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  187.839717][    T9] usb 1-1: Product: syz
[  187.844476][    T9] usb 1-1: Manufacturer: syz
[  187.849179][    T9] usb 1-1: SerialNumber: syz
[  187.856589][ T7795] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  187.884576][    T9] usb 1-1: config 0 descriptor??
[  187.889688][ T7795] lowmem_reserve[]: 0 2481 2483 2483 2483
[  187.895927][ T7795] Node 0 DMA32 free:1357920kB boost:0kB min:34092kB low:42612kB high:51132kB reserved_highatomic:0KB active_anon:34860kB inactive_anon:0kB active_file:45412kB inactive_file:154432kB unevictable:1632kB writepending:1088kB present:3129332kB managed:2541556kB mlocked:0kB bounce:0kB free_pcp:6888kB local_pcp:5200kB free_cma:0kB
[  188.002607][ T7795] lowmem_reserve[]: 0 0 1 1 1
[  188.169220][ T7777] usbip_core: unknown command
[  188.180804][ T5877] usb 1-1: USB disconnect, device number 8
[  188.275983][ T7777] vhci_hcd: unknown pdu 302055424
[  188.281052][ T7777] usbip_core: unknown command
[  188.335160][ T7823] netlink: 28 bytes leftover after parsing attributes in process `syz.4.384'.
[  188.336784][ T7795] Node 0 
[  188.350914][ T5899] vhci_hcd: stop threads
[  188.351225][ T7795] Normal free:16kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:1612kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  188.354523][ T5899] vhci_hcd: release socket
[  188.367593][ T7795] lowmem_reserve[]:
[  188.404146][ T7823] netlink: 'syz.4.384': attribute type 12 has an invalid length.
[  188.423420][ T7841] xt_TCPMSS: Only works on TCP SYN packets
[  188.439683][ T7795]  0 0 0 0 0
[  188.455355][ T7795] Node 1 Normal free:3906164kB boost:0kB min:55784kB low:69728kB high:83672kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:56kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  188.481965][ T5899] vhci_hcd: disconnect device
[  188.527048][ T7795] lowmem_reserve[]: 0 0 0 0 0
[  188.531806][ T7795] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  188.561747][ T7795] Node 0 DMA32: 12*4kB (ME) 2*8kB (UM) 71*16kB (UME) 412*32kB (UME) 334*64kB (UME) 83*128kB (UME) 45*256kB (UME) 29*512kB (UME) 18*1024kB (UME) 8*2048kB (UME) 306*4096kB (UM) = 1360944kB
[  188.583003][ T7795] Node 0 Normal: 0*4kB 2*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  188.597084][ T7795] Node 1 Normal: 213*4kB (UME) 50*8kB (UME) 37*16kB (UME) 170*32kB (UME) 90*64kB (UME) 33*128kB (UME) 17*256kB (UME) 9*512kB (UME) 3*1024kB (UM) 3*2048kB (UE) 945*4096kB (M) = 3906164kB
[  188.618979][ T7795] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  188.674771][ T7795] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  188.685757][ T7795] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  188.697943][ T7795] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  188.717464][ T7795] 51878 total pagecache pages
[  188.722894][ T7795] 0 pages in swap cache
[  188.782148][ T7795] Free swap  = 124996kB
[  188.815590][ T7795] Total swap = 124996kB
[  188.820851][ T7795] 2097051 pages RAM
[  188.848838][ T7795] 0 pages HighMem/MovableOnly
[  188.906842][ T7795] 429620 pages reserved
[  189.444934][ T7795] 0 pages cma reserved
[  189.601175][ T7864] FAULT_INJECTION: forcing a failure.
[  189.601175][ T7864] name failslab, interval 1, probability 0, space 0, times 0
[  190.188060][ T7864] CPU: 0 UID: 0 PID: 7864 Comm: syz.4.389 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  190.188085][ T7864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  190.188093][ T7864] Call Trace:
[  190.188098][ T7864]  <TASK>
[  190.188104][ T7864]  dump_stack_lvl+0x16c/0x1f0
[  190.188129][ T7864]  should_fail_ex+0x512/0x640
[  190.188145][ T7864]  ? __kmalloc_noprof+0xbf/0x510
[  190.188161][ T7864]  ? __alloc_workqueue+0xd5c/0x1810
[  190.188183][ T7864]  should_failslab+0xc2/0x120
[  190.188202][ T7864]  __kmalloc_noprof+0xd2/0x510
[  190.188219][ T7864]  ? __pfx___schedule+0x10/0x10
[  190.188237][ T7864]  __alloc_workqueue+0xd5c/0x1810
[  190.188265][ T7864]  alloc_workqueue+0xd2/0x200
[  190.188286][ T7864]  ? __pfx_alloc_workqueue+0x10/0x10
[  190.188306][ T7864]  ? lockdep_hardirqs_on+0x7c/0x110
[  190.188336][ T7864]  loop_configure+0x1056/0x1860
[  190.188360][ T7864]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  190.188386][ T7864]  ? __lock_acquire+0xaa4/0x1ba0
[  190.188404][ T7864]  ? __pfx_loop_configure+0x10/0x10
[  190.188440][ T7864]  lo_ioctl+0xdeb/0x26d0
[  190.188461][ T7864]  ? __lock_acquire+0xaa4/0x1ba0
[  190.188478][ T7864]  ? rcu_is_watching+0x12/0xc0
[  190.188501][ T7864]  ? __lock_acquire+0xaa4/0x1ba0
[  190.188515][ T7864]  ? __pfx_lo_ioctl+0x10/0x10
[  190.188530][ T7864]  ? find_held_lock+0x2b/0x80
[  190.188548][ T7864]  ? psi_task_switch+0x201/0x8e0
[  190.188572][ T7864]  ? lock_acquire+0x179/0x350
[  190.188585][ T7864]  ? find_held_lock+0x2b/0x80
[  190.188601][ T7864]  ? finish_task_switch.isra.0+0x21c/0xc10
[  190.188624][ T7864]  ? rcu_is_watching+0x12/0xc0
[  190.188641][ T7864]  ? finish_task_switch.isra.0+0x221/0xc10
[  190.188662][ T7864]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  190.188683][ T7864]  ? rcu_is_watching+0x12/0xc0
[  190.188702][ T7864]  ? trace_sched_exit_tp+0xde/0x130
[  190.188727][ T7864]  ? __schedule+0x1186/0x5de0
[  190.188751][ T7864]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  190.188798][ T7864]  ? blkdev_ioctl+0x1d9/0x6d0
[  190.188819][ T7864]  ? __pfx_lo_ioctl+0x10/0x10
[  190.188834][ T7864]  blkdev_ioctl+0x274/0x6d0
[  190.188855][ T7864]  ? __pfx_blkdev_ioctl+0x10/0x10
[  190.188875][ T7864]  ? selinux_file_ioctl+0x180/0x270
[  190.188898][ T7864]  ? selinux_file_ioctl+0xb4/0x270
[  190.188927][ T7864]  ? __pfx_blkdev_ioctl+0x10/0x10
[  190.188948][ T7864]  __x64_sys_ioctl+0x190/0x200
[  190.188971][ T7864]  do_syscall_64+0xcd/0x260
[  190.188992][ T7864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.189007][ T7864] RIP: 0033:0x7fcbb1f8d169
[  190.189020][ T7864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.189033][ T7864] RSP: 002b:00007fcbb2eb3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  190.189048][ T7864] RAX: ffffffffffffffda RBX: 00007fcbb21a5fa0 RCX: 00007fcbb1f8d169
[  190.189059][ T7864] RDX: 00002000000002c0 RSI: 0000000000004c0a RDI: 0000000000000005
[  190.189068][ T7864] RBP: 00007fcbb2eb3090 R08: 0000000000000000 R09: 0000000000000000
[  190.189077][ T7864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.189085][ T7864] R13: 0000000000000000 R14: 00007fcbb21a5fa0 R15: 00007ffd15eda4e8
[  190.189105][ T7864]  </TASK>
[  190.507916][ T7871] netlink: 100 bytes leftover after parsing attributes in process `syz.3.390'.
[  190.810058][ T7880] overlayfs: failed to resolve './file0': -2
[  190.835569][ T7880] netlink: 'syz.1.392': attribute type 11 has an invalid length.
[  190.859176][ T7888] netlink: 100 bytes leftover after parsing attributes in process `syz.4.391'.
[  190.871593][ T7880] netlink: 224 bytes leftover after parsing attributes in process `syz.1.392'.
[  190.913354][  T911] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  191.055232][  T911] usb 1-1: device descriptor read/64, error -71
[  191.065207][ T6626] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  191.228595][ T6626] usb 4-1: Using ep0 maxpacket: 16
[  191.241323][ T6626] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  191.262285][ T6626] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.272283][ T6626] usb 4-1: Product: syz
[  191.278387][ T6626] usb 4-1: Manufacturer: syz
[  191.307106][ T6626] usb 4-1: SerialNumber: syz
[  191.337971][ T6626] usb 4-1: config 0 descriptor??
[  191.352192][ T6626] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  191.383054][  T911] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  191.399866][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  191.399882][   T30] audit: type=1400 audit(1743819115.722:404): avc:  denied  { read } for  pid=7916 comm="syz.2.395" path="socket:[14260]" dev="sockfs" ino=14260 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  191.523039][  T911] usb 1-1: device descriptor read/64, error -71
[  191.558534][ T6626] ssu100 4-1:0.0: probe with driver ssu100 failed with error -71
[  191.590841][ T6626] usb 4-1: USB disconnect, device number 12
[  191.633232][  T911] usb usb1-port1: attempt power cycle
[  192.133321][   T52] vhci_hcd: vhci_device speed not set
[  192.193745][ T5876] vhci_hcd: vhci_device speed not set
[  192.302985][  T911] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  192.333804][  T911] usb 1-1: device descriptor read/8, error -71
[  192.773014][  T911] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  192.814448][  T911] usb 1-1: device descriptor read/8, error -71
[  193.079176][  T911] usb usb1-port1: unable to enumerate USB device
[  193.336182][ T7990] tc_dump_action: action bad kind
[  193.963640][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  193.970256][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  194.222995][   T30] audit: type=1326 audit(1743819118.532:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  194.293022][   T30] audit: type=1326 audit(1743819118.532:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  194.316498][   T52] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  194.409169][   T30] audit: type=1326 audit(1743819118.532:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  194.527548][   T52] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  194.547001][   T52] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.572411][   T30] audit: type=1326 audit(1743819118.532:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  194.584834][ T8030] overlayfs: failed to resolve './file0': -2
[  194.606348][   T30] audit: type=1326 audit(1743819118.532:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  194.633682][   T52] usb 4-1: config 0 descriptor??
[  194.645101][   T52] gspca_main: cpia1-2.14.0 probing 0813:0001
[  194.761841][   T30] audit: type=1326 audit(1743819118.542:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  194.847898][ T8038] IPVS: sh: TCP 172.20.20.170:0 - no destination available
[  195.259502][   T30] audit: type=1326 audit(1743819118.542:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  195.259560][   T30] audit: type=1326 audit(1743819118.542:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  195.259592][   T30] audit: type=1326 audit(1743819118.542:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8012 comm="syz.0.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f564578d169 code=0x7ffc0000
[  195.341470][ T8030] netlink: 'syz.0.406': attribute type 11 has an invalid length.
[  195.341525][ T8030] netlink: 224 bytes leftover after parsing attributes in process `syz.0.406'.
[  195.448798][   T52] gspca_cpia1: usb_control_msg 05, error -71
[  195.456960][   T52] gspca_cpia1: usb_control_msg 01, error -71
[  195.535895][   T52] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0)
[  195.575094][   T52] usb 4-1: USB disconnect, device number 13
[  195.612816][ T8068] netlink: 100 bytes leftover after parsing attributes in process `syz.1.410'.
[  195.766046][ T8065] TCP: out of memory -- consider tuning tcp_mem
[  196.585926][   T52] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  196.773029][   T52] usb 2-1: Using ep0 maxpacket: 16
[  196.785926][   T52] usb 2-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  196.806000][   T52] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.892573][ T1202] libceph: connect (1)[c::]:6789 error -101
[  196.903032][   T52] usb 2-1: Product: syz
[  196.907228][   T52] usb 2-1: Manufacturer: syz
[  196.911838][   T52] usb 2-1: SerialNumber: syz
[  196.922808][ T1202] libceph: mon0 (1)[c::]:6789 connect error
[  197.053815][ T8105] ceph: No mds server is up or the cluster is laggy
[  197.068678][   T52] usb 2-1: config 0 descriptor??
[  197.082269][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  197.082287][   T30] audit: type=1326 audit(1743819121.392:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f559118d169 code=0x7ffc0000
[  197.270026][ T8127] overlayfs: failed to resolve './file1': -2
[  197.349043][ T5877] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  197.535224][ T1202] libceph: connect (1)[c::]:6789 error -101
[  197.541331][ T1202] libceph: mon0 (1)[c::]:6789 connect error
[  197.551248][ T8093] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  197.564682][   T52] ssu100 2-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  197.584817][   T30] audit: type=1326 audit(1743819121.392:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f559118d169 code=0x7ffc0000
[  197.614534][   T30] audit: type=1326 audit(1743819121.392:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f559118d169 code=0x7ffc0000
[  197.642575][   T30] audit: type=1326 audit(1743819121.392:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f559118d169 code=0x7ffc0000
[  197.691881][   T30] audit: type=1326 audit(1743819121.392:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f559118d169 code=0x7ffc0000
[  197.725649][ T5877] usb 3-1: Using ep0 maxpacket: 16
[  197.761305][ T5877] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  197.843722][   T30] audit: type=1326 audit(1743819121.392:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f559118d169 code=0x7ffc0000
[  197.868077][   T52] ssu100 2-1:0.0: probe with driver ssu100 failed with error -71
[  197.870208][ T5877] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  197.884133][   T52] usb 2-1: USB disconnect, device number 10
[  197.954745][   T30] audit: type=1326 audit(1743819121.402:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f559118d1a3 code=0x7ffc0000
[  197.988262][ T5877] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  198.006861][ T5877] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  198.017487][ T5877] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  198.031056][   T30] audit: type=1326 audit(1743819121.402:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f559118d169 code=0x7ffc0000
[  198.084159][ T5877] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  198.120108][   T30] audit: type=1326 audit(1743819121.402:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f559118bad0 code=0x7ffc0000
[  198.145617][ T5877] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  198.147563][   T30] audit: type=1326 audit(1743819121.402:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8116 comm="syz.2.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f559118cd6b code=0x7ffc0000
[  198.177491][ T5877] usb 3-1: Manufacturer: syz
[  198.226807][ T8156] IPVS: sh: TCP 172.20.20.170:0 - no destination available
[  198.610260][ T5877] usb 3-1: config 0 descriptor??
[  199.505498][ T5877] rc_core: IR keymap rc-hauppauge not found
[  199.545712][ T5877] Registered IR keymap rc-empty
[  199.551006][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  199.633039][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  199.784870][ T5877] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  199.842742][ T5877] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input7
[  200.271978][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  200.282291][    C0] mceusb 3-1:0.0: long-range (0x14) receiver active
[  200.313145][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  200.343409][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  200.447722][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  200.635914][ T8202] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  200.958520][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  200.993434][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  201.025595][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  201.063252][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  201.119286][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  201.212774][ T5877] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  201.257858][ T5877] mceusb 3-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  201.313277][ T5877] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x14 active)
[  201.393513][ T5877] usb 3-1: USB disconnect, device number 10
[  201.466144][ T8228] input: syz1 as /devices/virtual/input/input8
[  201.915969][ T8251] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  202.744024][ T8268] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  203.957441][ T8288] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  204.095274][ T1202] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  204.700502][ T1202] usb 4-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  204.700832][ T5836] Bluetooth: hci2: unexpected event for opcode 0x0407
[  204.731768][ T8303] block device autoloading is deprecated and will be removed.
[  204.737233][ T1202] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.836961][ T8303] syz.1.438: attempt to access beyond end of device
[  204.836961][ T8303] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  204.960984][ T1202] usb 4-1: config 0 descriptor??
[  206.089259][ T1202] pegasus 4-1:0.0: probe with driver pegasus failed with error -121
[  206.216169][ T8344] netlink: 24 bytes leftover after parsing attributes in process `syz.4.445'.
[  206.662553][ T8350] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  207.358777][ T8366] ip6gretap0 speed is unknown, defaulting to 1000
[  207.718618][ T8375] overlayfs: failed to resolve './file1': -2
[  208.170558][ T5877] usb 4-1: USB disconnect, device number 14
[  208.215856][   T30] kauditd_printk_skb: 35 callbacks suppressed
[  208.215871][   T30] audit: type=1400 audit(1743819132.542:486): avc:  denied  { unmount } for  pid=5830 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  209.463078][ T5877] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  209.670502][ T5877] usb 4-1: Using ep0 maxpacket: 8
[  210.113882][ T5877] usb 4-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  210.123680][ T5877] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.185228][ T5877] usb 4-1: Product: syz
[  210.192302][ T5877] usb 4-1: Manufacturer: syz
[  210.204081][ T5877] usb 4-1: SerialNumber: syz
[  210.233021][ T5877] usb 4-1: config 0 descriptor??
[  210.336301][ T5877] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  211.140405][ T5877] gspca_sonixj: reg_w1 err -71
[  211.174439][ T5877] sonixj 4-1:0.0: probe with driver sonixj failed with error -71
[  211.349524][ T5877] usb 4-1: USB disconnect, device number 15
[  211.459198][   T30] audit: type=1326 audit(1743819135.772:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  211.526889][   T30] audit: type=1326 audit(1743819135.782:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  211.580830][ T8497] FAULT_INJECTION: forcing a failure.
[  211.580830][ T8497] name failslab, interval 1, probability 0, space 0, times 0
[  211.603192][ T8497] CPU: 1 UID: 0 PID: 8497 Comm: syz.4.464 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  211.603218][ T8497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  211.603229][ T8497] Call Trace:
[  211.603234][ T8497]  <TASK>
[  211.603241][ T8497]  dump_stack_lvl+0x16c/0x1f0
[  211.603269][ T8497]  should_fail_ex+0x512/0x640
[  211.603291][ T8497]  should_failslab+0xc2/0x120
[  211.603312][ T8497]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  211.603331][ T8497]  ? dst_alloc+0x99/0x1a0
[  211.603352][ T8497]  dst_alloc+0x99/0x1a0
[  211.603371][ T8497]  rt_dst_alloc+0x35/0x3a0
[  211.603395][ T8497]  ip_route_output_key_hash_rcu+0x87a/0x28f0
[  211.603430][ T8497]  ip_route_output_key_hash+0x137/0x2e0
[  211.603456][ T8497]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  211.603482][ T8497]  ? avc_has_perm_noaudit+0x117/0x3b0
[  211.603511][ T8497]  tcp_v4_connect+0x7e2/0x1ba0
[  211.603544][ T8497]  ? __pfx_tcp_v4_connect+0x10/0x10
[  211.603567][ T8497]  ? __lock_acquire+0xaa4/0x1ba0
[  211.603589][ T8497]  __inet_stream_connect+0x3c5/0x1020
[  211.603619][ T8497]  ? __pfx___inet_stream_connect+0x10/0x10
[  211.603640][ T8497]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  211.603661][ T8497]  ? __pfx_inet_stream_connect+0x10/0x10
[  211.603686][ T8497]  ? __local_bh_enable_ip+0xa4/0x120
[  211.603711][ T8497]  ? __pfx_inet_stream_connect+0x10/0x10
[  211.603733][ T8497]  inet_stream_connect+0x57/0xa0
[  211.603757][ T8497]  __sys_connect_file+0x13e/0x1a0
[  211.603779][ T8497]  __sys_connect+0x14d/0x170
[  211.603795][ T8497]  ? __pfx___sys_connect+0x10/0x10
[  211.603820][ T8497]  ? __pfx_ksys_write+0x10/0x10
[  211.603834][ T8497]  ? rcu_is_watching+0x12/0xc0
[  211.603860][ T8497]  __x64_sys_connect+0x72/0xb0
[  211.603875][ T8497]  ? lockdep_hardirqs_on+0x7c/0x110
[  211.603901][ T8497]  do_syscall_64+0xcd/0x260
[  211.603925][ T8497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.603942][ T8497] RIP: 0033:0x7fcbb1f8d169
[  211.603956][ T8497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.603972][ T8497] RSP: 002b:00007fcbb2eb3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  211.603988][ T8497] RAX: ffffffffffffffda RBX: 00007fcbb21a5fa0 RCX: 00007fcbb1f8d169
[  211.603999][ T8497] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003
[  211.604008][ T8497] RBP: 00007fcbb2eb3090 R08: 0000000000000000 R09: 0000000000000000
[  211.604018][ T8497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.604027][ T8497] R13: 0000000000000000 R14: 00007fcbb21a5fa0 R15: 00007ffd15eda4e8
[  211.604050][ T8497]  </TASK>
[  211.908758][   T30] audit: type=1326 audit(1743819135.782:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  211.932970][   T30] audit: type=1326 audit(1743819135.822:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  211.963257][ T5877] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  212.083267][   T30] audit: type=1326 audit(1743819135.822:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  212.143326][ T8506] overlayfs: failed to resolve './file1': -2
[  212.200707][ T5877] usb 4-1: config 4 has an invalid interface number: 4 but max is 3
[  212.273767][ T5877] usb 4-1: config 4 has an invalid interface number: 142 but max is 3
[  212.382388][ T5877] usb 4-1: config 4 has an invalid interface number: 109 but max is 3
[  212.400174][   T30] audit: type=1326 audit(1743819135.822:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  212.453040][ T5877] usb 4-1: config 4 has an invalid interface number: 139 but max is 3
[  212.603980][ T5877] usb 4-1: config 4 contains an unexpected descriptor of type 0x1, skipping
[  212.613421][ T5877] usb 4-1: config 4 has no interface number 0
[  212.619535][ T5877] usb 4-1: config 4 has no interface number 1
[  212.625939][   T30] audit: type=1326 audit(1743819135.822:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  212.649440][ T5877] usb 4-1: config 4 has no interface number 2
[  212.656888][ T5877] usb 4-1: config 4 has no interface number 3
[  212.838782][ T8525] sg_write: data in/out 91/14 bytes for SCSI command 0x0-- guessing data in;
[  212.838782][ T8525]    program syz.4.468 not setting count and/or reply_len properly
[  213.122982][   T30] audit: type=1326 audit(1743819135.822:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  213.146233][ T5877] usb 4-1: config 4 interface 4 altsetting 3 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  213.158528][ T5877] usb 4-1: config 4 interface 4 altsetting 3 has a duplicate endpoint with address 0x3, skipping
[  213.185704][ T5877] usb 4-1: config 4 interface 4 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  213.199586][   T30] audit: type=1326 audit(1743819135.822:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  213.249249][ T5877] usb 4-1: config 4 interface 4 altsetting 3 bulk endpoint 0xD has invalid maxpacket 64
[  213.387020][ T5877] usb 4-1: config 4 interface 4 altsetting 3 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  213.412974][ T5877] usb 4-1: config 4 interface 4 altsetting 3 has an invalid descriptor for endpoint zero, skipping
[  213.490030][   T30] audit: type=1326 audit(1743819135.832:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  213.524009][   T30] audit: type=1326 audit(1743819135.832:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  213.991944][ T5877] usb 4-1: config 4 interface 142 altsetting 1 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  214.011803][ T5877] usb 4-1: config 4 interface 142 altsetting 1 bulk endpoint 0xF has invalid maxpacket 16
[  214.022370][ T5877] usb 4-1: config 4 interface 142 altsetting 1 has a duplicate endpoint with address 0x3, skipping
[  214.033555][   T30] audit: type=1326 audit(1743819135.832:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f18bef8bad0 code=0x7ffc0000
[  214.057252][   T30] audit: type=1326 audit(1743819135.832:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  214.082114][ T5877] usb 4-1: config 4 interface 142 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[  214.091781][   T30] audit: type=1326 audit(1743819135.832:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  214.169095][   T30] audit: type=1326 audit(1743819135.832:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  214.302959][ T5877] usb 4-1: config 4 interface 142 altsetting 1 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  214.316128][ T5877] usb 4-1: config 4 interface 142 altsetting 1 has a duplicate endpoint with address 0x9, skipping
[  214.326867][ T5877] usb 4-1: config 4 interface 142 altsetting 1 has a duplicate endpoint with address 0xE, skipping
[  214.552368][ T8557] mmap: syz.2.472 (8557) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  214.583566][   T30] audit: type=1326 audit(1743819135.832:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  214.615435][   T30] audit: type=1326 audit(1743819135.832:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  214.676256][   T30] audit: type=1326 audit(1743819135.832:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8487 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f18bef8d169 code=0x7ffc0000
[  214.763928][   T30] audit: type=1400 audit(1743819135.832:505): avc:  denied  { read } for  pid=8487 comm="syz.1.462" laddr=fe80::a8aa:aaff:feaa:aa16 lport=255 faddr=ff01::1 fport=19489 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  214.801221][ T5877] usb 4-1: config 4 interface 142 altsetting 1 has a duplicate endpoint with address 0x6, skipping
[  215.043044][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has a duplicate endpoint with address 0x7, skipping
[  215.073523][ T8540] ieee802154 phy0 wpan0: encryption failed: -22
[  215.114087][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has a duplicate endpoint with address 0xB, skipping
[  215.148542][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has a duplicate endpoint with address 0xC, skipping
[  215.243883][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has a duplicate endpoint with address 0x5, skipping
[  215.442027][ T8581] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  215.776296][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has a duplicate endpoint with address 0x1, skipping
[  215.846370][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has an invalid descriptor for endpoint zero, skipping
[  216.445696][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has a duplicate endpoint with address 0x5, skipping
[  216.458473][ T5877] usb 4-1: config 4 interface 109 altsetting 102 has a duplicate endpoint with address 0xC, skipping
[  216.469785][ T5877] usb 4-1: config 4 interface 139 altsetting 179 has a duplicate endpoint with address 0x6, skipping
[  216.488049][ T5877] usb 4-1: config 4 interface 139 altsetting 179 has a duplicate endpoint with address 0x8, skipping
[  216.869333][ T5877] usb 4-1: config 4 interface 139 altsetting 179 has a duplicate endpoint with address 0xF, skipping
[  216.939914][ T5877] usb 4-1: config 4 interface 139 altsetting 179 has a duplicate endpoint with address 0x3, skipping
[  217.455279][ T5877] usb 4-1: config 4 interface 139 altsetting 179 has a duplicate endpoint with address 0x8, skipping
[  217.582996][ T5877] usb 4-1: config 4 interface 139 altsetting 179 has a duplicate endpoint with address 0xF, skipping
[  217.768328][ T8613] overlayfs: failed to resolve './file1': -2
[  218.625479][ T5877] usb 4-1: config 4 interface 139 altsetting 179 has an invalid descriptor for endpoint zero, skipping
[  218.641864][ T5877] usb 4-1: config 4 interface 4 has no altsetting 0
[  218.652339][ T5877] usb 4-1: config 4 interface 142 has no altsetting 0
[  218.992974][ T5877] usb 4-1: config 4 interface 109 has no altsetting 0
[  219.030304][ T5877] usb 4-1: config 4 interface 139 has no altsetting 0
[  219.081216][ T5877] usb 4-1: string descriptor 0 read error: -71
[  219.354607][ T8531] infiniband syz1: set active
[  219.363053][ T8531] infiniband syz1: added syz_tun
[  219.369420][ T8531] syz1: rxe_create_cq: returned err = -12
[  219.383063][ T5877] usb 4-1: New USB device found, idVendor=2001, idProduct=7d03, bcdDevice=9d.6b
[  219.423353][ T8531] infiniband syz1: Couldn't create ib_mad CQ
[  219.429448][ T8531] infiniband syz1: Couldn't open port 1
[  219.435316][ T5877] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.643215][ T5877] usb 4-1: can't set config #4, error -71
[  219.663890][ T5877] usb 4-1: USB disconnect, device number 16
[  219.821217][ T8531] RDS/IB: syz1: added
[  219.831057][ T8649] netlink: 100 bytes leftover after parsing attributes in process `syz.3.487'.
[  219.856246][ T8531] smc: adding ib device syz1 with port count 1
[  219.872576][ T8650] mkiss: ax0: crc mode is auto.
[  219.879255][ T8531] smc:    ib device syz1 port 1 has pnetid 
[  220.173022][ T5877] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  220.243071][  T911] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  220.374420][    T9] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  220.393168][ T5877] usb 4-1: Using ep0 maxpacket: 16
[  220.417749][ T5877] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  220.427677][  T911] usb 3-1: Using ep0 maxpacket: 32
[  220.453512][ T5877] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.468043][  T911] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 2
[  220.493129][ T5877] usb 4-1: Product: syz
[  220.497337][ T5877] usb 4-1: Manufacturer: syz
[  220.501934][ T5877] usb 4-1: SerialNumber: syz
[  220.517138][  T911] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  220.550358][  T911] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  220.563811][ T5877] usb 4-1: config 0 descriptor??
[  220.578835][    T9] usb 2-1: Using ep0 maxpacket: 16
[  220.596670][  T911] usb 3-1: Product: syz
[  220.600880][  T911] usb 3-1: Manufacturer: syz
[  220.606942][ T5877] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  220.623708][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  220.647789][  T911] usb 3-1: SerialNumber: syz
[  220.659729][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.685185][  T911] usb 3-1: config 0 descriptor??
[  220.690783][ T8650] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  220.735739][    T9] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  220.772951][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.782241][ T5877] ssu100 4-1:0.0: probe with driver ssu100 failed with error -71
[  220.826201][    T9] usb 2-1: config 0 descriptor??
[  220.862728][ T5877] usb 4-1: USB disconnect, device number 17
[  220.960521][ T5876] usb 3-1: USB disconnect, device number 11
[  221.238202][    T9] hid-multitouch 0003:1FD2:6007.0003: unknown main item tag 0x0
[  221.263012][    T9] hid-multitouch 0003:1FD2:6007.0003: unknown main item tag 0x0
[  221.276719][    T9] hid-multitouch 0003:1FD2:6007.0003: unknown main item tag 0x0
[  221.304655][    T9] hid-multitouch 0003:1FD2:6007.0003: unknown main item tag 0x0
[  221.342863][    T9] hid-multitouch 0003:1FD2:6007.0003: unknown main item tag 0x0
[  221.388700][    T9] hid-multitouch 0003:1FD2:6007.0003: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.1-1/input0
[  221.439917][    T9] usb 2-1: USB disconnect, device number 11
[  221.590062][ T8735] kvm: pic: non byte write
[  221.635434][ T8735] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2392195199 (153100492736 ns) > initial count (61441325888 ns). Using initial count to start timer.
[  221.878902][ T8743] overlayfs: failed to resolve './file1': -2
[  223.598326][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  223.598343][   T30] audit: type=1400 audit(1743819147.922:517): avc:  denied  { setattr } for  pid=8758 comm="syz.0.495" name="NFC_RAW" dev="sockfs" ino=15265 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  223.705291][ T8770] block nbd0: shutting down sockets
[  224.224187][ T5837] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  224.397117][ T5837] usb 2-1: Using ep0 maxpacket: 16
[  224.446913][ T5837] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.652972][ T5837] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.672986][ T5837] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  224.693026][ T5837] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  224.702135][ T5837] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.736380][ T5837] usb 2-1: config 0 descriptor??
[  224.936304][ T8801] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  225.432330][ T5837] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0004/input/input9
[  225.497480][ T8813] ip6gretap0 speed is unknown, defaulting to 1000
[  225.525149][ T8763] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  225.534114][ T8763] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  225.680855][ T5837] microsoft 0003:045E:07DA.0004: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  225.719820][ T5837] usb 2-1: USB disconnect, device number 12
[  226.288856][   T30] audit: type=1400 audit(1743819150.612:518): avc:  denied  { create } for  pid=8843 comm="syz.0.508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  226.327545][   T30] audit: type=1400 audit(1743819150.652:519): avc:  denied  { write } for  pid=8843 comm="syz.0.508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  226.364335][   T30] audit: type=1400 audit(1743819150.692:520): avc:  denied  { read } for  pid=8843 comm="syz.0.508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  226.391998][   T30] audit: type=1400 audit(1743819150.712:521): avc:  denied  { write } for  pid=8762 comm="syz.1.499" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  226.438859][ T8859] overlayfs: failed to resolve './file1': -2
[  226.716715][ T5137] Bluetooth: hci3: command 0x0406 tx timeout
[  228.613438][   T30] audit: type=1400 audit(1743819152.922:522): avc:  denied  { ioctl } for  pid=8933 comm="syz.2.518" path="socket:[16222]" dev="sockfs" ino=16222 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  229.461821][ T5877] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  229.644245][ T5877] usb 2-1: Using ep0 maxpacket: 8
[  229.681448][ T8960] overlayfs: failed to resolve './file1': -2
[  229.759435][ T5877] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.770655][ T5877] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  229.780517][ T5877] usb 2-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00
[  229.834234][ T5877] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.868579][ T5877] usb 2-1: config 0 descriptor??
[  230.187508][    C0] hrtimer: interrupt took 20615 ns
[  230.973670][ T5877] hid-picolcd 0003:04D8:F002.0005: No report with id 0xf4 found
[  230.979746][ T8985] netlink: 100 bytes leftover after parsing attributes in process `syz.0.530'.
[  230.981393][ T5877] hid-picolcd 0003:04D8:F002.0005: No report with id 0xf3 found
[  230.995150][   T30] audit: type=1400 audit(1743819155.292:523): avc:  denied  { ioctl } for  pid=8977 comm="syz.2.528" path="socket:[16281]" dev="sockfs" ino=16281 ioctlcmd=0x89b0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  231.064760][ T5877] usb 2-1: USB disconnect, device number 13
[  231.293125][ T6626] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  231.366703][ T5837] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  231.455461][ T6626] usb 3-1: Using ep0 maxpacket: 8
[  231.475981][ T6626] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  231.512888][ T6626] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  231.536191][ T5837] usb 1-1: Using ep0 maxpacket: 16
[  231.562790][ T6626] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.577222][ T5837] usb 1-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  231.588355][ T6626] usb 3-1: config 0 descriptor??
[  231.596349][ T5837] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  231.607410][ T5837] usb 1-1: Product: syz
[  231.615217][ T5837] usb 1-1: Manufacturer: syz
[  231.621000][ T5837] usb 1-1: SerialNumber: syz
[  231.701824][ T5837] usb 1-1: config 0 descriptor??
[  231.992214][ T5837] ssu100 1-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  232.074147][ T5837] ssu100 1-1:0.0: probe with driver ssu100 failed with error -71
[  232.085383][ T6626] iowarrior 3-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  232.121406][ T5837] usb 1-1: USB disconnect, device number 13
[  232.261703][ T9033] xt_TCPMSS: Only works on TCP SYN packets
[  232.701893][ T5837] usb 3-1: USB disconnect, device number 12
[  232.954969][  T911] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  233.279853][  T911] usb 4-1: Using ep0 maxpacket: 32
[  233.310884][  T911] usb 4-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  233.380670][  T911] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.432884][ T9079] overlayfs: failed to resolve './file1': -2
[  233.527854][  T911] usb 4-1: config 0 descriptor??
[  233.551019][  T911] gspca_main: sq930x-2.14.0 probing 041e:403c
[  233.717395][ T9071] delete_channel: no stack
[  233.754717][   T30] audit: type=1400 audit(1743819158.062:524): avc:  denied  { setopt } for  pid=9059 comm="syz.1.538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  234.664521][  T911] gspca_sq930x: ucbus_write failed -110
[  234.670184][  T911] sq930x 4-1:0.0: probe with driver sq930x failed with error -110
[  234.701222][  T911] usb 4-1: USB disconnect, device number 18
[  234.916933][ T9101] overlayfs: failed to resolve './file0': -2
[  234.917183][ T9106] FAULT_INJECTION: forcing a failure.
[  234.917183][ T9106] name failslab, interval 1, probability 0, space 0, times 0
[  235.843094][ T9106] CPU: 1 UID: 0 PID: 9106 Comm: syz.2.544 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  235.843121][ T9106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  235.843129][ T9106] Call Trace:
[  235.843133][ T9106]  <TASK>
[  235.843139][ T9106]  dump_stack_lvl+0x16c/0x1f0
[  235.843164][ T9106]  should_fail_ex+0x512/0x640
[  235.843180][ T9106]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  235.843206][ T9106]  should_failslab+0xc2/0x120
[  235.843225][ T9106]  __kmalloc_cache_noprof+0x6a/0x3e0
[  235.843248][ T9106]  ? hash_ipportnet_create+0x36b/0x1250
[  235.843267][ T9106]  hash_ipportnet_create+0x36b/0x1250
[  235.843283][ T9106]  ? __nla_parse+0x40/0x60
[  235.843304][ T9106]  ? __pfx_hash_ipportnet_create+0x10/0x10
[  235.843322][ T9106]  ip_set_create+0x7e1/0x14d0
[  235.843343][ T9106]  ? __pfx_ip_set_create+0x10/0x10
[  235.843374][ T9106]  ? find_held_lock+0x2b/0x80
[  235.843400][ T9106]  nfnetlink_rcv_msg+0x9f9/0x1200
[  235.843433][ T9106]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  235.843455][ T9106]  ? kmem_cache_free+0x2d4/0x4d0
[  235.843493][ T9106]  ? avc_has_perm_noaudit+0x117/0x3b0
[  235.843518][ T9106]  netlink_rcv_skb+0x16a/0x440
[  235.843541][ T9106]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  235.843565][ T9106]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  235.843596][ T9106]  ? bpf_lsm_capable+0x9/0x10
[  235.843619][ T9106]  ? security_capable+0x7e/0x260
[  235.843639][ T9106]  ? ns_capable+0xd7/0x110
[  235.843661][ T9106]  nfnetlink_rcv+0x1b3/0x430
[  235.843684][ T9106]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  235.843705][ T9106]  ? netlink_deliver_tap+0x1ae/0xd30
[  235.843730][ T9106]  netlink_unicast+0x53a/0x7f0
[  235.843753][ T9106]  ? __pfx_netlink_unicast+0x10/0x10
[  235.843782][ T9106]  netlink_sendmsg+0x8d1/0xdd0
[  235.843806][ T9106]  ? __pfx_netlink_sendmsg+0x10/0x10
[  235.843834][ T9106]  ____sys_sendmsg+0xa95/0xc70
[  235.843859][ T9106]  ? copy_msghdr_from_user+0x10a/0x160
[  235.843878][ T9106]  ? __pfx_____sys_sendmsg+0x10/0x10
[  235.843912][ T9106]  ___sys_sendmsg+0x134/0x1d0
[  235.843932][ T9106]  ? __pfx____sys_sendmsg+0x10/0x10
[  235.843980][ T9106]  __sys_sendmsg+0x16d/0x220
[  235.844000][ T9106]  ? __pfx___sys_sendmsg+0x10/0x10
[  235.844024][ T9106]  ? rcu_is_watching+0x12/0xc0
[  235.844048][ T9106]  do_syscall_64+0xcd/0x260
[  235.844070][ T9106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.844085][ T9106] RIP: 0033:0x7f559118d169
[  235.844097][ T9106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.844111][ T9106] RSP: 002b:00007f5592057038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  235.844130][ T9106] RAX: ffffffffffffffda RBX: 00007f55913a6080 RCX: 00007f559118d169
[  235.844140][ T9106] RDX: 0000000024002800 RSI: 0000200000000040 RDI: 0000000000000005
[  235.844149][ T9106] RBP: 00007f5592057090 R08: 0000000000000000 R09: 0000000000000000
[  235.844158][ T9106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.844166][ T9106] R13: 0000000000000000 R14: 00007f55913a6080 R15: 00007ffcc1576a28
[  235.844185][ T9106]  </TASK>
[  236.468423][ T9101] netlink: 'syz.0.542': attribute type 11 has an invalid length.
[  236.523034][ T9101] netlink: 224 bytes leftover after parsing attributes in process `syz.0.542'.
[  236.706976][ T9129] overlayfs: failed to resolve './file0': -2
[  236.944787][ T9137] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  237.364373][ T9129] netlink: 'syz.4.549': attribute type 11 has an invalid length.
[  237.424760][ T9129] netlink: 224 bytes leftover after parsing attributes in process `syz.4.549'.
[  238.016031][ T9161] overlayfs: failed to resolve './file1': -2
[  238.633010][   T30] audit: type=1400 audit(1743819162.952:525): avc:  denied  { setopt } for  pid=9175 comm="syz.1.555" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  238.955781][   T30] audit: type=1400 audit(1743819162.962:526): avc:  denied  { setopt } for  pid=9183 comm="syz.2.557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  239.739339][   T30] audit: type=1400 audit(1743819162.962:527): avc:  denied  { getopt } for  pid=9183 comm="syz.2.557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  240.703073][    T9] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  240.903785][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  240.925582][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  240.942468][    T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  240.966048][    T9] usb 2-1: New USB device found, idVendor=17ef, idProduct=60b5, bcdDevice= 0.00
[  241.013074][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.034818][    T9] usb 2-1: config 0 descriptor??
[  241.245140][ T9229] netlink: 'syz.1.562': attribute type 11 has an invalid length.
[  241.255259][ T9229] netlink: 224 bytes leftover after parsing attributes in process `syz.1.562'.
[  241.303864][ T5836] Bluetooth: hci3: unexpected event for opcode 0x1004
[  241.318908][    T9] usbhid 2-1:0.0: can't add hid device: -71
[  241.336074][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  241.355347][ T9254] ieee802154 phy0 wpan0: encryption failed: -22
[  241.366243][    T9] usb 2-1: USB disconnect, device number 14
[  241.372603][   T30] audit: type=1400 audit(1743819165.692:528): avc:  denied  { execute } for  pid=9252 comm="syz.3.564" path=2F6D656D66643A01FDAE2E2BA68CB63F32193994532C7C783F55655BBDE1210333BC2723FF179B25F35B642006202864656C6574656429 dev="hugetlbfs" ino=17521 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  241.434334][ T9254] bridge0: port 4(veth0_to_bridge) entered blocking state
[  241.477580][ T9254] bridge0: port 4(veth0_to_bridge) entered disabled state
[  241.485764][ T1202] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  241.494701][ T9254] veth0_to_bridge: entered allmulticast mode
[  241.501989][ T9254] veth0_to_bridge: entered promiscuous mode
[  241.508145][ T9254] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  241.521292][ T9254] bridge0: port 4(veth0_to_bridge) entered blocking state
[  241.529546][ T9254] bridge0: port 4(veth0_to_bridge) entered listening state
[  241.748975][ T9254] virtio-fs: tag </dev/loop4> not found
[  241.795916][ T1202] usb 1-1: Using ep0 maxpacket: 32
[  242.263787][ T1202] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  242.272319][ T1202] usb 1-1: config 0 has no interface number 0
[  242.279148][ T1202] usb 1-1: config 0 interface 184 has no altsetting 0
[  242.316705][ T1202] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  242.358393][ T1202] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.384017][ T1202] usb 1-1: Product: syz
[  242.396230][ T1202] usb 1-1: Manufacturer: syz
[  242.405290][ T1202] usb 1-1: SerialNumber: syz
[  242.443267][    C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  242.456740][    C1] bridge0: port 4(veth0_to_bridge) entered blocking state
[  242.558862][ T1202] usb 1-1: config 0 descriptor??
[  242.580375][ T1202] smsc75xx v1.0.0
[  242.722353][ T9290] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  242.847566][ T9292] overlayfs: failed to resolve './file1': -2
[  243.811910][ T1202] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  243.843523][ T1202] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  243.860692][ T1202] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  243.916996][ T1202] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71
[  243.934149][ T1202] usb 1-1: USB disconnect, device number 14
[  243.948297][ T9312] overlayfs: failed to resolve './file0': -2
[  244.158729][ T9312] netlink: 'syz.4.572': attribute type 11 has an invalid length.
[  244.204767][ T9312] netlink: 224 bytes leftover after parsing attributes in process `syz.4.572'.
[  244.293450][ T5877] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  244.483180][ T5877] usb 2-1: config 4 has an invalid interface number: 44 but max is 0
[  244.504695][ T5877] usb 2-1: config 4 has no interface number 0
[  244.523871][ T5877] usb 2-1: config 4 interface 44 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  244.559186][ T5877] usb 2-1: config 4 interface 44 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  244.594832][ T5877] usb 2-1: config 4 interface 44 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[  244.646376][ T5877] usb 2-1: New USB device found, idVendor=1044, idProduct=7001, bcdDevice= 5.20
[  244.672348][ T5877] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.700857][ T5877] usb 2-1: Product: syz
[  244.710963][ T5877] usb 2-1: Manufacturer: syz
[  244.727063][ T5877] usb 2-1: SerialNumber: syz
[  244.768011][ T9320] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  245.334708][ T5836] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  245.343503][ T5836] Bluetooth: hci3: Injecting HCI hardware error event
[  245.352103][ T5137] Bluetooth: hci3: hardware error 0x00
[  246.905688][ T5877] dvb-usb: found a 'Gigabyte U7000' in cold state, will try to load a firmware
[  246.999299][ T5877] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  247.033955][ T5877] dib0700: firmware download failed at 7 with -22
[  247.080699][ T5877] usb 2-1: USB disconnect, device number 15
[  247.105670][   T30] audit: type=1400 audit(1743819171.432:529): avc:  denied  { setopt } for  pid=9387 comm="syz.3.579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  247.183256][   T30] audit: type=1400 audit(1743819171.432:530): avc:  denied  { write } for  pid=5178 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  247.217646][   T30] audit: type=1400 audit(1743819171.432:531): avc:  denied  { remove_name } for  pid=5178 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  247.243539][   T30] audit: type=1400 audit(1743819171.432:532): avc:  denied  { add_name } for  pid=5178 comm="syslogd" name="messages.0" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  247.644569][ T5137] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  247.880641][ T9411] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  248.250916][ T9415] netlink: 56 bytes leftover after parsing attributes in process `syz.1.583'.
[  248.271386][ T9415] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  248.993075][  T911] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  249.267559][  T911] usb 4-1: Using ep0 maxpacket: 32
[  249.347724][  T911] usb 4-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  249.380825][  T911] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.615347][ T9453] IPVS: sh: TCP 172.20.20.170:0 - no destination available
[  249.968738][  T911] usb 4-1: config 0 descriptor??
[  249.984902][  T911] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  250.529593][ T1202] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  251.454421][ T9484] overlayfs: failed to resolve './file1': -2
[  251.496154][ T9489] overlayfs: failed to resolve './file1': -2
[  251.553904][ T1202] usb 3-1: Using ep0 maxpacket: 32
[  251.565613][ T1202] usb 3-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  251.582231][ T1202] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.909604][ T1202] usb 3-1: config 0 descriptor??
[  251.947009][ T1202] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  252.139041][  T911] gspca_vc032x: reg_w err -71
[  252.153449][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.162676][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.168901][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.184343][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.223055][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.228387][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.242992][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.248462][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.254194][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.259617][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.265386][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.270794][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.294915][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.300353][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.314972][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.322238][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.329073][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.336542][  T911] gspca_vc032x: I2c Bus Busy Wait 00
[  252.341959][  T911] gspca_vc032x: Unknown sensor...
[  252.348762][  T911] vc032x 4-1:0.0: probe with driver vc032x failed with error -22
[  252.368642][  T911] usb 4-1: USB disconnect, device number 19
[  253.159198][ T1202] gspca_vc032x: reg_w err -71
[  253.190053][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  253.225610][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  253.284538][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  253.385091][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  253.449320][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  253.520450][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  253.570386][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  253.635968][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  254.425593][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  254.583923][ T9541] sp0: Synchronizing with TNC
[  254.937184][   T30] audit: type=1400 audit(1743819179.022:533): avc:  denied  { write } for  pid=9533 comm="syz.3.601" laddr=172.20.20.170 lport=36202 faddr=172.20.20.170 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  254.988803][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.033010][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.038344][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.043725][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.049019][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.054415][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.059713][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.068157][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.073937][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  255.086954][ T1202] gspca_vc032x: Unknown sensor...
[  255.092101][ T1202] vc032x 3-1:0.0: probe with driver vc032x failed with error -22
[  255.145091][ T1202] usb 3-1: USB disconnect, device number 13
[  255.332496][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  255.368743][ T9554] netlink: 'syz.1.603': attribute type 4 has an invalid length.
[  255.466616][ T9567] IPVS: sh: TCP 172.20.20.170:0 - no destination available
[  255.950260][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  257.106816][ T9582] overlayfs: failed to resolve './file1': -2
[  257.305566][   T30] audit: type=1800 audit(1743819181.632:534): pid=9587 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.3.608" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  257.560519][   T30] audit: type=1400 audit(1743819181.882:535): avc:  denied  { ioctl } for  pid=9593 comm="syz.4.610" path="/dev/vhost-net" dev="devtmpfs" ino=1274 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  257.589257][ T9594] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  257.796119][   T30] audit: type=1400 audit(1743819182.102:536): avc:  denied  { setopt } for  pid=9607 comm="syz.4.612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  257.842976][ T1202] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  258.002956][ T1202] usb 1-1: Using ep0 maxpacket: 32
[  258.026449][ T1202] usb 1-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  258.064898][ T1202] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.107871][ T1202] usb 1-1: config 0 descriptor??
[  258.286946][ T1202] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  258.609691][ T9637] FAULT_INJECTION: forcing a failure.
[  258.609691][ T9637] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  258.663053][ T9637] CPU: 1 UID: 0 PID: 9637 Comm: syz.2.615 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  258.663080][ T9637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  258.663090][ T9637] Call Trace:
[  258.663095][ T9637]  <TASK>
[  258.663102][ T9637]  dump_stack_lvl+0x16c/0x1f0
[  258.663129][ T9637]  should_fail_ex+0x512/0x640
[  258.663151][ T9637]  _copy_from_user+0x2e/0xd0
[  258.663171][ T9637]  kstrtouint_from_user+0xd6/0x1d0
[  258.663195][ T9637]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  258.663216][ T9637]  ? __lock_acquire+0xaa4/0x1ba0
[  258.663242][ T9637]  proc_fail_nth_write+0x83/0x250
[  258.663267][ T9637]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  258.663296][ T9637]  vfs_write+0x25c/0x1180
[  258.663308][ T9637]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  258.663331][ T9637]  ? __pfx___mutex_lock+0x10/0x10
[  258.663351][ T9637]  ? __pfx_vfs_write+0x10/0x10
[  258.663371][ T9637]  ? __fget_files+0x20e/0x3c0
[  258.663391][ T9637]  ksys_write+0x12a/0x240
[  258.663404][ T9637]  ? __pfx_ksys_write+0x10/0x10
[  258.663416][ T9637]  ? rcu_is_watching+0x12/0xc0
[  258.663441][ T9637]  do_syscall_64+0xcd/0x260
[  258.663465][ T9637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.663481][ T9637] RIP: 0033:0x7f559118bc1f
[  258.663494][ T9637] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  258.663509][ T9637] RSP: 002b:00007f5592078030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  258.663526][ T9637] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f559118bc1f
[  258.663536][ T9637] RDX: 0000000000000001 RSI: 00007f55920780a0 RDI: 0000000000000004
[  258.663545][ T9637] RBP: 00007f5592078090 R08: 0000000000000000 R09: 0000000000000000
[  258.663555][ T9637] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  258.663563][ T9637] R13: 0000000000000000 R14: 00007f55913a5fa0 R15: 00007ffcc1576a28
[  258.663585][ T9637]  </TASK>
[  258.939004][   T30] audit: type=1400 audit(1743819183.192:537): avc:  denied  { shutdown } for  pid=9639 comm="syz.4.617" lport=9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  259.358836][ T1202] gspca_vc032x: reg_w err -71
[  259.379364][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.399336][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.413106][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.425948][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.442211][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.473075][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.577228][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.587332][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.597594][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.604223][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.609881][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  259.758217][ T9670] overlayfs: failed to resolve './file1': -2
[  260.048472][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  260.060259][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  260.073428][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  260.086811][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  260.098216][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  260.107218][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  260.115070][ T1202] gspca_vc032x: I2c Bus Busy Wait 00
[  260.120945][ T1202] gspca_vc032x: Unknown sensor...
[  260.141676][ T1202] vc032x 1-1:0.0: probe with driver vc032x failed with error -22
[  260.192848][ T1202] usb 1-1: USB disconnect, device number 15
[  260.275546][   T30] audit: type=1400 audit(1743819184.602:538): avc:  denied  { create } for  pid=9679 comm="syz.4.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  260.391139][   T30] audit: type=1400 audit(1743819184.602:539): avc:  denied  { getopt } for  pid=9679 comm="syz.4.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  260.747065][   T30] audit: type=1400 audit(1743819185.032:540): avc:  denied  { lock } for  pid=9684 comm="syz.0.625" path="socket:[18455]" dev="sockfs" ino=18455 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  261.185374][ T9702] overlayfs: failed to resolve './file1': -2
[  261.572679][ T9715] netlink: 'syz.2.630': attribute type 8 has an invalid length.
[  262.049329][ T9736] overlayfs: failed to resolve './file0': -2
[  262.218683][ T9738] overlayfs: failed to resolve './file0': -2
[  262.548297][ T9736] netlink: 'syz.3.634': attribute type 11 has an invalid length.
[  262.576294][ T9736] netlink: 224 bytes leftover after parsing attributes in process `syz.3.634'.
[  262.931158][ T9757] ip6gretap0 speed is unknown, defaulting to 1000
[  262.939852][ T9766] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  263.054767][ T9766] overlayfs: missing 'lowerdir'
[  263.339715][   T30] audit: type=1400 audit(1743819187.572:541): avc:  denied  { allowed } for  pid=9755 comm="syz.1.636" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  264.208351][   T30] audit: type=1400 audit(1743819188.532:542): avc:  denied  { write } for  pid=9714 comm="syz.4.631" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  264.249918][ T9717] dvmrp0: entered allmulticast mode
[  264.266881][   T30] audit: type=1400 audit(1743819188.592:543): avc:  denied  { block_suspend } for  pid=9714 comm="syz.4.631" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  264.721341][ T9853] FAULT_INJECTION: forcing a failure.
[  264.721341][ T9853] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  264.776072][ T9853] CPU: 0 UID: 0 PID: 9853 Comm: syz.0.645 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  264.776100][ T9853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  264.776110][ T9853] Call Trace:
[  264.776116][ T9853]  <TASK>
[  264.776122][ T9853]  dump_stack_lvl+0x16c/0x1f0
[  264.776149][ T9853]  should_fail_ex+0x512/0x640
[  264.776172][ T9853]  _copy_to_user+0x32/0xd0
[  264.776195][ T9853]  simple_read_from_buffer+0xcb/0x170
[  264.776223][ T9853]  proc_fail_nth_read+0x197/0x270
[  264.776250][ T9853]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  264.776276][ T9853]  ? rw_verify_area+0xcf/0x680
[  264.776298][ T9853]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  264.776324][ T9853]  vfs_read+0x1de/0xc70
[  264.776341][ T9853]  ? __pfx___mutex_lock+0x10/0x10
[  264.776363][ T9853]  ? __pfx_vfs_read+0x10/0x10
[  264.776394][ T9853]  ? __fget_files+0x20e/0x3c0
[  264.776417][ T9853]  ksys_read+0x12a/0x240
[  264.776432][ T9853]  ? __pfx_ksys_read+0x10/0x10
[  264.776453][ T9853]  do_syscall_64+0xcd/0x260
[  264.776477][ T9853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.776493][ T9853] RIP: 0033:0x7f564578bb7c
[  264.776507][ T9853] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  264.776522][ T9853] RSP: 002b:00007f56435f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  264.776539][ T9853] RAX: ffffffffffffffda RBX: 00007f56459a5fa0 RCX: 00007f564578bb7c
[  264.776555][ T9853] RDX: 000000000000000f RSI: 00007f56435f60a0 RDI: 0000000000000006
[  264.776564][ T9853] RBP: 00007f56435f6090 R08: 0000000000000000 R09: 0000000000000000
[  264.776573][ T9853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.776582][ T9853] R13: 0000000000000000 R14: 00007f56459a5fa0 R15: 00007ffe8bf6b288
[  264.776605][ T9853]  </TASK>
[  265.802745][   T30] audit: type=1400 audit(1743819190.122:544): avc:  denied  { setopt } for  pid=9874 comm="syz.2.649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  266.003127][ T9886] syz.2.650 (9886) used obsolete PPPIOCDETACH ioctl
[  266.446787][   T30] audit: type=1400 audit(1743819190.772:545): avc:  denied  { read } for  pid=9892 comm="syz.4.652" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  266.733592][   T30] audit: type=1400 audit(1743819190.812:546): avc:  denied  { ioctl } for  pid=9903 comm="syz.3.653" path="socket:[18346]" dev="sockfs" ino=18346 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  267.672754][   T30] audit: type=1400 audit(1743819191.982:547): avc:  denied  { accept } for  pid=9923 comm="syz.2.657" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  267.973945][ T9932] FAULT_INJECTION: forcing a failure.
[  267.973945][ T9932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  268.075499][ T9932] CPU: 1 UID: 0 PID: 9932 Comm: syz.3.658 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  268.075527][ T9932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  268.075537][ T9932] Call Trace:
[  268.075543][ T9932]  <TASK>
[  268.075550][ T9932]  dump_stack_lvl+0x16c/0x1f0
[  268.075577][ T9932]  should_fail_ex+0x512/0x640
[  268.075599][ T9932]  _copy_from_iter+0x2a4/0x15b0
[  268.075623][ T9932]  ? __alloc_skb+0x200/0x380
[  268.075643][ T9932]  ? __pfx__copy_from_iter+0x10/0x10
[  268.075664][ T9932]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  268.075694][ T9932]  netlink_sendmsg+0x829/0xdd0
[  268.075721][ T9932]  ? __pfx_netlink_sendmsg+0x10/0x10
[  268.075747][ T9932]  ? ____sys_sendmsg+0x871/0xc70
[  268.075775][ T9932]  ____sys_sendmsg+0xa95/0xc70
[  268.075800][ T9932]  ? copy_msghdr_from_user+0x10a/0x160
[  268.075819][ T9932]  ? __pfx_____sys_sendmsg+0x10/0x10
[  268.075852][ T9932]  ? find_held_lock+0x2b/0x80
[  268.075875][ T9932]  ? finish_task_switch.isra.0+0x21c/0xc10
[  268.075901][ T9932]  ___sys_sendmsg+0x134/0x1d0
[  268.075923][ T9932]  ? __pfx____sys_sendmsg+0x10/0x10
[  268.075971][ T9932]  __sys_sendmsg+0x16d/0x220
[  268.075992][ T9932]  ? __pfx___sys_sendmsg+0x10/0x10
[  268.076010][ T9932]  ? lockdep_hardirqs_on+0x7c/0x110
[  268.076038][ T9932]  ? __x64_sys_sendmsg+0x11/0xb0
[  268.076057][ T9932]  ? __x64_sys_sendmsg+0x4b/0xb0
[  268.076079][ T9932]  do_syscall_64+0xcd/0x260
[  268.076103][ T9932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.076120][ T9932] RIP: 0033:0x7fe14038d169
[  268.076134][ T9932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.076151][ T9932] RSP: 002b:00007fe1412b2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  268.076167][ T9932] RAX: ffffffffffffffda RBX: 00007fe1405a5fa0 RCX: 00007fe14038d169
[  268.076178][ T9932] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  268.076188][ T9932] RBP: 00007fe1412b2090 R08: 0000000000000000 R09: 0000000000000000
[  268.076198][ T9932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.076207][ T9932] R13: 0000000000000000 R14: 00007fe1405a5fa0 R15: 00007fffa3f69928
[  268.076229][ T9932]  </TASK>
[  268.661616][ T9945] capability: warning: `syz.0.659' uses deprecated v2 capabilities in a way that may be insecure
[  268.722414][ T9947] loop7: detected capacity change from 0 to 16384
[  268.838763][ T9954] netlink: 8 bytes leftover after parsing attributes in process `syz.3.663'.
[  268.843494][ T9955] loop7: detected capacity change from 16384 to 16383
[  268.861282][ T9954] netlink: 'syz.3.663': attribute type 9 has an invalid length.
[  268.885290][ T9955] 
[  268.887659][ T9955] ======================================================
[  268.894568][ T9954] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  268.894660][ T9955] WARNING: possible circular locking dependency detected
[  268.894669][ T9955] 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 Not tainted
[  268.915375][ T9955] ------------------------------------------------------
[  268.922041][ T9954] macvlan2: entered allmulticast mode
[  268.922379][ T9955] syz.2.662/9955 is trying to acquire lock:
[  268.932066][ T9954] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode
[  268.933591][ T9955] ffffffff906963a8 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_env+0xb36/0x1870
[  268.950392][ T9955] 
[  268.950392][ T9955] but task is already holding lock:
[  268.957765][ T9955] ffff8880260c6228 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  268.969025][ T9955] 
[  268.969025][ T9955] which lock already depends on the new lock.
[  268.969025][ T9955] 
[  268.979432][ T9955] 
[  268.979432][ T9955] the existing dependency chain (in reverse order) is:
[  268.988454][ T9955] 
[  268.988454][ T9955] -> #2 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  268.997075][ T9955]        blk_alloc_queue+0x619/0x760
[  269.002358][ T9955]        blk_mq_alloc_queue+0x179/0x290
[  269.007885][ T9955]        __blk_mq_alloc_disk+0x29/0x120
[  269.013417][ T9955]        loop_add+0x496/0xb70
[  269.018074][ T9955]        loop_init+0x164/0x270
[  269.022824][ T9955]        do_one_initcall+0x120/0x6e0
[  269.028099][ T9955]        kernel_init_freeable+0x5c2/0x900
[  269.033808][ T9955]        kernel_init+0x1c/0x2b0
[  269.038661][ T9955]        ret_from_fork+0x45/0x80
[  269.043579][ T9955]        ret_from_fork_asm+0x1a/0x30
[  269.048853][ T9955] 
[  269.048853][ T9955] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  269.056046][ T9955]        fs_reclaim_acquire+0x102/0x150
[  269.061578][ T9955]        kmem_cache_alloc_node_noprof+0x57/0x3b0
[  269.067887][ T9955]        __alloc_skb+0x2b2/0x380
[  269.072815][ T9955]        alloc_uevent_skb+0x7d/0x210
[  269.078104][ T9955]        kobject_uevent_env+0xca4/0x1870
[  269.083726][ T9955]        kobject_synth_uevent+0x7d4/0x8a0
[  269.089438][ T9955]        bus_uevent_store+0x3d/0x90
[  269.094623][ T9955]        bus_attr_store+0x71/0xb0
[  269.099632][ T9955]        sysfs_kf_write+0xef/0x150
[  269.104733][ T9955]        kernfs_fop_write_iter+0x351/0x510
[  269.110538][ T9955]        vfs_write+0x5ba/0x1180
[  269.115373][ T9955]        ksys_write+0x12a/0x240
[  269.120203][ T9955]        do_syscall_64+0xcd/0x260
[  269.125210][ T9955]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.131609][ T9955] 
[  269.131609][ T9955] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[  269.139407][ T9955]        __lock_acquire+0x1173/0x1ba0
[  269.144759][ T9955]        lock_acquire+0x179/0x350
[  269.149766][ T9955]        __mutex_lock+0x199/0xb90
[  269.154775][ T9955]        kobject_uevent_env+0xb36/0x1870
[  269.160397][ T9955]        set_capacity_and_notify+0x1ca/0x240
[  269.166367][ T9955]        loop_set_status+0x94a/0xb90
[  269.171634][ T9955]        loop_set_status_old+0x162/0x1d0
[  269.177267][ T9955]        lo_ioctl+0x695/0x26d0
[  269.182011][ T9955]        blkdev_ioctl+0x274/0x6d0
[  269.187022][ T9955]        __x64_sys_ioctl+0x190/0x200
[  269.192293][ T9955]        do_syscall_64+0xcd/0x260
[  269.197304][ T9955]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.203699][ T9955] 
[  269.203699][ T9955] other info that might help us debug this:
[  269.203699][ T9955] 
[  269.213905][ T9955] Chain exists of:
[  269.213905][ T9955]   uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#24
[  269.213905][ T9955] 
[  269.227618][ T9955]  Possible unsafe locking scenario:
[  269.227618][ T9955] 
[  269.235044][ T9955]        CPU0                    CPU1
[  269.240385][ T9955]        ----                    ----
[  269.245731][ T9955]   lock(&q->q_usage_counter(io)#24);
[  269.251089][ T9955]                                lock(fs_reclaim);
[  269.257570][ T9955]                                lock(&q->q_usage_counter(io)#24);
[  269.265450][ T9955]   lock(uevent_sock_mutex);
[  269.270019][ T9955] 
[  269.270019][ T9955]  *** DEADLOCK ***
[  269.270019][ T9955] 
[  269.278155][ T9955] 3 locks held by syz.2.662/9955:
[  269.283159][ T9955]  #0: ffff8881433a8368 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2a/0xb90
[  269.292545][ T9955]  #1: ffff8880260c6228 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  269.304210][ T9955]  #2: ffff8880260c6260 (&q->q_usage_counter(queue)#22){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  269.316118][ T9955] 
[  269.316118][ T9955] stack backtrace:
[  269.321992][ T9955] CPU: 1 UID: 0 PID: 9955 Comm: syz.2.662 Not tainted 6.14.0-syzkaller-13189-ge48e99b6edf4 #0 PREEMPT(full) 
[  269.322009][ T9955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  269.322017][ T9955] Call Trace:
[  269.322021][ T9955]  <TASK>
[  269.322026][ T9955]  dump_stack_lvl+0x116/0x1f0
[  269.322045][ T9955]  print_circular_bug+0x275/0x350
[  269.322067][ T9955]  check_noncircular+0x14c/0x170
[  269.322087][ T9955]  __lock_acquire+0x1173/0x1ba0
[  269.322102][ T9955]  lock_acquire+0x179/0x350
[  269.322113][ T9955]  ? kobject_uevent_env+0xb36/0x1870
[  269.322133][ T9955]  ? __pfx___might_resched+0x10/0x10
[  269.322153][ T9955]  __mutex_lock+0x199/0xb90
[  269.322170][ T9955]  ? kobject_uevent_env+0xb36/0x1870
[  269.322188][ T9955]  ? kfree+0x252/0x4d0
[  269.322207][ T9955]  ? kobject_uevent_env+0xb36/0x1870
[  269.322226][ T9955]  ? __pfx___mutex_lock+0x10/0x10
[  269.322243][ T9955]  ? __asan_memcpy+0x3c/0x60
[  269.322262][ T9955]  ? kobject_get_path+0x8e/0x2a0
[  269.322279][ T9955]  ? kobject_uevent_env+0xb36/0x1870
[  269.322297][ T9955]  kobject_uevent_env+0xb36/0x1870
[  269.322318][ T9955]  set_capacity_and_notify+0x1ca/0x240
[  269.322338][ T9955]  ? __pfx_set_capacity_and_notify+0x10/0x10
[  269.322358][ T9955]  ? __asan_memcpy+0x3c/0x60
[  269.322376][ T9955]  loop_set_status+0x94a/0xb90
[  269.322392][ T9955]  loop_set_status_old+0x162/0x1d0
[  269.322405][ T9955]  ? __pfx_loop_set_status_old+0x10/0x10
[  269.322422][ T9955]  ? find_held_lock+0x2b/0x80
[  269.322437][ T9955]  ? is_bpf_text_address+0x8a/0x1a0
[  269.322457][ T9955]  ? stack_trace_save+0x8e/0xc0
[  269.322473][ T9955]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  269.322488][ T9955]  lo_ioctl+0x695/0x26d0
[  269.322502][ T9955]  ? __lock_acquire+0x5ca/0x1ba0
[  269.322513][ T9955]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.322527][ T9955]  ? __pfx_lo_ioctl+0x10/0x10
[  269.322540][ T9955]  ? find_held_lock+0x2b/0x80
[  269.322554][ T9955]  ? avc_has_extended_perms+0x33a/0x1090
[  269.322568][ T9955]  ? avc_has_extended_perms+0x47c/0x1090
[  269.322582][ T9955]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  269.322594][ T9955]  ? kasan_quarantine_put+0x10a/0x240
[  269.322606][ T9955]  ? lockdep_hardirqs_on+0x7c/0x110
[  269.322623][ T9955]  ? find_held_lock+0x2b/0x80
[  269.322639][ T9955]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  269.322653][ T9955]  ? blkdev_common_ioctl+0x1dd/0x2250
[  269.322670][ T9955]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  269.322683][ T9955]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  269.322702][ T9955]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  269.322721][ T9955]  ? ioctl_has_perm.constprop.0.isra.0+0x2f4/0x450
[  269.322740][ T9955]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  269.322764][ T9955]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  269.322787][ T9955]  ? __pfx_lo_ioctl+0x10/0x10
[  269.322799][ T9955]  blkdev_ioctl+0x274/0x6d0
[  269.322817][ T9955]  ? __pfx_blkdev_ioctl+0x10/0x10
[  269.322838][ T9955]  ? selinux_file_ioctl+0x180/0x270
[  269.322856][ T9955]  ? selinux_file_ioctl+0xb4/0x270
[  269.322875][ T9955]  ? __pfx_blkdev_ioctl+0x10/0x10
[  269.322894][ T9955]  __x64_sys_ioctl+0x190/0x200
[  269.322914][ T9955]  do_syscall_64+0xcd/0x260
[  269.322933][ T9955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.322948][ T9955] RIP: 0033:0x7f559118d169
[  269.322961][ T9955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.322975][ T9955] RSP: 002b:00007f5592057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  269.322990][ T9955] RAX: ffffffffffffffda RBX: 00007f55913a6080 RCX: 00007f559118d169
[  269.323001][ T9955] RDX: 00002000000002c0 RSI: 0000000000004c02 RDI: 0000000000000004
[  269.323011][ T9955] RBP: 00007f559120e2a0 R08: 0000000000000000 R09: 0000000000000000
[  269.323022][ T9955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  269.323032][ T9955] R13: 0000000000000001 R14: 00007f55913a6080 R15: 00007ffcc1576a28
[  269.323046][ T9955]  </TASK>
[  269.723484][ T9910] caif:caif_disconnect_client(): nothing to disconnect
[  269.804602][ T9947] blk_print_req_error: 24 callbacks suppressed
[  269.804623][ T9947] I/O error, dev loop7, sector 768 op 0x0:(READ) flags 0x80700 phys_seg 8 prio class 0
[  269.820935][ T9947] I/O error, dev loop7, sector 768 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  269.832874][ T9947] buffer_io_error: 24 callbacks suppressed
[  269.838920][ T9947] Buffer I/O error on dev loop7, logical block 96, async page read
[  269.846980][ T9947] I/O error, dev loop7, sector 776 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  269.860162][ T9947] Buffer I/O error on dev loop7, logical block 97, async page read
[  269.868391][ T9947] I/O error, dev loop7, sector 784 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  269.877910][ T9947] Buffer I/O error on dev loop7, logical block 98, async page read
[  269.886292][ T9947] I/O error, dev loop7, sector 792 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  269.895760][ T9947] Buffer I/O error on dev loop7, logical block 99, async page read
[  269.933692][ T9946] I/O error, dev loop7, sector 128 op 0x1:(WRITE) flags 0x800 phys_seg 80 prio class 0
[  269.944060][ T9946] Buffer I/O error on dev loop7, logical block 16, lost async page write
[  269.952554][ T9946] Buffer I/O error on dev loop7, logical block 17, lost async page write
[  269.961427][ T9946] Buffer I/O error on dev loop7, logical block 18, lost async page write
[  269.970163][ T9946] Buffer I/O error on dev loop7, logical block 19, lost async page write
[  269.978873][ T9946] Buffer I/O error on dev loop7, logical block 20, lost async page write
[  270.024072][ T9946] Buffer I/O error on dev loop7, logical block 21, lost async page write