last executing test programs:

1m27.453480131s ago: executing program 3 (id=353):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10b})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x54, 0x0, &(0x7f0000000e00)=[@acquire, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x68, 0x18, &(0x7f00000006c0)={@ptr={0x70742a85, 0x0, 0x0, 0x0, 0x2, 0x32}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x22}, @fd={0x66642a85, 0x0, r1}}, &(0x7f0000000bc0)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000300)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x48, 0x18, &(0x7f00000004c0)={@fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r3}, @flat=@weak_handle={0x77682a85, 0x1001}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x1, 0x1000000000000, &(0x7f0000000340)="cb"})
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000000000010711e0920000000000001090224000100000000090400090103000100092105000001220500090581030002"], 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
syz_usb_control_io(r4, &(0x7f0000000080)={0x18, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e1a01"], 0x1d)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x2]}, 0x8, 0x80800)
read$FUSE(r5, &(0x7f0000001b40)={0x2020}, 0x205c)
renameat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', r5, &(0x7f00000000c0)='./file0\x00', 0x4)
r6 = io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0xfac7})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r6, 0x10, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0}, 0x20)
socket$inet(0x2, 0x4, 0x1)
r7 = syz_open_dev$hidraw(&(0x7f0000000100), 0x0, 0x0)
read$hidraw(r7, &(0x7f0000002340)=""/147, 0x93)
syz_usb_ep_write(r4, 0x81, 0x1, &(0x7f0000000140)='\x00')

1m25.19894113s ago: executing program 3 (id=365):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000007c0)={&(0x7f0000000680)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@float={0x7, 0x13, 0x0, 0x10, 0x4}]}, {0x0, [0x30, 0x0, 0x2e, 0x5f, 0x5f, 0x61]}}, 0x0, 0x2c, 0x0, 0x1, 0x7}, 0x28)

1m25.06992653s ago: executing program 3 (id=367):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x49, 0x49, 0x4, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x2, 0x2}}, @restrict={0xf, 0x0, 0x0, 0xb, 0x5}, @volatile={0x9, 0x0, 0x0, 0x9, 0x2}, @datasec={0xf, 0x1, 0x0, 0xf, 0x1, [{0x4, 0x6, 0x3}], 'X'}]}, {0x0, [0x30, 0x0]}}, &(0x7f0000000500)=""/251, 0x68, 0xfb, 0x1}, 0x28)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000400)={0x0, r0}, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000100)='syzkaller\x00', 0x0, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
ioctl$USERFAULTFD_IOC_NEW(0xffffffffffffffff, 0xaa00)
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r6, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r6, 0x4028af11, &(0x7f0000000200)={0x0, 0x1, 0x0, &(0x7f00000001c0)=""/29, 0x0, 0x8000000})
ioctl$VHOST_SET_MEM_TABLE(r6, 0x4008af03, &(0x7f0000000680))
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='statm\x00')
dup3(r5, r7, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r6, 0x4008af30, &(0x7f00000000c0)={0x0, r7})
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x5e6})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x13, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x4}, 0x8}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa08, &(0x7f0000000000)={{&(0x7f0000ffe000/0x2000)=nil, 0x2000}, 0x1})
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
io_setup(0x3, &(0x7f0000000180))

1m19.813587351s ago: executing program 3 (id=386):
r0 = getpgid(0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = pidfd_getfd(r1, r1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
munmap(&(0x7f00007b2000/0x3000)=nil, 0x3000)
mmap$usbfs(&(0x7f0000bde000/0x4000)=nil, 0x4000, 0x1000008, 0x100010, r2, 0x8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="68010000", @ANYRES16=r4, @ANYBLOB="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"], 0x168}, 0x1, 0x0, 0x0, 0x80}, 0x804)
sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)={0x1a8, r4, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x48, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xac9}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xde4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5b3}]}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xd4e}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xd42e}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x60}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffffff2}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x101}]}, @TIPC_NLA_NODE={0xc4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x26, 0x3, "434ca33914b29e5dde17d78b1e91341a4e28f35af83511799851039c2c5694c11874"}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "be8eeefd815262a99d024dd4edd981bda433b305eda7ed5a49b3441255a219fc148edad5"}}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "16ad104572b37268c22c4e764143e98bc2e76de34004dfec62ae50e17715a62bca3feb"}}]}, @TIPC_NLA_MEDIA={0x30, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}]}]}]}, 0x1a8}}, 0x4005)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x80000, 0x0)
setns(r2, 0x66020000)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
r5 = socket$kcm(0x11, 0x2, 0x300)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x8, 0x0, 0x0, 0x8}, [@exit]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000d00)=r6, 0x4)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$USBDEVFS_REAPURB(r2, 0x4004550c, &(0x7f00000002c0))
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x14, 0x2, 0x6, 0x5}, 0x14}}, 0x0)
umount2(&(0x7f00000001c0)='./file0/../file0/file0\x00', 0x2)

1m18.597842051s ago: executing program 3 (id=391):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r2 = socket(0x1d, 0x2, 0x6)
r3 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r2, &(0x7f0000000380)={0x1d, r4, 0x1, {0x0, 0x0, 0x1}, 0xff}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000140)={'vxcan1\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@getchain={0x2c, 0x11, 0x1, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0x8, 0x8}, {0x7, 0xf}, {0x0, 0xffec}}, [{0x8, 0xb, 0x800}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44060}, 0x98) (async)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x4, 0x3, 0x4}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x1200}]}}}]}, 0x44}}, 0x0)

1m18.026446305s ago: executing program 3 (id=393):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r1, 0x4)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
sendmmsg$inet6(r0, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)='j', 0x1}], 0x1}}], 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f00000004c0)={0x0, 0x4, 0x22cd}, 0x8)

1m17.900851975s ago: executing program 32 (id=393):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r1, 0x4)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
sendmmsg$inet6(r0, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)='j', 0x1}], 0x1}}], 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f00000004c0)={0x0, 0x4, 0x22cd}, 0x8)

10.16285054s ago: executing program 1 (id=710):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = mq_open(&(0x7f0000000080)='eth0\x00#~\x02\x00\x00\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfd\x05\x00\x00\x00\x00\x00\x80\x00\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94uu_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18A\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x05\x00\x00\x000\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xce\x00\x00\x00\xe8\vq+\xbb\xc7\xaf\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
mq_notify(r1, &(0x7f0000000280)={0x0, 0x2a, 0x0, @thr={0x0, 0x0}})
mq_timedsend(r1, 0x0, 0x0, 0x5, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r3 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x100010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
statx(0xffffffffffffff9c, &(0x7f0000000700)='./file0\x00', 0x0, 0x100, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, <r6=>0x0, <r7=>0x0})
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000940)='./file0\x00', &(0x7f0000002100), 0x300040, &(0x7f0000001280)=ANY=[@ANYRESHEX=r6, @ANYRES16=r2, @ANYBLOB="cc19ff4d9516292670d3eedb3ccef1e9478850fa1119fcf0957702a6c8f65d8d9d0d7ab067ff07e30bb02514218f17da19644bb3ae4c03e286e68e821093528375a2feeac540fab398a6af2e662aa682096abada6ed8cae29f02a932541dfdd7fb725c8105a1c27b15fd5a96604bad44066fed9a5a4154236eedb6e68d98abb18319915e75319c67eadf4801b1a2026e1991359af4d58ed3c77f8447", @ANYRES32=r2, @ANYRESHEX=r3, @ANYRES16=r7])
read$FUSE(r8, &(0x7f0000002140)={0x2020, 0x0, 0x0, <r9=>0x0, <r10=>0x0}, 0x2020)
syz_fuse_handle_req(r8, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xfffc, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r9, r10, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000340)={&(0x7f0000000140), 0xc, &(0x7f0000000300)={&(0x7f000000b3c0)=@newtaction={0x289c, 0x30, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [{0x78, 0x1, [@m_sample={0x74, 0x11, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0xa}]}, {0x3d, 0x6, "fcf7e8054134e29875310a64a714f2a23f1924caac3a864c8e6992a64cf523feef77003508e1187c71c24c263006b5f54928d290270d5d9967"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}, {0x2810, 0x1, [@m_tunnel_key={0x1084, 0x12, 0x0, 0x0, {{0xf}, {0x54, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x81, 0x2, 0x0, 0xfffc, 0x3f29cb28}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @broadcast}, @TCA_TUNNEL_KEY_NO_CSUM={0x5}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @mcast2}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e24}, @TCA_TUNNEL_KEY_ENC_IPV4_DST={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x3b}}]}, {0x1004, 0x6, "2ade081d00943c0c3a095f7b6a06fc5cd7464117a717e7b3a7a935a01d2de2ee703ea9baffe95aa24ff44b4c4567b07132a5be088cc9a6343e9f84fc02868aa2dc5dcb6022a11d5ab13c6e42a9ba5dc33bb9c8fee1ddc518a006641f2b1de0a7fc267192b4bc7318b74f159dfd425a745ed7030a36ca88205afc610ed150659e4bca5bd777746071b9f14a7d214481c4b17074509805ab28341c8d14804dc4dd8bf89ca21d37e0e36b0bdf606410042382e66e2c9eace689aaa65f91c4dcb1025fa8c227e0ad9bbc620530cdcfdaa57e7d5e8d3e2cfe902c6bf2a2b06e1679b53865d2b3353702db5a870063640634fc2140864597f727f5f64a4c5dbe6562e0cebcc7e46663a22222008d8c4db8acf5f42e50455740e418c4a7d59f1962cd2367f273bdc33021e87dc271917c9a8b7cc7a33d0eb21c21e3970af6ac797fd6aae7018e1ebcee4023cdcd1d72839104e7c5eb4b31ac9cd120c7148e6ae595c3a37c0f01aeddc4dd913333ff8f3fea37a5fd5a58b34d14aabd24b6cc72e5d1a547dc75c4f5d2c80716d0f20d9b740f013bc332a91d288d0702b450fcb7d5ff1fa3bef1469b2ca1d681a21133e81d773c838dd4aa24e6be1150cd6a6f6c64cc3ae77e7f407e0e02ea0323469e497492f373d9f8002bded70e8739d3d7923bef55deddb8093a93621180664e0937eb24129e3c5c594c21b1250a1e2de8b7d2fa1a7403ed824023a82c40be5a9d8507cf12f61c44a018720246317f9998461f6272c0f6a96b8de827d5e610f42dea0dab0f2159ddf56a28493e550540819c1d68edb690b1b0bce32d3b0566bdd2d9d39bed91a573d2903d13bed08720afd33d9ed82ec6ce094bc6e9a90b2a2690f970e1f19ae9be27a8c6c578843b69d31dbd22d9a8e3a614579da8b6f9b16f0311da9542d8ed9b7e51bf78fd46b555ef0f21feb2dd998f92cbbe45e8b93f2393a57132c35a5d87f02779f2ba768707315f06fd1e38a9fe665ee05ad6c9a0e2086daebf4098bf828a7648972244ff84556f99da303f3d34d078a03e49c7788350f9d7bdb3074f5208a2403f8a469cf4638a85b0029e96d8fe778302949115fe8d4cc7d61e9d5a711a20ec0a31d6e71eeb6162b8d1729fde6c80c60dbfa937b0676721c5e1ef1e84e8978b795340d9b2a49c01866147872b902ba12a2599dc05a4e6a351650ff617f748b30b22314fb31b913f357bbb4e6d5738f4df36e0d115adfc8bea94cc5c1714618cab026eb2ffc6a95c3d05588d5d7cead8e7aef547acfb50b8489fa04c21b5c774be8b4e04a81c7c90b0402ada7bb93b3fff9bca14d2c872a126e677c8e4c03f689066afcecd8d783a35d63f6a5e35ceeb5783eea9879670493ea21b9202b2b3728a18fb7f6c55ed3e54061d0e83775c3f50adf3370c1fca7f9a15f472e652f906a840fd18753b26f9f66072f995ee344316c02c57d0dc8001c1338f7240fde536955262fc856af21901be9d1c9bef2922d70d551d856760f4562cab6b9f094a58d594f87d0e43a35677a4bfa828bf7bf99df9b98fe3ea90c113259da4e078b2dcc73444c6c5bd76e0bdc668fd79571bf0e04ce18ced392360512b9700ee86c93b3b10b57a695ccd5ffeaa8b76c8a5fc8861911262e0ead3556b5f5e3682c7a434173cb336c84918b8a5fe2f52fcdd99f4afc3f20cd781f0187e42e59dac0cf74efed023ebc3a605117954ac46d2308629129c90d65ec7fe5a2ccfc0fe9106fb9363dcbe587ca5539322e686c2a75a505c2984ca6b827d2f83812cf3b98dd437d53c976348271c41c83177af8305b2103fee618021ac1aad59bc51bdf9e9bc6827fd8d4833892fe37e20f9dd8ed89edd3f0d5ef24404f319b15a9a7d1fa71138c1451b0dd973f5003a25956ae03b17aa88a29d0d7ccd071a600a7ef312b0caffbb84e496aef26d6f40c3b1bb76a357fcb471584a425411844dff5b21d91799442522b733ff784f9bdc32c4ca756c6f4cd7fae54866e1d07d9241eec90f5e5f3175dca26ac5077ceb5ab6b3e68ac6ad69ce5ab119b9daaeec6a1db4f446494491a416e113a52868c12593399153f5e500d684dfa13998c032efa646b1c45a33bd312b804f909c08233c60855c1d7a7bdfe24259236b53cc5d9b32c333a7776ece0fe778897287ff0ee0c3ac066f72c814367107ab35109abd68aea8409443451ba0a59e2f4dae2455e22ffcbb1b2eb7a8bfaaeb37d0caf97821213c8ce0418c11685808de5f9af1316db778a900970350896e38531af93d749b5019075132341d52c99fb682b7f40011c07c778900e50d167cb03b668a736f31745323fc73888d9107d355d0ac462b860b9c77bcc941bc1b3377d5b866d843f108dd2f6a7fb7c8226cf26256a98527f4370096f2cfd959ce6f96314eaf973dfe7f5458c602798930039e78de76508faa3085b16d9e643572f1f76d00de4bc813512a3a7fd9bf203ce73a590b95651f309a31bc796956bc1ec33ee32f7a705d8f9bbebbdfe41eaff71ff690ebb46c85039a62152f8510637ed2d98460f477178c22a949b27b6917130694f26fdc16ac37bc5bee12c5ca6e2e3c36758e15ad7f82b2effa4c222a4b0c9b6943b4751e8d9b08a7fe343a91e93aed227361dcc974b399ab3136d5ced88d21d2817b363a06a512ff9c0c0442740cb349c0629d644dbd627d756146690c0ba3c4e4c4966ef2902b52e1fc9b50c89bf0fa1859c3c5f7862188bb1fce02020237405149ad6713698773bd6b81293f6abf7a6f305ec4e531732b1246bcce95ddb2054424bb1ed801b03acafb1efe2efb894ee0cdf0fb9d8e05515fc907e28a572924f7e5507a27fbd71ca0a6ef25961b212fa03bdb13f8611f63411ad99bcc98c12e03eaac65ca14438149828d4ded0aa838af6a9aa1d6a2b78ea85e7416b57a5fe67facc8b59dabc5b3fc3f987c409bf2a8cd8a2f0f05527d6e1f494682fc9aae8bc7129638e9df070f0d74c8020c8d65bed49781d3b9bf5e3b4f76a308a0d0b27694fb61eaa9385f9f1ba4ffea044a94cc079215f4a3b44e5293e0511fe319aae3976f87f2477cb91e99a418ee29b7f7da95afbe0f9013ccb7332289adb920a3cf59b24bf532affeca8953221f8c713a8a5a4a87210264838ec4efa09e7b090a75fd26245fd6a5adebb4132ccae4118eee6ccf972b504d54d4373d83ac9035cede1e8c141b82a92a7d0e290bc4fdbdcfffdd5dbe936c30d807861f5db748030d84864ac003072f61b55610f433693b2ff27cb382ea6449689b484bfc177ef1a8211626bb294c062869fc47c3a989a672cce75ef891c9efd6ff33d5feb9b928d64cb363ef4f3fa0833ae889a002a0c0d992bb4182f4c8849ec3eef29378f92c84f5aa890306d65321736bd586068773aa37d689727976cce1a952970e16fd0bde863be4a8c22b600f3d6559abbf4d20502071ad1c0774f96cb46bbcce64fac4203b8e0bcd4caa98bbcbeb6db472e7a6431631357bbfa8cb5b30015e21fbacad43bc0691858dc71463209ac83214aa2f53cbd89a8b711c3823234cfb7d39d688d573b3023d89bc7ba036d0d38e4c47812fe638e1510ca1a331e69cdc2b0dc634fe20488bc4d1fdf3a3967208499d22077d7db4e40fa6347b5a74fc12de89101c41731738d25aeb14843296674a2a12083f88ee072259b75258883304294d01b2cb69b237d81f8ca10b76a622fb95d4da5777878f76e7b05e04c455c1256c9b62efdd7d67a74c080b05e7467b408182a2643360442ad9a98ee2cad2dfec3b80e65929e49f3e10253c80dee8ea134eb2efb3ac116bf3ae14a9ce2f86abdba85afcab173208e505e77c08792934bedbf26083f5d20fde870c09d40b418f7655439a1dd811932024f8086b76d400492645407a4b4e1b8528411567f700ebe8152e5513eb3a5f8cd3eed557bdc765e9a6f0cd636b237211cd9d8832d3595a80476ceb50899883d684bba06eba39bffbb77f01bf586bcfacc6358082678613a6c5a72c7d7ba3d843e54ce1670f8728ddc39a9f0aae42af6422a840e9bb701914da60e0e75d140222a402e1cf66b13ec9260bd0b2a8c770cb455065a8929604da4498e25edec148927e1711145ad549f58ea8ca556b90ff520b9571a64e334292be722ac37b5a1b6d76e0d1f7df11968875e2f3b34187dc3008fffb3cb3b4e7a3cc76883b670f01ba334e98e3b7b926ae7c68338f6759b4fcae89853ff76cbcacb70776562e7ed616b4db2e7d40e0c795fdc8edd2f361840c97f1d9b2bd0de217463224c7b52ff7deb1885152cc50acab35357e768598576600cc5a89c27996c9e46b1108f176f0bebc6658541e400dcd68eeb00181bf14437f5017d06f195bbba764c2bec5eaf05c74db99a01c30b82751f5fbf755152f4a5f1e7005b40a0462b34b7012beb18038209d4876ba8efe655b5b90c71f3e660ec44833c86c42dd4b8f5b09f1fa338b42c839f3fc1a9ae0a2fc4b165f13c2d1eec6f97185106db3d305abe93d6ca4625a3e2019a33cb57d6da4c7b1b3b2827d7525c838592ae43be48a28ad5c667860fcbda90a72e3d6b07c77a7ceffc3f686e96b92525d3879de9349de57100cce000104b98f6d8572ac3d2f5a6caab672a8afbf43bef84f1fcc0316e42217b793a09431d471b89ba82131c936e6d0d82123a6f25a5780d9772c540632e196a88e7e5d4d7cd5d4b2f63771bb45ef06db015578cac53b6395adb76210020b881314df393b88bb8ea570628200e8de0e0ce16f199e894291a10818ce55a709e632b4a2023835752dcc19f3ab5381afdc3630c34dd6a9cf1bd0140e46d246ab1960a215ebca65b6ee012c3e95ca911b625dcae0527849bb5b822d41a64928c89102eb05b63aa860810d384a776da5b598801b0984027e09d51456c958cd85ae0fc7b4a5227707989f0b68ad61ef5bda5523d743a54c22519d09e7b0f4145906acc10b8804007ca6ad32826e6d3b1333c3a00b210c967660dea1c8056bb05a1de704d2e01f90913a9d0ae6a841e60998639f94c3a8932d10246c824beea752714de0d9db56f48a3e0e3aff26a8bd39c148ef5d8a2ce7d3bccc406fa3ef78329b1d85b1170a53f8427b435d43b42bfed5fee99821762a153a789b8887a9b425af943e04bf20a1efdb0ee24eb44e04d41d8f7f8a1ba3cf92bf37a662e3d816648aa05226ef7fb42efdee5bdee1763483482dd874e6943be13526085de7e5fa8d4fe14c4d27542d11ead78b3b55939b44201ea7323565d4aaad148b129afec3deb87349005429214af5c46312bc25b35e4cce4e2ec36a6aabcf05e2e8b43dbdf84cd589af190cde401e6c37e989ad3f2bb8196e92fa4ffe7202b61ae555741825519f6803655f2cb0199d931e35a932620dd06a814705e8c8ea658245ca326a9366fedb009080519e9ff4fb1cffc3967652354367c246e847e7778718936f86154acd17f05e8fe67641423fecadd249e4dc528f2e61d74d11f1929b106159994d168c92892c534a9bcdd620bdb951df9bf687b661aab27bf870b5860ea3ba80e66bc61dfee76820a566722eded49f1d056b65a2a79eba45f092939c1240f2793f0b5c42b8ae211cf66fdb966adfe8ced99c5cc3bb66c6de70a38ce0a409ab3aa52b53d349356d9b4ad87a2e7fbded7f72baeea40c4e2ad3f165c6d872598f6c5f78ac7163198dcf2199d032207d7fced85aa99f6a0291559a9ba19a798fd3d508bdbb05744935f85ff310ef645dc319cebdd2ba718767de36852ef35d76032fe171d58410a3be0c8168f6cd30"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbmod={0x128, 0x14, 0x0, 0x0, {{0xb}, {0x7c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x100}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x1, 0x8, 0x0, 0x3, 0x4}, 0xa}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xd}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @local}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_SMAC={0xa, 0x4, @random="dfc76cf04f3e"}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x7e}]}, {0x83, 0x6, "85da95f20e7f5834abddeeec05005a827fdd1257d3520a130d15938c0259d1e0c1a4bae98d13b58d502057f8546f0548a22d1906770d1ebaa6f7c7bf30a33f7127dcef0c2b18f62764ee3bda1ee0a5747e228a6320a2d14206d20f9ba9b2d3fae941b0822a627bafbf03487a0e69dc864ade816d64b2da19723aef2b851ec2"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_gact={0xf8, 0x1e, 0x0, 0x0, {{0x9}, {0xc4, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x0, 0x670, 0x20000000}}, @TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x5, 0x1, 0x7, 0x2}}, @TCA_GACT_PARMS={0x18, 0x2, {0x9, 0x7, 0x10000000, 0x80000000, 0x5}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x258e, 0x4}}, @TCA_GACT_PARMS={0x18, 0x2, {0x5, 0x7, 0x10000000, 0x8, 0x101}}, @TCA_GACT_PARMS={0x18, 0x2, {0x1ff, 0x0, 0x30000008, 0xffffff01, 0xee}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x2036, 0x6}}, @TCA_GACT_PARMS={0x18, 0x2, {0x5, 0x0, 0x8, 0x3, 0x2}}, @TCA_GACT_PARMS={0x18, 0x2, {0xfb2, 0xed44, 0x8, 0x8, 0xfff7fff9}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x184c, 0x6}}]}, {0x9, 0x6, "ac5c8f7a26"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ctinfo={0x1058, 0x1d, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0xfffffe01}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x8}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x5}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0xd}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x80000001}]}, {0x1004, 0x6, "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"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_mirred={0x238, 0xf, 0x0, 0x0, {{0xb}, {0xe4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x99, 0xffffffffffffffff, 0x7ff, 0x4}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0x83ff, 0x10000000, 0x9, 0x4ca}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x800, 0x200000f, 0x4, 0x10, 0xfffffffd}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xbd4, 0x1, 0x4, 0x1, 0x7}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xffff98b8, 0x2, 0x4, 0xa, 0x9}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xff, 0x4, 0x7, 0x25, 0x4}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x6, 0x3, 0x9, 0xc}, 0x2}}]}, {0x12c, 0x6, "33ca56052565ed1c2605d9768ac0355dc19aaa1441d9a1f461389de3b65cf55cb37d2f6572e124232b863e59b5658af3f209825ab71a66c4454d8d8f71d00921a6c447ff7bd514cc19ab74c04b080a523d91a82ec8ca96304c9e001e4afd08613d4a04d6c1aca2d44cd2221927fe1b467596ed59b1b756ee5243cee1edf94d23f5ff4c4a87ecffb1c8d6b841dc4b0398ef8427cfd3e94ee9c4e83bd2db898a4a698d81dea9a98091ab27ee0f3d188ac27c9282e680e44090badbfd97c587783995e7dacfd68a68af4dd9c298422d1f58ec28fde9b74e5cd11268f1f846b973c73939c71a5ecdfc419df940cea1184ea1987d9a8d08e0ead0b61432d72a15e9b48ddd267f4aebe1e371677a4a17808a698228b805d49c1cdb22ae4971ea3501f177e15de4726fe632"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_mirred={0xd4, 0x13, 0x0, 0x0, {{0xb}, {0xa4, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0xc0f, 0x3, 0x0, 0x400, 0x4}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6000, 0x6, 0xb}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5b47, 0x80, 0x10000006, 0x101, 0x27ef}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1000, 0xfffffffb, 0x10000000, 0x6, 0x7}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x2, 0xffff, 0x8, 0x7f, 0x4009}, 0x4}}]}, {0x5, 0x6, "d8"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_tunnel_key={0xfc, 0x1, 0x0, 0x0, {{0xf}, {0x34, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x0, 0x2, 0x6, 0x8000, 0x4}, 0x2}}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @rand_addr=' \x01\x00'}]}, {0x9c, 0x6, "7ac5208db2919bcd49bb60163da88dd4666437b0f90b07286d158bf7b83194cd3da86c8ca5765a98031bacd4239ab70d534167326380047a77ce523a331dcc1d32863071365a782e81c383d3bfb27ea0752ec104ceaf3048305f83a2a00009ac12c7f19da3fe99e795ca77c7d49fb197351db90435e2c11e0831a3a05ea5eddc43d70260efc3fa282d9f786cdf1af19318285feddd6e13e0"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3}}}}, @m_xt={0x108, 0x1f, 0x0, 0x0, {{0x7}, {0x14, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8, 0x2, 0x4}, @TCA_IPT_INDEX={0x8, 0x3, 0xd3}]}, {0xcf, 0x6, "6c7170175b8be70222b96cada667b420d9b1f80bd20da654ad1bcfa9ee8c947d76095b45afc3c58b3f16b4bd62f8995dbe31637d04bf0edd61ed861b82c494b24efbf9fde454577fef6a1e4b83fef543373fe0f38cf4a9b9bcc0598beab27304637f51275d6d860db639ce9ae149f15ba4e327176a2bdc04d7da89df802b0a6f1361c6fcf2acd013a8021e5130a02a0eefc1cc7e79460f11d404038c10e227596591cceb3cd594150d3e643b52d65e7471af54354649ecbe5c0b53bf792ba6e8a8ef802f4d9c04753e624a"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0x289c}, 0x1, 0x0, 0x0, 0x48011}, 0x80)
r12 = socket$netlink(0x10, 0x3, 0x15)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r12, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="04010000100053"], 0x104}, 0x1, 0xf0ffffff, 0x0, 0x20040890}, 0x200080c0)
getresuid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0))
sendmmsg$unix(r5, &(0x7f0000001480), 0x0, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe(&(0x7f00000001c0))
openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r13, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="5c000000020601020000000000000000000c00078008001240000600000500010006000000050005000a00000005000400000000000900020073797a310000000016000300686173683a6e65742c706f72742c6e6574000000"], 0x5c}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
r14 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r14, @ANYBLOB="010080ffffffe3ff000001000000080001000300000024000400050003db000000e5050003008000000005000300020000000800020003000000008a5ed17100000000"], 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x40010)

9.20742663s ago: executing program 1 (id=715):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb0000180000000000000000000000000000000200fcffff"], &(0x7f0000000100)=""/141, 0x1a, 0x8d, 0x1, 0x7}, 0x28)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="180800ec0c00000000000000000000001801000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=ANY=[@ANYRES8, @ANYRES32, @ANYBLOB="0000000000000000400012800c0001"], 0x68}}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000380)={'syzkaller1\x00', @link_local})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00', {0x2}})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaaaabb88f5"], 0x72)

9.042653393s ago: executing program 1 (id=717):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x1, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79b1, 0x8, 0x8000, 0x3a5}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000300)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0xc})
io_uring_enter(r4, 0x4c6e, 0xc67a, 0x8, 0x0, 0x0)
io_uring_enter(r4, 0x627, 0x4c1, 0x43, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r8)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r9)
sendmsg$TIPC_CMD_ENABLE_BEARER(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)

6.948640589s ago: executing program 4 (id=727):
syz_open_procfs(0x0, &(0x7f0000000040)='clear_refs\x00')
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0x8, 0x8, 0x80, 0x8, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0xa, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0xff, 0x6, 0x5, 0x4, 0x0, 0x7, 0x3c57, 0x0, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x5, 0x7, 0x83, 0x9, 0x4c74, 0x0, 0x242, 0x2, 0xe, 0x0, 0x400, 0x7, 0x17, 0x21, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x81, 0x6, 0xffff8001, 0x3ff, 0x83, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e6, 0x88, 0xf9, 0x388000, 0x2bb, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2b, 0xe, 0x312, 0x78, 0xea4, 0x0, 0xfff, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0xfe, 0x0, 0xa, 0x5, 0x1000005, 0x5f31, 0xf, 0xd86, 0x2, 0x4, 0x8, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0xbc2, 0x1, 0xfe000000, 0x8, 0x2, 0x200004, 0x9, 0x3, 0x3, 0x9, 0x4, 0x3, 0x5, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x1, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x3, 0x5, 0x800000, 0x1ef, 0x8, 0x8, 0x86, 0x3, 0x3038, 0xff, 0xb, 0x2, 0x2, 0x2, 0x7, 0x20000008, 0x4, 0x16d01, 0x6, 0x38, 0x800003, 0x600, 0x80, 0xbf7, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0x4a9, 0x5, 0x6, 0xac8, 0x5, 0x7, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x3, 0x5, 0x1b, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x80000000], [0x9, 0xbb33, 0xa, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x400002, 0x57, 0x4, 0x3, 0x3, 0x10000, 0x9, 0x7fff, 0xffff, 0xa620, 0x1, 0x7, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x10000016, 0xffffffff, 0x80000000, 0x5, 0xffffffff, 0xc8, 0x1, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xae, 0x8, 0x6, 0x226, 0x3, 0x100, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x8, 0x4, 0x5, 0x40b1e, 0xd7, 0x200, 0xffff3441, 0x4]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
rseq(&(0x7f0000000400)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000002030300000000000000000000dbe0cf21b114551eb1c600"], 0x1c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r4)
sendmsg$TIPC_NL_PUBL_GET(r4, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000000)={0x20, r5, 0x341, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x208}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000814}, 0x14)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x1902)

6.561823883s ago: executing program 1 (id=728):
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x8001, 0x0)
syz_io_uring_setup(0xed1, &(0x7f0000000400)={0x0, 0x586d, 0x10300, 0xfffffffe, 0x1000103}, &(0x7f00000005c0), &(0x7f0000000600))
ioctl$TCSETS(0xffffffffffffffff, 0x5402, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
openat$kvm(0xffffff9c, 0x0, 0x800, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141102)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0)
sendto(r3, 0x0, 0x0, 0x20040054, 0x0, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0xa00, 0x1, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x9e3, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

5.999578435s ago: executing program 0 (id=733):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=@newtaction={0x64, 0x30, 0xf3ff, 0x3, 0x0, {0x0, 0x0, 0x1300}, [{0x50, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x4, 0x1, {{0x100002, 0x0, 0x8, 0x8}, 0x8256}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}, {0x0, 0x1, [@m_ife={0x0, 0x14, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x0, 0x5, 0x6}, @TCA_IFE_PARMS={0x0, 0x1, {{0x80000001, 0x10001, 0x20000000, 0x2, 0xe056}, 0x1}}, @TCA_IFE_DMAC={0x0, 0x3, @local}]}, {0x0, 0x6, "b1e61edf2fa589f79d207bf180788175a92d6a7ac80593fbc4c63d410d4b5130133abe9ec08d5db91800ddabd4d0236cdb9425db22046042728a458992eac28ae179"}, {0x0, 0x7, {0x0, 0x1}}, {0x0, 0x8, {0x0, 0x3}}}}, @m_gact={0x0, 0x1d, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0x0, 0x3, {0x2, 0x168f, 0x5}}, @TCA_GACT_PROB={0x0, 0x3, {0x1, 0x16ac, 0x4}}, @TCA_GACT_PROB={0x0, 0x3, {0x2, 0x1026, 0x2}}]}, {0x0, 0x6, "37a1e8043b1da41e35060f06bf4a2860ac5d364f4de8cf83eabefa70a0fafa484abf534de1ccb38670f08b21e1d6bf870a2e8774a45e4f0cf71bba583a7540d80ff391be975874b094faa08e033a8323f4d87b14a49d33d73bd5b56b7893eab1c4fa8f6d5a4203b715d5963a060f3bb6c3336603ec914b3a54be4b5ac2a1db9ac233d9569a9ed37402d92055990d79f2bc0b86a222d44431c6d89a8ab4db9d"}, {0x0, 0x7, {0x1}}, {0x0, 0x8, {0x1, 0x2}}}}, @m_xt={0x0, 0x1, 0x0, 0x0, {{}, {0x0, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x0, 0x2, 0x4}, @TCA_IPT_TARG={0x0, 0x6, {0xa, 'security\x00', 0x49, 0x6, "289d08142a90b2e24ec0629037fefcab1eea5f96df05c5816c3b4029c4fe0e027a7a3778e531ce1a5e0291c2851971aa1a28c6be1f96dbe65d7940c02895f4422c6a3d3bd6a508d9f3b35b70855098bdca0c0a08e423c53d9ba60f50407c76ae1e48447b9508430d0350f42bf8f8976aac3e95c4c2450624df2a87cc0a929e13bcdf0647f125d5f1d3f741133933034b9fd75d9f1021bac9ad9949d09ea892e31be6b0d455d2f0c1c91bc78f27b7b4bf3f35c8b202e95a2c0294a34cc6a6700605047ce031c81a64c5db4b16cc50f98a714004841424c49318df1b4424a93408d4ba6f6178a8bcb084c87a446223774c"}}, @TCA_IPT_HOOK={0x0, 0x2, 0x2}, @TCA_IPT_INDEX={0x0, 0x3, 0x491}, @TCA_IPT_TARG={0x0, 0x6, {0xe, 'raw\x00', 0xff, 0xff, "128add12880f5115f7e9ee4986ef8bc61941ca8b5594ab29f95db55fb80b29a816152ae41611c0d90a439136a194f9a8f5453c30131e249a1f9bc56fb41c77dc9effc7fd665e18b10a714793a4f94d79676018f6fb3874e3b237f0474820f51361"}}]}, {}, {0x0, 0x7, {0x0, 0x1}}, {0x0, 0x8, {0x0, 0x2}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x80}, 0x48800)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6000000000140600fe80080000000000000000000000001dfe800000000000000000000000aa00004e22100041892978a252e0483810cc995766e53d1cc77d6a0cb249", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5002001190780002"], 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004500008c0217772c0067000003069078ac1414bbacb914aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='\b\x00\x00'], 0x0)

5.842340882s ago: executing program 0 (id=734):
pipe2(&(0x7f0000000280), 0x4080)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="10550cb1d07dc66868"], &(0x7f0000000340)='GPL\x00', 0x7, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0xe, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x36}, 0x94)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="2c0000001000010000000000fedbdf25070000001300000008000000", @ANYRES32, @ANYBLOB="0800f9ffffffffffffff0000"], 0x2c}], 0x1}, 0x0)
r0 = socket(0x1a, 0x6, 0x8)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'ovf\x00', 0x0, 0x4000ffc, 0x53}, 0x2c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)
ptrace$poke(0x5, 0x0, &(0x7f0000000080), 0xf5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$net_dm(&(0x7f0000001140), r7)

5.601228802s ago: executing program 2 (id=737):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x8990, &(0x7f0000000100)={'bond0\x00', @ifru_names='veth0_to_hsr\x00'})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='dctcp', 0x5)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r1, &(0x7f0000000440)="7f80b99d4a0602185c", 0x9, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x9}, 0x1c)
shutdown(r1, 0x0)

5.600699054s ago: executing program 2 (id=738):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x126b80, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8b18, &(0x7f0000000000)={'wlan0\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$FUSE_INIT(r5, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x2c)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)={0x88, r2, 0x205, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x53, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}, {0x81}, @device_b, @device_b, @initial, {0x6}}, 0x9, @default, 0x1971, @val, @void, @val={0x3, 0x1, 0xb5}, @void, @val={0x6, 0x2, 0xe}, @void, @void, @val={0x2a, 0x1, {0x1, 0x1, 0x1}}, @val={0x3c, 0x4, {0x1, 0x9, 0x30, 0xb6}}, @void, @val={0x72, 0x6}, @val={0x71, 0x7, {0xffffffffffffffff, 0x0, 0x1, 0xffffffffffffffff, 0x2, 0xb}}, @val={0x76, 0x6, {0x4, 0x2, 0x7, 0x5}}}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x88}}, 0x24000080)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket(0x10, 0x803, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x2000000b, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x54000}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd0, &(0x7f0000000040)=0x8, 0x4)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)

5.322007295s ago: executing program 4 (id=739):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01000000f7ff000000000000000000cd09e7", @ANYRES32=r2, @ANYBLOB="0800c300741700000800c40001000000"], 0x2c}}, 0x44080)

5.233472897s ago: executing program 1 (id=740):
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1c0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1100000004000000040000000600001a00"], 0x48)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r0)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x5c, r3, 0x5eae78d9c54e9d3f, 0x0, 0x27dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_KEY={0x40, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "403a050c5baee2004ef2b6d713459a7a"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xa}, @NL802154_KEY_ATTR_ID={0x20, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}]}]}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20040000}, 0x200440c4)
ioctl$XFS_IOC_GETVERSION(0xffffffffffffffff, 0x80047601, &(0x7f0000000040))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff})
pipe2$9p(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_9p2000}]}})
write$P9_RVERSION(r6, &(0x7f0000000000)=ANY=[@ANYBLOB="150000006bffff"], 0x15)

4.551314572s ago: executing program 1 (id=741):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r1)
sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB='\x00'/14], 0x14}, 0x1, 0x0, 0x0, 0x44844}, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/fs/nfs', 0x0, 0x0)
getdents(r3, &(0x7f0000000080)=""/174, 0xae)
mkdir(&(0x7f0000000400)='./file0\x00', 0x20)
r4 = open(&(0x7f00009e1000)='./file1\x00', 0x60840, 0x1d2)
fcntl$setlease(r4, 0x400, 0x0)
r5 = open$dir(&(0x7f0000000000)='./file0\x00', 0x40042, 0x128)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r7, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r7, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_route_sched(r6, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0x800, 0x70bd2e, 0xec, {0x0, 0x0, 0x12, r8, {0x9}, {0xb, 0xffff}, {0x5, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8004001}, 0x94)
fcntl$setlease(r5, 0x400, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000500)='fdinfo/3\x00')
pread64(r9, &(0x7f0000003b00)=""/195, 0xc3, 0x591f)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000300)='anon_inodefs\x00', 0x62000, &(0x7f00000003c0)='usrquota')
r10 = openat$binfmt_format(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
write$binfmt_format(r10, 0x0, 0x0)
lchown(&(0x7f0000000040)='./file1\x00', 0xee01, 0xee01)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000200)={0x1c, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x20, 0x1, 0x1, 0x1}, 0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x8c48, 0x0)
write$6lowpan_control(r9, &(0x7f0000000140)='connect aa:aa:aa:aa:aa:10 0', 0x1b)
r11 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r11, 0x5b03, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)

4.550921434s ago: executing program 4 (id=742):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x800000000000000)
syz_open_procfs(0x0, 0x0)
futex(0x0, 0x5, 0x4, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$alg(r4, &(0x7f0000008dc0)={0x8d, 0x0, &(0x7f0000008cc0)=[{&(0x7f0000008a40)="7c72bf03f7d9c0fd0826786ffcfb99e55c1272594d5be5c7f1de9562bbf652", 0x1f}, {&(0x7f0000008c80)="9d", 0x7fffefe1}], 0x2}, 0xfffffff0)

3.543139868s ago: executing program 0 (id=743):
r0 = syz_open_dev$dvb_frontend(&(0x7f00000002c0), 0x0, 0x2)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r2 = syz_io_uring_setup(0x23d, &(0x7f0000000680)={0x0, 0x425e5, 0x10100, 0x3, 0x202e0}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1, 0x0, 0x0, 0x0, {0x31a0}})
io_uring_enter(r2, 0x2648, 0x1d5e, 0x2, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x0, 0x80)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r5, r7, 0x16, 0x0, @void}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r8, 0x10e, 0x2, 0x0, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r9, 0x0, 0x0)
r10 = socket(0xa, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r10, 0x29, 0x2a, &(0x7f0000000040)={0x4, {{0x2, 0x4e20, @local}}}, 0x88)
fcntl$getownex(r6, 0x10, &(0x7f0000000280))
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000240)=0x3)
read$dsp(r1, &(0x7f0000000540)=""/84, 0x54)
ioctl$FE_GET_EVENT(r0, 0x80286f4e, &(0x7f0000000080)={0x0, {0x0, 0x0, @qam}})
r11 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x44080)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r12 = syz_open_dev$MSR(&(0x7f0000000200), 0x7ffffffe, 0x0)
read$msr(r12, &(0x7f0000002700)=""/102392, 0x18ff8)

3.452149453s ago: executing program 4 (id=744):
fsopen(0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=@ipv6_newroute={0x30, 0x19, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, [@RTA_GATEWAY={0x14, 0x5, @empty}]}, 0x30}}, 0x0)
close(r1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a98000000060a0b040000000000000000020000006c000480680001800a000100696e6e65720000005800028008000240000000840800034000000007080004400000000f0800014000000000340005800c0001007061796c6f61b60024000280030004400000001c08000340000000b9080001400000000a08000240000000020900010073797a30000000000900020073797a32"], 0xc0}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r5)
sendmsg$IEEE802154_ADD_IFACE(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000002140)={0x38, r6, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20004000)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r4, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x1c, r6, 0x24, 0x70bd27, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x800)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000004c0)={'syzkaller0\x00', @link_local})
write$tun(r0, &(0x7f00000001c0)=ANY=[], 0xc2)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_tcp_buf(r7, 0x6, 0x21, &(0x7f0000000500)=""/4096, &(0x7f0000000000)=0x1000)
write$cgroup_devices(r0, &(0x7f0000000280)=ANY=[], 0xffdd)

3.082610417s ago: executing program 2 (id=745):
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x5885, 0x100, 0x0, 0xffeffc03}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000240)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x3400, 0x1})
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x80)
mount$tmpfs(0x4700, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="71756f74612c75737271756f74615f696e6f64655f686172646c696d69743d372c007734134d2c0c28a798e0a91c92efe07237abd9932ac12ceae46e4c5cadfd"])
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
read$FUSE(r3, &(0x7f0000002140)={0x2020}, 0x2100)
io_uring_enter(r0, 0x351e, 0x483, 0x0, 0x0, 0x0)
r4 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
syz_clone3(&(0x7f0000000340)={0x201800000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0, 0x0, {r5}}, 0x58)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r5, 0x18, &(0x7f0000000280)={0x8, r3, 0x20, {0x7, 0xfffffffffffffff8}, 0x8}, 0x1)
r6 = syz_open_dev$dri(&(0x7f0000000140), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f0000000100)={0x0, &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x2d, 0x1})
r7 = io_uring_setup(0x669, &(0x7f00000002c0))
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r7, 0xa, 0x0, r8)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x1, 0x17, 0x0, {0x0, r8, r6}})
syz_open_procfs(0xffffffffffffffff, &(0x7f00000007c0)='children\x00')
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000004c0)={'veth1_virt_wifi\x00', <r11=>0x0})
r12 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000800)={r10, r11, 0x25, 0x4, @val=@tcx}, 0x1c)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x5, 0x3, &(0x7f0000000480)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000680)={r12, r13, 0x4, r10}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r14=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r14, 0x8933, &(0x7f0000000300)={'wlan0\x00'})

2.698337961s ago: executing program 0 (id=746):
unshare(0x66020000)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000000)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x5}, {0x0, 0x13b6, 0x0, 0xfffffffffffffffc}, 0x0, 0x6e6bb9, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x6c}, 0x0, @in=@empty, 0x0, 0x0, 0x2, 0x7, 0x200}}, 0xe4)
socket$inet_icmp(0x2, 0x2, 0x1)

1.483142518s ago: executing program 2 (id=747):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="000403"], 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x801a01, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x38, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_CQM={0x1c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x84d}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x2}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x337}]}]}, 0x38}}, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
writev(r2, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)
ioctl$BTRFS_IOC_BALANCE(r1, 0x5000940c, 0x0)

1.410178532s ago: executing program 4 (id=748):
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x8001, 0x0)
syz_io_uring_setup(0xed1, &(0x7f0000000400)={0x0, 0x586d, 0x10300, 0xfffffffe, 0x1000103}, &(0x7f00000005c0), &(0x7f0000000600))
ioctl$TCSETS(0xffffffffffffffff, 0x5402, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
openat$kvm(0xffffff9c, 0x0, 0x800, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141102)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0)
sendto(r3, 0x0, 0x0, 0x20040054, 0x0, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0xa00, 0x1, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x9e3, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

1.302989262s ago: executing program 2 (id=749):
syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x8001)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x100, 0x0, 0x25dfdbfd, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x102, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x20, 0x2}}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[], 0x1c}, 0x1, 0x3f}, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000003c0)='oom_adj\x00')
writev(r3, &(0x7f0000000140)=[{&(0x7f0000000280)='0', 0x1}, {&(0x7f0000000080)="d2", 0x1}], 0x2)
r4 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, r4)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r6, <r7=>0xffffffffffffffff}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0x10, &(0x7f0000000240)=@framed={{}, [@snprintf={{0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x8, 0xfe00}, {0x7, 0x0, 0x8, 0x8, 0x0, 0x0, 0x11}, {}, {0x5}, {0x7, 0x0, 0x2, 0x0}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x49}}]}, &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x103)
mount$tmpfs(0x0, &(0x7f0000000780)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000800)=ANY=[])
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a20000000000a03000000000018000000070000000900010073797a300000000070000000090a010400000000000000000700000008000a40004a86000900020073797a30000000000900010073797a300000000008000540000000112c001280140001800c000100636f756e7465720004000280140001800c0001006e6ff6f4729fdca5e9000280080003400000019b140000000000010000000000000000000084000a"], 0xb8}}, 0x20050800)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
add_key$fscrypt_v1(0x0, &(0x7f0000000300)={'fscrypt:', @desc4}, 0x0, 0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff})
connect$unix(r8, &(0x7f0000000300)=@abs, 0x6e)

972.105422ms ago: executing program 0 (id=750):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r0, 0x541c, &(0x7f0000000100)) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$BTRFS_IOC_START_SYNC(r1, 0x80089418, &(0x7f0000000000)=<r2=>0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r1, 0x5000943f, &(0x7f00000006c0)={{r1}, r2, 0x34, @unused=[0x7, 0xf, 0x0, 0x7fffffffffffffff], @devid}) (async)
r3 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000300)={{{@in=@loopback, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast1, 0x2000000, 0x33}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x0, 0x0, 0x3}}, 0xe4) (async)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000000041}, 0xc) (async)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, 0x0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) (async)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, 0x0, 0x0) (async)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
clock_adjtime(0x0, &(0x7f0000000100)={0x2, 0x6a, 0x5, 0x8000000000000001, 0x48c, 0x5, 0xd, 0x424, 0x2, 0xffffffffffffffff, 0xf423f, 0xfffffffffffffff9, 0x7, 0x2, 0x1000000081, 0x5, 0x0, 0x5, 0x0, 0x9220000000000000, 0x3, 0x0, 0x80000001, 0x0, 0x5, 0x7})
write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x1}, 0x2) (async)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) (async)
r9 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r9, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)

442.127503ms ago: executing program 4 (id=751):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x14}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x78}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
close(r1)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, 0x0, &(0x7f0000000280))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000001f0000000200000022bf000001000000", @ANYRES32, @ANYBLOB="08000000dd0000000000000000c8d05300000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x50)
r6 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r6, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e20, @local}}, 0x80, 0x0, 0x0, &(0x7f0000001240)=[{0x10, 0x110, 0x1, "dc"}], 0x10}, 0x40)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r5, 0x0, 0xa002a0}, 0x38)
openat$sequencer(0xffffff9c, &(0x7f0000001bc0), 0x88302, 0x0)
openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x2000000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r7}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

10.847501ms ago: executing program 0 (id=752):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000194c0)=ANY=[@ANYBLOB="296c3a198202a0bd0830430852345a6ca4eb4cc03093f87f70894b868b5ce3ec7fa283f8a022d134cdef58c2ac12f6bf06686c00987955947ac53264f8bfa5132cb5ec8ca386ec269118cc44dd464ee5178c0b13db60fd096912cbcf8208b81d67d99582a63a6d0e63b0891005c855b6d0cdc27a60af4ce8c31d82f01b293019f6f6ef386c8d92af2b783431aede1a3f74d610105246791135d7a16970decfdd1cf469401cd0fd184e753e557e78c7dc307295083a5a00b302a987303ed5087e3e553a74f5b151d2b8b908390fcf690000ad29c70c37e9eaef488f5cf28adf87a5b01b5c00000000000000", @ANYRESDEC=r0], 0x2a8}, 0x1, 0x0, 0x0, 0x20040040}, 0x20000880)
syz_open_dev$tty20(0xc, 0x4, 0x1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200))
syz_io_uring_setup(0x231, &(0x7f0000000180)={0x0, 0xdd68, 0x2, 0x1}, &(0x7f0000000100), &(0x7f0000000140))
openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x4280, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @vbi={0x6, 0x2, 0xc7a, 0x38414762, [0x3, 0x7], [0x2, 0x6], 0x2}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f00000004c0)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}]})

0s ago: executing program 2 (id=753):
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b28, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x5c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x5c}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000440)={0x40, r5, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x6, 0x13, [{0x18}, {0x4, 0x1}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}]}, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

kernel console output (not intermixed with test programs):

g=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  110.252920][ T6254] netlink: 'syz.0.56': attribute type 10 has an invalid length.
[  110.261906][   T40] audit: type=1326 audit(1771144331.906:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.0.56" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  110.261946][   T40] audit: type=1326 audit(1771144331.906:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.0.56" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  110.261976][   T40] audit: type=1326 audit(1771144331.906:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.0.56" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  110.262012][   T40] audit: type=1326 audit(1771144331.906:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.0.56" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  110.313757][ T6254] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  110.340254][ T6257] process 'syz.2.57' launched './file0' with NULL argv: empty string added
[  110.402392][ T6255] 8021q: adding VLAN 0 to HW filter on device bond1
[  110.485957][ T6261] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.511836][ T6262] netlink: 12 bytes leftover after parsing attributes in process `syz.1.58'.
[  110.512842][ T6263] capability: warning: `syz.2.59' uses deprecated v2 capabilities in a way that may be insecure
[  110.530086][ T6262] fuseblk: Bad value for 'fd'
[  110.584525][ T6264] netlink: 12 bytes leftover after parsing attributes in process `syz.2.59'.
[  110.610028][ T6261] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.632026][ T6264] 8021q: VLANs not supported on ip6gre0
[  110.703912][ T6261] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.819279][ T6261] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.936757][   T97] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.968425][   T97] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.972428][   T97] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.976249][   T97] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.042941][ T6274] 8021q: adding VLAN 0 to HW filter on device bond0
[  111.054064][ T6274] bond0: (slave rose0): Enslaving as an active interface with an up link
[  111.971126][ T1325] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  112.076243][ T6317] netlink: 28 bytes leftover after parsing attributes in process `syz.3.69'.
[  112.080835][ T6317] netlink: 28 bytes leftover after parsing attributes in process `syz.3.69'.
[  112.137091][ T6318] kvm: vcpu 2: requested 148514 ns lapic timer period limited to 200000 ns
[  112.141305][ T6318] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  112.812811][ T6317] i2c i2c-1: dtv_property_process_set: SET cmd 0x00007101 undefined
[  113.441709][ T5959] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  113.445581][ T5959] Bluetooth: hci2: Injecting HCI hardware error event
[  113.449876][ T5959] Bluetooth: hci2: hardware error 0x00
[  114.302227][ T6341] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size.
[  114.870387][ T6348] libceph: resolve '0..' (ret=-3): failed
[  115.325721][ T6356] netlink: 20 bytes leftover after parsing attributes in process `syz.0.77'.
[  116.171342][ T5959] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  125.957124][ T6385] netlink: 68 bytes leftover after parsing attributes in process `syz.2.80'.
[  127.092909][ T6409] 9pnet_fd: p9_fd_create_tcp (6409): problem binding to privport
[  127.284594][ T6411] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  127.288939][ T6411] block device autoloading is deprecated and will be removed.
[  127.376971][ T6411] syzkaller1: entered promiscuous mode
[  127.379339][ T6411] syzkaller1: entered allmulticast mode
[  127.533913][ T6428] netlink: 68 bytes leftover after parsing attributes in process `syz.0.87'.
[  127.706336][ T6430] cgroup: fork rejected by pids controller in /syz0
[  128.858668][ T6530] team0 (unregistering): Port device team_slave_0 removed
[  129.014211][ T6530] team0 (unregistering): Port device team_slave_1 removed
[  131.707443][ T6918] netlink: 68 bytes leftover after parsing attributes in process `syz.1.89'.
[  131.719613][ T6920] netlink: 68 bytes leftover after parsing attributes in process `syz.0.91'.
[  132.205366][   T40] kauditd_printk_skb: 46 callbacks suppressed
[  132.205614][   T40] audit: type=1326 audit(1771144353.916:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.3.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63f6c code=0x7ffc0000
[  132.312255][   T40] audit: type=1326 audit(1771144353.916:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.3.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63f6c code=0x7ffc0000
[  132.324940][   T40] audit: type=1326 audit(1771144353.916:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.3.92" exe="/syz-executor" sig=0 arch=40000003 syscall=435 compat=1 ip=0xf7f63f6c code=0x7ffc0000
[  132.336706][   T40] audit: type=1326 audit(1771144353.926:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.3.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63f6c code=0x7ffc0000
[  132.347285][   T40] audit: type=1326 audit(1771144353.926:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.3.92" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63f6c code=0x7ffc0000
[  132.361667][   T40] audit: type=1326 audit(1771144353.926:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6930 comm="syz.3.92" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf716572b code=0x7ffc0000
[  132.382484][   T40] audit: type=1326 audit(1771144354.076:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6930 comm="syz.3.92" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf7f63f6c code=0x7ffc0000
[  133.529807][ T6951] netlink: 12 bytes leftover after parsing attributes in process `syz.0.96'.
[  133.647317][ T6955] mmap: syz.0.98 (6955) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  134.025533][ T6960] netlink: 20 bytes leftover after parsing attributes in process `syz.2.100'.
[  134.551735][   T40] audit: type=1326 audit(1771144356.256:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6973 comm="syz.0.104" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x0
[  134.569003][ T6969] netlink: 4 bytes leftover after parsing attributes in process `syz.2.103'.
[  134.907949][ T6981] syzkaller0: entered promiscuous mode
[  134.910142][ T6981] syzkaller0: entered allmulticast mode
[  135.516198][ T6994] netlink: 96 bytes leftover after parsing attributes in process `syz.0.109'.
[  135.568132][ T6991] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  135.726936][ T6999] netlink: 20 bytes leftover after parsing attributes in process `syz.0.111'.
[  135.900102][   T40] audit: type=1326 audit(1771144357.616:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7003 comm="syz.2.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  135.908762][   T40] audit: type=1326 audit(1771144357.616:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7003 comm="syz.2.112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  136.040440][ T7012] [U] 
[  136.041886][ T7012] [U] 
[  136.043146][ T7012] [U] 
[  136.044300][ T7012] [U] 
[  136.046618][ T7012] [U] 
[  136.047823][ T7012] [U] 
[  136.049028][ T7012] [U] 
[  136.050206][ T7012] [U] 
[  136.051721][ T7012] [U] 
[  136.052942][ T7012] [U] 
[  136.054125][ T7012] [U] 
[  136.055324][ T7012] [U] 
[  136.057673][ T7012] [U] 
[  136.058907][ T7012] [U] 
[  136.060087][ T7012] [U] 
[  136.061259][ T7012] [U] 
[  136.063383][ T7012] [U] 
[  136.064602][ T7012] [U] 
[  136.065795][ T7012] [U] 
[  136.066995][ T7012] [U] 
[  136.068410][ T7012] [U] 
[  136.069628][ T7012] [U] 
[  136.070842][ T7012] [U] 
[  136.072041][ T7012] [U] 
[  136.073495][ T7012] [U] 
[  136.074701][ T7012] [U] 
[  136.075872][ T7012] [U] 
[  136.077063][ T7012] [U] 
[  136.078461][ T7012] [U] 
[  136.079705][ T7012] [U] 
[  136.080884][ T7012] [U] 
[  136.082091][ T7012] [U] 
[  136.084295][ T7012] [U] 
[  136.085489][ T7012] [U] 
[  136.086679][ T7012] [U] 
[  136.088053][ T7012] [U] 
[  136.090080][ T7012] [U] 
[  136.091298][ T7012] [U] 
[  136.092472][ T7012] [U] 
[  136.093695][ T7012] [U] 
[  136.095601][ T7012] [U] 
[  136.096804][ T7012] [U] 
[  136.098016][ T7012] [U] 
[  136.099213][ T7012] [U] 
[  136.100531][ T7012] [U] 
[  136.101827][ T7012] [U] 
[  136.103028][ T7012] [U] 
[  136.104204][ T7012] [U] 
[  136.106279][ T7012] [U] 
[  136.107473][ T7012] [U] 
[  136.108660][ T7012] [U] 
[  136.109843][ T7012] [U] 
[  136.111215][ T7012] [U] 
[  136.112396][ T7012] [U] 
[  136.113629][ T7012] [U] 
[  136.114733][ T7012] [U] 
[  136.117093][ T7012] [U] 
[  136.118330][ T7012] [U] 
[  136.119551][ T7012] [U] 
[  136.120736][ T7012] [U] 
[  136.122536][ T7012] [U] 
[  136.123754][ T7012] [U] 
[  136.124888][ T7012] [U] 
[  136.126057][ T7012] [U] 
[  136.127526][ T7012] [U] 
[  136.128710][ T7012] [U] 
[  136.129888][ T7012] [U] 
[  136.131153][ T7012] [U] 
[  136.151027][ T7012] [U] 
[  136.152172][ T7012] [U] 
[  136.153259][ T7012] [U] 
[  136.154334][ T7012] [U] 
[  136.157591][ T7012] [U] 
[  136.158829][ T7012] [U] 
[  136.159999][ T7012] [U] 
[  136.160493][ T7015] netlink: 12 bytes leftover after parsing attributes in process `syz.0.115'.
[  136.161133][ T7012] [U] 
[  136.167395][ T7012] [U] 
[  136.168702][ T7012] [U] 
[  136.169912][ T7012] [U] 
[  136.171092][ T7012] [U] 
[  136.173321][ T7012] [U] 
[  136.174573][ T7012] [U] 
[  136.175756][ T7012] [U] 
[  136.176929][ T7012] [U] 
[  136.178509][ T7012] [U] 
[  136.179730][ T7012] [U] 
[  136.180944][ T7012] [U] 
[  136.182128][ T7012] [U] 
[  136.184474][ T7012] [U] 
[  136.185679][ T7012] [U] 
[  136.186892][ T7012] [U] 
[  136.188062][ T7012] [U] 
[  136.189471][ T7012] [U] 
[  136.190695][ T7012] [U] 
[  136.191914][ T7012] [U] 
[  136.193120][ T7012] [U] 
[  136.196087][ T7012] [U] 
[  136.196900][ T7013] Illegal XDP return value 2048 on prog  (id 9) dev syz_tun, expect packet loss!
[  136.197285][ T7012] [U] 
[  136.202401][ T7012] [U] 
[  136.203608][ T7012] [U] 
[  136.222132][ T7012] [U] 
[  136.223390][ T7012] [U] 
[  136.224636][ T7012] [U] 
[  136.225862][ T7012] [U] 
[  136.227197][ T7012] [U] 
[  136.228375][ T7012] [U] 
[  136.229556][ T7012] [U] 
[  136.230758][ T7012] [U] 
[  136.233264][ T7012] [U] 
[  136.234409][ T7012] [U] 
[  136.235580][ T7012] [U] 
[  136.236765][ T7012] [U] 
[  136.238316][ T7012] [U] 
[  136.239493][ T7012] [U] 
[  136.240828][ T7012] [U] 
[  136.242014][ T7012] [U] 
[  136.246095][ T7012] [U] 
[  136.247328][ T7012] [U] 
[  136.248512][ T7012] [U] 
[  136.249663][ T7012] [U] 
[  136.251043][ T7012] [U] 
[  136.252247][ T7012] [U] 
[  136.253467][ T7012] [U] 
[  136.254680][ T7012] [U] 
[  136.257685][ T7012] [U] 
[  136.259106][ T7012] [U] 
[  136.260214][ T7012] [U] 
[  136.269867][ T7011] [U] 
[  136.310884][ T7021] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  136.326797][ T7019] 9p: Bad value for 'rfdno'
[  136.494875][ T7030] netlink: 68 bytes leftover after parsing attributes in process `syz.2.121'.
[  137.289486][ T7040] netlink: 20 bytes leftover after parsing attributes in process `syz.1.123'.
[  137.481531][ T6035] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  137.641639][ T6035] usb 5-1: Using ep0 maxpacket: 8
[  137.647347][ T6035] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  137.650921][ T6035] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  137.660475][ T6035] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  137.666969][ T6035] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  137.671093][ T6035] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  137.676799][ T6035] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  137.680747][ T6035] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.788327][ T7048] FAULT_INJECTION: forcing a failure.
[  137.788327][ T7048] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  137.799086][ T7048] CPU: 1 UID: 0 PID: 7048 Comm: syz.3.124 Not tainted syzkaller #0 PREEMPT(full) 
[  137.799125][ T7048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  137.799135][ T7048] Call Trace:
[  137.799142][ T7048]  <TASK>
[  137.799149][ T7048]  dump_stack_lvl+0x100/0x190
[  137.799179][ T7048]  should_fail_ex.cold+0x5/0xa
[  137.799214][ T7048]  _copy_from_iter+0x1f4/0x1690
[  137.799242][ T7048]  ? __asan_memset+0x23/0x50
[  137.799264][ T7048]  ? __pfx__copy_from_iter+0x10/0x10
[  137.799284][ T7048]  ? __pfx___alloc_skb+0x10/0x10
[  137.799316][ T7048]  netlink_sendmsg+0x808/0xda0
[  137.799344][ T7048]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.799371][ T7048]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  137.799404][ T7048]  ____sys_sendmsg+0xa54/0xc30
[  137.799435][ T7048]  ? __pfx_____sys_sendmsg+0x10/0x10
[  137.799459][ T7048]  ? trace_sched_exit_tp+0x13a/0x180
[  137.799490][ T7048]  ___sys_sendmsg+0x190/0x1e0
[  137.799509][ T7048]  ? __pfx____sys_sendmsg+0x10/0x10
[  137.799536][ T7048]  ? __pfx___schedule+0x10/0x10
[  137.799586][ T7048]  __sys_sendmsg+0x170/0x220
[  137.799610][ T7048]  ? __pfx___sys_sendmsg+0x10/0x10
[  137.799640][ T7048]  ? __pfx_ksys_write+0x10/0x10
[  137.799671][ T7048]  __do_fast_syscall_32+0xe3/0x8c0
[  137.799698][ T7048]  do_fast_syscall_32+0x32/0x70
[  137.799726][ T7048]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  137.799748][ T7048] RIP: 0023:0xf7f63f6c
[  137.799763][ T7048] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  137.799779][ T7048] RSP: 002b:00000000f53e450c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  137.799795][ T7048] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000140
[  137.799806][ T7048] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  137.799816][ T7048] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  137.799825][ T7048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  137.799835][ T7048] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  137.799858][ T7048]  </TASK>
[  137.904763][ T6035] usb 5-1: usb_control_msg returned -32
[  137.907886][ T6035] usbtmc 5-1:16.0: can't read capabilities
[  137.995673][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  137.998569][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  138.525166][ T6035] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  138.543203][ T6035] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  138.625277][ T7061] usbtmc 5-1:16.0: INITIATE_ABORT_BULK_OUT returned 66
[  140.260598][ T6035] usb 5-1: USB disconnect, device number 2
[  140.363936][ T7075] program syz.0.130 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  141.376200][ T7082] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  141.880362][ T7087] netlink: 68 bytes leftover after parsing attributes in process `syz.2.134'.
[  141.993011][ T7088] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  142.366452][ T7095] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  142.489795][ T7091] cgroup: fork rejected by pids controller in /syz2
[  143.150939][ T7197] XFS (nullb0): Invalid superblock magic number
[  143.227294][ T7203] FAULT_INJECTION: forcing a failure.
[  143.227294][ T7203] name failslab, interval 1, probability 0, space 0, times 0
[  143.232796][ T7203] CPU: 2 UID: 0 PID: 7203 Comm: syz.3.138 Not tainted syzkaller #0 PREEMPT(full) 
[  143.232818][ T7203] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  143.232827][ T7203] Call Trace:
[  143.232832][ T7203]  <TASK>
[  143.232839][ T7203]  dump_stack_lvl+0x100/0x190
[  143.232867][ T7203]  should_fail_ex.cold+0x5/0xa
[  143.232886][ T7203]  should_failslab+0xc2/0x120
[  143.232910][ T7203]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  143.232931][ T7203]  ? __d_alloc+0x34/0xa80
[  143.232961][ T7203]  __d_alloc+0x34/0xa80
[  143.232983][ T7203]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  143.233001][ T7203]  ? security_inode_alloc+0x3b/0x2c0
[  143.233021][ T7203]  d_alloc_pseudo+0x1c/0xc0
[  143.233039][ T7203]  alloc_file_pseudo+0xcf/0x230
[  143.233057][ T7203]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  143.233072][ T7203]  ? inode_init_always_gfp+0xd0e/0x1040
[  143.233101][ T7203]  sock_alloc_file+0x50/0x210
[  143.233123][ T7203]  do_accept+0x242/0x530
[  143.233138][ T7203]  ? do_raw_spin_lock+0x128/0x260
[  143.233161][ T7203]  ? __pfx_do_accept+0x10/0x10
[  143.233192][ T7203]  io_accept+0x260/0x9f0
[  143.233213][ T7203]  ? __pfx_io_accept+0x10/0x10
[  143.233240][ T7203]  ? __fget_files+0x21f/0x3d0
[  143.233264][ T7203]  __io_issue_sqe+0xe8/0x7a0
[  143.233284][ T7203]  io_issue_sqe+0x85/0x1410
[  143.233309][ T7203]  io_submit_sqes+0xac6/0x2300
[  143.233340][ T7203]  __do_sys_io_uring_enter+0x9c0/0x1a20
[  143.233363][ T7203]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  143.233388][ T7203]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  143.233421][ T7203]  ? fput+0x79/0x100
[  143.233434][ T7203]  ? ksys_write+0x1ac/0x250
[  143.233452][ T7203]  ? __pfx_ksys_write+0x10/0x10
[  143.233475][ T7203]  __do_fast_syscall_32+0xe3/0x8c0
[  143.233496][ T7203]  do_fast_syscall_32+0x32/0x70
[  143.233516][ T7203]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  143.233536][ T7203] RIP: 0023:0xf7f63f6c
[  143.233547][ T7203] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  143.233560][ T7203] RSP: 002b:00000000f540550c EFLAGS: 00000292 ORIG_RAX: 00000000000001aa
[  143.233575][ T7203] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000003516
[  143.233585][ T7203] RDX: 000000000000c2de RSI: 0000000000000008 RDI: 0000000000000000
[  143.233594][ T7203] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  143.233601][ T7203] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  143.233608][ T7203] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  143.233627][ T7203]  </TASK>
[  145.988245][ T7207] mkiss: ax0: crc mode is auto.
[  146.638904][ T7219] XFS (nullb0): Invalid superblock magic number
[  146.872643][ T7237] netlink: 20 bytes leftover after parsing attributes in process `syz.1.146'.
[  147.254796][ T7251] syzkaller0: entered promiscuous mode
[  147.256989][ T7251] syzkaller0: entered allmulticast mode
[  147.451271][ T7254] netlink: 4 bytes leftover after parsing attributes in process `syz.1.152'.
[  147.466331][ T7254] warning: `syz.1.152' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  148.070545][ T7262] netlink: 20 bytes leftover after parsing attributes in process `syz.1.157'.
[  148.075957][ T7262] netlink: 20 bytes leftover after parsing attributes in process `syz.1.157'.
[  148.626421][ T7264] netlink: 20 bytes leftover after parsing attributes in process `syz.1.158'.
[  148.815591][ T7267] FAULT_INJECTION: forcing a failure.
[  148.815591][ T7267] name failslab, interval 1, probability 0, space 0, times 0
[  148.820718][ T7267] CPU: 3 UID: 0 PID: 7267 Comm: syz.1.159 Not tainted syzkaller #0 PREEMPT(full) 
[  148.820740][ T7267] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  148.820749][ T7267] Call Trace:
[  148.820754][ T7267]  <TASK>
[  148.820761][ T7267]  dump_stack_lvl+0x100/0x190
[  148.820788][ T7267]  should_fail_ex.cold+0x5/0xa
[  148.820807][ T7267]  should_failslab+0xc2/0x120
[  148.820830][ T7267]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  148.820849][ T7267]  ? __kernfs_new_node+0xd2/0x960
[  148.820865][ T7267]  ? kstrdup+0xb3/0xe0
[  148.820887][ T7267]  __kernfs_new_node+0xd2/0x960
[  148.820902][ T7267]  ? __kernel_text_address+0xd/0x30
[  148.820926][ T7267]  ? __pfx___kernfs_new_node+0x10/0x10
[  148.820942][ T7267]  ? do_raw_spin_lock+0x128/0x260
[  148.820969][ T7267]  ? find_held_lock+0x2b/0x80
[  148.820990][ T7267]  ? kernfs_root+0xee/0x2a0
[  148.821004][ T7267]  ? kernfs_root+0xee/0x2a0
[  148.821024][ T7267]  kernfs_new_node+0x11b/0x1a0
[  148.821046][ T7267]  kernfs_create_dir_ns+0x4c/0x1a0
[  148.821067][ T7267]  sysfs_create_dir_ns+0x13a/0x2b0
[  148.821083][ T7267]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  148.821105][ T7267]  ? find_held_lock+0x2b/0x80
[  148.821126][ T7267]  ? kobject_add_internal+0x25f/0x930
[  148.821148][ T7267]  ? kobject_add_internal+0x25f/0x930
[  148.821170][ T7267]  ? net_namespace+0x12/0x50
[  148.821190][ T7267]  ? device_namespace+0x76/0xa0
[  148.821210][ T7267]  kobject_add_internal+0x2c8/0x930
[  148.821236][ T7267]  kobject_add+0x16a/0x1e0
[  148.821258][ T7267]  ? __pfx_kobject_add+0x10/0x10
[  148.821284][ T7267]  ? kobject_put+0xb9/0x640
[  148.821305][ T7267]  ? device_add+0xc48/0x1950
[  148.821326][ T7267]  device_add+0x294/0x1950
[  148.821343][ T7267]  ? __pfx_dev_set_name+0x10/0x10
[  148.821362][ T7267]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  148.821407][ T7267]  ? __pfx_device_add+0x10/0x10
[  148.821430][ T7267]  ? lockdep_init_map_type+0x5c/0x250
[  148.821449][ T7267]  ? __init_waitqueue_head+0xca/0x150
[  148.821476][ T7267]  netdev_register_kobject+0x1a9/0x3d0
[  148.821502][ T7267]  register_netdevice+0x12e0/0x2210
[  148.821528][ T7267]  ? __pfx_register_netdevice+0x10/0x10
[  148.821549][ T7267]  ? dev_addr_mod+0x31b/0x500
[  148.821568][ T7267]  macvlan_common_newlink+0xf70/0x18a0
[  148.821596][ T7267]  ? __pfx_macvlan_common_newlink+0x10/0x10
[  148.821620][ T7267]  ? rtnl_create_link+0xa4b/0xf80
[  148.821642][ T7267]  ? __pfx_macvlan_newlink+0x10/0x10
[  148.821663][ T7267]  rtnl_newlink+0x1494/0x2380
[  148.821691][ T7267]  ? __pfx_rtnl_newlink+0x10/0x10
[  148.821710][ T7267]  ? rcu_is_watching+0x12/0xc0
[  148.821731][ T7267]  ? kasan_quarantine_put+0x104/0x240
[  148.821755][ T7267]  ? kfree_skbmem+0x19a/0x210
[  148.821777][ T7267]  ? kmem_cache_free+0x124/0x6a0
[  148.821806][ T7267]  ? find_held_lock+0x2b/0x80
[  148.821837][ T7267]  ? find_held_lock+0x2b/0x80
[  148.821858][ T7267]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  148.821876][ T7267]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  148.821896][ T7267]  ? __pfx_rtnl_newlink+0x10/0x10
[  148.821916][ T7267]  rtnetlink_rcv_msg+0x95e/0xe90
[  148.821938][ T7267]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  148.821964][ T7267]  ? ref_tracker_free+0x37e/0x6c0
[  148.821988][ T7267]  netlink_rcv_skb+0x159/0x420
[  148.822009][ T7267]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  148.822030][ T7267]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  148.822060][ T7267]  ? netlink_deliver_tap+0x1ae/0xcc0
[  148.822085][ T7267]  netlink_unicast+0x5aa/0x870
[  148.822110][ T7267]  ? __pfx_netlink_unicast+0x10/0x10
[  148.822140][ T7267]  netlink_sendmsg+0x8b0/0xda0
[  148.822165][ T7267]  ? __pfx_netlink_sendmsg+0x10/0x10
[  148.822189][ T7267]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  148.822217][ T7267]  ____sys_sendmsg+0xa54/0xc30
[  148.822244][ T7267]  ? __pfx_____sys_sendmsg+0x10/0x10
[  148.822265][ T7267]  ? _parse_integer_limit+0x17f/0x1d0
[  148.822291][ T7267]  ? _kstrtoull+0x13c/0x1f0
[  148.822312][ T7267]  ? __pfx__kstrtoull+0x10/0x10
[  148.822337][ T7267]  ___sys_sendmsg+0x190/0x1e0
[  148.822382][ T7267]  ? __pfx____sys_sendmsg+0x10/0x10
[  148.822409][ T7267]  ? __lock_acquire+0x4a5/0x2630
[  148.822446][ T7267]  ? find_held_lock+0x2b/0x80
[  148.822485][ T7267]  __sys_sendmmsg+0x2ff/0x430
[  148.822507][ T7267]  ? __pfx___sys_sendmmsg+0x10/0x10
[  148.822534][ T7267]  ? __fget_files+0x215/0x3d0
[  148.822567][ T7267]  ? fput+0x79/0x100
[  148.822581][ T7267]  ? ksys_write+0x1ac/0x250
[  148.822601][ T7267]  ? __pfx_ksys_write+0x10/0x10
[  148.822624][ T7267]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  148.822644][ T7267]  ? lockdep_hardirqs_on+0x78/0x100
[  148.822664][ T7267]  __do_fast_syscall_32+0xe3/0x8c0
[  148.822689][ T7267]  do_fast_syscall_32+0x32/0x70
[  148.822709][ T7267]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  148.822729][ T7267] RIP: 0023:0xf706ef6c
[  148.822744][ T7267] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  148.822758][ T7267] RSP: 002b:00000000f545d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  148.822774][ T7267] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000800002c0
[  148.822783][ T7267] RDX: 000000000000009f RSI: 0000000000000000 RDI: 0000000000000000
[  148.822792][ T7267] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  148.822800][ T7267] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  148.822810][ T7267] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  148.822832][ T7267]  </TASK>
[  149.036965][ T7267] kobject: kobject_add_internal failed for macvlan2 (error: -12 parent: net)
[  149.527162][ T7281] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  149.529884][ T7281] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  149.543760][ T7281] vhci_hcd vhci_hcd.0: Device attached
[  149.552144][ T7284] netlink: 'syz.2.162': attribute type 1 has an invalid length.
[  149.587679][ T7281] ieee802154 phy0 wpan0: encryption failed: -22
[  149.618776][ T7284] 8021q: adding VLAN 0 to HW filter on device bond1
[  149.643932][ T7290] netlink: 6032 bytes leftover after parsing attributes in process `syz.1.164'.
[  149.708445][ T7292] overlayfs: failed to resolve './file1': -2
[  149.853381][   T39] usb 38-1: SetAddress Request (2) to port 0
[  149.871468][   T39] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  149.905772][ T7286] bond1: (slave veth3): Enslaving as an active interface with a down link
[  150.230770][ T7305] netlink: 68 bytes leftover after parsing attributes in process `syz.3.171'.
[  151.033722][ T7282] vhci_hcd: connection reset by peer
[  151.036984][ T1151] vhci_hcd vhci_hcd.0: stop threads
[  151.039252][ T1151] vhci_hcd vhci_hcd.0: release socket
[  151.041649][ T1151] vhci_hcd vhci_hcd.0: disconnect device
[  152.221646][ T6035] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  152.316545][ T7324] wg1: entered promiscuous mode
[  152.318670][ T7324] wg1: entered allmulticast mode
[  152.406818][ T6035] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.412365][ T6035] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  152.418968][ T6035] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.425111][ T6035] usb 5-1: config 0 descriptor??
[  152.432871][ T7325] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  152.436070][ T7325] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  152.440380][ T7325] vhci_hcd vhci_hcd.0: Device attached
[  152.566034][ T7335] =======================================================
[  152.566034][ T7335] WARNING: The mand mount option has been deprecated and
[  152.566034][ T7335]          and is ignored by this kernel. Remove the mand
[  152.566034][ T7335]          option from the mount to silence this warning.
[  152.566034][ T7335] =======================================================
[  152.582285][ T1022] kernel write not supported for file /uinput (pid: 1022 comm: kworker/3:2)
[  152.668676][ T6035] usbhid 5-1:0.0: can't add hid device: -71
[  152.671212][ T6035] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  152.678829][ T6035] usb 5-1: USB disconnect, device number 3
[  152.711648][   T34] usb 40-1: SetAddress Request (2) to port 0
[  152.714361][   T34] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[  152.718902][ T7328] vhci_hcd: connection closed
[  152.723142][ T1151] vhci_hcd vhci_hcd.1: stop threads
[  152.728437][ T1151] vhci_hcd vhci_hcd.1: release socket
[  152.732204][ T1151] vhci_hcd vhci_hcd.1: disconnect device
[  153.122306][ T1022] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  153.271733][ T1022] usb 5-1: Using ep0 maxpacket: 32
[  153.276241][ T1022] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.280291][ T1022] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  153.288011][ T1022] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.300488][ T1022] usb 5-1: config 0 descriptor??
[  153.305894][ T1022] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  153.311278][ T1022] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  153.378278][ T7358] netlink: 16 bytes leftover after parsing attributes in process `syz.3.187'.
[  154.362656][ T7374] netlink: 8 bytes leftover after parsing attributes in process `syz.2.191'.
[  155.565653][ T7381] kthread_run failed with err -4
[  155.706990][   T39] usb 38-1: device descriptor read/8, error -110
[  155.755215][    T9] usb 5-1: USB disconnect, device number 4
[  155.773549][    T9] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  155.808060][ T7387] netlink: 156 bytes leftover after parsing attributes in process `syz.2.193'.
[  155.813518][ T7387] netlink: 220 bytes leftover after parsing attributes in process `syz.2.193'.
[  156.239027][   T39] usb usb38-port1: attempt power cycle
[  156.674649][ T7409] cgroup: release_agent respecified
[  156.802389][   T39] usb usb38-port1: unable to enumerate USB device
[  157.741640][   T34] usb 40-1: device descriptor read/8, error -110
[  158.132260][   T34] usb usb40-port1: attempt power cycle
[  158.692519][   T34] usb usb40-port1: unable to enumerate USB device
[  159.471977][ T7420] capability: warning: `syz.2.204' uses 32-bit capabilities (legacy support in use)
[  159.911653][ T7433] netlink: 88 bytes leftover after parsing attributes in process `syz.1.205'.
[  160.729377][ T7441] tls_set_device_offload_rx: netdev not found
[  160.828976][ T7446] ptrace attach of "/syz-executor exec"[5955] was attempted by "/syz-executor exec"[7446]
[  161.311619][ T7454] netlink: 4 bytes leftover after parsing attributes in process `syz.2.216'.
[  161.808784][ T7469] netlink: 24 bytes leftover after parsing attributes in process `syz.2.220'.
[  161.990743][ T7475] netlink: 68 bytes leftover after parsing attributes in process `syz.2.223'.
[  162.721478][ T7513] syzkaller0: entered promiscuous mode
[  162.724003][ T7513] syzkaller0: entered allmulticast mode
[  162.908155][   T40] kauditd_printk_skb: 66 callbacks suppressed
[  162.908172][   T40] audit: type=1326 audit(1771144384.626:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.3.227" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f63f6c code=0x0
[  163.459489][ T7530] netlink: 'syz.1.232': attribute type 1 has an invalid length.
[  163.489774][ T7530] 8021q: adding VLAN 0 to HW filter on device bond1
[  163.539350][ T7530] 8021q: adding VLAN 0 to HW filter on device bond1
[  163.542746][ T7530] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  163.547875][ T7530] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  163.575139][ T7534] gretap1: entered promiscuous mode
[  163.581075][ T7534] bond1: (slave gretap1): making interface the new active one
[  163.590451][ T7534] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  163.706894][ T7536] netlink: 8 bytes leftover after parsing attributes in process `syz.0.242'.
[  165.113838][ T7551] bond2: option arp_interval: invalid value (18446744073709551615)
[  165.118497][ T7551] bond2: option arp_interval: allowed values 0 - 2147483647
[  165.125541][ T7551] bond2 (unregistering): Released all slaves
[  165.593498][ T7551] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.599095][ T7551] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.962101][ T7575] netlink: 'syz.3.244': attribute type 10 has an invalid length.
[  165.965991][ T7574] netlink: 'syz.3.244': attribute type 10 has an invalid length.
[  166.040620][ T7551] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  166.092676][ T7551] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  166.323220][ T7578] FAULT_INJECTION: forcing a failure.
[  166.323220][ T7578] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.328769][ T7578] CPU: 2 UID: 0 PID: 7578 Comm: syz.2.245 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  166.328794][ T7578] Tainted: [L]=SOFTLOCKUP
[  166.328799][ T7578] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  166.328807][ T7578] Call Trace:
[  166.328812][ T7578]  <TASK>
[  166.328819][ T7578]  dump_stack_lvl+0x100/0x190
[  166.328844][ T7578]  should_fail_ex.cold+0x5/0xa
[  166.328863][ T7578]  _copy_from_user+0x2e/0xd0
[  166.328881][ T7578]  snd_ctl_ioctl+0x15e/0x1330
[  166.328903][ T7578]  ? __pfx_snd_ctl_ioctl+0x10/0x10
[  166.328923][ T7578]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  166.328946][ T7578]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  166.328968][ T7578]  ? do_vfs_ioctl+0x226/0x13e0
[  166.328985][ T7578]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  166.329006][ T7578]  snd_ctl_ioctl_compat+0x59e/0xc70
[  166.329028][ T7578]  ? __pfx_snd_ctl_ioctl_compat+0x10/0x10
[  166.329048][ T7578]  ? find_held_lock+0x2b/0x80
[  166.329070][ T7578]  ? hook_file_ioctl_common+0x146/0x410
[  166.329092][ T7578]  ? __fget_files+0x21f/0x3d0
[  166.329118][ T7578]  ? __pfx_snd_ctl_ioctl_compat+0x10/0x10
[  166.329139][ T7578]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  166.329160][ T7578]  __do_fast_syscall_32+0xe3/0x8c0
[  166.329184][ T7578]  do_fast_syscall_32+0x32/0x70
[  166.329205][ T7578]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  166.329223][ T7578] RIP: 0023:0xf6ffef6c
[  166.329236][ T7578] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  166.329249][ T7578] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  166.329273][ T7578] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040405515
[  166.329282][ T7578] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  166.329290][ T7578] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  166.329298][ T7578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  166.329305][ T7578] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  166.329324][ T7578]  </TASK>
[  166.728294][ T7575] 8021q: adding VLAN 0 to HW filter on device bond0
[  166.734463][ T7575] team0: Port device bond0 added
[  166.751516][   T97] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  166.756227][   T97] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  166.768886][   T97] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  166.785362][   T97] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  167.428680][ T7604] netlink: 'syz.3.253': attribute type 1 has an invalid length.
[  167.457027][ T7604] 8021q: adding VLAN 0 to HW filter on device bond1
[  167.481101][ T7604] bond1: (slave gretap1): making interface the new active one
[  167.485845][ T7604] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  168.516919][ T7591] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  168.688088][ T7623] netlink: 'syz.3.258': attribute type 2 has an invalid length.
[  169.006716][ T7632] netlink: 20 bytes leftover after parsing attributes in process `syz.3.262'.
[  169.032830][ T7634] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  169.035829][ T7634] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  169.048925][ T7634] vhci_hcd vhci_hcd.0: Device attached
[  169.242143][ T6035] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  169.312274][ T6035] usb 37-1: new full-speed USB device number 3 using vhci_hcd
[  169.871628][ T7635] vhci_hcd: connection reset by peer
[  169.877062][  T155] vhci_hcd vhci_hcd.0: stop threads
[  169.879090][  T155] vhci_hcd vhci_hcd.0: release socket
[  169.881155][  T155] vhci_hcd vhci_hcd.0: disconnect device
[  171.078871][ T7668] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.087653][ T7668] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.097896][ T7668] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.100518][ T7668] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.283878][ T7670] can0: slcan on ptm0.
[  172.131715][ T7664] can0 (unregistered): slcan off ptm0.
[  173.310647][ T7712] mkiss: ax0: crc mode is auto.
[  173.630683][ T7719] netlink: 'syz.3.279': attribute type 13 has an invalid length.
[  174.451639][ T6035] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  175.202316][ T7736] netlink: 32 bytes leftover after parsing attributes in process `syz.3.284'.
[  176.366126][ T7743] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  176.392967][ T7745] bridge0: port 3(netdevsim0) entered blocking state
[  176.395419][ T7745] bridge0: port 3(netdevsim0) entered disabled state
[  176.398496][ T7745] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  176.404530][ T7745] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  176.409077][ T7745] bridge0: port 3(netdevsim0) entered blocking state
[  176.412491][ T7745] bridge0: port 3(netdevsim0) entered forwarding state
[  176.555185][ T7752] netlink: 'syz.0.288': attribute type 4 has an invalid length.
[  176.557551][ T7752] netlink: 'syz.0.288': attribute type 1 has an invalid length.
[  176.560461][ T7752] netlink: 228 bytes leftover after parsing attributes in process `syz.0.288'.
[  176.629391][ T7757] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  176.798248][   T10] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  176.983639][   T10] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  176.987891][   T10] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[  176.993608][   T10] usb 8-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  176.997458][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.007712][   T10] usb 8-1: config 0 descriptor??
[  177.016688][   T10] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  177.020171][   T10] dvb-usb: bulk message failed: -22 (3/0)
[  177.052208][   T10] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  177.062832][   T10] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  177.067669][   T10] usb 8-1: media controller created
[  177.076496][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  177.101234][   T10] dvb-usb: bulk message failed: -22 (6/0)
[  177.110140][   T10] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  177.128265][   T10] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb8/8-1/input/input10
[  177.144119][   T10] dvb-usb: schedule remote query interval to 150 msecs.
[  177.150292][   T10] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  177.215381][ T7749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.218787][ T7749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.237504][   T10] usb 8-1: USB disconnect, device number 2
[  177.288816][   T10] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  177.894301][ T7782] FAULT_INJECTION: forcing a failure.
[  177.894301][ T7782] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  177.900539][ T7782] CPU: 1 UID: 0 PID: 7782 Comm: syz.3.295 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  177.900675][ T7782] Tainted: [L]=SOFTLOCKUP
[  177.900682][ T7782] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  177.900690][ T7782] Call Trace:
[  177.900696][ T7782]  <TASK>
[  177.900702][ T7782]  dump_stack_lvl+0x100/0x190
[  177.900733][ T7782]  should_fail_ex.cold+0x5/0xa
[  177.900751][ T7782]  ? prepare_alloc_pages+0x16d/0x5f0
[  177.900780][ T7782]  should_fail_alloc_page+0xeb/0x140
[  177.900806][ T7782]  prepare_alloc_pages+0x1f0/0x5f0
[  177.900834][ T7782]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  177.900859][ T7782]  ? stack_trace_save+0x8e/0xc0
[  177.900882][ T7782]  ? __pfx_stack_trace_save+0x10/0x10
[  177.900905][ T7782]  ? stack_depot_save_flags+0x27/0x9d0
[  177.900924][ T7782]  ? is_bpf_text_address+0x8a/0x1a0
[  177.900945][ T7782]  ? is_bpf_text_address+0x8a/0x1a0
[  177.900967][ T7782]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  177.900988][ T7782]  ? kasan_save_stack+0x3f/0x50
[  177.901007][ T7782]  ? kasan_save_track+0x14/0x30
[  177.901026][ T7782]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  177.901046][ T7782]  ? alloc_vmap_area+0x640/0x2bd0
[  177.901067][ T7782]  ? __get_vm_area_node+0x1ca/0x330
[  177.901091][ T7782]  ? __vmalloc_node_range_noprof+0x213/0x1530
[  177.901106][ T7782]  ? __vmalloc_node_noprof+0xad/0xf0
[  177.901121][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  177.901146][ T7782]  ? translate_compat_table+0x20b/0x1750
[  177.901161][ T7782]  ? compat_do_replace+0x279/0x500
[  177.901184][ T7782]  ? do_ipt_set_ctl+0x562/0xaf0
[  177.901202][ T7782]  ? __ia32_sys_setsockopt+0xbc/0x160
[  177.901224][ T7782]  ? __do_fast_syscall_32+0xe3/0x8c0
[  177.901247][ T7782]  ? do_fast_syscall_32+0x32/0x70
[  177.901270][ T7782]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  177.901293][ T7782]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  177.901318][ T7782]  ? policy_nodemask+0xed/0x4f0
[  177.901342][ T7782]  alloc_pages_mpol+0x1fb/0x550
[  177.901384][ T7782]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  177.901416][ T7782]  alloc_pages_noprof+0x131/0x390
[  177.901442][ T7782]  get_free_pages_noprof+0x10/0xb0
[  177.901465][ T7782]  __kasan_populate_vmalloc+0xa0/0x210
[  177.901491][ T7782]  alloc_vmap_area+0x95d/0x2bd0
[  177.901526][ T7782]  ? __pfx_alloc_vmap_area+0x10/0x10
[  177.901557][ T7782]  __get_vm_area_node+0x1ca/0x330
[  177.901587][ T7782]  __vmalloc_node_range_noprof+0x213/0x1530
[  177.901605][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  177.901635][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  177.901660][ T7782]  ? __mutex_lock+0x26a/0x1b90
[  177.901684][ T7782]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  177.901704][ T7782]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  177.901724][ T7782]  ? __pfx___mutex_lock+0x10/0x10
[  177.901743][ T7782]  ? __kvmalloc_node_noprof+0x360/0xa00
[  177.901763][ T7782]  ? xt_alloc_table_info+0x44/0xa0
[  177.901785][ T7782]  ? compat_do_replace+0x19b/0x500
[  177.901800][ T7782]  ? nf_setsockopt+0x8d/0xf0
[  177.901822][ T7782]  ? ip_setsockopt+0xcb/0xf0
[  177.901835][ T7782]  ? udp_setsockopt+0x7d/0xd0
[  177.901857][ T7782]  ? __ia32_sys_setsockopt+0xbc/0x160
[  177.901878][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  177.901901][ T7782]  __vmalloc_node_noprof+0xad/0xf0
[  177.901918][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  177.901944][ T7782]  xt_compat_init_offsets+0xe6/0x1f0
[  177.902078][ T7782]  translate_compat_table+0x20b/0x1750
[  177.902119][ T7782]  ? __lock_acquire+0x4a5/0x2630
[  177.902146][ T7782]  ? __pfx_translate_compat_table+0x10/0x10
[  177.902184][ T7782]  compat_do_replace+0x279/0x500
[  177.902203][ T7782]  ? __pfx_compat_do_replace+0x10/0x10
[  177.902224][ T7782]  ? lock_acquire+0x1cf/0x380
[  177.902250][ T7782]  ? bpf_lsm_capable+0x9/0x10
[  177.902275][ T7782]  ? security_capable+0x80/0x260
[  177.902304][ T7782]  do_ipt_set_ctl+0x562/0xaf0
[  177.902319][ T7782]  ? nf_sockopt_find.isra.0+0x222/0x290
[  177.902347][ T7782]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  177.902364][ T7782]  ? sockopt_release_sock+0x57/0x70
[  177.902382][ T7782]  ? __local_bh_enable_ip+0x9e/0x120
[  177.902399][ T7782]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  177.902434][ T7782]  ? nf_sockopt_find.isra.0+0x222/0x290
[  177.902460][ T7782]  nf_setsockopt+0x8d/0xf0
[  177.902486][ T7782]  ip_setsockopt+0xcb/0xf0
[  177.902503][ T7782]  udp_setsockopt+0x7d/0xd0
[  177.902525][ T7782]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  177.902551][ T7782]  do_sock_setsockopt+0xf3/0x1d0
[  177.902578][ T7782]  __sys_setsockopt+0x119/0x190
[  177.902602][ T7782]  __ia32_sys_setsockopt+0xbc/0x160
[  177.902619][ T7782]  ? __do_fast_syscall_32+0x94/0x8c0
[  177.902640][ T7782]  ? lockdep_hardirqs_on+0x78/0x100
[  177.902661][ T7782]  __do_fast_syscall_32+0xe3/0x8c0
[  177.902685][ T7782]  do_fast_syscall_32+0x32/0x70
[  177.902707][ T7782]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  177.902727][ T7782] RIP: 0023:0xf7f63f6c
[  177.902744][ T7782] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  177.902757][ T7782] RSP: 002b:00000000f542650c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  177.902774][ T7782] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  177.902784][ T7782] RDX: 0000000000000040 RSI: 0000000080000540 RDI: 000000000000031c
[  177.902794][ T7782] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  177.902802][ T7782] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  177.902811][ T7782] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  177.902833][ T7782]  </TASK>
[  178.150964][ T7782] syz.3.295: vmalloc error: size 24, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  178.159780][ T7782] CPU: 1 UID: 0 PID: 7782 Comm: syz.3.295 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  178.159806][ T7782] Tainted: [L]=SOFTLOCKUP
[  178.159812][ T7782] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  178.159822][ T7782] Call Trace:
[  178.159827][ T7782]  <TASK>
[  178.159833][ T7782]  dump_stack_lvl+0x100/0x190
[  178.159862][ T7782]  warn_alloc.cold+0x95/0x1c1
[  178.159891][ T7782]  ? __pfx_warn_alloc+0x10/0x10
[  178.159911][ T7782]  ? lockdep_hardirqs_on+0x78/0x100
[  178.159937][ T7782]  ? __get_vm_area_node+0x2c5/0x330
[  178.159965][ T7782]  ? __get_vm_area_node+0x208/0x330
[  178.159996][ T7782]  __vmalloc_node_range_noprof+0xbf4/0x1530
[  178.160021][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  178.160048][ T7782]  ? __mutex_lock+0x26a/0x1b90
[  178.160072][ T7782]  ? tomoyo_check_open_permission+0x1db/0x3c0
[  178.160092][ T7782]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  178.160111][ T7782]  ? __pfx___mutex_lock+0x10/0x10
[  178.160132][ T7782]  ? __kvmalloc_node_noprof+0x360/0xa00
[  178.160153][ T7782]  ? xt_alloc_table_info+0x44/0xa0
[  178.160182][ T7782]  ? compat_do_replace+0x19b/0x500
[  178.160199][ T7782]  ? nf_setsockopt+0x8d/0xf0
[  178.160220][ T7782]  ? ip_setsockopt+0xcb/0xf0
[  178.160234][ T7782]  ? udp_setsockopt+0x7d/0xd0
[  178.160257][ T7782]  ? __ia32_sys_setsockopt+0xbc/0x160
[  178.160390][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  178.160415][ T7782]  __vmalloc_node_noprof+0xad/0xf0
[  178.160431][ T7782]  ? xt_compat_init_offsets+0xe6/0x1f0
[  178.160459][ T7782]  xt_compat_init_offsets+0xe6/0x1f0
[  178.160485][ T7782]  translate_compat_table+0x20b/0x1750
[  178.160502][ T7782]  ? __lock_acquire+0x4a5/0x2630
[  178.160529][ T7782]  ? __pfx_translate_compat_table+0x10/0x10
[  178.160564][ T7782]  compat_do_replace+0x279/0x500
[  178.160598][ T7782]  ? __pfx_compat_do_replace+0x10/0x10
[  178.160620][ T7782]  ? lock_acquire+0x1cf/0x380
[  178.160644][ T7782]  ? bpf_lsm_capable+0x9/0x10
[  178.160669][ T7782]  ? security_capable+0x80/0x260
[  178.160698][ T7782]  do_ipt_set_ctl+0x562/0xaf0
[  178.160713][ T7782]  ? nf_sockopt_find.isra.0+0x222/0x290
[  178.160741][ T7782]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  178.160756][ T7782]  ? sockopt_release_sock+0x57/0x70
[  178.160775][ T7782]  ? __local_bh_enable_ip+0x9e/0x120
[  178.160793][ T7782]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  178.160828][ T7782]  ? nf_sockopt_find.isra.0+0x222/0x290
[  178.160856][ T7782]  nf_setsockopt+0x8d/0xf0
[  178.160880][ T7782]  ip_setsockopt+0xcb/0xf0
[  178.160899][ T7782]  udp_setsockopt+0x7d/0xd0
[  178.160922][ T7782]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  178.160949][ T7782]  do_sock_setsockopt+0xf3/0x1d0
[  178.160976][ T7782]  __sys_setsockopt+0x119/0x190
[  178.160999][ T7782]  __ia32_sys_setsockopt+0xbc/0x160
[  178.161018][ T7782]  ? __do_fast_syscall_32+0x94/0x8c0
[  178.161041][ T7782]  ? lockdep_hardirqs_on+0x78/0x100
[  178.161061][ T7782]  __do_fast_syscall_32+0xe3/0x8c0
[  178.161086][ T7782]  do_fast_syscall_32+0x32/0x70
[  178.161108][ T7782]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.161127][ T7782] RIP: 0023:0xf7f63f6c
[  178.161141][ T7782] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  178.161157][ T7782] RSP: 002b:00000000f542650c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  178.161178][ T7782] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  178.161188][ T7782] RDX: 0000000000000040 RSI: 0000000080000540 RDI: 000000000000031c
[  178.161198][ T7782] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.161207][ T7782] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  178.161216][ T7782] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.161240][ T7782]  </TASK>
[  178.171543][ T7782] Mem-Info:
[  178.320744][ T7782] active_anon:7147 inactive_anon:19 isolated_anon:0
[  178.320744][ T7782]  active_file:15468 inactive_file:35874 isolated_file:0
[  178.320744][ T7782]  unevictable:1768 dirty:330 writeback:0
[  178.320744][ T7782]  slab_reclaimable:10249 slab_unreclaimable:53647
[  178.320744][ T7782]  mapped:23965 shmem:3411 pagetables:1124
[  178.320744][ T7782]  sec_pagetables:308 bounce:0
[  178.320744][ T7782]  kernel_misc_reclaimable:0
[  178.320744][ T7782]  free:24575 free_pcp:20533 free_cma:0
[  178.339413][ T7782] Node 0 active_anon:60kB inactive_anon:0kB active_file:392kB inactive_file:16kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:276kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8096kB pagetables:1496kB sec_pagetables:1132kB all_unreclaimable? yes Balloon:0kB
[  178.360280][ T7782] Node 1 active_anon:28528kB inactive_anon:76kB active_file:61480kB inactive_file:143480kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:95584kB dirty:1316kB writeback:0kB shmem:10108kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4928kB pagetables:3000kB sec_pagetables:100kB all_unreclaimable? no Balloon:0kB
[  178.371811][ T7782] Node 0 DMA free:1884kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:372kB local_pcp:64kB free_cma:0kB
[  178.383947][ T7782] lowmem_reserve[]: 0 285 285 285 285
[  178.385703][ T7782] Node 0 DMA32 free:16780kB boost:2048kB min:15124kB low:18392kB high:21660kB reserved_highatomic:0KB free_highatomic:0KB active_anon:60kB inactive_anon:0kB active_file:392kB inactive_file:16kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:292808kB mlocked:0kB bounce:0kB free_pcp:11020kB local_pcp:1528kB free_cma:0kB
[  178.396529][ T7782] lowmem_reserve[]: 0 0 0 0 0
[  178.398557][ T7782] Node 1 DMA32 free:78856kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28528kB inactive_anon:76kB active_file:61480kB inactive_file:143480kB unevictable:3536kB writepending:1316kB zspages:2392kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:67320kB local_pcp:22108kB free_cma:0kB
[  178.412219][ T7782] lowmem_reserve[]: 0 0 0 0 0
[  178.414012][ T7782] Node 0 DMA: 3*4kB (UM) 4*8kB (UM) 3*16kB (M) 8*32kB (UM) 2*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1884kB
[  178.419162][ T7782] Node 0 DMA32: 169*4kB (UME) 113*8kB (UME) 104*16kB (UME) 69*32kB (UME) 57*64kB (UME) 30*128kB (UME) 7*256kB (M) 4*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 16780kB
[  178.426338][ T7782] Node 1 DMA32: 20*4kB (ME) 6*8kB (UME) 48*16kB (ME) 24*32kB (UME) 108*64kB (UME) 20*128kB (UE) 7*256kB (UME) 7*512kB (UME) 13*1024kB (UM) 15*2048kB (UM) 4*4096kB (UM) = 76928kB
[  178.433452][ T7782] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  178.437371][ T7782] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  178.441195][ T7782] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  178.445575][ T7782] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  178.449475][ T7782] 55415 total pagecache pages
[  178.451710][ T7782] 666 pages in swap cache
[  178.453606][ T7782] Free swap  = 119480kB
[  178.455352][ T7782] Total swap = 124996kB
[  178.458908][ T7782] 524155 pages RAM
[  178.460404][ T7782] 0 pages HighMem/MovableOnly
[  178.463014][ T7782] 210060 pages reserved
[  178.465187][ T7782] 0 pages cma reserved
[  178.628921][   T40] audit: type=1326 audit(1771144400.346:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.296" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63f6c code=0x7fc00000
[  179.120139][ T7780] kexec: Could not allocate control_code_buffer
[  179.202578][ T7799] netlink: 'syz.0.301': attribute type 1 has an invalid length.
[  179.215858][ T7799] bond2: entered promiscuous mode
[  179.218042][ T7799] bond2: entered allmulticast mode
[  179.220310][ T7799] 8021q: adding VLAN 0 to HW filter on device bond2
[  179.360961][ T7806] bond0: entered promiscuous mode
[  179.364187][ T7806] bond_slave_0: entered promiscuous mode
[  179.366819][ T7806] bond_slave_1: entered promiscuous mode
[  179.371453][ T7806] bond0: left promiscuous mode
[  179.375242][ T7806] bond_slave_0: left promiscuous mode
[  179.377710][ T7806] bond_slave_1: left promiscuous mode
[  179.724862][   T40] audit: type=1326 audit(1771144401.446:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.296" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f63f6c code=0x7fc00000
[  180.081517][ T4154] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  180.243580][ T4154] usb 8-1: config 0 has no interfaces?
[  180.246983][ T4154] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  180.250729][ T4154] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.266991][ T4154] usb 8-1: config 0 descriptor??
[  180.976811][ T7835] netlink: 'syz.0.310': attribute type 1 has an invalid length.
[  180.997378][ T7835] 8021q: adding VLAN 0 to HW filter on device bond3
[  181.040060][ T7835] bond3: (slave gretap1): making interface the new active one
[  181.041961][ T4154] usb 8-1: USB disconnect, device number 3
[  181.044533][ T7835] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  181.151837][ T7840] netlink: 24 bytes leftover after parsing attributes in process `syz.0.312'.
[  181.205995][ T7840] netlink: 4 bytes leftover after parsing attributes in process `syz.0.312'.
[  181.505495][ T7845] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  181.511902][ T7845] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  181.516087][ T7845] vhci_hcd vhci_hcd.0: Device attached
[  181.590116][ T4154] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  181.801681][ T4154] usb 6-1: Using ep0 maxpacket: 8
[  181.806506][ T4154] usb 6-1: config 0 interface 0 has no altsetting 0
[  181.809653][ T4154] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  181.815491][ T6035] usb 38-1: SetAddress Request (6) to port 0
[  181.820879][ T6035] usb 38-1: new SuperSpeed USB device number 6 using vhci_hcd
[  181.822232][ T4154] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.873423][ T4154] usb 6-1: config 0 descriptor??
[  182.010561][ T7846] vhci_hcd: connection reset by peer
[  182.014215][  T155] vhci_hcd vhci_hcd.0: stop threads
[  182.016209][  T155] vhci_hcd vhci_hcd.0: release socket
[  182.018654][  T155] vhci_hcd vhci_hcd.0: disconnect device
[  184.455139][ T4154] mcp2221 0003:04D8:00DD.0003: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  184.470728][ T7874] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  184.838835][ T7878] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  184.868608][ T4154] usb 6-1: USB disconnect, device number 2
[  185.092382][ T7885] netlink: 68 bytes leftover after parsing attributes in process `syz.1.322'.
[  185.278728][ T7895] netlink: 16 bytes leftover after parsing attributes in process `syz.2.321'.
[  185.298281][ T6373] libceph: connect (1)[c::]:6789 error -101
[  185.304076][ T6373] libceph: mon0 (1)[c::]:6789 connect error
[  185.563315][ T6373] libceph: connect (1)[c::]:6789 error -101
[  185.566331][ T6373] libceph: mon0 (1)[c::]:6789 connect error
[  185.738161][ T7889] ceph: No mds server is up or the cluster is laggy
[  185.897540][ T7914] overlay: Unknown parameter '\'
[  186.310890][ T7928] netlink: 68 bytes leftover after parsing attributes in process `syz.0.330'.
[  186.942593][ T6035] usb 38-1: device descriptor read/8, error -110
[  187.356356][ T6035] usb usb38-port1: attempt power cycle
[  188.130647][ T6035] usb usb38-port1: unable to enumerate USB device
[  188.205759][ T7956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.336'.
[  188.934082][ T7981] netlink: 4 bytes leftover after parsing attributes in process `syz.1.344'.
[  188.943163][ T7981] netlink: 72 bytes leftover after parsing attributes in process `syz.1.344'.
[  189.033314][ T7985] syzkaller0: entered promiscuous mode
[  189.035754][ T7985] syzkaller0: entered allmulticast mode
[  189.326560][ T7991] syz.2.346: attempt to access beyond end of device
[  189.326560][ T7991] sr0: rw=6144, sector=128, nr_sectors = 8 limit=128
[  189.332572][ T7991] gfs2: error -5 reading superblock
[  189.708670][ T8000] netlink: 'syz.1.350': attribute type 11 has an invalid length.
[  189.716959][ T8000] netlink: 71 bytes leftover after parsing attributes in process `syz.1.350'.
[  190.219541][ T8007] binder: 8006:8007 ioctl c0306201 80000680 returned -14
[  190.461537][ T4154] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  190.621571][ T4154] usb 8-1: Using ep0 maxpacket: 16
[  190.626432][ T4154] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.632329][ T4154] usb 8-1: config 0 interface 0 has no altsetting 0
[  190.638415][ T4154] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  190.644969][ T4154] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.654312][ T4154] usb 8-1: config 0 descriptor??
[  191.424469][ T8038] netlink: 'syz.2.364': attribute type 1 has an invalid length.
[  191.529137][ T8038] netlink: 28 bytes leftover after parsing attributes in process `syz.2.364'.
[  191.534164][ T8038] 8021q: adding VLAN 0 to HW filter on device bond2
[  191.550322][ T8038] 8021q: adding VLAN 0 to HW filter on device bond2
[  191.557555][ T8038] bond2: (slave geneve2): making interface the new active one
[  191.562327][ T8038] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  192.102278][   T46] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20004 - 0
[  192.166171][   T46] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20004 - 0
[  192.186772][   T46] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20004 - 0
[  192.196520][   T46] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20004 - 0
[  192.444387][ T4154] usbhid 8-1:0.0: can't add hid device: -71
[  192.447129][ T4154] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  192.452252][ T4154] usb 8-1: USB disconnect, device number 4
[  193.394089][ T8064] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  193.396760][ T8064] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  193.400197][ T8064] vhci_hcd vhci_hcd.0: Device attached
[  193.582235][   T34] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  193.663274][   T34] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  193.805219][ T8072] binder: 8071:8072 ioctl c0306201 800003c0 returned -14
[  193.916488][ T8082] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  194.145504][ T8088] 9p: Bad value for 'rfdno'
[  194.421650][ T8065] vhci_hcd: connection reset by peer
[  194.431908][   T46] vhci_hcd vhci_hcd.2: stop threads
[  194.434375][   T46] vhci_hcd vhci_hcd.2: release socket
[  194.481932][   T46] vhci_hcd vhci_hcd.2: disconnect device
[  194.528372][ T8092] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  194.532425][ T8092] overlayfs: failed to set xattr on upper
[  194.534722][ T8092] overlayfs: ...falling back to redirect_dir=nofollow.
[  194.536719][ T8092] overlayfs: ...falling back to index=off.
[  194.538929][ T8092] overlayfs: ...falling back to uuid=null.
[  194.541115][ T8092] overlayfs: maximum fs stacking depth exceeded
[  196.175372][   T40] audit: type=1326 audit(1771144417.896:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8093 comm="syz.2.377" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffef6c code=0x0
[  196.699385][ T8103] Invalid source name
[  196.815921][ T8096] syz.2.377 (8096) used greatest stack depth: 17624 bytes left
[  196.857653][ T8105] syzkaller0: entered promiscuous mode
[  196.859927][ T8105] syzkaller0: entered allmulticast mode
[  198.098939][ T8125] netlink: 'syz.2.387': attribute type 1 has an invalid length.
[  198.454124][ T8130] openvswitch: netlink: Duplicate or invalid key (type 0).
[  198.457259][ T8130] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  198.482528][ T8130] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[  198.485467][ T8130] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  198.491492][ T8130] vhci_hcd vhci_hcd.0: Device attached
[  198.848737][   T34] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  198.861558][   T24] usb 40-1: SetAddress Request (6) to port 0
[  198.864389][   T24] usb 40-1: new SuperSpeed USB device number 6 using vhci_hcd
[  199.001723][ T8131] vhci_hcd: connection reset by peer
[  199.004563][  T155] vhci_hcd vhci_hcd.1: stop threads
[  199.006676][  T155] vhci_hcd vhci_hcd.1: release socket
[  199.008769][  T155] vhci_hcd vhci_hcd.1: disconnect device
[  199.425498][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  199.428809][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  199.544204][ T8144] x_tables: duplicate underflow at hook 1
[  199.551785][ T8144] hub 8-0:1.0: USB hub found
[  199.561619][ T8144] hub 8-0:1.0: 1 port detected
[  199.818604][ T5954] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  199.824918][ T5954] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  199.833942][ T5954] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  199.839396][ T5954] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  199.850807][ T5954] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  200.076653][ T8149] chnl_net:caif_netlink_parms(): no params data found
[  200.195821][ T8149] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.199522][ T8149] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.203254][ T8149] bridge_slave_0: entered allmulticast mode
[  200.207425][ T8149] bridge_slave_0: entered promiscuous mode
[  200.212649][ T8149] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.215910][ T8149] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.219140][ T8149] bridge_slave_1: entered allmulticast mode
[  200.223692][ T8149] bridge_slave_1: entered promiscuous mode
[  200.258383][ T8149] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  200.265709][ T8149] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  200.293773][ T8149] team0: Port device team_slave_0 added
[  200.298891][ T8149] team0: Port device team_slave_1 added
[  200.320703][ T8149] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.323720][ T8149] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  200.334553][ T8149] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.340337][ T8149] batman_adv: batadv0: Adding interface: batadv_slave_1
[  200.343764][ T8149] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  200.356894][ T8149] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  200.378583][ T8169] block nbd2: shutting down sockets
[  200.420039][ T8149] hsr_slave_0: entered promiscuous mode
[  200.423643][ T8149] hsr_slave_1: entered promiscuous mode
[  200.426869][ T8149] debugfs: 'hsr0' already exists in 'hsr'
[  200.429038][ T8149] Cannot create hsr debugfs directory
[  200.618461][ T8149] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  200.629811][ T8149] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  200.637765][ T8149] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  200.645034][ T8149] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  200.728850][ T8149] 8021q: adding VLAN 0 to HW filter on device bond0
[  200.746896][ T8149] 8021q: adding VLAN 0 to HW filter on device team0
[  200.755978][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.759153][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  200.768617][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.771302][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  200.966056][ T8149] 8021q: adding VLAN 0 to HW filter on device batadv0
[  201.205281][ T8149] veth0_vlan: entered promiscuous mode
[  201.214372][ T8149] veth1_vlan: entered promiscuous mode
[  201.233986][ T8149] veth0_macvtap: entered promiscuous mode
[  201.240559][ T8149] veth1_macvtap: entered promiscuous mode
[  201.254890][ T8149] batman_adv: batadv0: Interface activated: batadv_slave_0
[  201.262729][ T8149] batman_adv: batadv0: Interface activated: batadv_slave_1
[  201.271087][  T155] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  201.274993][  T155] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  201.279413][  T155] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  201.284234][  T155] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  201.342287][  T828] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  201.350448][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.359256][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.386040][  T155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  201.389409][  T155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  201.503624][  T828] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  201.507826][  T828] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  201.515500][  T828] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  201.519243][  T828] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.748798][ T8185] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  201.754208][ T8185] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  201.765671][  T828] usb 6-1: usb_control_msg returned -71
[  201.768284][  T828] usbtmc 6-1:16.0: can't read capabilities
[  201.792802][  T828] usb 6-1: USB disconnect, device number 3
[  201.912678][ T5954] Bluetooth: hci2: command tx timeout
[  201.964527][ T8201] netlink: 8 bytes leftover after parsing attributes in process `syz.0.403'.
[  202.132068][ T5954] Bluetooth: hci0: unexpected event 0x35 length: 3 < 6
[  202.279385][ T8214] netlink: 52 bytes leftover after parsing attributes in process `syz.0.407'.
[  203.371867][   T54] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  203.531640][   T54] usb 9-1: Using ep0 maxpacket: 16
[  203.535595][   T54] usb 9-1: config 0 has an invalid interface number: 132 but max is 0
[  203.540589][   T54] usb 9-1: config 0 has no interface number 0
[  203.553849][   T54] usb 9-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  203.561097][   T54] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.565235][   T54] usb 9-1: Product: syz
[  203.567202][   T54] usb 9-1: Manufacturer: syz
[  203.569244][   T54] usb 9-1: SerialNumber: syz
[  203.580655][   T54] usb 9-1: config 0 descriptor??
[  203.591837][   T54] hub 9-1:0.132: bad descriptor, ignoring hub
[  203.595030][   T54] hub 9-1:0.132: probe with driver hub failed with error -5
[  203.612488][   T54] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.132/input/input12
[  203.797613][ T8229] xt_l2tp: invalid flags combination: 0
[  203.871618][   T40] audit: type=1326 audit(1771144425.566:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8228 comm="syz.4.412" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x0
[  203.901578][   T24] usb 40-1: device descriptor read/8, error -110
[  203.955185][ T8231] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  203.960641][ T8231] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  203.981832][ T5954] Bluetooth: hci2: command tx timeout
[  204.292212][   T24] usb usb40-port1: attempt power cycle
[  204.746622][ T8236] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  204.749257][ T8236] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  204.752906][ T8236] vhci_hcd vhci_hcd.0: Device attached
[  204.771582][ T8236] random: crng reseeded on system resumption
[  204.892287][   T24] usb usb40-port1: unable to enumerate USB device
[  204.912840][ T8236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.411'.
[  205.041587][   T24] usb 42-1: SetAddress Request (2) to port 0
[  205.044299][   T24] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  205.074081][ T8250] syzkaller0: entered promiscuous mode
[  205.076946][ T8250] syzkaller0: entered allmulticast mode
[  205.091024][ T8250] tipc: Started in network mode
[  205.094001][ T8250] tipc: Node identity da5d2a7271f5, cluster identity 4711
[  205.097308][ T8250] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  205.132480][ T8249] tipc: Resetting bearer <eth:syzkaller0>
[  205.149974][ T8249] tipc: Disabling bearer <eth:syzkaller0>
[  205.159117][ T8237] vhci_hcd: connection reset by peer
[  205.162617][  T155] vhci_hcd vhci_hcd.2: stop threads
[  205.164845][  T155] vhci_hcd vhci_hcd.2: release socket
[  205.167428][  T155] vhci_hcd vhci_hcd.2: disconnect device
[  205.280856][ T8257] sctp: [Deprecated]: syz.0.418 (pid 8257) Use of struct sctp_assoc_value in delayed_ack socket option.
[  205.280856][ T8257] Use struct sctp_sack_info instead
[  205.820344][ T8264] syzkaller1: entered promiscuous mode
[  205.823263][ T8264] syzkaller1: entered allmulticast mode
[  206.062066][ T5954] Bluetooth: hci2: command tx timeout
[  206.332207][ T7378] usb 9-1: USB disconnect, device number 2
[  206.370535][ T8276] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  206.406247][ T8282] bridge_slave_0: left allmulticast mode
[  206.408496][ T8282] bridge_slave_0: left promiscuous mode
[  206.409297][ T8276] netlink: 28 bytes leftover after parsing attributes in process `syz.1.425'.
[  206.412060][ T8282] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.438058][ T8282] bridge_slave_1: left allmulticast mode
[  206.440485][ T8282] bridge_slave_1: left promiscuous mode
[  206.444084][ T8282] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.453445][ T8282] bond0: (slave bond_slave_0): Releasing backup interface
[  206.459279][ T8282] bond0: (slave bond_slave_1): Releasing backup interface
[  206.465084][ T8282] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.469065][ T8282] batman_adv: batadv0: Removing interface: batadv_slave_1
[  206.479897][ T8282] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  206.512393][ T8280] syzkaller1: entered promiscuous mode
[  206.514936][ T8280] syzkaller1: entered allmulticast mode
[  206.927871][ T8300] netdevsim netdevsim1 netdevsim1: entered allmulticast mode
[  207.343796][ T8313] tipc: Started in network mode
[  207.346153][ T8313] tipc: Node identity d2f32805ea4d, cluster identity 4711
[  207.349883][ T8313] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  207.354778][ T8313] syzkaller0: entered promiscuous mode
[  207.357270][ T8313] syzkaller0: entered allmulticast mode
[  207.788753][   T54] libceph: connect (1)[c::]:6789 error -101
[  207.791698][   T54] libceph: mon0 (1)[c::]:6789 connect error
[  207.944741][ T8323] ceph: No mds server is up or the cluster is laggy
[  208.111182][ T8312] tipc: Resetting bearer <eth:syzkaller0>
[  208.123572][ T8312] tipc: Disabling bearer <eth:syzkaller0>
[  208.141478][ T5954] Bluetooth: hci2: command tx timeout
[  208.421268][ T8340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.440'.
[  208.781599][   T54] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  208.809737][ T8360] netlink: 'syz.0.448': attribute type 1 has an invalid length.
[  208.813316][ T8360] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  208.874471][ T8365] tmpfs: Bad value for 'mpol'
[  208.893800][ T8365] binder: 8364:8365 ioctl c0306201 80000240 returned -11
[  208.949013][   T54] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  208.953755][   T54] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  208.959788][   T54] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  208.965453][   T54] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.972064][   T54] usb 6-1: config 0 descriptor??
[  209.397724][ T8381] netlink: 8 bytes leftover after parsing attributes in process `syz.0.452'.
[  209.469089][ T8381] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  209.571161][   T54] usb 6-1: string descriptor 0 read error: -71
[  209.575573][   T54] usb 6-1: USB disconnect, device number 4
[  209.759863][ T8397] FAULT_INJECTION: forcing a failure.
[  209.759863][ T8397] name failslab, interval 1, probability 0, space 0, times 0
[  209.764486][ T8397] CPU: 3 UID: 0 PID: 8397 Comm: syz.4.460 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  209.764505][ T8397] Tainted: [L]=SOFTLOCKUP
[  209.764508][ T8397] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  209.764514][ T8397] Call Trace:
[  209.764519][ T8397]  <TASK>
[  209.764524][ T8397]  dump_stack_lvl+0x100/0x190
[  209.764545][ T8397]  should_fail_ex.cold+0x5/0xa
[  209.764557][ T8397]  ? tomoyo_encode2+0xfb/0x3c0
[  209.764571][ T8397]  should_failslab+0xc2/0x120
[  209.764587][ T8397]  __kmalloc_noprof+0xe0/0x850
[  209.764600][ T8397]  ? d_absolute_path+0x136/0x1b0
[  209.764615][ T8397]  tomoyo_encode2+0xfb/0x3c0
[  209.764631][ T8397]  tomoyo_encode+0x29/0x50
[  209.764644][ T8397]  tomoyo_realpath_from_path+0x18c/0x690
[  209.764662][ T8397]  tomoyo_path_number_perm+0x23c/0x580
[  209.764674][ T8397]  ? tomoyo_path_number_perm+0x22e/0x580
[  209.764687][ T8397]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  209.764712][ T8397]  ? find_held_lock+0x2b/0x80
[  209.764728][ T8397]  ? hook_file_ioctl_common+0x146/0x410
[  209.764740][ T8397]  ? __fget_files+0x215/0x3d0
[  209.764757][ T8397]  ? __fget_files+0x21f/0x3d0
[  209.764773][ T8397]  security_file_ioctl_compat+0xd3/0x230
[  209.764787][ T8397]  __ia32_compat_sys_ioctl+0xc2/0x360
[  209.764802][ T8397]  __do_fast_syscall_32+0xe3/0x8c0
[  209.764819][ T8397]  do_fast_syscall_32+0x32/0x70
[  209.764834][ T8397]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  209.764850][ T8397] RIP: 0023:0xf7f02f6c
[  209.764859][ T8397] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  209.764869][ T8397] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  209.764880][ T8397] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000008008640b
[  209.764886][ T8397] RDX: 0000000080000240 RSI: 0000000000000000 RDI: 0000000000000000
[  209.764892][ T8397] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  209.764898][ T8397] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  209.764904][ T8397] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  209.764918][ T8397]  </TASK>
[  209.764930][ T8397] ERROR: Out of memory at tomoyo_realpath_from_path.
[  210.141750][   T24] usb 42-1: device descriptor read/8, error -110
[  210.269569][ T8415] syzkaller0: entered promiscuous mode
[  210.273336][ T8415] syzkaller0: entered allmulticast mode
[  210.405326][ T8418] netlink: 12 bytes leftover after parsing attributes in process `syz.0.467'.
[  210.423160][ T8418] netlink: 68 bytes leftover after parsing attributes in process `syz.0.467'.
[  210.532877][   T24] usb usb42-port1: attempt power cycle
[  210.868593][   T40] audit: type=1326 audit(1771144432.586:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.890611][   T40] audit: type=1326 audit(1771144432.586:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.901227][   T40] audit: type=1326 audit(1771144432.586:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.910617][   T40] audit: type=1326 audit(1771144432.586:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.926076][   T40] audit: type=1326 audit(1771144432.586:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.937108][   T40] audit: type=1326 audit(1771144432.586:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=430 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.947016][   T40] audit: type=1326 audit(1771144432.586:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.954787][  T841] libceph: connect (1)[c::]:6789 error -101
[  210.956466][   T40] audit: type=1326 audit(1771144432.586:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.958867][  T841] libceph: mon0 (1)[c::]:6789 connect error
[  210.968128][   T40] audit: type=1326 audit(1771144432.586:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=431 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  210.981096][   T40] audit: type=1326 audit(1771144432.586:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8419 comm="syz.0.468" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45f6c code=0x7ffc0000
[  211.102625][   T24] usb usb42-port1: unable to enumerate USB device
[  211.439397][ T8424] ceph: No mds server is up or the cluster is laggy
[  211.444815][ T6373] libceph: connect (1)[c::]:6789 error -101
[  211.447513][ T6373] libceph: mon0 (1)[c::]:6789 connect error
[  211.796350][ T8446] fuseblk: Unknown parameter 'euid<00000000000000000000'
[  212.079735][ T8452] af_packet: tpacket_rcv: packet too big, clamped from 236 to 4294967272. macoff=96
[  212.331488][   T24] usb 5-1: new low-speed USB device number 5 using dummy_hcd
[  212.366356][ T8454] team0 (unregistering): Port device team_slave_0 removed
[  212.373905][ T8454] team0 (unregistering): Port device team_slave_1 removed
[  212.471517][   T24] usb 5-1: device descriptor read/64, error -71
[  212.520904][ T8440] netlink: 8 bytes leftover after parsing attributes in process `syz.4.472'.
[  212.711537][   T24] usb 5-1: new low-speed USB device number 6 using dummy_hcd
[  212.836781][ T8458] kvm: apic: phys broadcast and lowest prio
[  212.843725][   T24] usb 5-1: device descriptor read/64, error -71
[  212.951820][   T24] usb usb5-port1: attempt power cycle
[  212.994513][ T8469] syz.1.481 (8469) used obsolete PPPIOCDETACH ioctl
[  213.291697][   T24] usb 5-1: new low-speed USB device number 7 using dummy_hcd
[  213.312262][   T24] usb 5-1: device descriptor read/8, error -71
[  213.413862][ T8478] netlink: 'syz.1.484': attribute type 1 has an invalid length.
[  213.480771][ T8478] 8021q: adding VLAN 0 to HW filter on device bond2
[  213.551576][   T24] usb 5-1: new low-speed USB device number 8 using dummy_hcd
[  213.572199][   T24] usb 5-1: device descriptor read/8, error -71
[  213.681845][   T24] usb usb5-port1: unable to enumerate USB device
[  213.932311][ T8480] 8021q: adding VLAN 0 to HW filter on device bond2
[  213.935534][ T8480] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  213.940833][ T8480] bond2: (slave vxcan3): Error -95 calling set_mac_address
[  214.173390][ T8482] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  214.176982][ T8482] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  214.186523][ T8482] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  214.205317][ T8482] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  214.208053][ T8482] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  214.229060][ T8482] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  214.236852][ T8482] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  214.239519][ T8482] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  214.265336][ T8482] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  214.284274][ T8482] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  214.287139][ T8482] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  214.365495][ T8482] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  214.765730][ T8494] qnx6: unable to read the first superblock
[  214.976932][ T8498] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  214.979945][ T8498] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  214.994970][ T8498] vhci_hcd vhci_hcd.0: Device attached
[  215.085302][ T8502] netlink: 'syz.0.491': attribute type 16 has an invalid length.
[  215.088016][ T8502] netlink: 4 bytes leftover after parsing attributes in process `syz.0.491'.
[  215.242325][ T8498] random: crng reseeded on system resumption
[  215.274998][   T34] usb 46-1: SetAddress Request (2) to port 0
[  215.281519][   T34] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[  215.318793][ T8514] netlink: 4 bytes leftover after parsing attributes in process `syz.1.496'.
[  215.322061][ T8498] netlink: 4 bytes leftover after parsing attributes in process `syz.4.490'.
[  215.556095][ T8499] vhci_hcd: connection reset by peer
[  215.559011][ T1151] vhci_hcd vhci_hcd.4: stop threads
[  215.562156][ T1151] vhci_hcd vhci_hcd.4: release socket
[  215.565088][ T1151] vhci_hcd vhci_hcd.4: disconnect device
[  215.701576][ T4154] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  215.863846][ T4154] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  215.868782][ T4154] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.873465][ T4154] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  215.879077][ T4154] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  215.883386][ T4154] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.889056][ T4154] usb 6-1: config 0 descriptor??
[  216.188253][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  216.188269][   T40] audit: type=1326 audit(1771144437.906:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.200431][   T40] audit: type=1326 audit(1771144437.906:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.209513][   T40] audit: type=1326 audit(1771144437.906:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=195 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.218914][   T40] audit: type=1326 audit(1771144437.906:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.227913][ T5959] Bluetooth: hci0: command 0x0c1a tx timeout
[  216.228479][   T40] audit: type=1326 audit(1771144437.906:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.236876][ T5954] Bluetooth: hci1: command 0x0c1a tx timeout
[  216.240411][   T40] audit: type=1326 audit(1771144437.906:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.251607][   T40] audit: type=1326 audit(1771144437.906:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.260673][   T40] audit: type=1326 audit(1771144437.906:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.270362][   T40] audit: type=1326 audit(1771144437.936:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.279759][   T40] audit: type=1326 audit(1771144437.936:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8522 comm="syz.4.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02f6c code=0x7ffc0000
[  216.310182][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.313624][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.313628][ T5954] Bluetooth: hci2: command 0x0c1a tx timeout
[  216.313674][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  216.316853][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.325985][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.329086][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.332641][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.335905][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.339439][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.343195][ T4154] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  216.362006][ T4154] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  216.566369][  T841] usb 6-1: USB disconnect, device number 5
[  216.603166][ T8541] netlink: 'syz.4.503': attribute type 39 has an invalid length.
[  217.050183][ T8554] netlink: 44 bytes leftover after parsing attributes in process `syz.0.508'.
[  218.312607][ T5959] Bluetooth: hci1: command 0x0c1a tx timeout
[  218.316873][ T5959] Bluetooth: hci0: command 0x0c1a tx timeout
[  218.411193][ T5959] Bluetooth: hci2: command 0x0c1a tx timeout
[  218.411233][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  218.839284][ T8593] sp0: Synchronizing with TNC
[  218.893403][ T8593] Bluetooth: MGMT ver 1.23
[  218.949789][ T8593] netlink: 20 bytes leftover after parsing attributes in process `syz.1.522'.
[  219.843761][ T8601] netlink: 'syz.2.524': attribute type 1 has an invalid length.
[  219.847677][ T8601] netlink: 36 bytes leftover after parsing attributes in process `syz.2.524'.
[  220.381952][ T5954] Bluetooth: hci0: command 0x0c1a tx timeout
[  220.381974][ T5959] Bluetooth: hci1: command 0x0c1a tx timeout
[  220.461471][ T5959] Bluetooth: hci2: command 0x0c1a tx timeout
[  220.461519][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  220.748596][   T34] usb 46-1: device descriptor read/8, error -110
[  221.142373][   T34] usb usb46-port1: attempt power cycle
[  221.194385][ T8626] netlink: 20 bytes leftover after parsing attributes in process `syz.0.531'.
[  221.446399][ T8632] IPVS: sync thread started: state = MASTER, mcast_ifn = bridge_slave_0, syncid = 1, id = 0
[  222.017350][ T8636] syzkaller0: entered promiscuous mode
[  222.069782][   T34] usb usb46-port1: unable to enumerate USB device
[  222.130404][ T8636] could not allocate digest TFM handle sm3-generic
[  222.333635][ T8643] netlink: 12 bytes leftover after parsing attributes in process `syz.0.537'.
[  222.338220][ T8643] netlink: 12 bytes leftover after parsing attributes in process `syz.0.537'.
[  223.749199][ T8666] netlink: 'syz.0.543': attribute type 1 has an invalid length.
[  223.756169][ T8665] netlink: 'syz.1.542': attribute type 10 has an invalid length.
[  223.762161][ T5954] Bluetooth: hci3: unexpected event for opcode 0x2043
[  223.921495][ T8674] x_tables: ip6_tables: CONNSECMARK.0 target: invalid size 8 (kernel) != (user) 16
[  223.932972][ T8675] usb usb7: usbfs: process 8675 (syz.1.545) did not claim interface 0 before use
[  225.731753][ T8693] 9p: Bad value for 'wfdno'
[  225.742223][ T8693] overlay: ./file0 is not a directory
[  228.915687][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  228.915702][   T40] audit: type=1800 audit(1771144450.636:197): pid=8717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.557" name="bus" dev="overlay" ino=728 res=0 errno=0
[  229.025983][ T8724] syzkaller0: entered promiscuous mode
[  229.028460][ T8724] syzkaller0: entered allmulticast mode
[  229.111023][ T8728] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  229.425911][ T8739] netlink: 'syz.0.565': attribute type 10 has an invalid length.
[  229.433167][ T8740] overlayfs: cannot append lower layer
[  229.438385][ T8734] sg_write: data in/out 262109/64 bytes for SCSI command 0x69-- guessing data in;
[  229.438385][ T8734]    program syz.4.563 not setting count and/or reply_len properly
[  229.455419][   T40] audit: type=1326 audit(1771144451.176:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706ef6c code=0x7ffc0000
[  229.465756][   T40] audit: type=1326 audit(1771144451.176:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  229.475056][   T40] audit: type=1326 audit(1771144451.176:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  229.484484][   T40] audit: type=1326 audit(1771144451.176:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  229.489166][ T8742] fuse: Unknown parameter ''
[  229.493733][   T40] audit: type=1326 audit(1771144451.176:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  229.506783][   T40] audit: type=1326 audit(1771144451.176:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  229.516667][   T40] audit: type=1326 audit(1771144451.176:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  229.526178][   T40] audit: type=1326 audit(1771144451.176:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  229.536271][   T40] audit: type=1326 audit(1771144451.176:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8738 comm="syz.1.566" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706ef78 code=0x7ffc0000
[  230.118534][ T8754] mac80211_hwsim hwsim9 syzkaller0: entered promiscuous mode
[  230.122036][ T8754] mac80211_hwsim hwsim9 syzkaller0: entered allmulticast mode
[  230.249708][ T8760] netlink: 60 bytes leftover after parsing attributes in process `syz.1.574'.
[  230.255408][ T8760] netlink: 60 bytes leftover after parsing attributes in process `syz.1.574'.
[  230.934308][ T8768] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  230.949089][ T8771] netlink: 'syz.1.577': attribute type 1 has an invalid length.
[  230.970021][ T8771] 8021q: adding VLAN 0 to HW filter on device bond3
[  230.988812][ T8771] bond3: (slave geneve2): making interface the new active one
[  230.993773][ T8771] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  230.997356][  T155] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  231.004761][  T155] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  231.008625][  T155] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  231.019832][  T155] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  231.202937][ T5954] Bluetooth: hci0: unexpected event for opcode 0x2042
[  231.264010][ T8786] tmpfs: Bad value for 'mpol'
[  231.441990][ T7378] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  231.482100][   T54] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  231.606522][ T7378] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  231.621149][ T7378] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  231.629084][ T7378] usb 7-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.00
[  231.633557][ T7378] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  231.641492][ T7378] usb 7-1: Product: syz
[  231.643505][ T7378] usb 7-1: Manufacturer: syz
[  231.645540][ T7378] usb 7-1: SerialNumber: syz
[  231.669495][ T7378] usb 7-1: config 0 descriptor??
[  231.723675][ T8805] netlink: 'syz.1.585': attribute type 2 has an invalid length.
[  231.993037][  T828] usb 7-1: USB disconnect, device number 2
[  235.271568][ T5954] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  235.275407][ T5954] Bluetooth: hci0: Injecting HCI hardware error event
[  235.291703][ T5954] Bluetooth: hci0: hardware error 0x00
[  237.341622][ T5954] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  238.189015][ T8853] netlink: 60 bytes leftover after parsing attributes in process `syz.0.591'.
[  238.294116][   T40] kauditd_printk_skb: 155 callbacks suppressed
[  238.294215][   T40] audit: type=1326 audit(1771144460.016:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8858 comm="syz.4.594" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f02f6c code=0x0
[  238.618726][ T8870] netlink: 60 bytes leftover after parsing attributes in process `syz.0.595'.
[  240.005064][ T8895] FAULT_INJECTION: forcing a failure.
[  240.005064][ T8895] name failslab, interval 1, probability 0, space 0, times 0
[  240.010742][ T8895] CPU: 1 UID: 0 PID: 8895 Comm: syz.2.597 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  240.010793][ T8895] Tainted: [L]=SOFTLOCKUP
[  240.010799][ T8895] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  240.010810][ T8895] Call Trace:
[  240.010818][ T8895]  <TASK>
[  240.010826][ T8895]  dump_stack_lvl+0x100/0x190
[  240.010858][ T8895]  should_fail_ex.cold+0x5/0xa
[  240.010879][ T8895]  ? snd_pcm_plugin_build+0x64/0x650
[  240.010899][ T8895]  should_failslab+0xc2/0x120
[  240.010927][ T8895]  __kmalloc_noprof+0xe0/0x850
[  240.010957][ T8895]  snd_pcm_plugin_build+0x64/0x650
[  240.010980][ T8895]  snd_pcm_plugin_build_mulaw+0x280/0x760
[  240.011003][ T8895]  ? __pfx_mulaw_encode+0x10/0x10
[  240.011024][ T8895]  ? __pfx_snd_pcm_plugin_build_mulaw+0x10/0x10
[  240.011049][ T8895]  ? snd_pcm_hw_params+0x262/0x1cb0
[  240.011075][ T8895]  snd_pcm_plug_format_plugins+0xbdd/0x1430
[  240.011101][ T8895]  ? __pfx_snd_pcm_plug_format_plugins+0x10/0x10
[  240.011126][ T8895]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  240.011164][ T8895]  snd_pcm_oss_change_params_locked+0x2e3c/0x39f0
[  240.011207][ T8895]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  240.011236][ T8895]  ? __pfx___mutex_lock+0x10/0x10
[  240.011281][ T8895]  snd_pcm_oss_make_ready+0xeb/0x1b0
[  240.011302][ T8895]  snd_pcm_oss_set_trigger.isra.0+0x331/0x6c0
[  240.011321][ T8895]  ? lockdep_hardirqs_on+0x78/0x100
[  240.011347][ T8895]  snd_pcm_oss_poll+0x474/0xb80
[  240.011378][ T8895]  ? __pfx_io_poll_queue_proc+0x10/0x10
[  240.011407][ T8895]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  240.011432][ T8895]  __io_arm_poll_handler+0x44b/0x1270
[  240.011454][ T8895]  ? __pfx_snd_pcm_oss_poll+0x10/0x10
[  240.011475][ T8895]  io_poll_add+0xe0/0x1f0
[  240.011496][ T8895]  ? __pfx_io_poll_add+0x10/0x10
[  240.011516][ T8895]  ? __pfx_io_poll_queue_proc+0x10/0x10
[  240.011544][ T8895]  __io_issue_sqe+0xe8/0x7a0
[  240.011563][ T8895]  io_issue_sqe+0x85/0x1410
[  240.011588][ T8895]  io_submit_sqes+0xac6/0x2300
[  240.011620][ T8895]  __do_sys_io_uring_enter+0x9c0/0x1a20
[  240.011643][ T8895]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  240.011669][ T8895]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  240.011695][ T8895]  ? __pfx___schedule+0x10/0x10
[  240.011714][ T8895]  ? fput+0x79/0x100
[  240.011732][ T8895]  ? exit_to_user_mode_loop+0xdd/0x4a0
[  240.011759][ T8895]  __do_fast_syscall_32+0xe3/0x8c0
[  240.011791][ T8895]  do_fast_syscall_32+0x32/0x70
[  240.011815][ T8895]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  240.011838][ T8895] RIP: 0023:0xf6ffef6c
[  240.011854][ T8895] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  240.011871][ T8895] RSP: 002b:00000000f53ab50c EFLAGS: 00000292 ORIG_RAX: 00000000000001aa
[  240.011888][ T8895] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000002b93
[  240.011898][ T8895] RDX: 000000000000f9d0 RSI: 0000000000000022 RDI: 0000000000000000
[  240.011907][ T8895] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  240.011917][ T8895] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  240.011927][ T8895] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  240.011952][ T8895]  </TASK>
[  241.742712][ T8907] ipvlan1: entered promiscuous mode
[  242.104666][ T8916] x_tables: ip_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[  242.128488][ T8908] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  242.258123][ T8923] fuse: Bad value for 'rootmode'
[  245.707581][ T8943] FAULT_INJECTION: forcing a failure.
[  245.707581][ T8943] name failslab, interval 1, probability 0, space 0, times 0
[  245.731640][ T8943] CPU: 3 UID: 0 PID: 8943 Comm: syz.1.616 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  245.731672][ T8943] Tainted: [L]=SOFTLOCKUP
[  245.731679][ T8943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  245.731688][ T8943] Call Trace:
[  245.731698][ T8943]  <TASK>
[  245.731707][ T8943]  dump_stack_lvl+0x100/0x190
[  245.731745][ T8943]  should_fail_ex.cold+0x5/0xa
[  245.731772][ T8943]  should_failslab+0xc2/0x120
[  245.731800][ T8943]  __kvmalloc_node_noprof+0xfa/0xa00
[  245.731836][ T8943]  ? nf_hook_entries_grow+0x255/0x870
[  245.731871][ T8943]  nf_hook_entries_grow+0x255/0x870
[  245.731907][ T8943]  __nf_register_net_hook+0x112/0x780
[  245.731940][ T8943]  nf_register_net_hook+0xdb/0x170
[  245.731969][ T8943]  nf_register_net_hooks+0x5d/0xd0
[  245.731996][ T8943]  nf_ct_netns_do_get+0x387/0x610
[  245.732025][ T8943]  ? __pfx_nf_ct_netns_do_get+0x10/0x10
[  245.732052][ T8943]  ? __mutex_lock+0x26a/0x1b90
[  245.732081][ T8943]  ? find_held_lock+0x2b/0x80
[  245.732111][ T8943]  ? xt_find_match+0x1db/0x280
[  245.732137][ T8943]  ? xt_find_match+0x1db/0x280
[  245.732166][ T8943]  nf_ct_netns_get+0x3d/0x160
[  245.732191][ T8943]  xt_cluster_mt_checkentry+0x120/0x220
[  245.732217][ T8943]  ? __pfx_xt_cluster_mt_checkentry+0x10/0x10
[  245.732246][ T8943]  xt_check_match+0x286/0xa20
[  245.732266][ T8943]  ? memmap_init_zone_device+0xe8/0x5a0
[  245.732290][ T8943]  ? __pfx_xt_check_match+0x10/0x10
[  245.732307][ T8943]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  245.732341][ T8943]  ? xt_find_match+0x1e0/0x280
[  245.732379][ T8943]  find_check_entry.isra.0+0x323/0x990
[  245.732419][ T8943]  ? __pfx_find_check_entry.isra.0+0x10/0x10
[  245.732460][ T8943]  ? kasan_quarantine_put+0x104/0x240
[  245.732486][ T8943]  ? lockdep_hardirqs_on+0x78/0x100
[  245.732517][ T8943]  ? translate_table+0xaf2/0x1630
[  245.732536][ T8943]  ? kfree+0x1f6/0x6b0
[  245.732557][ T8943]  ? xt_check_table_hooks+0x206/0x330
[  245.732590][ T8943]  translate_table+0xbcd/0x1630
[  245.732621][ T8943]  ? __pfx_translate_table+0x10/0x10
[  245.732663][ T8943]  translate_compat_table+0x125f/0x1750
[  245.732693][ T8943]  ? __pfx_translate_compat_table+0x10/0x10
[  245.732732][ T8943]  compat_do_replace+0x279/0x500
[  245.732751][ T8943]  ? __pfx_compat_do_replace+0x10/0x10
[  245.732774][ T8943]  ? lock_acquire+0x1cf/0x380
[  245.732806][ T8943]  ? bpf_lsm_capable+0x9/0x10
[  245.732840][ T8943]  ? security_capable+0x80/0x260
[  245.732875][ T8943]  do_ipt_set_ctl+0x562/0xaf0
[  245.732894][ T8943]  ? nf_sockopt_find.isra.0+0x222/0x290
[  245.732928][ T8943]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  245.732949][ T8943]  ? sockopt_release_sock+0x57/0x70
[  245.732972][ T8943]  ? __local_bh_enable_ip+0x9e/0x120
[  245.732996][ T8943]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  245.733037][ T8943]  ? nf_sockopt_find.isra.0+0x222/0x290
[  245.733070][ T8943]  nf_setsockopt+0x8d/0xf0
[  245.733101][ T8943]  ip_setsockopt+0xcb/0xf0
[  245.733126][ T8943]  udp_setsockopt+0x7d/0xd0
[  245.733153][ T8943]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  245.733185][ T8943]  do_sock_setsockopt+0xf3/0x1d0
[  245.733217][ T8943]  __sys_setsockopt+0x119/0x190
[  245.733248][ T8943]  __ia32_sys_setsockopt+0xbc/0x160
[  245.733271][ T8943]  ? __do_fast_syscall_32+0x94/0x8c0
[  245.733300][ T8943]  ? lockdep_hardirqs_on+0x78/0x100
[  245.733324][ T8943]  __do_fast_syscall_32+0xe3/0x8c0
[  245.733357][ T8943]  do_fast_syscall_32+0x32/0x70
[  245.733384][ T8943]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  245.733470][ T8943] RIP: 0023:0xf706ef6c
[  245.733512][ T8943] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  245.733532][ T8943] RSP: 002b:00000000f545d50c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  245.733554][ T8943] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  245.733566][ T8943] RDX: 0000000000000040 RSI: 00000000800003c0 RDI: 0000000000000390
[  245.733577][ T8943] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  245.733586][ T8943] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  245.733599][ T8943] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  245.733628][ T8943]  </TASK>
[  245.733852][ T8943] xt_cluster: cannot load conntrack support for proto=2
[  245.914621][ T8941] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  246.104744][ T8946] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  246.113496][ T8946] block device autoloading is deprecated and will be removed.
[  248.892404][  T155] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  248.896310][  T155] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  248.900085][  T155] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  248.904667][  T155] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  248.946104][ T8967] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[  248.948994][ T8967] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  248.955417][ T8967] vhci_hcd vhci_hcd.0: Device attached
[  248.964833][ T8967] netlink: 'syz.2.622': attribute type 1 has an invalid length.
[  249.202243][   T54] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[  249.377659][ T8976] netlink: 4 bytes leftover after parsing attributes in process `syz.0.625'.
[  249.450620][ T8976] netlink: 4 bytes leftover after parsing attributes in process `syz.0.625'.
[  249.453950][ T8978] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  249.495621][   T39] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  249.500515][   T39] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  249.514010][  T155] wlan1: 08:02:11:00:00:00 unexpected authentication state: alg 32 (expected 0) transact 2 (expected 2)
[  249.523355][ T8980] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  249.532761][ T8982] netlink: 'syz.1.627': attribute type 29 has an invalid length.
[  249.533609][ T8977] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  249.536102][ T8982] netlink: 8 bytes leftover after parsing attributes in process `syz.1.627'.
[  249.547633][ T8983] dummy0: entered promiscuous mode
[  249.551908][ T8983] dummy0: left promiscuous mode
[  249.559669][ T8982] dummy0: entered promiscuous mode
[  249.561516][ T8968] vhci_hcd: connection reset by peer
[  249.563502][ T8982] dummy0: left promiscuous mode
[  249.563655][   T13] vhci_hcd vhci_hcd.2: stop threads
[  249.567369][   T13] vhci_hcd vhci_hcd.2: release socket
[  249.569868][   T13] vhci_hcd vhci_hcd.2: disconnect device
[  249.614579][   T13] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  249.721873][ T1163] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  249.833014][   T13] wlan1: authentication with 08:02:11:00:00:00 timed out
[  250.903755][ T9013] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  251.279496][ T9019] nr0: entered promiscuous mode
[  251.318144][ T9021] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  251.345682][ T9019] fuse: Unknown parameter '000000000000000000050x0000000000000006'
[  251.657139][ T9029] fuse: Bad value for 'group_id'
[  251.659343][ T9029] fuse: Bad value for 'group_id'
[  251.725213][ T9029] macvlan0: entered promiscuous mode
[  251.730380][ T9029] netlink: 'syz.0.638': attribute type 1 has an invalid length.
[  251.733481][ T9029] netlink: 'syz.0.638': attribute type 2 has an invalid length.
[  251.900047][   T40] audit: type=1326 audit(1771144473.616:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9035 comm="syz.0.643" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f45f6c code=0x0
[  251.955106][ T9039] usb usb9: usbfs: process 9039 (syz.0.643) did not claim interface 1 before use
[  252.338168][ T9044] serio: Serial port ptm0
[  253.654854][ T9054] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  254.291612][   T54] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  254.822234][ T9068] netlink: 4 bytes leftover after parsing attributes in process `syz.2.649'.
[  254.885086][ T9068] vxlan0: entered promiscuous mode
[  254.890916][   T12] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  254.894678][   T12] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  254.898085][   T12] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  254.901339][   T12] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  255.356358][ T9072] netlink: 4 bytes leftover after parsing attributes in process `syz.0.651'.
[  255.365579][ T9072] netlink: 4 bytes leftover after parsing attributes in process `syz.0.651'.
[  255.410030][ T9076] netlink: 7060 bytes leftover after parsing attributes in process `syz.4.652'.
[  255.580736][ T9068] block nbd2: shutting down sockets
[  256.664828][ T9097] evm: overlay not supported
[  256.673037][ T9099] FAULT_INJECTION: forcing a failure.
[  256.673037][ T9099] name failslab, interval 1, probability 0, space 0, times 0
[  256.678229][ T9099] CPU: 2 UID: 0 PID: 9099 Comm: syz.2.660 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  256.678259][ T9099] Tainted: [L]=SOFTLOCKUP
[  256.678265][ T9099] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  256.678276][ T9099] Call Trace:
[  256.678284][ T9099]  <TASK>
[  256.678292][ T9099]  dump_stack_lvl+0x100/0x190
[  256.678322][ T9099]  should_fail_ex.cold+0x5/0xa
[  256.678343][ T9099]  should_failslab+0xc2/0x120
[  256.678376][ T9099]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  256.678397][ T9099]  ? alloc_empty_file+0x55/0x1c0
[  256.678421][ T9099]  alloc_empty_file+0x55/0x1c0
[  256.678440][ T9099]  alloc_file_pseudo+0x13a/0x230
[  256.678460][ T9099]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  256.678479][ T9099]  ? inode_init_always_gfp+0xd0e/0x1040
[  256.678506][ T9099]  sock_alloc_file+0x50/0x210
[  256.678531][ T9099]  do_accept+0x242/0x530
[  256.678549][ T9099]  ? do_raw_spin_lock+0x128/0x260
[  256.678576][ T9099]  ? __pfx_do_accept+0x10/0x10
[  256.678610][ T9099]  __sys_accept4+0x108/0x200
[  256.678629][ T9099]  ? __pfx___sys_accept4+0x10/0x10
[  256.678649][ T9099]  ? ksys_write+0x1ac/0x250
[  256.678672][ T9099]  ? __pfx_ksys_write+0x10/0x10
[  256.678697][ T9099]  __ia32_sys_accept4+0x94/0x100
[  256.678714][ T9099]  ? lockdep_hardirqs_on+0x78/0x100
[  256.678735][ T9099]  __do_fast_syscall_32+0xe3/0x8c0
[  256.678761][ T9099]  do_fast_syscall_32+0x32/0x70
[  256.678784][ T9099]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  256.678804][ T9099] RIP: 0023:0xf6ffef6c
[  256.678818][ T9099] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  256.678834][ T9099] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 000000000000016c
[  256.678851][ T9099] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[  256.678861][ T9099] RDX: 0000000000000000 RSI: 0000000000080800 RDI: 0000000000000000
[  256.678870][ T9099] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  256.678879][ T9099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  256.678888][ T9099] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  256.678911][ T9099]  </TASK>
[  256.915939][ T9103] netlink: 4 bytes leftover after parsing attributes in process `syz.2.661'.
[  256.935804][ T9103] hsr_slave_0: left promiscuous mode
[  256.942040][ T9103] hsr_slave_1: left promiscuous mode
[  257.427019][ T9118] binder: 9110:9118 ioctl 4018620d 0 returned -22
[  257.432764][ T9118] binder: 9110:9118 ioctl 127e 80000080 returned -22
[  258.339435][ T5954] Bluetooth: hci3: Malformed MSFT vendor event: 0x02
[  258.392054][ T9130] usb usb7: usbfs: process 9130 (syz.1.669) did not claim interface 0 before use
[  260.715770][ T9136] syzkaller0: entered promiscuous mode
[  260.718150][ T9136] syzkaller0: entered allmulticast mode
[  260.844424][ T9138] ntfs3(nullb0): Primary boot signature is not NTFS.
[  260.849695][ T9138] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  260.859541][ T9138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.672'.
[  260.867683][ T9138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.672'.
[  260.871973][ T9138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.672'.
[  260.875934][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  260.878569][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  260.879241][ T9138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.672'.
[  260.886949][ T9138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.672'.
[  262.095106][ T9163] xfrm0: entered promiscuous mode
[  262.103505][ T9163] xfrm0: entered allmulticast mode
[  262.272881][ T9168] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  262.289714][ T9169] overlayfs: missing 'lowerdir'
[  262.323331][ T9163] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.326768][ T9163] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.499929][ T9163] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  262.529121][ T9163] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  262.922277][  T155] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  262.925699][  T155] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  262.932026][  T155] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  262.935833][  T155] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  263.323922][ T9186] fuse: Bad value for 'user_id'
[  263.326269][ T9186] fuse: Bad value for 'user_id'
[  263.482900][ T9199] netlink: 4 bytes leftover after parsing attributes in process `syz.4.687'.
[  263.489487][ T9199] veth0_macvtap: left promiscuous mode
[  263.929351][ T9223] netlink: 24 bytes leftover after parsing attributes in process `syz.2.691'.
[  263.989846][ T9218] comedi comedi3: dmm32at: I/O port conflict (0x4f28,16)
[  264.375807][ T9232] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  265.937911][ T9260] netlink: 4 bytes leftover after parsing attributes in process `syz.2.703'.
[  266.232314][ T9262] netlink: 'syz.2.704': attribute type 6 has an invalid length.
[  266.489475][ T9266] binder: 9264:9266 ioctl c018620c 0 returned -14
[  266.492160][ T9266] netlink: 'syz.0.705': attribute type 1 has an invalid length.
[  267.433375][ T9284] netlink: 36 bytes leftover after parsing attributes in process `syz.1.710'.
[  267.547786][ T9284] netlink: 72 bytes leftover after parsing attributes in process `syz.1.710'.
[  267.556828][ T9284] netlink: 8 bytes leftover after parsing attributes in process `syz.1.710'.
[  267.804041][   T40] audit: type=1326 audit(1771144489.516:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  267.845194][   T40] audit: type=1326 audit(1771144489.516:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  267.880912][   T40] audit: type=1326 audit(1771144489.516:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=435 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  267.900426][   T40] audit: type=1326 audit(1771144489.616:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  267.914328][   T40] audit: type=1326 audit(1771144489.616:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  267.925338][   T40] audit: type=1326 audit(1771144489.646:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9291 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf713572b code=0x7ffc0000
[  267.950036][   T40] audit: type=1326 audit(1771144489.666:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  267.968925][   T40] audit: type=1326 audit(1771144489.686:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  267.980798][   T40] audit: type=1326 audit(1771144489.686:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  268.075705][   T40] audit: type=1326 audit(1771144489.796:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9291 comm="syz.2.709" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf6ffef6c code=0x7ffc0000
[  269.214966][ T9313] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  269.276385][ T9319] random: crng reseeded on system resumption
[  269.334189][ T9321] [U] 
[  269.335442][ T9321] [U] 
[  269.336642][ T9321] [U] 
[  269.337853][ T9321] [U] 
[  269.340293][ T9321] [U] 
[  269.341601][ T9321] [U] 
[  269.342801][ T9321] [U] 
[  269.344003][ T9321] [U] 
[  269.348741][ T9321] [U] 
[  269.349992][ T9321] [U] 
[  269.351203][ T9321] [U] 
[  269.352409][ T9321] [U] 
[  269.354558][ T9321] [U] 
[  269.355781][ T9321] [U] 
[  269.356970][ T9321] [U] 
[  269.358179][ T9321] [U] 
[  269.359596][ T9321] [U] 
[  269.360804][ T9321] [U] 
[  269.362009][ T9321] [U] 
[  269.363191][ T9321] [U] 
[  269.364660][ T9321] [U] 
[  269.365866][ T9321] [U] 
[  269.367063][ T9321] [U] 
[  269.368266][ T9321] [U] 
[  269.369761][ T9321] [U] 
[  269.370960][ T9321] [U] 
[  269.372310][ T9321] [U] 
[  269.373537][ T9321] [U] 
[  269.375762][ T9321] [U] 
[  269.376977][ T9321] [U] 
[  269.378196][ T9321] [U] 
[  269.379341][ T9321] [U] 
[  269.380813][ T9321] [U] 
[  269.382077][ T9321] [U] 
[  269.383291][ T9321] [U] 
[  269.384521][ T9321] [U] 
[  269.386597][ T9321] [U] 
[  269.387914][ T9321] [U] 
[  269.389196][ T9321] [U] 
[  269.390474][ T9321] [U] 
[  269.393541][ T9321] [U] 
[  269.404401][ T9322] tipc: Enabling of bearer <wdp:s> rejected, media not registered
[  269.410119][ T9321] [U] 
[  269.414323][ T9321] [U] 
[  269.415546][ T9321] [U] 
[  269.417212][ T9321] [U] 
[  269.438087][ T9321] [U] 
[  269.439305][ T9321] [U] 
[  269.440527][ T9321] [U] 
[  269.447035][ T9321] [U] 
[  269.448268][ T9321] [U] 
[  269.449481][ T9321] [U] 
[  269.450664][ T9321] [U] 
[  269.452035][ T9321] [U] 
[  269.453213][ T9321] [U] 
[  269.454388][ T9321] [U] 
[  269.455551][ T9321] [U] 
[  269.456831][ T9321] [U] 
[  269.458028][ T9321] [U] 
[  269.459166][ T9321] [U] 
[  269.460322][ T9321] [U] 
[  269.463233][ T9321] [U] 
[  269.464401][ T9321] [U] 
[  269.465559][ T9321] [U] 
[  269.466709][ T9321] [U] 
[  269.467975][ T9321] [U] 
[  269.469155][ T9321] [U] 
[  269.470324][ T9321] [U] 
[  269.472301][ T9321] [U] 
[  269.473859][ T9321] [U] 
[  269.475022][ T9321] [U] 
[  269.476260][ T9321] [U] 
[  269.477490][ T9321] [U] 
[  269.478771][ T9321] [U] 
[  269.479925][ T9321] [U] 
[  269.481123][ T9321] [U] 
[  269.482459][ T9321] [U] 
[  269.484007][ T9321] [U] 
[  269.485181][ T9321] [U] 
[  269.486375][ T9321] [U] 
[  269.487538][ T9321] [U] 
[  269.489352][ T9321] [U] 
[  269.490551][ T9321] [U] 
[  269.491874][ T9321] [U] 
[  269.493058][ T9321] [U] 
[  269.494735][ T9321] [U] 
[  269.495912][ T9321] [U] 
[  269.497063][ T9321] [U] 
[  269.498244][ T9321] [U] 
[  269.499520][ T9321] [U] 
[  269.500706][ T9321] [U] 
[  269.501902][ T9321] [U] 
[  269.503061][ T9321] [U] 
[  269.507724][ T9321] [U] 
[  269.508921][ T9321] [U] 
[  269.510115][ T9321] [U] 
[  269.511326][ T9321] [U] 
[  269.512792][ T9321] [U] 
[  269.513992][ T9321] [U] 
[  269.515174][ T9321] [U] 
[  269.516359][ T9321] [U] 
[  269.517867][ T9321] [U] 
[  269.519026][ T9321] [U] 
[  269.520174][ T9321] [U] 
[  269.521324][ T9321] [U] 
[  269.522721][ T9321] [U] 
[  269.523907][ T9321] [U] 
[  269.525086][ T9321] [U] 
[  269.526279][ T9321] [U] 
[  269.527545][ T9321] [U] 
[  269.528722][ T9321] [U] 
[  269.529906][ T9321] [U] 
[  269.531057][ T9321] [U] 
[  269.532624][ T9321] [U] 
[  269.533841][ T9321] [U] 
[  269.535017][ T9321] [U] 
[  269.536187][ T9321] [U] 
[  269.537389][ T9321] [U] 
[  269.538475][ T9321] [U] 
[  269.539652][ T9321] [U] 
[  269.540744][ T9321] [U] 
[  269.542033][ T9321] [U] 
[  269.543098][ T9321] [U] 
[  269.544332][ T9321] [U] 
[  269.545523][ T9321] [U] 
[  269.546896][ T9321] [U] 
[  269.548083][ T9321] [U] 
[  269.549295][ T9321] [U] 
[  269.559728][ T9320] [U] 
[  269.855760][ T9334] netlink: 28 bytes leftover after parsing attributes in process `syz.0.723'.
[  269.859894][ T9334] netem: change failed
[  270.335211][   T29] tipc: Node number set to 2879924850
[  271.220449][ T9349] netlink: 8 bytes leftover after parsing attributes in process `syz.4.727'.
[  271.409042][ T9356] binder: BINDER_SET_CONTEXT_MGR already set
[  271.418142][ T9356] binder: 9355:9356 ioctl 4018620d 800002c0 returned -16
[  271.496496][ T9359] ªªªªªª: renamed from vlan0
[  271.737729][ T9370] netlink: 12 bytes leftover after parsing attributes in process `syz.2.732'.
[  271.845539][ T9378] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  271.848473][ T9378] tipc: Enabled bearer <udp:s>, priority 10
[  271.981752][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  271.999031][ T9388] bond0: (slave veth0_to_hsr): Error: Device can not be enslaved while up
[  272.131451][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  272.261466][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  272.323823][   T29] IPVS: starting estimator thread 0...
[  272.401509][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  272.421736][ T9394] IPVS: using max 27 ests per chain, 64800 per kthread
[  272.541486][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  272.681482][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  272.821603][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  272.961629][   T29] tipc: Node number set to 951986181
[  273.101466][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  273.321661][   T10] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  273.371632][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  273.531525][   T10] usb 6-1: Using ep0 maxpacket: 8
[  273.535394][   T10] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  273.538967][   T10] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  273.543898][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  273.548230][   T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  273.553198][   T10] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  273.558815][   T10] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  273.563687][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.795023][   T10] usb 6-1: usb_control_msg returned -32
[  273.797405][   T10] usbtmc 6-1:16.0: can't read capabilities
[  276.716607][ T9431] syz.2.749 (9431): /proc/9427/oom_adj is deprecated, please use /proc/9427/oom_score_adj instead.
[  276.805889][ T9431] netlink: 4 bytes leftover after parsing attributes in process `syz.2.749'.
[  277.021488][    C1] net_ratelimit: 3 callbacks suppressed
[  277.021507][    C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  277.674067][ T9439] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  277.716208][ T9446] ------------[ cut here ]------------
[  277.718947][ T9446] intf 08:02:11:00:00:00 [link=0]: bad STA 08:02:11:00:00:01 bandwidth 20 MHz (0) > channel config 1 MHz (8)
[  277.724602][ T9446] WARNING: drivers/net/wireless/virtual/mac80211_hwsim.c:2693 at mac80211_hwsim_sta_rc_update+0x5db/0x840, CPU#3: syz.2.753/9446
[  277.729695][ T9446] Modules linked in:
[  277.731787][ T9446] CPU: 3 UID: 0 PID: 9446 Comm: syz.2.753 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  277.736221][ T9446] Tainted: [L]=SOFTLOCKUP
[  277.737996][ T9446] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  277.743059][ T9446] RIP: 0010:mac80211_hwsim_sta_rc_update+0x5fd/0x840
[  277.746382][ T9446] Code: 00 48 8d 3d 05 51 c4 09 48 8b 4c 24 10 48 8b 44 24 20 89 da 44 8b 89 c0 01 00 00 55 48 8d b0 72 05 00 00 41 57 44 8b 44 24 14 <67> 48 0f b9 3a 58 5a e9 3c fc ff ff e8 42 4e e6 fa e8 cd d5 69 04
[  277.754967][ T9446] RSP: 0018:ffffc9000daa7110 EFLAGS: 00010246
[  277.757991][ T9446] RAX: ffff888051c5ea90 RBX: 0000000000000000 RCX: ffff88806ff54ec0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  277.761878][ T9446] RDX: 0000000000000000 RSI: ffff888051c5f002 RDI: ffffffff90e5fa70
[  277.766059][ T9446] RBP: 0000000000000008 R08: 0000000000000014 R09: 0000000000000000
[  277.769249][ T9446] R10: 0000000000000008 R11: 0000000000000000 R12: dffffc0000000000
[  277.773020][ T9446] R13: ffff88806ff55090 R14: ffff88806ba43100 R15: 0000000000000001
[  277.776696][ T9446] FS:  0000000000000000(0000) GS:ffff88809745a000(0063) knlGS:00000000f53edb40
[  277.781116][ T9446] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  277.784290][ T9446] CR2: 0000000080001080 CR3: 0000000029791000 CR4: 0000000000352ef0
[  277.787254][ T9446] Call Trace:
[  277.788732][ T9446]  <TASK>
[  277.790004][ T9446]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[  277.792165][ T9446]  mac80211_hwsim_sta_add+0xc9/0x290
[  277.794222][ T9446]  drv_sta_state+0x887/0x1960
[  277.796067][ T9446]  sta_info_insert_rcu+0x170b/0x2fa0
[  277.798427][ T9446]  sta_info_insert+0x16/0xd0
[  277.800270][ T9446]  ieee80211_add_station+0x471/0x6d0
[  277.802385][ T9446]  nl80211_new_station+0x145b/0x1dd0
[  277.804333][ T9446]  ? __pfx_nl80211_new_station+0x10/0x10
[  277.808940][ T9446]  ? nl80211_pre_doit+0x19a/0xae0
[  277.811209][ T9446]  genl_family_rcv_msg_doit+0x214/0x300
[  277.815394][ T9446]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  277.818303][ T9446]  ? genl_get_cmd+0x3ef/0x720
[  277.821096][ T9446]  ? bpf_lsm_capable+0x9/0x10
[  277.823502][ T9446]  ? security_capable+0x80/0x260
[  277.825757][ T9446]  ? ns_capable+0xd2/0xf0
[  277.827735][ T9446]  genl_rcv_msg+0x560/0x800
[  277.829916][ T9446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  277.832628][ T9446]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  277.834759][ T9446]  ? __pfx_nl80211_new_station+0x10/0x10
[  277.837002][ T9446]  ? __pfx_nl80211_post_doit+0x10/0x10
[  277.839194][ T9446]  netlink_rcv_skb+0x159/0x420
[  277.841347][ T9446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  277.843489][ T9446]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  277.845624][ T9446]  ? netlink_deliver_tap+0x1ae/0xcc0
[  277.847758][ T9446]  genl_rcv+0x28/0x40
[  277.849544][ T9446]  netlink_unicast+0x5aa/0x870
[  277.852298][ T9446]  ? __pfx_netlink_unicast+0x10/0x10
[  277.855242][ T9446]  netlink_sendmsg+0x8b0/0xda0
[  277.857963][ T9446]  ? __pfx_netlink_sendmsg+0x10/0x10
[  277.860925][ T9446]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  277.864155][ T9446]  ____sys_sendmsg+0xa54/0xc30
[  277.866399][ T9446]  ? __pfx_____sys_sendmsg+0x10/0x10
[  277.868781][ T9446]  ? __pfx_futex_wake_mark+0x10/0x10
[  277.871198][ T9446]  ___sys_sendmsg+0x190/0x1e0
[  277.873916][ T9446]  ? __pfx____sys_sendmsg+0x10/0x10
[  277.876367][ T9446]  __sys_sendmsg+0x170/0x220
[  277.878538][ T9446]  ? __pfx___sys_sendmsg+0x10/0x10
[  277.880816][ T9446]  ? __ia32_sys_futex_time32+0x2f4/0x470
[  277.883652][ T9446]  __do_fast_syscall_32+0xe3/0x8c0
[  277.886444][ T9446]  do_fast_syscall_32+0x32/0x70
[  277.889067][ T9446]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  277.892405][ T9446] RIP: 0023:0xf6ffef6c
[  277.894406][ T9446] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  277.903193][ T9446] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  277.906325][ T9446] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080001080
[  277.909728][ T9446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  277.912857][ T9446] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  277.916277][ T9446] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  277.919715][ T9446] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  277.923443][ T9446]  </TASK>
[  277.924889][ T9446] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  277.927582][ T9446] CPU: 3 UID: 0 PID: 9446 Comm: syz.2.753 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  277.931784][ T9446] Tainted: [L]=SOFTLOCKUP
[  277.933401][ T9446] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  277.937596][ T9446] Call Trace:
[  277.938914][ T9446]  <TASK>
[  277.940086][ T9446]  dump_stack_lvl+0x100/0x190
[  277.942126][ T9446]  vpanic+0x552/0x970
[  277.943800][ T9446]  ? __pfx_vpanic+0x10/0x10
[  277.945742][ T9446]  panic+0xd1/0xe0
[  277.947399][ T9446]  ? __pfx_panic+0x10/0x10
[  277.949348][ T9446]  check_panic_on_warn.cold+0x19/0x34
[  277.951727][ T9446]  ? mac80211_hwsim_sta_rc_update+0x5db/0x840
[  277.954374][ T9446]  __warn.cold+0x191/0x348
[  277.956368][ T9446]  __report_bug+0x296/0x3d0
[  277.958433][ T9446]  ? mac80211_hwsim_sta_rc_update+0x5db/0x840
[  277.961083][ T9446]  ? __pfx___report_bug+0x10/0x10
[  277.963299][ T9446]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  277.965768][ T9446]  ? __bfs+0x150/0x2a0
[  277.967542][ T9446]  report_bug_entry+0xe1/0x290
[  277.969636][ T9446]  ? mac80211_hwsim_sta_rc_update+0x5fd/0x840
[  277.972271][ T9446]  handle_bug+0x1c9/0x2a0
[  277.974120][ T9446]  exc_invalid_op+0x17/0x50
[  277.976048][ T9446]  asm_exc_invalid_op+0x1a/0x20
[  277.978178][ T9446] RIP: 0010:mac80211_hwsim_sta_rc_update+0x5fd/0x840
[  277.980543][ T9446] Code: 00 48 8d 3d 05 51 c4 09 48 8b 4c 24 10 48 8b 44 24 20 89 da 44 8b 89 c0 01 00 00 55 48 8d b0 72 05 00 00 41 57 44 8b 44 24 14 <67> 48 0f b9 3a 58 5a e9 3c fc ff ff e8 42 4e e6 fa e8 cd d5 69 04
[  277.988178][ T9446] RSP: 0018:ffffc9000daa7110 EFLAGS: 00010246
[  277.990590][ T9446] RAX: ffff888051c5ea90 RBX: 0000000000000000 RCX: ffff88806ff54ec0
[  277.993643][ T9446] RDX: 0000000000000000 RSI: ffff888051c5f002 RDI: ffffffff90e5fa70
[  277.996714][ T9446] RBP: 0000000000000008 R08: 0000000000000014 R09: 0000000000000000
[  277.999625][ T9446] R10: 0000000000000008 R11: 0000000000000000 R12: dffffc0000000000
[  278.002852][ T9446] R13: ffff88806ff55090 R14: ffff88806ba43100 R15: 0000000000000001
[  278.005466][ T9446]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[  278.007345][ T9446]  mac80211_hwsim_sta_add+0xc9/0x290
[  278.009340][ T9446]  drv_sta_state+0x887/0x1960
[  278.011264][ T9446]  sta_info_insert_rcu+0x170b/0x2fa0
[  278.013148][ T9446]  sta_info_insert+0x16/0xd0
[  278.014614][ T9446]  ieee80211_add_station+0x471/0x6d0
[  278.016232][ T9446]  nl80211_new_station+0x145b/0x1dd0
[  278.017988][ T9446]  ? __pfx_nl80211_new_station+0x10/0x10
[  278.019929][ T9446]  ? nl80211_pre_doit+0x19a/0xae0
[  278.021589][ T9446]  genl_family_rcv_msg_doit+0x214/0x300
[  278.023498][ T9446]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  278.025826][ T9446]  ? genl_get_cmd+0x3ef/0x720
[  278.027385][ T9446]  ? bpf_lsm_capable+0x9/0x10
[  278.028948][ T9446]  ? security_capable+0x80/0x260
[  278.031049][ T9446]  ? ns_capable+0xd2/0xf0
[  278.032894][ T9446]  genl_rcv_msg+0x560/0x800
[  278.034841][ T9446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  278.036969][ T9446]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  278.039245][ T9446]  ? __pfx_nl80211_new_station+0x10/0x10
[  278.041566][ T9446]  ? __pfx_nl80211_post_doit+0x10/0x10
[  278.043546][ T9446]  netlink_rcv_skb+0x159/0x420
[  278.045311][ T9446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  278.047100][ T9446]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  278.049051][ T9446]  ? netlink_deliver_tap+0x1ae/0xcc0
[  278.051219][ T9446]  genl_rcv+0x28/0x40
[  278.052883][ T9446]  netlink_unicast+0x5aa/0x870
[  278.054862][ T9446]  ? __pfx_netlink_unicast+0x10/0x10
[  278.056983][ T9446]  netlink_sendmsg+0x8b0/0xda0
[  278.058853][ T9446]  ? __pfx_netlink_sendmsg+0x10/0x10
[  278.060895][ T9446]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  278.063115][ T9446]  ____sys_sendmsg+0xa54/0xc30
[  278.064938][ T9446]  ? __pfx_____sys_sendmsg+0x10/0x10
[  278.066970][ T9446]  ? __pfx_futex_wake_mark+0x10/0x10
[  278.068662][ T9446]  ___sys_sendmsg+0x190/0x1e0
[  278.070465][ T9446]  ? __pfx____sys_sendmsg+0x10/0x10
[  278.072512][ T9446]  __sys_sendmsg+0x170/0x220
[  278.074397][ T9446]  ? __pfx___sys_sendmsg+0x10/0x10
[  278.076427][ T9446]  ? __ia32_sys_futex_time32+0x2f4/0x470
[  278.078619][ T9446]  __do_fast_syscall_32+0xe3/0x8c0
[  278.080600][ T9446]  do_fast_syscall_32+0x32/0x70
[  278.082524][ T9446]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  278.084398][ T9446] RIP: 0023:0xf6ffef6c
[  278.085748][ T9446] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  278.093218][ T9446] RSP: 002b:00000000f53ed50c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  278.095944][ T9446] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080001080
[  278.098314][ T9446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  278.100894][ T9446] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  278.103526][ T9446] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  278.105826][ T9446] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  278.108712][ T9446]  </TASK>
[  278.110319][ T9446] Kernel Offset: disabled
[  278.111754][ T9446] Rebooting in 86400 seconds..