last executing test programs:

1m26.143891716s ago: executing program 2 (id=801):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
r1 = socket(0x11, 0x800000002, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000540)={'ip6tnl0\x00', {0x2, 0x0, @private=0xf30a4000}})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, 0x0}], 0x1, 0x72, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000140)={'ip6gre0\x00', &(0x7f0000000080)={'ip6_vti0\x00', 0x0, 0x2f, 0x40, 0x8, 0x7, 0x21, @private0, @rand_addr=' \x01\x00', 0x20, 0x40, 0x7, 0x8}})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@ipv6_delroute={0x28, 0x19, 0x1, 0x70bd2a, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc8, 0x5}, [@RTA_MULTIPATH={0xc, 0x9, {0xfffe, 0x5, 0x6}}]}, 0x28}}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f00000001c0)={<r6=>r1, 0xffffffffffff684d, 0x4, 0x5})
recvmsg$kcm(r6, &(0x7f0000000500)={&(0x7f0000000200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000280)=""/219, 0xdb}, {&(0x7f0000000380)=""/47, 0x2f}, {&(0x7f00000003c0)=""/23, 0x17}, {&(0x7f0000000400)=""/23, 0x17}, {&(0x7f0000000580)=""/4096, 0x1000}], 0x5, &(0x7f00000004c0)=""/33, 0x21}, 0x220)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_REGS(r6, 0x8090ae81, &(0x7f0000001580))

1m26.143561078s ago: executing program 2 (id=802):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4800000010001fff000000008100000000000000", @ANYRES32=0x0, @ANYBLOB="00000000003f0000200012800b00010067656e657665000010000280060005004e24000004000e0008000a8c", @ANYRES32=r2], 0x48}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)

1m26.05494257s ago: executing program 2 (id=803):
unshare(0x2c010200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xc3490000)
unshare(0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@delchain={0x24, 0x65, 0x400, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x509d884560ba1ba6, 0x3}, {}, {0x8, 0x10}}}, 0x24}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)=ANY=[@ANYBLOB="60b80000", @ANYRES16, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x4040084)
syz_usbip_server_init(0x5)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x1, 0x80000000, 0x4, {0x0, 0x0, 0x0, 0x0, {0x0, 0x3}, {0xa, 0xffe0}, {0xfff1, 0x9}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_LIMIT={0x8, 0x1, 0xf4b6}]}}]}, 0x3c}}, 0x20004055)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x4, 0xc0000000, 0x0, {0x0, 0x0, 0x0, 0x0, {0x3, 0x3}, {0xa, 0xe}, {0x8, 0x9}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0xe7e7}, @TCA_FQ_PIE_LIMIT={0x8, 0x1, 0x2}]}}]}, 0x44}}, 0x20004015)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
unshare(0xa050a00)
r2 = open(&(0x7f0000000180)='./file0\x00', 0x80001, 0x57)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f00000001c0))
ioctl$SIOCX25GCAUSEDIAG(r1, 0x89e6, &(0x7f0000000a80)={0xc0})
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCMBIS(r3, 0x541e, &(0x7f0000000040))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m25.364909411s ago: executing program 2 (id=808):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000080)={0x8})
r4 = openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000500), 0x12)
connect$inet(r0, &(0x7f0000003580)={0x2, 0x0, @multicast1}, 0x10)
ioctl$KDGETMODE(r2, 0x4b3b, &(0x7f00000000c0))

1m25.315053214s ago: executing program 2 (id=811):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, 0x0}], 0x1, 0x4e, 0x0, 0x0) (async)
prlimit64(0x0, 0x7, &(0x7f0000000040)={0x0, 0x100}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="0f080fae04a200400f01c426660f3a15e6160fc76bdbf08666350f2170260fed9c000066b9230b00000f32", 0x2b}], 0x1, 0x0, 0x0, 0x10) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
r3 = syz_usb_connect(0x6, 0x2d, &(0x7f0000000400)=ANY=[@ANYRES64=0x0], 0x0) (async)
r4 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) (async)
r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000b00), 0x80003, 0x0)
ioctl$DVD_WRITE_STRUCT(r5, 0x5392, &(0x7f0000000b40)=@copyright={0x1, 0x0, 0xd, 0x6})
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000200)='.request_key_auth\x00', &(0x7f0000000240)=@secondary)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x402, 0x440400) (async)
syz_usb_disconnect(r3)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="1201010200000010ac05740240000102030109022d00010100708009040004020301030c09210500000122ed0f09058103000200600de70402032000030006"], 0x0)

1m24.96446037s ago: executing program 2 (id=814):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0xf)
sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000940)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000040)={0x7eaa5b9e, {{0xa, 0x4e22, 0x3, @remote, 0x3}}}, 0x88)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="500000001000370400000000ffdbdf2500000000", @ANYRES32=r2, @ANYBLOB="01f5050000000000300012800b00010067656e657665000020000280050004000100"], 0x50}, 0x1, 0x0, 0x0, 0x11}, 0x40004)
r3 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r3, &(0x7f0000000100)="ba0455111f1b8072fd972350948b312588a8", 0x36, 0x0, &(0x7f00000001c0)={0x11, 0x8100, r2, 0x1, 0xd8, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14)

1m24.892132085s ago: executing program 32 (id=814):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0xf)
sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000940)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000040)={0x7eaa5b9e, {{0xa, 0x4e22, 0x3, @remote, 0x3}}}, 0x88)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="500000001000370400000000ffdbdf2500000000", @ANYRES32=r2, @ANYBLOB="01f5050000000000300012800b00010067656e657665000020000280050004000100"], 0x50}, 0x1, 0x0, 0x0, 0x11}, 0x40004)
r3 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r3, &(0x7f0000000100)="ba0455111f1b8072fd972350948b312588a8", 0x36, 0x0, &(0x7f00000001c0)={0x11, 0x8100, r2, 0x1, 0xd8, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14)

1m24.354931683s ago: executing program 1 (id=817):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='environ\x00')
r1 = syz_open_dev$ndb(&(0x7f0000000100), 0x0, 0x1a18c1)
ioctl$NBD_SET_SIZE(r1, 0xab02, 0x6)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x14, 0x0, &(0x7f00000000c0))
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r4)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180), r0)
sendmsg$IPVS_CMD_SET_CONFIG(r4, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x15c, r6, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffff72b}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6erspan0\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'hsr0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x64010100}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}]}, @IPVS_CMD_ATTR_DAEMON={0x54, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private2}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2b}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@remote}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x28}}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}]}, @IPVS_CMD_ATTR_DEST={0x38, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x270e}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, '\x00', 0x34}}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x6}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x4014}, 0x40015)
sendmsg$DEVLINK_CMD_RATE_SET(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES16=r5, @ANYBLOB="010000000000000000002a00000008005800000000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x3c}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
read$FUSE(r3, 0x0, 0x0)

1m24.28499897s ago: executing program 1 (id=818):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc2, 0x1ff)
write$binfmt_elf64(r0, &(0x7f00000007c0)={{0x7f, 0x45, 0x4c, 0x46, 0x5, 0xfc, 0x0, 0x40, 0x7fff, 0x2, 0x3e, 0xfffbffed, 0x294, 0x40, 0x1dd, 0xf, 0x0, 0x38, 0x1, 0x0, 0x2}, [{0x3, 0x83, 0x4, 0xd, 0x1c8, 0xe6, 0x1004, 0x3}]}, 0x78)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ac0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000001c0)={0x54, r2, 0x1, 0xffffffff, 0x0, {0x26}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x10001}, {0xc, 0x90, 0x1ff}}]}, 0x54}}, 0x0)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

1m24.284652006s ago: executing program 1 (id=819):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r0)
r1 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="3000000040000701feffffff00000000017c0000040042801400018006000600800a000008000100", @ANYRES32=0x0, @ANYBLOB="040002"], 0x30}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0xd, 0x0, 0x480c5}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x270}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6}, 0x28)
ioctl(0xffffffffffffffff, 0xb8, &(0x7f0000000000)="15e0185428227964d1")
r2 = syz_open_dev$dvb_frontend(&(0x7f00000015c0), 0x0, 0x400)
ioctl$FE_GET_PROPERTY(r2, 0x80106f53, &(0x7f0000000000)={0x15, &(0x7f0000000200)=[{0x34, '\x00', @data=0x400, 0x7fffffff}]})
r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x40300, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000340)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x8000000000000001, 0x9, 0xfffffffffffffffd, 0x85, 0x2, 0x0, 0x4002004c8, 0x1004, 0x45c5, 0x20000c595, 0xfffffffffffffff9, 0xffffffffffffffff, 0x4, 0x0, 0x80000004000000, 0x4], 0x100000, 0x2010d3})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r6)
sendmsg$NL80211_CMD_SET_REG(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000004001b0000000c00228059fe00800400008006002100", @ANYRESHEX], 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x24040800)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r0, r0, r1, 0x1)

1m23.884781993s ago: executing program 1 (id=820):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000000)=0xa0, 0x4)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
symlinkat(&(0x7f0000000200)='./file0/file0\x00', r0, &(0x7f0000000240)='./file0\x00')
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)={0x1d8, 0x35, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x1c5, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x8, 0x1, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="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", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x1d8}], 0x1, 0x0, 0x0, 0x1}, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000000)=0xa0, 0x4) (async)
openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0) (async)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) (async)
symlinkat(&(0x7f0000000200)='./file0/file0\x00', r0, &(0x7f0000000240)='./file0\x00') (async)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)={0x1d8, 0x35, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x1c5, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x8, 0x1, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="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", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x1d8}], 0x1, 0x0, 0x0, 0x1}, 0x0) (async)

1m23.814964875s ago: executing program 1 (id=821):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000400)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="3c0000001000030500000000fcffffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001400128009000100626f6e64000000000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x14, r4, 0x1, 0x1fff, 0x0, {0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x8)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x9c, r4, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0xc8}, @MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2dfda4aa16a4126f}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}, @MPTCP_PM_ATTR_LOC_ID={0x5}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x54, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x9}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010102}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010100}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @local}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x1}, 0x10)

1m23.62476192s ago: executing program 1 (id=822):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2000})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r2, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000200)={0x40, 0x140c, 0x200, 0x70bd2c, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_RES_CQN={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_RES_CQN={0x8, 0x3d, 0x3}]}, 0x40}}, 0x4)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {0xfff2}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x2004805d}, 0x0)
r7 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000800)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0x4, 0xa}, {}, {0xffe0, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x8}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xfff2, 0x6}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt(r9, 0x1, 0x48, &(0x7f00000002c0)=""/174, &(0x7f0000000100)=0xae)
r10 = socket(0x400000000010, 0x3, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x78, 0x0, 0x2, 0x201, 0x0, 0x0, {0x5, 0x0, 0x9}, [@CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x4}, @CTA_EXPECT_MASK={0x4c, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @loopback}}}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x6}]}, 0x78}, 0x1, 0x0, 0x0, 0x4008044}, 0x4000000)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000380)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xd, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r11 = socket(0x400000000010, 0x3, 0x0)
r12 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r13=>0x0})
r14 = socket(0x400000000010, 0x3, 0x0)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x8000, 0x9, 0x9, 0x10000}]})
r15 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r15, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r16=>0x0})
sendmsg$nl_route_sched(r14, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r16, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x5c, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r13, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0x1}, {0x6, 0xf8}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1m23.485146347s ago: executing program 33 (id=822):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2000})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r2, &(0x7f0000000500)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000200)={0x40, 0x140c, 0x200, 0x70bd2c, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_RES_CQN={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_RES_CQN={0x8, 0x3d, 0x3}]}, 0x40}}, 0x4)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r6, {0xfff2}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x2004805d}, 0x0)
r7 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000800)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0x4, 0xa}, {}, {0xffe0, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x8}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xfff2, 0x6}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt(r9, 0x1, 0x48, &(0x7f00000002c0)=""/174, &(0x7f0000000100)=0xae)
r10 = socket(0x400000000010, 0x3, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x78, 0x0, 0x2, 0x201, 0x0, 0x0, {0x5, 0x0, 0x9}, [@CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x4}, @CTA_EXPECT_MASK={0x4c, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @loopback}}}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x6}]}, 0x78}, 0x1, 0x0, 0x0, 0x4008044}, 0x4000000)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000380)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xd, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r11 = socket(0x400000000010, 0x3, 0x0)
r12 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r13=>0x0})
r14 = socket(0x400000000010, 0x3, 0x0)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x8000, 0x9, 0x9, 0x10000}]})
r15 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r15, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r16=>0x0})
sendmsg$nl_route_sched(r14, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r16, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x5c, 0x2c, 0xd3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r13, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0x1}, {0x6, 0xf8}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

52.461485073s ago: executing program 4 (id=1249):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000380), 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000280)="dee7030022cf5c6c7bc31bd2599759fafa9e5e1dbac27b0426fc0299c41fb9b9761a1b44dac894f365ae68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fec505fc8a14622dba33ff9b054eb7e8a5bc4ab2719cb230328931deb95ef3fcafb1ce27743a93f4715976edec860ab49c3a4f51ab0124b50c3362201a307df03000", 0x83, r2)
keyctl$search(0xa, r2, &(0x7f0000000400)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x1, 0x2e}, 0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x14)
r3 = syz_open_dev$I2C(&(0x7f0000000040), 0x7f9f, 0x0)
ioctl$I2C_PEC(r3, 0x708, 0x2)
ioctl$I2C_SMBUS(r3, 0x720, &(0x7f00000000c0)={0x0, 0x46, 0x4008, &(0x7f0000000000)={0x1f, "e922604a455494c905fd8208ff0800714366f3808840c8000000080800"}})
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, 0x0, 0x80)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="a80000001000ffff25bd7000fddbdf3d00000000", @ANYRES32=0x0, @ANYBLOB="350e0500230000008000128008000100767469007400028008000400e000000208000400ffffffff08000600810000000800030051b40000080002000e00000008000200cad9000008000100", @ANYRES32, @ANYBLOB="080003000300000008000200004000000800030011370000080006000f0000000800020001000000080002000a000000080005000a01010108001f"], 0xa8}, 0x1, 0x0, 0x0, 0x4000000}, 0x4008000)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000080), 0x0)
ioctl$TCSETAF(r4, 0x5408, &(0x7f00000000c0)={0xcf50, 0x2924, 0xffff, 0x9dff, 0xf})
socket$kcm(0x2, 0x5, 0x106)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000100)={0x0, 0xfffffffd, 0xfffffff9, 0x13, 0x11, "000000600000002b2400a14a5ea24f999600"})
r6 = syz_open_pts(r4, 0x0)
ioctl$INCFS_IOC_PERMIT_FILL(r6, 0x40046721, &(0x7f00000001c0)={r6})
r7 = dup3(r6, r4, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x17)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x4)

51.022903917s ago: executing program 4 (id=1255):
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r0, 0x0) (async)
keyctl$describe(0x6, r0, 0x0, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="2000000010000104000000000000000000480000", @ANYRES32=0x0, @ANYBLOB="ff"], 0x20}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="6400000010000305160000000000000000008847", @ANYRES32=0x0, @ANYBLOB="00000000000000004400128009000100626f6e6400000000340002800500010004000000050016000000000008001c000000000005000c00000000000a001a"], 0xc3}, 0x1, 0x100000000000000}, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000002300010324bd7002fadbdf6501"], 0x14}}, 0xc004) (async)
r2 = socket(0x10, 0x3, 0x0)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x2f8082, 0x0) (async)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000001540)={0x28, r4, 0x801, 0x70bd2a, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_KEY={0xc, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x80}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4091}, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x48, r4, 0x4, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xff3, 0x51}}}}, [@NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_TYPE={0x8}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x4004000}, 0x4000040) (async)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

51.021808072s ago: executing program 4 (id=1257):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
getsockopt$llc_int(r0, 0x10c, 0x4, &(0x7f0000000300), &(0x7f00000002c0)=0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$XFS_IOC_ERROR_CLEARALL(r1, 0x40085875)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000010400000000fedbdf2500000000", @ANYRES64=r1, @ANYBLOB="02000000aa000600200012800b000100627269646765000067060b128f5fb3563b630a4a100002800c001f00025e00f5b7cd439c06acd42539abd9438c05c0d287160a21350119bbb3ca5f15add62b1928a777ce411ef72391d58f14e5500e5dbe52b30d688b2b323388449c69110f49c0db"], 0x40}}, 0x24000050)

50.971771436s ago: executing program 4 (id=1260):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@bloom_filter={0x1e, 0x0, 0xca, 0x3, 0x0, 0x1}, 0x50) (async)
mprotect(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0) (async, rerun: 32)
sigaltstack(&(0x7f0000000240)={&(0x7f0000001c00)=""/4095, 0x80000000, 0xfff}, 0x0) (async, rerun: 32)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x3938700}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xf, &(0x7f0000000000)=@ringbuf={{0x18, 0x2}, {{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0x2}, {}, {0x85, 0x0, 0x0, 0x9c}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}}}, &(0x7f0000000200)='GPL\x00'}, 0x94)

50.926935613s ago: executing program 4 (id=1261):
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000002780), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f0000004080)={0x0, 0x0, &(0x7f0000004040)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002cbd70000180ffff030000000c0002008100000000000000080001000000e6"], 0x28}, 0x1, 0x0, 0x0, 0x4044012}, 0x80)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000080)={0x8})
r6 = socket(0x10, 0x803, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
getsockname$packet(r6, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r7=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r8=>0xffffffffffffffff})
r9 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="a4000000", @ANYRES16=r2, @ANYBLOB="00012bbd7000fddbdf25020000000c000800ff7fffffffffffff0c00030009000000000000000800010000000000700007800c00018008000100", @ANYRES32=r3, @ANYBLOB="0c00018009322c00", @ANYRES32, @ANYBLOB="0c00018008000100", @ANYRES32=r4, @ANYBLOB="0c00018008000100", @ANYRES32=r5, @ANYBLOB="0c00018008000100", @ANYRES32=r6, @ANYBLOB="0c00018008000100", @ANYRES32=r7, @ANYBLOB="0c00018008000100", @ANYRES32=r8, @ANYBLOB="0c00018008000100", @ANYRES32, @ANYBLOB="0c00018008000100", @ANYRES32=r9, @ANYBLOB], 0xa4}, 0x1, 0x0, 0x0, 0x4000084}, 0x0)
madvise(&(0x7f00004ba000/0x2000)=nil, 0x2000, 0xc)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xc0068000, 0x0, 0xfd6c, 0x0, 0x0, 0x0)

50.864090842s ago: executing program 4 (id=1265):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r0)
ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000300000020"})
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x1fe, 0x0, 0x200000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
socket$alg(0x26, 0x5, 0x0)

35.113607939s ago: executing program 34 (id=1265):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r0)
ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000300000020"})
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x1fe, 0x0, 0x200000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
socket$alg(0x26, 0x5, 0x0)

16.965479558s ago: executing program 3 (id=1682):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0xc4)
ioctl$SIOCAX25ADDUID(r0, 0x89e1, &(0x7f0000000080)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0xee01})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r1, 0x400454c9, 0x5)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
openat2(r2, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)={0x80042, 0x72, 0x9}, 0x18)
ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, &(0x7f0000000100))
ioctl$TUNSETNOCSUM(r1, 0x400454c8, 0x0)

16.801618197s ago: executing program 3 (id=1686):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x1d, &(0x7f0000000180)=0x7, 0x4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000340)=0x63ba, 0x4)
sendmmsg$inet6(r2, &(0x7f0000000880)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x3, @ipv4={'\x00', '\xff\xff', @loopback}, 0x9}, 0x1c, 0x0}}], 0x1, 0x60040000)
recvmmsg(r2, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}, 0xdb30}], 0x1, 0x40002142, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
r4 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000400)=ANY=[@ANYBLOB="1201000009b768405e0483020b9901e40201090227000100000000090400fb015cc7aa00090509"], 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x3, 0x101000)
r5 = syz_io_uring_setup(0x830, &(0x7f0000000300)={0x0, 0x1000cd1d, 0x10100}, &(0x7f0000000000), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_PBUF_RING(r5, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x0, 0x4000}, {0x0}, {0x0, 0x0, 0x1}, {0x0}]}, 0x4, 0x2}, 0x1)
migrate_pages(0x0, 0x2, &(0x7f0000000040)=0x7f, &(0x7f0000000300)=0xa)
syz_usb_disconnect(r4)
syz_usb_connect$printer(0x5, 0x36, &(0x7f0000000040)=ANY=[], &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0xfcff}}]})
sendmsg$kcm(r3, &(0x7f0000000040)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @local}}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000ac0)="ee", 0xffffff1f}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb71658bda99b49720fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)

14.132165742s ago: executing program 3 (id=1730):
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="540000001200010000080000000000000900800000004e220000000000000000000000000000000000000900"/56, @ANYRES32=0x0, @ANYBLOB="010000000000000000000000000010000800030011000000"], 0x54}}, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="0701090e0401000065030000008000007f000000ff0000000000000000000000d7c324919162a02385f4ba415a4705cb99d9a3fc645dcdca4b3d225e59dc92090b7d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800"/1346], 0x542)
socket$nl_sock_diag(0x10, 0x3, 0x4) (async)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="540000001200010000080000000000000900800000004e220000000000000000000000000000000000000900"/56, @ANYRES32=0x0, @ANYBLOB="010000000000000000000000000010000800030011000000"], 0x54}}, 0x0) (async)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"/1346], 0x542) (async)

14.130831976s ago: executing program 3 (id=1733):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0f000000040000000800000001"], 0x50)
r1 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x1, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@o_path={&(0x7f0000000080)='./file0\x00', r0, 0x4000, r2}, 0x18)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01)
write$sndseq(r3, &(0x7f0000000340)=[{0x1e, 0x0, 0x0, 0xfd, @time, {}, {}, @result}], 0x1c)
close_range(r0, 0xffffffffffffffff, 0x0)

14.05536054s ago: executing program 3 (id=1736):
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="b702000014000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe0000000085000000c0000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c03406910927c6b0b55b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfe79578e51bc53099e90f4580d760551b5b342f7cbdb9cd38bdb2209c676b2ac2deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f132020000002cbe7bc04b82d2789cb1b2b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c41146dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a42b359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780c70014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e506d1387b63112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece08ac772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2ef0ae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a3f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099bdae7ed04935c2c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adeb988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ffa3c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe4a3ced846891180604b6dd2499d16d7d9158ffffff069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb0814040000007874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dbae3428d2129ecfce1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296c6a298c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f050000000000000026049fe86e09623524f390bf79b441b75fc790c58e273cd905deb28c13c1ed1c0d9cae846b03008cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f885cc48f97496079654f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b4749c28eb5167e9936ed327fb237a56224e49d9ea956d1798571b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecf743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be182724d95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd0403a099f32468f1561f058960d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b656dc0e32384f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bbe3e8ef76f57a2d0e69115d33394e86e4b83c0f3c2a34635f3eee4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cd082027c641ec4355eb4acff90756d1a1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8cc3fe28bc3586844f5fecb92aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a5906002fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128ab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0afd9ae134400f70b5e6aefb7eee403502732df858a2ea033b6c91c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80ffb8f386bb79f5589829b6b0679b5d65a00000000000000e6ff00000000000000000000faff0000bab50bc8508a9644d3e7c328b0ff22035c8073f8c1f0e3da7339fc81d4ab3ef2857ef70a81d8a1628da28c942571880e22df7cabae56d5ff5e483c9c1f5a258b8f1f34cc300312f76a374a6e9b3f9dbd7f538a80b00f97e47895b3201c5126feca0888956a7d768198d9c2109ac508a47ebb99c539ef45af7d87b308117a9e321a3861bc42cf41942c31268a4020221d7b1622585094eddd83c7f4acdd7f5c23d8b730bf03118261edada8b8487a3b1b7548a4687a91f12bf70bb1df3bfe7d4b92ad6fcbf401efd6eb004cf20016ad8d1dad136dd856ffca238b39482811f9c8524bf182f1956a3d044423927df28880bbd11c06407220df8e1d1d483d947d990dc175803d765ca14a915a0040b641959ad3e776b4bb4852fea12983dc18b7404914a6137dc4a78f1e0d331c60a9019c21698cd18753491df962f496f2395563e9c3d7b1228d0e488cf7e50a29541aa757f2e2ee9ff4433d65db0de5a123d569e39dce481156cbec584c9a32a8e3b032fa003192c891d83119bc950abac9147b9fcb0acd9a207b5ceb7e8ed1d91c000000000000000000000000000000141258373281153fa27e586ea82650f070d8851ac9e7ac07b37a6479d4017b5b5af3ff4c91235df4f657d77e386a329aec4d766369c86b62b01ceb028c6fcf206883633cb143016b9f5351a45a8cb4ea110ba700000000000000883416b6eff6a793c71deb7d780c4f51d86ece127c0714144916f397d398ad2fe72b710b932c15c2369cb5d2d2f6ae420672c4a626195a891ac51825077fbc286aa3866bbf18a4a8b836ea8c90af0d5f0aff55b50bc18c27875ed2628b91224b7fa9fd10ccd7c1b1a92bac529df981a6d30100e68555553625c0e91a51000000000000000000fe030f85b294f3ea1fce314a9dcefbe3b64e83c35c5e95734786ca78315793cc0e6e776d2ec07c55cd89541ec25e074e840287011cab538d79e1569df321282071d49a4dc5fb2d7da1d05249d0e153fd04aca2", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="06ff03076844babeb89e14f00800", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
setrlimit(0x6, &(0x7f00000000c0)={0xe0, 0xd26c})
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYRESHEX=r1], 0x1c}, 0x1, 0x0, 0x0, 0xc011}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES32=r2, @ANYBLOB="a1b3ee0006000000cc801c81bbf4b51676bfd7a98d68a40ada5dac3a8843ab28c08aeb6c594739c3b6ec20aaedd8082fac0e30108b46e77f71289a5b904eb378f7bf65aaf4706f0000"], 0x28}, 0x1, 0x0, 0x0, 0x810}, 0x40010)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x8000, 0x1f7)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x201, 0x4000003e, r4, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, &(0x7f0000000080)={0x8})
sendmsg$NLBL_UNLABEL_C_STATICADD(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2060c0, 0x11)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r7, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0xffffffffffffff6b}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000000000)=""/130, 0x82}], 0x1, 0x0)

13.875369467s ago: executing program 3 (id=1738):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5b5d}, [@IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x2}]}]}, @IFLA_ALT_IFNAME={0x14, 0x35, 'bridge_slave_1\x00'}]}, 0x44}}, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000180)="10797fcd6cd957d2b903c6bf46b4abf3769ff075475e4bd6e43be1712bf8b4dc", 0x20)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
recvmsg$can_j1939(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000200)=""/33, 0x21}, {&(0x7f0000000300)=""/139, 0x8b}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f00000003c0)=""/203, 0xcb}, {&(0x7f00000004c0)=""/198, 0xc6}], 0x5}, 0x100)
r3 = accept4(r0, 0x0, 0x0, 0x80000)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)="f78d9ca300ff48f3be52163448412ba8", 0x10}], 0x1, &(0x7f0000000740)=ANY=[@ANYBLOB="a00000"], 0xa0, 0x20000080}], 0x1, 0x44010)
recvmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x60)

4.399495746s ago: executing program 0 (id=1831):
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000000203010100000000000000000400004a080001000100e529772d377e6d0577d60e22b81ab519c96f"], 0x1c}, 0x1, 0x0, 0x0, 0x48841}, 0x2000c010)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x169101, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000180)=@ethtool_ringparam={0x13, 0x0, 0x0, 0xfffffffc, 0xffffffff, 0xffff8001, 0x0, 0x2}})
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000180))
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendto(r2, &(0x7f0000000300)="dac752fd10bcb846b993a2f3ca1b17e4dbd9e03f77d5ff7bb3a37026dab0a82b1e2901627aa519d7c0bc62686b69213c37a1a0553675cb5a34fcbb4ad2d28db070c5fd97651e30bce55cbd3bd725d40f9e08a3785b9bd5ffb79240fd2d027e0ff8467c164f49149ef3cd2ecfd664d9ddaad05a20c6172bb68f367467f0f0e8b7344d28e240ea20d9c353d6d14bf073242b80541d5b7485f5f1090e7794a53809aa12c5bd717458a708f57c8a4008363f70208bb46bb94470fd5282d35a90c8217170f6f208f102f8e9e42f155a", 0xcd, 0x0, &(0x7f0000000400)=@ax25={{0x3, @default, 0x4}, [@bcast, @bcast, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]}, 0x80)
ioprio_set$pid(0x2, 0xffffffffffffffff, 0x2000)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000000203010100004421000000000200000a08"], 0x1c}, 0x1, 0x0, 0x0, 0x20080041}, 0x20008090)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, &(0x7f0000000280), 0x10)
sendmsg$can_bcm(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)={0x5, 0x0, 0x0, {0x0, 0x2710}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "884e068a5e4e2085"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x5, 0x0, 0xa, {}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "25f87df99dc48af4"}}, 0x48}}, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000080)={'syz1\x00', {0x0, 0x1}, 0x0, [0x80000000, 0x3, 0x3ff, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, 0x0, 0x100000, 0x0, 0x0, 0xf5b1, 0xffffffff, 0x10000000, 0x99, 0x20000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x0, 0x1], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x200000, 0x0, 0x7fc, 0x2, 0x0, 0x2000079, 0x800400, 0x0, 0x0, 0x10000, 0x40000, 0x0, 0xc0800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4771], [0xc35, 0x7f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x7, 0x0, 0x8, 0x0, 0x0, 0x200000, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x7fff], [0x10000002, 0xfffffffc, 0x6, 0x0, 0x0, 0x3, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x4, 0x80000800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, 0xfffffffd, 0x0, 0x0, 0x100000, 0x8001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0xffffe]}, 0x45c)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x5)
r5 = syz_open_dev$loop(&(0x7f0000000240), 0x5, 0x0)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f0000000280)={r5, 0x5, {0x0, 0x0, 0x0, 0x8000000000000001, 0x0, 0x0, 0x5, 0x1a, 0xc, "faf98317e5a1149989fc67be43ea6acc96e3a2fe5a9bd6a6de4d1c128bbad0099cebdc25f5ab60c9e69098c8b534464c516bdd8a0f350000000000000300", "32d8cc26f7061a74df2cfc06489f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x9]}})
ioctl$UI_SET_SWBIT(r3, 0x4004556d, 0x3)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$UI_DEV_DESTROY(r3, 0x5502)
ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07)
r6 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000200)={0x0, "f321bc28b36bb1abda2896eded40355d6c19b143c45fb1d7343a7fe45b913c5bd7e08aac10799bf40f01cf89f978a6a195808797a8353e62f653647e4710bc67", 0x40}, 0x48, 0x0)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000000c0)={'fscrypt:', @desc2}, &(0x7f0000000100)={0x0, "239d3aa143e639f74e16ff67d2b2476bf830af13b48e438c04f3c742dccbbde1f6ce45cd7c807cb15a6de1942455811b108543b2745f00", 0x36}, 0x48, r6)
r7 = syz_open_dev$I2C(&(0x7f00000002c0), 0x9, 0x2080)
ioctl$I2C_SMBUS(r7, 0x720, &(0x7f0000000080)={0xff, 0x4, 0x5, &(0x7f0000000040)={0xa, "3fb4122a1bbb19355cf53da14fa6e19a0828fffff500"}})
r8 = add_key$keyring(&(0x7f0000000480), &(0x7f00000004c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r9 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROMVOLCTRL(r9, 0x30d, &(0x7f0000000040)={0x9d, 0x23, 0x2, 0x4})
keyctl$describe(0x6, r8, &(0x7f0000000500)=""/107, 0x6b)

4.27118813s ago: executing program 0 (id=1834):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xc40c1, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000200), 0x20a00, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000480)=0x1) (async)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000480)=0x1)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$TCSETSF2(r1, 0x89f2, &(0x7f0000000000)={0x20000, 0x4, 0x8, 0x0, 0xc, "a533b6a3f9f659ff35036bf79d8b4c2a246305", 0xe7, 0x8}) (async)
ioctl$TCSETSF2(r1, 0x89f2, &(0x7f0000000000)={0x20000, 0x4, 0x8, 0x0, 0xc, "a533b6a3f9f659ff35036bf79d8b4c2a246305", 0xe7, 0x8})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000400)=ANY=[@ANYBLOB="1201000009b768405e0483020b9901e40201090227000100000000090400fb015cc7aa00090509"], 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x3, 0x101000)
syz_usb_disconnect(r2)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x10, 0x56a, 0x29, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x5, 0x180, 0x5, [{{0x9, 0x4, 0x0, 0x4, 0x2, 0x3, 0x1, 0x3, 0xc, {0x9, 0x21, 0x3, 0x0, 0x1, {0x22, 0xfed}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x0, 0x60, 0xd}}}}}]}}]}}, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0) (async)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
ioctl$TIOCGPTPEER(r3, 0x5441, 0x2)
ioctl$FS_IOC_GETVERSION(r3, 0x80087601, &(0x7f0000000000))
syz_emit_ethernet(0x4e, &(0x7f0000000480)={@broadcast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x18, 0x3a, 0x0, @remote, @mcast2, {[], @mld={0x82, 0x0, 0x0, 0x0, 0x0, @private0}}}}}}, 0x0) (async)
syz_emit_ethernet(0x4e, &(0x7f0000000480)={@broadcast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x18, 0x3a, 0x0, @remote, @mcast2, {[], @mld={0x82, 0x0, 0x0, 0x0, 0x0, @private0}}}}}}, 0x0)
ioctl$TUNSETLINK(r0, 0x400454cc, 0x8) (async)
ioctl$TUNSETLINK(r0, 0x400454cc, 0x8)
close(0x3)

1.490398598s ago: executing program 5 (id=1849):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x600, 0x0, 0x4a011, 0x6}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e24}]}}}]}, 0x3c}}, 0x0)

1.4899742s ago: executing program 5 (id=1851):
unshare(0x6a040000)
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x70, 0x103301)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000007c0))
r1 = syz_open_dev$dri(&(0x7f0000000340), 0x0, 0x141102)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000280)='2', 0x1}], 0x1)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x1, 0x4, 0x20})
close_range(r1, r1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a090400000000000000000200fffe0900020073797a32000000000900010073797a30000000004c00048024000180090001006d65746100000000140002800800014000000001080002400000001724000180090001006d61737100000000140002800800024000000008080003"], 0xa0}, 0x1, 0x0, 0x0, 0x24040800}, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000900)=@usbdevfs_driver={0x6, 0x101, &(0x7f0000000800)="c65eb12d1befd597c5373bf7d45bbf37344d02dec799d7914535d9a5608b78560a115978016717ab32f18febe5ceea67a9ebb8a965350eb00089c8636dcd63df52e2c1e945cc7b0c42e54266aa74d398f5d1b8f6a0ae957276809939c2264fb0ed51532e2215e8073c58a2d279b60856008fc76a43a14e69f6b25f0872859569bc824cefbeb34b49431eb0e02b4e4c02bd9fc7a75f3c06d11fa151fbfa602666be4929ee035d33e50f7005acb2965ecb1582dfbce1659ea31ce955ecd273f89f00f054176bb8959f"})
r4 = socket$xdp(0x2c, 0x3, 0x0)
sendmsg$xdp(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000000)="b0f277b2d8bdc034233449ce6750dde7b4da23d6ff30ce9d0960ee73f52b5f34d1e4be1f970a2ca85f9109e58fe7c536d08e63222a005623aea50cf7a602b83309ee5d685dd1d45236538eedaedc1ef5508acd7936298bd592534207ff86a4bdef42dea11a0f53472c2461b9ac28079b", 0x70}, {&(0x7f0000000080)="9688dc7129024312a7564791ed30ffc21a9fd397d9fb71f34b18e39016cae187efb05ce921a06c291b8cf5a4d99ae6e4bff1d63b05f0517236bfb7ecb8cc07b4bf49b43857a3bc2e292d26837d9d289e7efc60ce97dba2cfbb1a39ed51272931d191458d88b1f737153fc0323c1194a6068a2050b883f54a17bf79cd279795750bf0bf7bfea996ff8f3312a7bf40edb4eb36c4c359b538985b", 0x99}, {&(0x7f0000000140)="91a4bdb42be952f062ca41026bc22b90a0e57c788f60d3e871f387cc6d26074fccad66392484ace1fd972355b94e5d12d12b668c98be0ec76e6e3d577602bb74ee903bbda6ad9e7f4aa9130eed44141da8308914ec1ab829e1bcf21616816a629d5a64b9fa412a23460c8b74021183f3297b3428bcad87ff2d64f2ac923b78f63c5c57c518709d1452625009cf734b6b9a31d970490b0df54236c6fd29437a6582b750c088a32dc175894e24c7896668e4fdb6a30afe54f7d50bf535d770cc6d6bbba776c55bc66eb6cecbe63f3f38df486d60b55ff0aaedb67f9dea19e338b02c89b12d1e5678cdb23ff418482b0592", 0xf0}, {&(0x7f0000000240)="201064caeadd", 0x6}, {&(0x7f0000000280)="239ea2caf487d1a97b27f268c29e96f33ce2caadaea1e914d3ce69ce272414ae9b10ea238b25a733493517c152f7370cdc928a0d9b46ea47ba0ec88f5d687efd8e245c4831d2863348bc91973ce71828a7d06b2b25e107ed96636dd2a37ef3e1763d22fbd283535f141de8563242aa660c42e19e3481198351046dd283d7157103e9d6bac3b8de5653bc04aaadd270ea5395f4ac002bb9c023e945ef4ba6f13db8ac9142bc24fe52a67396e3879678cdfdb0e73754c495f1da98f775ed9aeb07d1ef910101d1974d2be7707ef9191d9d8c1f02b99d6a7dc11699f39f6a27c117ff22cf4ea92af45065bbdacb8e22a8b8770f88", 0xf3}, {&(0x7f0000000380)="6e701ef5927dbd03b22bd70017bd5fba2ec5", 0x12}, {&(0x7f00000003c0)="228e9a1ab3214a221f671c2650a6dbf68a44656e520d75d01bd5d7d3bba5185cf27f1e5b29ed5c43273520cbaebd6986d04447414fcb565fb1a530bcf6377989c639f3670e30a0cc1b891f8671690c80ea4c7480734cb9c1fdd0e29533d7e954d09de5815ea4a2cec3e14efbe2c0e8055a4aba0e188c1391ae4c9bbb3e08fde66b6aa62ccfbf61fca8e52a449a1561847219eb2ae6ec0e09e33c3be8", 0x9c}, {&(0x7f0000000480)="698f995eb5de81ccca3a734539eb6d5f9c779f7aac8e4f67128492b87d903205bb3d81790eed1855e3bb7d35f954fbb2e69de2ebc5b0d904153f16f5309632b3ae4602ba31918b4a8e6980839b3e5b73b01c015420d2fcf2740ac89ad2f7144cb607070b2879b53e69fcbb165d38c4bebb722d84cff124edb78eda0f93ebac6c4aac58104cad9146551988358c32ac4f0612711c09740c250c6fb1e64dea053536380f39608a7bd1e9112bab51cc5a026466b2c3e78badd36ac0a25bc801995b74", 0xc1}, {&(0x7f0000000580)="67bc5616676f9fb9f6690241b77bf4b1931d6f8fc55ae989814418d8a9575182c6ebab16212df436e3754cd08c43d4e8a3bbf31baa2d7b6c5d8d56a6f9c0593114d1b7583a2ec444297ec2da940c0e8c402c1ca4c89cbdc6a54d0856b6ceba4ae0b9d131064706ab3cce95a0d83e1597ea12d7ef0fa7735c8b4c11ff5d946f52d51845cdb0156acfb5547f78a2f9ecf3f8ea3e1c8d4a8e7ed642b1f15638b279221d82e42ac9cf5e8bad8f0bc1a4a2f212f96947406acd5264891f343cb58b4b215b1026a754f958d0a9859f0cb5d31a274cd06194fe437d85f2ed861b94351ad58183", 0xe3}], 0x9, 0x0, 0x0, 0x4000050}, 0x2004c8c0)
syz_genetlink_get_family_id$smc(&(0x7f0000000780), r4)
prctl$PR_SET_IO_FLUSHER(0x41, 0x3)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
socket$inet_icmp(0x2, 0x2, 0x1)
madvise(&(0x7f00003bc000/0x4000)=nil, 0x4000, 0x3)

1.426069404s ago: executing program 6 (id=1852):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x50, 0x32, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x24048001)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0x1, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYRES64, @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.425511897s ago: executing program 6 (id=1853):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x8280, 0x0)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$UI_ABS_SETUP(r1, 0x401c5504, &(0x7f0000000340)={0x400000100002f}) (async)
write$uinput_user_dev(r1, &(0x7f0000000800)={'syz0\x00', {0xb, 0x8, 0x5, 0x4}, 0x41, [0xffffffff, 0x401, 0x6, 0x10000, 0x2, 0x4, 0x3, 0x0, 0xa8, 0xfffffff9, 0x4, 0x5b8, 0xfffffbff, 0x49, 0xd81, 0x20, 0x6, 0x9, 0x3, 0x8, 0x8, 0x3, 0x1, 0xca6f, 0x49c, 0x206, 0x6, 0xea, 0x5, 0x7fffffff, 0x3, 0x3000000, 0x7, 0x6625, 0x100, 0xd, 0xffffffff, 0x200, 0x8, 0x1, 0x8, 0x1000, 0x8, 0x7, 0xb5, 0x800, 0x5, 0x8, 0x80, 0x7fff, 0x2, 0x8c, 0x0, 0x9, 0x2, 0x8, 0xe3, 0x89a, 0xfbf, 0x8, 0x5, 0x40, 0x3, 0x2], [0x3, 0x7, 0x3a, 0x8deb, 0x2, 0x100, 0x7, 0xa, 0x8, 0x7, 0x464, 0x8, 0x2, 0x9, 0x6ed, 0xfffffffd, 0x1, 0xcbd, 0x3, 0x2, 0x5b, 0xf, 0x4, 0x2, 0x8000, 0x6, 0x5, 0x4, 0x8000, 0x0, 0x4, 0x2, 0x7fff, 0x76eb, 0x4, 0x0, 0x40000000, 0x6, 0x0, 0x6, 0x10000, 0x400, 0xe, 0x7, 0xfffffff8, 0x400, 0xb8cc, 0xbf2, 0x1, 0x3, 0x6, 0x80000001, 0x7, 0x2, 0x4, 0x6116b070, 0x5000, 0x9, 0x6, 0xfa81, 0x3e6e28f1, 0x7, 0x8, 0x6], [0x3e8000, 0x7, 0x80, 0x9, 0xc0000000, 0x401, 0x3, 0x8, 0x1, 0xe79, 0x8, 0x10001, 0x72, 0x39, 0x6, 0x6, 0x4, 0x8, 0x7fffffff, 0x4800, 0xffff, 0x8, 0x8, 0x0, 0x6, 0x667, 0xf, 0x6, 0xecb, 0x8, 0x8000, 0x1, 0x4, 0x8, 0x3, 0x8, 0x4, 0xe9, 0x4, 0x5, 0x3, 0x3, 0x6, 0x7, 0x5, 0x7fffffff, 0xff, 0x3, 0x7, 0x6, 0x9, 0x100, 0xb, 0x5, 0x400, 0x8, 0x7ff, 0x9, 0x7, 0x5, 0x1, 0x7f, 0x5, 0xc], [0xd, 0x320, 0x4, 0x0, 0x6, 0x64c, 0xfffffff7, 0x3, 0x1, 0x0, 0x4, 0x7fff, 0x3a36222d, 0x3, 0x4, 0x3, 0xf, 0x80000001, 0x7, 0xffff, 0x2, 0x1, 0xbf8b, 0xf, 0x8000, 0x7, 0x1ff, 0x14, 0x8, 0x1000, 0x6b, 0xa7, 0x81, 0x400, 0x100, 0x4, 0x0, 0x4, 0x5, 0x6, 0x43, 0x2, 0x8, 0x2, 0x7, 0x8, 0x10, 0x6464, 0x2, 0xffffffff, 0x6d, 0x3, 0x81, 0x0, 0x9, 0x0, 0x2, 0x9, 0x4, 0x7f, 0x6, 0x0, 0x1]}, 0x45c)
ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r1, 0x5501) (async)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r2, 0xffffffffffffffff, 0x0) (async)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000002840)={0xfffff4ce, 0x6, 0x10001, 0x9, 0x9, "2ea468089ad0c9043d6e07b9f3c1bebdb0c261", 0x1ff, 0x4697}) (async)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/custom0\x00', 0x3, 0x0)

1.34077174s ago: executing program 6 (id=1854):
r0 = fanotify_init(0x1a, 0x800)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0xa8)
fanotify_mark(r0, 0x441, 0x4800001a, r1, 0x0)
fanotify_mark(r0, 0x1, 0x20, r1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x1e0)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x1ff, 0x1)
ioctl$USBDEVFS_CLEAR_HALT(r2, 0x80045515, &(0x7f0000000040)={0x1, 0x1})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b000000000000000000000080000000000000ed82b05fa4ea3cdefdb192611ea31a952ffcc414eb1f62", @ANYRES32, @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="04000000010000000400"/28], 0x50)
r4 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1c, 0x4, 0x5, 0x8, 0x8020, r3, 0xfffffffc, '\x00', 0x0, r4, 0x0, 0x3, 0x2, 0x0, @value=r5}, 0x50)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000003c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

1.336793798s ago: executing program 6 (id=1855):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000280)="89000000120081ae08061cdc030ec080000000060000000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e74703", 0x3a}], 0x1}, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}], 0x1}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=ANY=[], 0x290}}], 0x1, 0x810)
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002cbd7000fddbdf252b00000018000180140002007665746830"], 0x2c}, 0x1, 0x0, 0x0, 0x8800}, 0x4048040)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000300)={&(0x7f0000000600)={0xdc, r0, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0x20000080}, 0x10080)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000500)={0xa8, 0x0, 0x1})
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
ioctl$KVM_CAP_DISABLE_QUIRKS2(r2, 0x4068aea3, &(0x7f0000000780)={0xd5, 0x0, 0x1a})
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
r6 = socket(0x11, 0x800000003, 0x0)
r7 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000600)={'team0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000900)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0xf, [], 0xff, [0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff]}}}}]}, 0x88}}, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.126047076s ago: executing program 5 (id=1856):
r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x2, 0x4}, 0xc)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wg2\x00', <r1=>0x0})
r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x6, 0x0, r0, 0x176, '\x00', r1, r2, 0x5, 0x2, 0x1}, 0x50)
write$cgroup_subtree(r2, &(0x7f0000000140)={[{0x2d, 'cpuacct'}, {0x2d, 'net'}, {0x2d, 'io'}, {0x2b, 'pids'}, {0x2d, 'devices'}, {0x2d, 'memory'}, {0x2b, 'rdma'}]}, 0x2f)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r2, 0xc01064bd, &(0x7f0000000300)={&(0x7f0000000200)="f121550c231878312400b4d6098b499a90e4378fecd6261fd687353e43ff8be56ee4f18ea3d20b9068bab6c7e48a31a8337f0537cd01f8c7cabbd1e78497e7904492f40a9f746cc327922801b95e9b1d5072f2eff6980f664ec2541b9a964b3ae84295207d31b88b39b0fdc27811eb4b4f53edf4725c663c87c60fe3851443526da095bbc580a427bc1fa83f2549e46f0bf2bbade8c84789987c0509e84f50a3c6adc0fa1f84acd0d3cc6fc5ff37522539863153a481db7cf23a408bf44fdddbb764d70ee259eb6b6dafafbc74164c73f12cf8f5630f813cae131c9261230b0c9a31c0a61280dc13ef06e91a40b79552aab41963f5838265c939", 0xfa, <r4=>0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f0000000340)={&(0x7f0000000180)=[<r5=>0x0, <r6=>0x0, <r7=>0x0, <r8=>0x0, 0x0, <r9=>0x0, <r10=>0x0], &(0x7f00000001c0)=[0x0, 0x0], 0x7, r4, 0xb0b0b0b0})
preadv(r0, &(0x7f0000000440)=[{&(0x7f0000000380)=""/185, 0xb9}], 0x1, 0x5, 0x3201)
write$P9_RVERSION(r0, &(0x7f0000000480)={0x13, 0x65, 0xffff, 0x7, 0x6, '9P2000'}, 0x13)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r2, 0xc05064a7, &(0x7f0000000680)={&(0x7f0000000540)=[0x0], &(0x7f0000000580)=[{}], &(0x7f0000000600)=[0x0, 0x0, 0x0, <r11=>0x0, 0x0], &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x5, 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f0000000780)={&(0x7f0000000700)=[0x0, 0x0, <r12=>0x0, 0x0, 0x0], &(0x7f0000000740)=[0x0, 0x0], 0x5, r8, 0xeeeeeeee})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000840)={0x400, 0x6, &(0x7f00000004c0)=[r9, r7, r8, r10, r6, r10], &(0x7f0000000500)=[0x200, 0x7, 0x8, 0x0, 0x7], &(0x7f00000007c0)=[r11, 0x0, r6, r12, r5, r5], &(0x7f0000000800)=[0xf7, 0x6, 0xffffffffffffb463, 0x7, 0x3], 0x0, 0x1})
r13 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000880), 0x12040, 0x0)
stat(&(0x7f00000008c0)='./file0\x00', &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, <r14=>0x0})
quotactl_fd$Q_GETQUOTA(r13, 0xffffffff80000700, r14, &(0x7f0000000980))
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000a00)={[{0x2d, 'devices'}, {0x2b, 'net_prio'}, {0x2b, 'net'}, {0x2d, 'hugetlb'}, {0x2d, 'rdma'}]}, 0x27)
ioctl$CEC_S_MODE(r13, 0x40046109, &(0x7f0000000a40)=0xf)
r15 = ioctl$UDMABUF_CREATE_LIST(r2, 0x40087543, &(0x7f0000000a80)={0x1, 0x4, [{r2, 0x0, 0x1000, 0xfffff000}, {r13, 0x0, 0x4000}, {r13, 0x0, 0xfffff000, 0x1000}, {r2, 0x0, 0xfffffffff0000000, 0x8000}]})
r16 = syz_open_dev$radio(&(0x7f0000000b00), 0x0, 0x2)
r17 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000b40), 0x2, 0x0)
ioctl$VIDIOC_G_TUNER(r17, 0xc054561d, &(0x7f0000000b80)={0x9, "fa2d184540c3c2e3de8ac8fc6344ebe05eacfea138b4f62b97a38abe72fac6fb", 0x3, 0x1, 0x5, 0x5, 0x10, 0x1, 0x16000000, 0x1})
ioctl$XFS_IOC_INUMBERS(r0, 0x80405880, &(0x7f0000000c00)={{0x9, 0x0, 0xfffffffb, 0x4, 0x4}, [{0x2, 0x9, 0x9, 0x8}, {0x3, 0xb9, 0x35, 0x47}, {0x101, 0x48, 0xc0, 0x6}, {0x8000, 0xffffffffffffa895, 0x9, 0x6}, {0xfffffffffffff001, 0xf2, 0x4, 0x6}]})
preadv(r3, &(0x7f0000000f00)=[{&(0x7f0000000cc0)=""/187, 0xbb}, {&(0x7f0000000d80)=""/157, 0x9d}, {&(0x7f0000000e40)=""/29, 0x1d}, {&(0x7f0000000e80)=""/87, 0x57}], 0x4, 0x0, 0x649)
close_range(r15, r3, 0x2)
ioctl$VIDIOC_S_MODULATOR(r16, 0x40445637, &(0x7f0000000f40)={0x6, "03c070301549323bbca7b1a2e2a1b3d1a05d9a9b99930094969ddb80f7c77e4b", 0x1200, 0x1e, 0x2, 0x10, 0x1})
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000001080)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x1c, 0x2, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008010}, 0x4000)
r18 = bpf$ITER_CREATE(0x21, &(0x7f00000010c0)={r13}, 0x8)
ioctl$PTP_EXTTS_REQUEST(r18, 0x40103d02, &(0x7f0000001100)={0xf, 0x2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000001a80)={0x400, 0x1, &(0x7f0000001140)=[r11], &(0x7f0000001180)=[0x8, 0x4, 0xff, 0x8, 0x2, 0x5d80, 0x7, 0x1, 0x8], &(0x7f0000001a00)=[r8, r6, 0x0, r9, 0x0, 0x0], &(0x7f0000001a40)=[0x0, 0x2], 0x0, 0x6d6})

1.125937297s ago: executing program 6 (id=1857):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0) (async)
syz_clone(0x888080, &(0x7f0000000000)="bec4e71a1dac21f2ea0aa8d87fecf529dcbeb459182a582346693ac92790f27127575db2052425112213af51c7f9099f7a2854edc9ee6bbbfe7bff5220d848bfe75e3406829485e57a1648ece338e01e92f6b07ca87d2f4e49f9abe2db58c0256840cc05db51b31c8291715ac516c36e57e08e051783bae284effc9787562b3aee76e8249c68669a250e34230d93e62020c5b31d9193d300b6f0", 0x9a, &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)="9995825951ccaa9a72747e6bb89d0cc04652cd345cea7852762681161b8c50a519eb2360b6af585e9a92ed629499f52cc7dc37605365921a6a63ac264b2868d2fc5d7c15c0e33849fd2441ff67f8032c0bf56dd049c4a592fdeba066c082ae9f852aab4ed11b53a8ae6f0ee926894ee43fc7035e2810b316af9b2cf4b05dddce8202e52e9495ea7d8e85f6a13c5efb19e21f9549dd6c6ac0ae3ec8654b55d842a812801226687670a6af6d016fdcaf657e1ddc8d68a13cd48a375ce8ff40aa8dedc23ea89aa786707a452b39db23ee0b076fbf60")
sendfile(r0, r0, 0x0, 0x9)

1.125609488s ago: executing program 5 (id=1858):
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x2b2383, 0x0)
ioctl$SNAPSHOT_UNFREEZE(r0, 0x3302)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_G_SELECTION(r1, 0xc040565e, &(0x7f0000000040)={0x2, 0x0, 0x3, {0xffff, 0x0, 0xf92, 0x5}})

1.061767546s ago: executing program 6 (id=1859):
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x2, 0x1000, @empty}, 0x1c)
r1 = socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x802, 0x7, @empty}, 0x1c)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/icmp6\x00')
preadv(r2, &(0x7f0000000180)=[{&(0x7f0000000640)=""/165, 0xa5}], 0x1, 0x180, 0x9)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r4 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x5eba40, 0x0)
r6 = syz_io_uring_setup(0x132b, &(0x7f0000000300)={0x0, 0x7303, 0x8000, 0x20000003, 0x143}, &(0x7f0000000380)=<r7=>0x0, &(0x7f00000003c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r5, 0x0, 0x0, 0x0, {0xb5c6}, 0x1})
syz_open_dev$I2C(&(0x7f0000000140), 0xffffffffffff8e41, 0x80800)
ioctl$HIDIOCSFLAG(r2, 0x4004480f, &(0x7f00000001c0)=0x2)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newtaction={0x94, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x80, 0x1, [@m_tunnel_key={0x50, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x2}}]}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4, 0x2, 0x0, 0x0}, {0x4}, {0xc}, {0xc}}}]}]}, 0x94}}, 0x0)
pipe(&(0x7f0000019480)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
vmsplice(r10, &(0x7f0000000500)=[{&(0x7f0000000440)="8f", 0x1}], 0x1, 0x6)
listxattr(&(0x7f0000000480)='./file0\x00', &(0x7f0000000540)=""/208, 0xd0)
ioctl$EVIOCGMASK(r10, 0x80104592, &(0x7f0000000000)={0x17, 0xf7, &(0x7f0000000200)="334356e43ae87b9fb6c7f58ce7f3eb84219cf3e419bc3e4146ac0496c28ce7d16a84e5698d7a9fb27db439616a50b4e3aee0c3465d366838231ce816e1a033d2e66b396e2a33a2e14d50b3e740de478c385fa90ef506a661b0ba01a27f809a142c9bd5c1c87ffab8cdd580f9a32960255520ba2d5142a342d70e276aceed7ea3295905fb5a7d9c840abc5531ac151f1c784b0a845b3c4883ce3173fa1b0f4262c9c8ac777ee1ea2903fc583c4778b736d6fc56a41334d551d5964ab20026281295f616de75f625ea634885dcb247e2bbc4961cd32389a9ef4cd0eb813ab8e80ab48e5dc3a08fe4052979fae6558d9dfc279d7c98b50d8a"})
io_uring_enter(r6, 0x2def, 0x4000, 0x0, 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r4, 0xd01c4813, &(0x7f0000000100)={0x2, 0xffffffff, 0x0, 0x2, 0x7f32, 0x42})

1.061342981s ago: executing program 5 (id=1860):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000010000100feffffff00010000fe880000000000000000000000000001fc010000000000000000000000000001000107144e230005000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c0000007f000001000000000000000000000000000000000000000092010000000000000600000000000000ffff0000000000001c250800000000000200000000000000f8ff07000000ffff0000000000000000ffffffffffffffff00000000000000001f00000000000000feffffffffffffff02000000fcffffff000000002abd700004350000020001002000000000000000480003006465666c617465"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)=@newsa={0x140, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in=@multicast1, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@broadcast, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0x3fc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @XFRMA_SET_MARK={0x8, 0x1d, 0xfffffeff}]}, 0x140}}, 0x844)
r2 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$FE_ENABLE_HIGH_LNB_VOLTAGE(r2, 0x6f44, 0x7fffffffffffffff)
openat$tun(0xffffffffffffff9c, 0x0, 0x101801, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0xa4)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ptrace$peeksig(0x4209, 0x0, 0x0, 0x0)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000880)={0x1, 0x0, @pic={0x8, 0x7, 0x8, 0x3, 0x2, 0x1, 0xc5, 0x9, 0x28, 0x2, 0x1, 0x95, 0xb, 0x8, 0x7f, 0x7}})
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000140)={0x9, 0x75})
r5 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00141202800800010008000000062102000100000008000500", @ANYRES32=r6], 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000010000100feffffff00010000fe880000000000000000000000000001fc010000000000000000000000000001000107144e230005000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c0000007f000001000000000000000000000000000000000000000092010000000000000600000000000000ffff0000000000001c250800000000000200000000000000f8ff07000000ffff0000000000000000ffffffffffffffff00000000000000001f00000000000000feffffffffffffff02000000fcffffff000000002abd700004350000020001002000000000000000480003006465666c617465"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)=@newsa={0x140, 0x1a, 0x1, 0xfffffffe, 0x100, {{@in=@multicast1, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@broadcast, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0x3fc}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @XFRMA_SET_MARK={0x8, 0x1d, 0xfffffeff}]}, 0x140}}, 0x844) (async)
syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2) (async)
ioctl$FE_ENABLE_HIGH_LNB_VOLTAGE(r2, 0x6f44, 0x7fffffffffffffff) (async)
openat$tun(0xffffffffffffff9c, 0x0, 0x101801, 0x0) (async)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, 0x0, 0xa4) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
ptrace$peeksig(0x4209, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000880)={0x1, 0x0, @pic={0x8, 0x7, 0x8, 0x3, 0x2, 0x1, 0xc5, 0x9, 0x28, 0x2, 0x1, 0x95, 0xb, 0x8, 0x7f, 0x7}}) (async)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000140)={0x9, 0x75}) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00141202800800010008000000062102000100000008000500", @ANYRES32=r6], 0x54}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async)

898.239944ms ago: executing program 0 (id=1861):
r0 = syz_open_dev$radio(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f00000001c0)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0xf0f041, 0x2, '\x00', @value64=0x100}})
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wg2\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x6}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0xfffffff8, 0x1, 0x4}}}}]}, 0x40}}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004840)={0x3c, r5, 0x731, 0x0, 0x0, {0x38}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x73}}}]}, 0x3c}, 0x1, 0x2}, 0x0)
syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)

896.871844ms ago: executing program 0 (id=1862):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)={0x11cc, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x4, 0x48}, @nested={0x11a8, 0x1, 0x0, 0x1, [@nested={0x11a4, 0x10, 0x0, 0x1, [@nested={0x4, 0x8}, @nested={0x119c, 0x10, 0x0, 0x1, [@generic="fb90741fc025ec4e9d7aa4c2963b4324b2a739dc8cf20a53434518ae72f42164a308de9f2bd1f5113d1036e76dfb4d30c4a2b42434f4bd53498ba48e9a2a82cb0e6319e9c39e0305cf1bb56946c8b8119f577498a3e0a2d174c64fc273f661fe3d26a839757ca6008575b6df8e1c3b54e111bc51f441eb843ec08350eefd7e5bbbaa52161fb8683b3694f995ee354b0ed7f4154a8f33afcd6d8419ea2c1ffbd0bcca1a3d31beae2d07a5005e1e9fd2c2a28d6e260240f02c1dfc46c93ee473a223c00bfaa72fff10bacaa03090e923e90f76d51ed12577", @generic="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", @generic="af6ca4d0287d8494d61ee635c9d367c444f185800ae5a1136119f1fa859ddc1979757d75e1ce11c886631b740f36bebf8939cb68b029bffa17ed3d55d5cdb658752586a83979ff94ff451ecdda012c8ca445b7e41ea140a33d9a167838e0e737a6ab7778e991df1f9012c93c240448253d254a6958076ba4cf009688a9e828f75191b4b3a7cde6c0e689e0c03bdaa3b36613951f517c00ea8ae9f3e7d2b7bfdbca7d9906fa08b2bde5970a5c5f683178ecbff7b12f7117f80888c63fd7479c73d1"]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x11cc}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/rcu_expedited', 0x40000, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$x86(r3, &(0x7f0000bfd000/0x400000)=nil)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_kvm_add_vcpu$x86(r4, &(0x7f0000000080)={0x0, 0x0})
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000140)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c0d23266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
ioctl$KVM_CREATE_PIT2(r7, 0x4040ae77, &(0x7f0000000040)={0x1})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r7, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3}, {}, {0xeda7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]})
pipe(&(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r8, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x20000000, 0x3, 0xfffffffffffffffc, 0x0, 0x0, 0x2004cb, 0x3, 0x0, 0xfffffffffffffff8, 0x0, 0xfffffffffffff2a7, 0x2000000000003ff, 0x2], 0x0, 0x200306})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r5, 0x4068aea3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r10, @ANYBLOB="020027bd7000fddbdf255a00000008000300", @ANYRES32=r11, @ANYBLOB="6c27b88830ada0c9ddd5d8bfed172d2886e4073d8d6f9255bfd867c9eed956aaf49fdd7a0769e39af52d20c79761c65c06015f188017a5130794cd0da0e1c987b95f74d490edc8f1c67defe7a89b947cd45a4f5af8c98d6c0878296eb7fe7ad800a4ec7490645a0663c936b37b6fdaf09507aaa9"], 0x1c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r9, &(0x7f0000000600)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r3, @ANYRES64=r3], 0x3c}}, 0x40000)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newlink={0x4c, 0x10, 0x503, 0x70bd2a, 0x700, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3806}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x8}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x2}]}}}, @IFLA_MASTER={0x8, 0xa, r12}]}, 0x4c}}, 0x440b0)

2.926962ms ago: executing program 0 (id=1863):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f0000000180)={{@my=0x0}, 0x1, 0x1, 0x6})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f00000002c0)={{@hyper, 0x2}, 0x1, 0x2, 0x99e})
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x76, 0x103500)
ioctl$USBDEVFS_SETCONFIGURATION(r1, 0x80045505, &(0x7f00000000c0))

1.772935ms ago: executing program 5 (id=1864):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fddbdf251200000008000300", @ANYRES32=r1, @ANYBLOB="0a00060008021100000100000c00430002"], 0x34}}, 0x20048054)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x47e00, 0x19)

0s ago: executing program 0 (id=1865):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f00000003c0)={0x0, 0xa, 0x3, 0x50e1}, &(0x7f0000000400)=0x10)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
unshare(0x2040400)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="440000001800010002000000000000031d01020008000a00", @ANYRES32, @ANYBLOB='\b\x00\t\x00', @ANYRES32, @ANYBLOB="1500040003000000000300004505a8b9e859abc00100000008000e00", @ANYRES32], 0x44}}, 0x0)
shutdown(r4, 0x2)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f0000000e00)={0xc, {"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", 0x1000}}, 0x1006)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x4000081, 0xffffd, 0x0, 0x85e, 0x8000000, 0x0, 0x5, 0x7, 0x80000, 0x5, 0x0, 0x2, 0x7ffe], 0x0, 0x2200})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x4, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6], 0x0, 0x41901})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYBLOB="0000000000000000b7"], 0x0}, 0x94)
r9 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x40080, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r10, 0xc048aec8, &(0x7f0000000740)={0x0, 0x0, @pic={0x21, 0x7, 0x3, 0x9, 0x23, 0x7, 0x0, 0x8, 0x5, 0xff, 0x17, 0x9, 0x0, 0x9f, 0x4, 0x10}})
r11 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCOUTQNSD(r11, 0x894b, &(0x7f0000000040))
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$BTRFS_IOC_SEND(r8, 0x40489426, &(0x7f0000000040)={{r12}, 0x2, &(0x7f0000000000)=[0x2, 0xe], 0x45, 0x2445a5f7cf423dc4})

kernel console output (not intermixed with test programs):

.536749][T11140] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007fec0bb9bc0b
[  165.536759][T11140] RDX: 00007fec0ca86bd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  165.536776][T11140] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  165.536785][T11140] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  165.536795][T11140] R13: 00007fec0ca86bd0 R14: 0000200000fe9000 R15: 0000000000000001
[  165.536816][T11140]  </TASK>
[  165.826001][   T40] audit: type=1400 audit(2000000000.650:41503): avc:  denied  { execute } for  pid=11144 comm="syz.0.1365" path="/blkio.bfq.io_wait_time" dev="ramfs" ino=43552 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  166.009781][   T40] audit: type=1804 audit(2000000000.829:41504): pid=11155 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1368" name="file0" dev="ramfs" ino=43568 res=1 errno=0
[  166.162420][   T34] hid-generic 0000:0000:F208.0007: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on 
[  166.241233][   T40] audit: type=1400 audit(2000000001.044:41505): avc:  denied  { unmount } for  pid=5924 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  166.289487][T11177] binder: 11174:11177 ioctl c0306201 2000000001c0 returned -14
[  166.295078][T11176] binder: 11174:11176 ioctl c0306201 2000000001c0 returned -14
[  166.297727][T11178] FAULT_INJECTION: forcing a failure.
[  166.297727][T11178] name failslab, interval 1, probability 0, space 0, times 0
[  166.306360][T11178] CPU: 2 UID: 0 PID: 11178 Comm: syz.3.1374 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  166.306387][T11178] Tainted: [L]=SOFTLOCKUP
[  166.306393][T11178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  166.306403][T11178] Call Trace:
[  166.306409][T11178]  <TASK>
[  166.306415][T11178]  dump_stack_lvl+0x100/0x190
[  166.306445][T11178]  should_fail_ex.cold+0x5/0xa
[  166.306466][T11178]  should_failslab+0xc2/0x120
[  166.306489][T11178]  __kmalloc_cache_noprof+0x7a/0x6f0
[  166.306505][T11178]  ? kvm_set_memory_region+0xbea/0x1570
[  166.306532][T11178]  kvm_set_memory_region+0xbea/0x1570
[  166.306564][T11178]  kvm_vm_ioctl+0x1dee/0x4080
[  166.306591][T11178]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  166.306622][T11178]  ? tomoyo_path_number_perm+0x46d/0x580
[  166.306641][T11178]  ? kasan_quarantine_put+0x104/0x240
[  166.306660][T11178]  ? lockdep_hardirqs_on+0x78/0x100
[  166.306677][T11178]  ? find_held_lock+0x2b/0x80
[  166.306696][T11178]  ? tomoyo_path_number_perm+0x28f/0x580
[  166.306711][T11178]  ? tomoyo_path_number_perm+0x28f/0x580
[  166.306733][T11178]  ? tomoyo_path_number_perm+0x188/0x580
[  166.306751][T11178]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  166.306776][T11178]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  166.306810][T11178]  ? __fget_files+0x215/0x3d0
[  166.306832][T11178]  ? hook_file_ioctl_common+0x146/0x410
[  166.306860][T11178]  ? selinux_file_ioctl+0x139/0x290
[  166.306878][T11178]  ? selinux_file_ioctl+0xb4/0x290
[  166.306898][T11178]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  166.306918][T11178]  __x64_sys_ioctl+0x18e/0x210
[  166.306939][T11178]  do_syscall_64+0x106/0xf80
[  166.306955][T11178]  ? clear_bhb_loop+0x40/0x90
[  166.306974][T11178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.306990][T11178] RIP: 0033:0x7f8566f9bc0b
[  166.307004][T11178] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  166.307020][T11178] RSP: 002b:00007f8567e0a450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  166.307037][T11178] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007f8566f9bc0b
[  166.307048][T11178] RDX: 00007f8567e0abd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  166.307059][T11178] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  166.307068][T11178] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  166.307077][T11178] R13: 00007f8567e0abd0 R14: 0000200000fe9000 R15: 0000000000000001
[  166.307101][T11178]  </TASK>
[  166.576351][T11182] FAULT_INJECTION: forcing a failure.
[  166.576351][T11182] name failslab, interval 1, probability 0, space 0, times 0
[  166.580555][T11182] CPU: 3 UID: 0 PID: 11182 Comm: syz.3.1377 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  166.580573][T11182] Tainted: [L]=SOFTLOCKUP
[  166.580577][T11182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  166.580584][T11182] Call Trace:
[  166.580588][T11182]  <TASK>
[  166.580592][T11182]  dump_stack_lvl+0x100/0x190
[  166.580614][T11182]  should_fail_ex.cold+0x5/0xa
[  166.580633][T11182]  should_failslab+0xc2/0x120
[  166.580650][T11182]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  166.580665][T11182]  ? alloc_vmap_area+0x640/0x2bd0
[  166.580683][T11182]  alloc_vmap_area+0x640/0x2bd0
[  166.580705][T11182]  ? __pfx_alloc_vmap_area+0x10/0x10
[  166.580726][T11182]  __get_vm_area_node+0x1ca/0x330
[  166.580746][T11182]  __vmalloc_node_range_noprof+0x213/0x1530
[  166.580757][T11182]  ? __vcalloc_noprof+0x4d/0x80
[  166.580776][T11182]  ? __vcalloc_noprof+0x4d/0x80
[  166.580796][T11182]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  166.580808][T11182]  ? lock_acquire+0x1cf/0x380
[  166.580829][T11182]  ? __vcalloc_noprof+0x4d/0x80
[  166.580844][T11182]  __vmalloc_node_noprof+0xad/0xf0
[  166.580855][T11182]  ? __vcalloc_noprof+0x4d/0x80
[  166.580871][T11182]  __vmalloc_noprof+0xa3/0x120
[  166.580882][T11182]  ? __pfx___vmalloc_noprof+0x10/0x10
[  166.580893][T11182]  ? __pfx___mutex_lock+0x10/0x10
[  166.580909][T11182]  __vcalloc_noprof+0x4d/0x80
[  166.580925][T11182]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  166.580948][T11182]  kvm_set_memslot+0x139/0x1740
[  166.580965][T11182]  ? kasan_save_track+0x14/0x30
[  166.580980][T11182]  kvm_set_memory_region+0xe1c/0x1570
[  166.581002][T11182]  kvm_vm_ioctl+0x1dee/0x4080
[  166.581020][T11182]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  166.581041][T11182]  ? tomoyo_path_number_perm+0x46d/0x580
[  166.581055][T11182]  ? kasan_quarantine_put+0x104/0x240
[  166.581068][T11182]  ? lockdep_hardirqs_on+0x78/0x100
[  166.581079][T11182]  ? find_held_lock+0x2b/0x80
[  166.581092][T11182]  ? tomoyo_path_number_perm+0x28f/0x580
[  166.581104][T11182]  ? tomoyo_path_number_perm+0x28f/0x580
[  166.581118][T11182]  ? tomoyo_path_number_perm+0x188/0x580
[  166.581131][T11182]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  166.581148][T11182]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  166.581171][T11182]  ? __fget_files+0x215/0x3d0
[  166.581187][T11182]  ? hook_file_ioctl_common+0x146/0x410
[  166.581208][T11182]  ? selinux_file_ioctl+0x139/0x290
[  166.581221][T11182]  ? selinux_file_ioctl+0xb4/0x290
[  166.581236][T11182]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  166.581249][T11182]  __x64_sys_ioctl+0x18e/0x210
[  166.581265][T11182]  do_syscall_64+0x106/0xf80
[  166.581275][T11182]  ? clear_bhb_loop+0x40/0x90
[  166.581289][T11182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.581300][T11182] RIP: 0033:0x7f8566f9bc0b
[  166.581310][T11182] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  166.581321][T11182] RSP: 002b:00007f8567e0a450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  166.581332][T11182] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007f8566f9bc0b
[  166.581339][T11182] RDX: 00007f8567e0abd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  166.581345][T11182] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  166.581352][T11182] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  166.581358][T11182] R13: 00007f8567e0abd0 R14: 0000200000fe9000 R15: 0000000000000001
[  166.581372][T11182]  </TASK>
[  166.589674][T11184] UHID_CREATE from different security context by process 850 (syz.5.1378), this is not allowed.
[  166.758034][T11190] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=43 sclass=netlink_route_socket pid=11190 comm=syz.5.1380
[  166.792561][T11193] binder: 11192:11193 ioctl c0306201 2000000003c0 returned -14
[  166.947564][T11210] FAULT_INJECTION: forcing a failure.
[  166.947564][T11210] name failslab, interval 1, probability 0, space 0, times 0
[  166.950588][T11206] GUP no longer grows the stack in syz.0.1384 (11206): 200000007000-20000000a000 (200000004000)
[  166.952563][T11210] CPU: 3 UID: 0 PID: 11210 Comm: syz.5.1386 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  166.952591][T11210] Tainted: [L]=SOFTLOCKUP
[  166.952596][T11210] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  166.952605][T11210] Call Trace:
[  166.952610][T11210]  <TASK>
[  166.952615][T11210]  dump_stack_lvl+0x100/0x190
[  166.952643][T11210]  should_fail_ex.cold+0x5/0xa
[  166.952664][T11210]  should_failslab+0xc2/0x120
[  166.952689][T11210]  __kmalloc_cache_node_noprof+0x7d/0x770
[  166.952709][T11210]  ? __get_vm_area_node+0x101/0x330
[  166.952738][T11210]  __get_vm_area_node+0x101/0x330
[  166.952767][T11210]  __vmalloc_node_range_noprof+0x213/0x1530
[  166.952784][T11210]  ? __vcalloc_noprof+0x4d/0x80
[  166.952806][T11210]  ? __kernel_text_address+0xd/0x30
[  166.952822][T11210]  ? unwind_get_return_address+0x59/0xa0
[  166.952847][T11210]  ? __vcalloc_noprof+0x4d/0x80
[  166.952876][T11210]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  166.952895][T11210]  ? lock_acquire+0x1cf/0x380
[  166.952927][T11210]  ? __vcalloc_noprof+0x4d/0x80
[  166.952950][T11210]  __vmalloc_node_noprof+0xad/0xf0
[  166.952967][T11210]  ? __vcalloc_noprof+0x4d/0x80
[  166.952991][T11210]  __vmalloc_noprof+0xa3/0x120
[  166.953009][T11210]  ? __pfx___vmalloc_noprof+0x10/0x10
[  166.953025][T11210]  ? __pfx___mutex_lock+0x10/0x10
[  166.953049][T11210]  __vcalloc_noprof+0x4d/0x80
[  166.953073][T11210]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  166.953109][T11210]  kvm_set_memslot+0x139/0x1740
[  166.953134][T11210]  ? kasan_save_track+0x14/0x30
[  166.953156][T11210]  kvm_set_memory_region+0xe1c/0x1570
[  166.953191][T11210]  kvm_vm_ioctl+0x1dee/0x4080
[  166.953220][T11210]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  166.953252][T11210]  ? tomoyo_path_number_perm+0x46d/0x580
[  166.953275][T11210]  ? kasan_quarantine_put+0x104/0x240
[  166.953295][T11210]  ? lockdep_hardirqs_on+0x78/0x100
[  166.953313][T11210]  ? find_held_lock+0x2b/0x80
[  166.953332][T11210]  ? tomoyo_path_number_perm+0x28f/0x580
[  166.953349][T11210]  ? tomoyo_path_number_perm+0x28f/0x580
[  166.953372][T11210]  ? tomoyo_path_number_perm+0x188/0x580
[  166.953390][T11210]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  166.953418][T11210]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  166.953455][T11210]  ? __fget_files+0x215/0x3d0
[  166.953479][T11210]  ? hook_file_ioctl_common+0x146/0x410
[  166.953510][T11210]  ? selinux_file_ioctl+0x139/0x290
[  166.953531][T11210]  ? selinux_file_ioctl+0xb4/0x290
[  166.953551][T11210]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  166.953573][T11210]  __x64_sys_ioctl+0x18e/0x210
[  166.953601][T11210]  do_syscall_64+0x106/0xf80
[  166.953617][T11210]  ? clear_bhb_loop+0x40/0x90
[  166.953638][T11210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.953655][T11210] RIP: 0033:0x7fe4ed19bc0b
[  166.953671][T11210] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  166.953685][T11210] RSP: 002b:00007fe4ee0db450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  166.953703][T11210] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007fe4ed19bc0b
[  166.953713][T11210] RDX: 00007fe4ee0dbbd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  166.953724][T11210] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  166.953734][T11210] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  166.953743][T11210] R13: 00007fe4ee0dbbd0 R14: 0000200000fe9000 R15: 0000000000000001
[  166.953766][T11210]  </TASK>
[  167.088813][T11206] CPU: 1 UID: 0 PID: 11206 Comm: syz.0.1384 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  167.088833][T11206] Tainted: [L]=SOFTLOCKUP
[  167.088837][T11206] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  167.088845][T11206] Call Trace:
[  167.088849][T11206]  <TASK>
[  167.088854][T11206]  dump_stack_lvl+0x100/0x190
[  167.088876][T11206]  gup_vma_lookup.cold+0x83/0x96
[  167.088893][T11206]  __get_user_pages+0x241/0x34d0
[  167.088916][T11206]  ? xdp_umem_create+0x648/0x11e0
[  167.088930][T11206]  ? xsk_setsockopt+0x7d8/0xab0
[  167.088944][T11206]  ? do_sock_setsockopt+0xf3/0x1d0
[  167.088957][T11206]  ? __pfx___get_user_pages+0x10/0x10
[  167.088972][T11206]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.088988][T11206]  __gup_longterm_locked+0x279/0x16f0
[  167.089007][T11206]  ? __lock_acquire+0x480/0x2630
[  167.089027][T11206]  ? __pfx___gup_longterm_locked+0x10/0x10
[  167.089051][T11206]  pin_user_pages+0x13c/0x160
[  167.089069][T11206]  ? __pfx_pin_user_pages+0x10/0x10
[  167.089087][T11206]  ? __kvmalloc_node_noprof+0x37b/0xa00
[  167.089103][T11206]  ? security_capset+0x240/0x270
[  167.089122][T11206]  xdp_umem_create+0x723/0x11e0
[  167.089142][T11206]  xsk_setsockopt+0x7d8/0xab0
[  167.089158][T11206]  ? __pfx_xsk_setsockopt+0x10/0x10
[  167.089172][T11206]  ? find_held_lock+0x2b/0x80
[  167.089185][T11206]  ? __fget_files+0x215/0x3d0
[  167.089204][T11206]  ? selinux_socket_setsockopt+0x6a/0x80
[  167.089217][T11206]  ? __pfx_xsk_setsockopt+0x10/0x10
[  167.089233][T11206]  do_sock_setsockopt+0xf3/0x1d0
[  167.089248][T11206]  __sys_setsockopt+0x195/0x220
[  167.089267][T11206]  __x64_sys_setsockopt+0xbd/0x160
[  167.089284][T11206]  ? do_syscall_64+0x95/0xf80
[  167.089294][T11206]  ? lockdep_hardirqs_on+0x78/0x100
[  167.089305][T11206]  do_syscall_64+0x106/0xf80
[  167.089315][T11206]  ? clear_bhb_loop+0x40/0x90
[  167.089328][T11206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.089349][T11206] RIP: 0033:0x7fec0bb9bf79
[  167.089361][T11206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  167.089372][T11206] RSP: 002b:00007fec0ca88028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  167.089384][T11206] RAX: ffffffffffffffda RBX: 00007fec0be15fa0 RCX: 00007fec0bb9bf79
[  167.089391][T11206] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000005
[  167.089397][T11206] RBP: 00007fec0bc327e0 R08: 0000000000000020 R09: 0000000000000000
[  167.089404][T11206] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000
[  167.089411][T11206] R13: 00007fec0be16038 R14: 00007fec0be15fa0 R15: 00007ffc606a7a18
[  167.089426][T11206]  </TASK>
[  167.093849][T11206] input: syz0 as /devices/virtual/input/input15
[  167.291211][T11222] FAULT_INJECTION: forcing a failure.
[  167.291211][T11222] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  167.296275][T11222] CPU: 2 UID: 0 PID: 11222 Comm: syz.5.1389 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  167.296301][T11222] Tainted: [L]=SOFTLOCKUP
[  167.296306][T11222] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  167.296316][T11222] Call Trace:
[  167.296321][T11222]  <TASK>
[  167.296327][T11222]  dump_stack_lvl+0x100/0x190
[  167.296356][T11222]  should_fail_ex.cold+0x5/0xa
[  167.296371][T11222]  ? prepare_alloc_pages+0x16d/0x5f0
[  167.296411][T11222]  should_fail_alloc_page+0xeb/0x140
[  167.296434][T11222]  prepare_alloc_pages+0x1f0/0x5f0
[  167.296460][T11222]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  167.296483][T11222]  ? stack_trace_save+0x8e/0xc0
[  167.296501][T11222]  ? __pfx_stack_trace_save+0x10/0x10
[  167.296519][T11222]  ? stack_depot_save_flags+0x27/0x9d0
[  167.296541][T11222]  ? is_bpf_text_address+0x8a/0x1a0
[  167.296566][T11222]  ? is_bpf_text_address+0x8a/0x1a0
[  167.296585][T11222]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  167.296603][T11222]  ? kasan_save_stack+0x3f/0x50
[  167.296622][T11222]  ? kasan_save_track+0x14/0x30
[  167.296640][T11222]  ? kmem_cache_alloc_node_noprof+0x25a/0x6f0
[  167.296658][T11222]  ? alloc_vmap_area+0x640/0x2bd0
[  167.296677][T11222]  ? __get_vm_area_node+0x1ca/0x330
[  167.296697][T11222]  ? __vmalloc_node_range_noprof+0x213/0x1530
[  167.296710][T11222]  ? __vmalloc_node_noprof+0xad/0xf0
[  167.296723][T11222]  ? __vmalloc_noprof+0xa3/0x120
[  167.296735][T11222]  ? __vcalloc_noprof+0x4d/0x80
[  167.296753][T11222]  ? kvm_arch_prepare_memory_region+0x35c/0x8d0
[  167.296776][T11222]  ? kvm_set_memslot+0x139/0x1740
[  167.296804][T11222]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.296824][T11222]  ? policy_nodemask+0xed/0x4f0
[  167.296848][T11222]  alloc_pages_mpol+0x1fb/0x550
[  167.296870][T11222]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  167.296897][T11222]  alloc_pages_noprof+0x131/0x390
[  167.296919][T11222]  get_free_pages_noprof+0x10/0xb0
[  167.296939][T11222]  __kasan_populate_vmalloc+0xa0/0x210
[  167.296962][T11222]  alloc_vmap_area+0x95d/0x2bd0
[  167.296992][T11222]  ? __pfx_alloc_vmap_area+0x10/0x10
[  167.297018][T11222]  __get_vm_area_node+0x1ca/0x330
[  167.297044][T11222]  __vmalloc_node_range_noprof+0x213/0x1530
[  167.297060][T11222]  ? __vcalloc_noprof+0x4d/0x80
[  167.297085][T11222]  ? __vcalloc_noprof+0x4d/0x80
[  167.297111][T11222]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  167.297127][T11222]  ? lock_acquire+0x1cf/0x380
[  167.297156][T11222]  ? __vcalloc_noprof+0x4d/0x80
[  167.297175][T11222]  __vmalloc_node_noprof+0xad/0xf0
[  167.297189][T11222]  ? __vcalloc_noprof+0x4d/0x80
[  167.297211][T11222]  __vmalloc_noprof+0xa3/0x120
[  167.297225][T11222]  ? __pfx___vmalloc_noprof+0x10/0x10
[  167.297240][T11222]  ? __pfx___mutex_lock+0x10/0x10
[  167.297261][T11222]  __vcalloc_noprof+0x4d/0x80
[  167.297281][T11222]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  167.297312][T11222]  kvm_set_memslot+0x139/0x1740
[  167.297334][T11222]  ? kasan_save_track+0x14/0x30
[  167.297354][T11222]  kvm_set_memory_region+0xe1c/0x1570
[  167.297384][T11222]  kvm_vm_ioctl+0x1dee/0x4080
[  167.297409][T11222]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  167.297441][T11222]  ? tomoyo_path_number_perm+0x46d/0x580
[  167.297460][T11222]  ? kasan_quarantine_put+0x104/0x240
[  167.297479][T11222]  ? lockdep_hardirqs_on+0x78/0x100
[  167.297496][T11222]  ? find_held_lock+0x2b/0x80
[  167.297513][T11222]  ? tomoyo_path_number_perm+0x28f/0x580
[  167.297528][T11222]  ? tomoyo_path_number_perm+0x28f/0x580
[  167.297553][T11222]  ? tomoyo_path_number_perm+0x188/0x580
[  167.297571][T11222]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  167.297593][T11222]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.297624][T11222]  ? __fget_files+0x215/0x3d0
[  167.297645][T11222]  ? hook_file_ioctl_common+0x146/0x410
[  167.297674][T11222]  ? selinux_file_ioctl+0x139/0x290
[  167.297691][T11222]  ? selinux_file_ioctl+0xb4/0x290
[  167.297711][T11222]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  167.297729][T11222]  __x64_sys_ioctl+0x18e/0x210
[  167.297750][T11222]  do_syscall_64+0x106/0xf80
[  167.297764][T11222]  ? clear_bhb_loop+0x40/0x90
[  167.297783][T11222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.297799][T11222] RIP: 0033:0x7fe4ed19bc0b
[  167.297813][T11222] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  167.297828][T11222] RSP: 002b:00007fe4ee0db450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  167.297843][T11222] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007fe4ed19bc0b
[  167.297852][T11222] RDX: 00007fe4ee0dbbd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  167.297861][T11222] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  167.297870][T11222] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  167.297879][T11222] R13: 00007fe4ee0dbbd0 R14: 0000200000fe9000 R15: 0000000000000001
[  167.297899][T11222]  </TASK>
[  167.504868][T11224] overlay: filesystem on ./bus not supported
[  167.506930][   T40] audit: type=1400 audit(2000000002.232:41506): avc:  denied  { mounton } for  pid=11223 comm="syz.3.1390" path="/bus" dev="autofs" ino=45479 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=dir permissive=1
[  167.519208][T11224] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=272 sclass=netlink_route_socket pid=11224 comm=syz.3.1390
[  167.724138][   T40] audit: type=1400 audit(2000000002.428:41507): avc:  denied  { load_policy } for  pid=11227 comm="syz.0.1392" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  167.724784][T11228] SELinux:  policydb magic number 0x69662f2e does not match expected magic number 0xf97cff8c
[  167.735873][T11228] SELinux: failed to load policy
[  167.787551][   T40] audit: type=1400 audit(2000000002.484:41508): avc:  denied  { mount } for  pid=11234 comm="syz.5.1394" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  167.806254][T11236] __nla_validate_parse: 8 callbacks suppressed
[  167.806271][T11236] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1394'.
[  167.827144][   T40] audit: type=1400 audit(2000000002.531:41509): avc:  denied  { mounton } for  pid=11240 comm="syz.0.1396" path="/335/file0" dev="configfs" ino=3104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  167.887446][T11246] FAULT_INJECTION: forcing a failure.
[  167.887446][T11246] name failslab, interval 1, probability 0, space 0, times 0
[  167.892711][T11246] CPU: 3 UID: 0 PID: 11246 Comm: syz.0.1398 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  167.892738][T11246] Tainted: [L]=SOFTLOCKUP
[  167.892744][T11246] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  167.892755][T11246] Call Trace:
[  167.892761][T11246]  <TASK>
[  167.892767][T11246]  dump_stack_lvl+0x100/0x190
[  167.892805][T11246]  should_fail_ex.cold+0x5/0xa
[  167.892829][T11246]  should_failslab+0xc2/0x120
[  167.892856][T11246]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  167.892878][T11246]  ? alloc_vmap_area+0x640/0x2bd0
[  167.892908][T11246]  alloc_vmap_area+0x640/0x2bd0
[  167.892943][T11246]  ? __pfx_alloc_vmap_area+0x10/0x10
[  167.892975][T11246]  __get_vm_area_node+0x1ca/0x330
[  167.893007][T11246]  __vmalloc_node_range_noprof+0x213/0x1530
[  167.893026][T11246]  ? __vcalloc_noprof+0x4d/0x80
[  167.893051][T11246]  ? __kernel_text_address+0xd/0x30
[  167.893070][T11246]  ? unwind_get_return_address+0x59/0xa0
[  167.893094][T11246]  ? __vcalloc_noprof+0x4d/0x80
[  167.893125][T11246]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  167.893147][T11246]  ? lock_acquire+0x1cf/0x380
[  167.893181][T11246]  ? __vcalloc_noprof+0x4d/0x80
[  167.893202][T11246]  __vmalloc_node_noprof+0xad/0xf0
[  167.893220][T11246]  ? __vcalloc_noprof+0x4d/0x80
[  167.893247][T11246]  __vmalloc_noprof+0xa3/0x120
[  167.893264][T11246]  ? __pfx___vmalloc_noprof+0x10/0x10
[  167.893283][T11246]  ? __pfx___mutex_lock+0x10/0x10
[  167.893309][T11246]  __vcalloc_noprof+0x4d/0x80
[  167.893334][T11246]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  167.893372][T11246]  kvm_set_memslot+0x139/0x1740
[  167.893399][T11246]  ? kasan_save_track+0x14/0x30
[  167.893423][T11246]  kvm_set_memory_region+0xe1c/0x1570
[  167.893461][T11246]  kvm_vm_ioctl+0x1dee/0x4080
[  167.893491][T11246]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  167.893525][T11246]  ? tomoyo_path_number_perm+0x46d/0x580
[  167.893547][T11246]  ? kasan_quarantine_put+0x104/0x240
[  167.893575][T11246]  ? lockdep_hardirqs_on+0x78/0x100
[  167.893593][T11246]  ? find_held_lock+0x2b/0x80
[  167.893615][T11246]  ? tomoyo_path_number_perm+0x28f/0x580
[  167.893632][T11246]  ? tomoyo_path_number_perm+0x28f/0x580
[  167.893656][T11246]  ? tomoyo_path_number_perm+0x188/0x580
[  167.893676][T11246]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  167.893704][T11246]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.893741][T11246]  ? __fget_files+0x215/0x3d0
[  167.893766][T11246]  ? hook_file_ioctl_common+0x146/0x410
[  167.893798][T11246]  ? selinux_file_ioctl+0x139/0x290
[  167.893820][T11246]  ? selinux_file_ioctl+0xb4/0x290
[  167.893842][T11246]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  167.893863][T11246]  __x64_sys_ioctl+0x18e/0x210
[  167.893888][T11246]  do_syscall_64+0x106/0xf80
[  167.893905][T11246]  ? clear_bhb_loop+0x40/0x90
[  167.893929][T11246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.893947][T11246] RIP: 0033:0x7fec0bb9bc0b
[  167.893963][T11246] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  167.893979][T11246] RSP: 002b:00007fec0ca86450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  167.893998][T11246] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007fec0bb9bc0b
[  167.894009][T11246] RDX: 00007fec0ca86bd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  167.894020][T11246] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  167.894030][T11246] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  167.894038][T11246] R13: 00007fec0ca86bd0 R14: 0000200000fe9000 R15: 0000000000000001
[  167.894064][T11246]  </TASK>
[  167.933953][T11248] netlink: 'syz.3.1399': attribute type 1 has an invalid length.
[  168.049654][T11254] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11254 comm=syz.3.1399
[  168.056424][T11248] 8021q: adding VLAN 0 to HW filter on device bond16
[  168.657797][T11266] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1404'.
[  168.662466][T11266] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1404'.
[  168.793600][T11276] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  169.245331][T11297] FAULT_INJECTION: forcing a failure.
[  169.245331][T11297] name failslab, interval 1, probability 0, space 0, times 0
[  169.249467][T11297] CPU: 3 UID: 0 PID: 11297 Comm: syz.3.1414 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  169.249485][T11297] Tainted: [L]=SOFTLOCKUP
[  169.249489][T11297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  169.249496][T11297] Call Trace:
[  169.249500][T11297]  <TASK>
[  169.249505][T11297]  dump_stack_lvl+0x100/0x190
[  169.249526][T11297]  should_fail_ex.cold+0x5/0xa
[  169.249541][T11297]  should_failslab+0xc2/0x120
[  169.249559][T11297]  __kmalloc_node_noprof+0xe6/0x850
[  169.249573][T11297]  ? __vmalloc_node_range_noprof+0x3dc/0x1530
[  169.249587][T11297]  __vmalloc_node_range_noprof+0x3dc/0x1530
[  169.249602][T11297]  ? __vcalloc_noprof+0x4d/0x80
[  169.249623][T11297]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  169.249635][T11297]  ? lock_acquire+0x1cf/0x380
[  169.249657][T11297]  ? __vcalloc_noprof+0x4d/0x80
[  169.249672][T11297]  __vmalloc_node_noprof+0xad/0xf0
[  169.249683][T11297]  ? __vcalloc_noprof+0x4d/0x80
[  169.249699][T11297]  __vmalloc_noprof+0xa3/0x120
[  169.249710][T11297]  ? __pfx___vmalloc_noprof+0x10/0x10
[  169.249721][T11297]  ? __pfx___mutex_lock+0x10/0x10
[  169.249737][T11297]  __vcalloc_noprof+0x4d/0x80
[  169.249753][T11297]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  169.249777][T11297]  kvm_set_memslot+0x139/0x1740
[  169.249793][T11297]  ? kasan_save_track+0x14/0x30
[  169.249809][T11297]  kvm_set_memory_region+0xe1c/0x1570
[  169.249831][T11297]  kvm_vm_ioctl+0x1dee/0x4080
[  169.249849][T11297]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  169.249869][T11297]  ? tomoyo_path_number_perm+0x46d/0x580
[  169.249883][T11297]  ? kasan_quarantine_put+0x104/0x240
[  169.249897][T11297]  ? lockdep_hardirqs_on+0x78/0x100
[  169.249908][T11297]  ? find_held_lock+0x2b/0x80
[  169.249921][T11297]  ? tomoyo_path_number_perm+0x28f/0x580
[  169.249933][T11297]  ? tomoyo_path_number_perm+0x28f/0x580
[  169.249947][T11297]  ? tomoyo_path_number_perm+0x188/0x580
[  169.249960][T11297]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  169.249977][T11297]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  169.250000][T11297]  ? __fget_files+0x215/0x3d0
[  169.250016][T11297]  ? hook_file_ioctl_common+0x146/0x410
[  169.250036][T11297]  ? selinux_file_ioctl+0x139/0x290
[  169.250049][T11297]  ? selinux_file_ioctl+0xb4/0x290
[  169.250063][T11297]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  169.250076][T11297]  __x64_sys_ioctl+0x18e/0x210
[  169.250091][T11297]  do_syscall_64+0x106/0xf80
[  169.250102][T11297]  ? clear_bhb_loop+0x40/0x90
[  169.250116][T11297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.250127][T11297] RIP: 0033:0x7f8566f9bc0b
[  169.250137][T11297] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  169.250147][T11297] RSP: 002b:00007f8567e0a450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  169.250157][T11297] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007f8566f9bc0b
[  169.250164][T11297] RDX: 00007f8567e0abd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  169.250173][T11297] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  169.250182][T11297] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  169.250191][T11297] R13: 00007f8567e0abd0 R14: 0000200000fe9000 R15: 0000000000000001
[  169.250216][T11297]  </TASK>
[  169.436154][   T34] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  169.505065][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  169.505076][   T40] audit: type=1400 audit(2000000004.102:41520): avc:  denied  { name_bind } for  pid=11298 comm="syz.3.1415" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  169.511013][ T5938] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  169.515259][   T40] audit: type=1400 audit(2000000004.102:41521): avc:  denied  { name_bind } for  pid=11298 comm="syz.3.1415" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  169.606995][   T34] usb 5-1: Using ep0 maxpacket: 8
[  169.609889][   T34] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  169.613441][   T34] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  169.616580][   T34] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  169.619730][   T34] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  169.623796][   T34] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  169.626619][   T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.671170][ T5938] usb 10-1: Using ep0 maxpacket: 8
[  169.674090][ T5938] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  169.677588][ T5938] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  169.680464][ T5938] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.685093][ T5938] usb 10-1: config 0 descriptor??
[  169.847955][   T34] usb 5-1: usb_control_msg returned -32
[  169.849826][   T34] usbtmc 5-1:16.0: can't read capabilities
[  169.905345][ T5938] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  170.120743][ T5938] usb 10-1: USB disconnect, device number 9
[  170.906050][   T40] audit: type=1400 audit(2000000005.411:41522): avc:  denied  { create } for  pid=11308 comm="syz.5.1419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  170.916167][   T40] audit: type=1400 audit(2000000005.420:41523): avc:  denied  { setopt } for  pid=11308 comm="syz.5.1419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  170.930931][   T40] audit: type=1400 audit(2000000005.430:41524): avc:  denied  { bind } for  pid=11308 comm="syz.5.1419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  170.940027][   T40] audit: type=1400 audit(2000000005.439:41525): avc:  denied  { getopt } for  pid=11308 comm="syz.5.1419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  170.947962][   T40] audit: type=1400 audit(2000000005.448:41526): avc:  denied  { ioctl } for  pid=11308 comm="syz.5.1419" path="socket:[46199]" dev="sockfs" ino=46199 ioctlcmd=0x550c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  170.967399][   T40] audit: type=1400 audit(2000000005.467:41527): avc:  denied  { write } for  pid=11317 comm="syz.3.1423" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  171.013791][T11320] FAULT_INJECTION: forcing a failure.
[  171.013791][T11320] name failslab, interval 1, probability 0, space 0, times 0
[  171.017879][T11320] CPU: 3 UID: 0 PID: 11320 Comm: syz.3.1424 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  171.017896][T11320] Tainted: [L]=SOFTLOCKUP
[  171.017900][T11320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  171.017907][T11320] Call Trace:
[  171.017911][T11320]  <TASK>
[  171.017916][T11320]  dump_stack_lvl+0x100/0x190
[  171.017938][T11320]  should_fail_ex.cold+0x5/0xa
[  171.017953][T11320]  should_failslab+0xc2/0x120
[  171.017969][T11320]  __kmalloc_node_noprof+0xe6/0x850
[  171.017983][T11320]  ? __vmalloc_node_range_noprof+0x3dc/0x1530
[  171.017997][T11320]  __vmalloc_node_range_noprof+0x3dc/0x1530
[  171.018012][T11320]  ? __vcalloc_noprof+0x4d/0x80
[  171.018032][T11320]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  171.018045][T11320]  ? lock_acquire+0x1cf/0x380
[  171.018066][T11320]  ? __vcalloc_noprof+0x4d/0x80
[  171.018081][T11320]  __vmalloc_node_noprof+0xad/0xf0
[  171.018091][T11320]  ? __vcalloc_noprof+0x4d/0x80
[  171.018131][T11320]  __vmalloc_noprof+0xa3/0x120
[  171.018142][T11320]  ? __pfx___vmalloc_noprof+0x10/0x10
[  171.018154][T11320]  ? __pfx___mutex_lock+0x10/0x10
[  171.018169][T11320]  __vcalloc_noprof+0x4d/0x80
[  171.018185][T11320]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  171.018209][T11320]  kvm_set_memslot+0x139/0x1740
[  171.018226][T11320]  ? kasan_save_track+0x14/0x30
[  171.018242][T11320]  kvm_set_memory_region+0xe1c/0x1570
[  171.018266][T11320]  kvm_vm_ioctl+0x1dee/0x4080
[  171.018307][T11320]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  171.018329][T11320]  ? tomoyo_path_number_perm+0x46d/0x580
[  171.018342][T11320]  ? kasan_quarantine_put+0x104/0x240
[  171.018356][T11320]  ? lockdep_hardirqs_on+0x78/0x100
[  171.018368][T11320]  ? find_held_lock+0x2b/0x80
[  171.018381][T11320]  ? tomoyo_path_number_perm+0x28f/0x580
[  171.018393][T11320]  ? tomoyo_path_number_perm+0x28f/0x580
[  171.018407][T11320]  ? tomoyo_path_number_perm+0x188/0x580
[  171.018420][T11320]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  171.018441][T11320]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  171.018479][T11320]  ? __fget_files+0x215/0x3d0
[  171.018502][T11320]  ? hook_file_ioctl_common+0x146/0x410
[  171.018538][T11320]  ? selinux_file_ioctl+0x139/0x290
[  171.018560][T11320]  ? selinux_file_ioctl+0xb4/0x290
[  171.018581][T11320]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  171.018601][T11320]  __x64_sys_ioctl+0x18e/0x210
[  171.018626][T11320]  do_syscall_64+0x106/0xf80
[  171.018644][T11320]  ? clear_bhb_loop+0x40/0x90
[  171.018665][T11320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.018681][T11320] RIP: 0033:0x7f8566f9bc0b
[  171.018694][T11320] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  171.018705][T11320] RSP: 002b:00007f8567e0a450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  171.018716][T11320] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007f8566f9bc0b
[  171.018724][T11320] RDX: 00007f8567e0abd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  171.018730][T11320] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  171.018736][T11320] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  171.018742][T11320] R13: 00007f8567e0abd0 R14: 0000200000fe9000 R15: 0000000000000001
[  171.018757][T11320]  </TASK>
[  171.123400][T11320] warn_alloc: 6 callbacks suppressed
[  171.123410][T11320] syz.3.1424: vmalloc error: size 4096, failed to allocated page array size 8, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[  171.131851][T11320] CPU: 3 UID: 0 PID: 11320 Comm: syz.3.1424 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  171.131885][T11320] Tainted: [L]=SOFTLOCKUP
[  171.131890][T11320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  171.131898][T11320] Call Trace:
[  171.131903][T11320]  <TASK>
[  171.131909][T11320]  dump_stack_lvl+0x100/0x190
[  171.131934][T11320]  warn_alloc.cold+0x95/0x1c1
[  171.131958][T11320]  ? __pfx_warn_alloc+0x10/0x10
[  171.131976][T11320]  ? dump_stack_lvl+0x17c/0x190
[  171.131998][T11320]  ? trace_kmalloc+0x101/0x130
[  171.132017][T11320]  ? __kasan_kmalloc+0x8a/0xb0
[  171.132036][T11320]  ? __kmalloc_node_noprof+0x324/0x850
[  171.132052][T11320]  ? __vmalloc_node_range_noprof+0x3dc/0x1530
[  171.132071][T11320]  __vmalloc_node_range_noprof+0x1275/0x1530
[  171.132090][T11320]  ? __vcalloc_noprof+0x4d/0x80
[  171.132116][T11320]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  171.132132][T11320]  ? lock_acquire+0x1cf/0x380
[  171.132159][T11320]  ? __vcalloc_noprof+0x4d/0x80
[  171.132177][T11320]  __vmalloc_node_noprof+0xad/0xf0
[  171.132191][T11320]  ? __vcalloc_noprof+0x4d/0x80
[  171.132211][T11320]  __vmalloc_noprof+0xa3/0x120
[  171.132225][T11320]  ? __pfx___vmalloc_noprof+0x10/0x10
[  171.132239][T11320]  ? __pfx___mutex_lock+0x10/0x10
[  171.132259][T11320]  __vcalloc_noprof+0x4d/0x80
[  171.132278][T11320]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  171.132308][T11320]  kvm_set_memslot+0x139/0x1740
[  171.132329][T11320]  ? kasan_save_track+0x14/0x30
[  171.132348][T11320]  kvm_set_memory_region+0xe1c/0x1570
[  171.132376][T11320]  kvm_vm_ioctl+0x1dee/0x4080
[  171.132400][T11320]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  171.132427][T11320]  ? tomoyo_path_number_perm+0x46d/0x580
[  171.132444][T11320]  ? kasan_quarantine_put+0x104/0x240
[  171.132461][T11320]  ? lockdep_hardirqs_on+0x78/0x100
[  171.132475][T11320]  ? find_held_lock+0x2b/0x80
[  171.132491][T11320]  ? tomoyo_path_number_perm+0x28f/0x580
[  171.132505][T11320]  ? tomoyo_path_number_perm+0x28f/0x580
[  171.132527][T11320]  ? tomoyo_path_number_perm+0x188/0x580
[  171.132543][T11320]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  171.132565][T11320]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  171.132596][T11320]  ? __fget_files+0x215/0x3d0
[  171.132615][T11320]  ? hook_file_ioctl_common+0x146/0x410
[  171.132640][T11320]  ? selinux_file_ioctl+0x139/0x290
[  171.132657][T11320]  ? selinux_file_ioctl+0xb4/0x290
[  171.132675][T11320]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  171.132692][T11320]  __x64_sys_ioctl+0x18e/0x210
[  171.132711][T11320]  do_syscall_64+0x106/0xf80
[  171.132724][T11320]  ? clear_bhb_loop+0x40/0x90
[  171.132742][T11320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.132756][T11320] RIP: 0033:0x7f8566f9bc0b
[  171.132768][T11320] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  171.132781][T11320] RSP: 002b:00007f8567e0a450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  171.132794][T11320] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007f8566f9bc0b
[  171.132803][T11320] RDX: 00007f8567e0abd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  171.132815][T11320] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  171.132823][T11320] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  171.132831][T11320] R13: 00007f8567e0abd0 R14: 0000200000fe9000 R15: 0000000000000001
[  171.132850][T11320]  </TASK>
[  171.132972][T11320] Mem-Info:
[  171.242376][T11320] active_anon:8928 inactive_anon:18689 isolated_anon:0
[  171.242376][T11320]  active_file:17302 inactive_file:4286 isolated_file:0
[  171.242376][T11320]  unevictable:1768 dirty:508 writeback:0
[  171.242376][T11320]  slab_reclaimable:8100 slab_unreclaimable:80940
[  171.242376][T11320]  mapped:24396 shmem:18434 pagetables:8383
[  171.242376][T11320]  sec_pagetables:315 bounce:0
[  171.242376][T11320]  kernel_misc_reclaimable:0
[  171.242376][T11320]  free:451433 free_pcp:15786 free_cma:0
[  171.259617][T11320] Node 0 active_anon:34364kB inactive_anon:74756kB active_file:60964kB inactive_file:16764kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:74216kB dirty:1788kB writeback:0kB shmem:70200kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:14912kB pagetables:14580kB sec_pagetables:1252kB all_unreclaimable? no Balloon:0kB
[  171.271284][T11320] Node 1 active_anon:1348kB inactive_anon:0kB active_file:8244kB inactive_file:380kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:23368kB dirty:244kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:128kB pagetables:18952kB sec_pagetables:8kB all_unreclaimable? yes Balloon:0kB
[  171.282103][T11320] Node 0 DMA free:11156kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:2048kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  171.291637][T11320] lowmem_reserve[]: 0 1231 1231 1231 1231
[  171.293559][T11320] Node 0 DMA32 free:224760kB boost:0kB min:27476kB low:34344kB high:41212kB reserved_highatomic:2048KB free_highatomic:1408KB active_anon:32316kB inactive_anon:74756kB active_file:60964kB inactive_file:16764kB unevictable:3536kB writepending:1788kB zspages:0kB present:2080628kB managed:1261188kB mlocked:0kB bounce:0kB free_pcp:40056kB local_pcp:7664kB free_cma:0kB
[  171.304458][T11320] lowmem_reserve[]: 0 0 0 0 0
[  171.306003][T11320] Node 1 Normal free:1569816kB boost:0kB min:39760kB low:49700kB high:59640kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1348kB inactive_anon:0kB active_file:8244kB inactive_file:380kB unevictable:3536kB writepending:244kB zspages:3000kB present:2097152kB managed:1781884kB mlocked:0kB bounce:0kB free_pcp:23288kB local_pcp:6904kB free_cma:0kB
[  171.316824][T11320] lowmem_reserve[]: 0 0 0 0 0
[  171.318611][T11320] Node 0 DMA: 9*4kB (U) 10*8kB (U) 10*16kB (U) 10*32kB (U) 11*64kB (U) 11*128kB (U) 7*256kB (U) 5*512kB (U) 4*1024kB (U) 0*2048kB 0*4096kB = 11156kB
[  171.323402][T11320] Node 0 DMA32: 1502*4kB (UMH) 1684*8kB (UEH) 1122*16kB (UMEH) 155*32kB (UMEH) 144*64kB (UMEH) 284*128kB (UME) 216*256kB (UMEH) 111*512kB (UMEH) 24*1024kB (M) 0*2048kB 0*4096kB = 224664kB
[  171.329488][T11320] Node 1 Normal: 260*4kB (UME) 663*8kB (UME) 665*16kB (UE) 670*32kB (UME) 648*64kB (UME) 612*128kB (UM) 558*256kB (UM) 542*512kB (UM) 490*1024kB (UME) 25*2048kB (UE) 107*4096kB (UME) = 1569816kB
[  171.336228][T11320] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  171.339766][T11320] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  171.342828][T11320] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  171.345763][T11320] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  171.348709][T11320] 40717 total pagecache pages
[  171.350369][T11320] 699 pages in swap cache
[  171.351868][T11320] Free swap  = 114524kB
[  171.353184][T11320] Total swap = 124996kB
[  171.355094][T11320] 1048443 pages RAM
[  171.356340][T11320] 0 pages HighMem/MovableOnly
[  171.357876][T11320] 283835 pages reserved
[  171.359235][T11320] 0 pages cma reserved
[  171.515663][T11322] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1425'.
[  171.524328][T11322] gtp0: entered promiscuous mode
[  171.531030][T11322] macvlan0: entered allmulticast mode
[  171.533785][T11322] veth1_vlan: entered allmulticast mode
[  171.544052][T11322] pim6reg: entered allmulticast mode
[  171.635121][T11331] veth1_vlan: left allmulticast mode
[  171.640932][T11331] macvlan0 (unregistering): left allmulticast mode
[  171.681356][T11334] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11334 comm=syz.5.1427
[  172.169073][ T5993] usb 5-1: USB disconnect, device number 12
[  172.178182][T11291] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  172.603806][T11351] 9pnet_fd: Insufficient options for proto=fd
[  172.622829][ T5993] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  172.731995][   T40] audit: type=1400 audit(2000000007.122:41528): avc:  denied  { listen } for  pid=11357 comm="syz.5.1436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  172.738359][   T40] audit: type=1400 audit(2000000007.122:41529): avc:  denied  { accept } for  pid=11357 comm="syz.5.1436" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  172.745900][T11364] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1437'.
[  172.749192][T11364] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1437'.
[  172.783204][ T5993] usb 5-1: device descriptor read/64, error -71
[  173.050602][ T5993] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  173.093512][T11419] FAULT_INJECTION: forcing a failure.
[  173.093512][T11419] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.097539][T11419] CPU: 1 UID: 0 PID: 11419 Comm: syz.5.1445 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  173.097557][T11419] Tainted: [L]=SOFTLOCKUP
[  173.097561][T11419] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  173.097567][T11419] Call Trace:
[  173.097572][T11419]  <TASK>
[  173.097577][T11419]  dump_stack_lvl+0x100/0x190
[  173.097598][T11419]  should_fail_ex.cold+0x5/0xa
[  173.097613][T11419]  _copy_from_user+0x2e/0xd0
[  173.097631][T11419]  kvm_vm_ioctl+0x1d55/0x4080
[  173.097649][T11419]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  173.097669][T11419]  ? tomoyo_path_number_perm+0x46d/0x580
[  173.097683][T11419]  ? kasan_quarantine_put+0x104/0x240
[  173.097697][T11419]  ? lockdep_hardirqs_on+0x78/0x100
[  173.097709][T11419]  ? find_held_lock+0x2b/0x80
[  173.097723][T11419]  ? tomoyo_path_number_perm+0x28f/0x580
[  173.097735][T11419]  ? tomoyo_path_number_perm+0x28f/0x580
[  173.097748][T11419]  ? tomoyo_path_number_perm+0x188/0x580
[  173.097761][T11419]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  173.097778][T11419]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.097801][T11419]  ? __fget_files+0x215/0x3d0
[  173.097817][T11419]  ? hook_file_ioctl_common+0x146/0x410
[  173.097837][T11419]  ? selinux_file_ioctl+0x139/0x290
[  173.097850][T11419]  ? selinux_file_ioctl+0xb4/0x290
[  173.097864][T11419]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  173.097878][T11419]  __x64_sys_ioctl+0x18e/0x210
[  173.097894][T11419]  do_syscall_64+0x106/0xf80
[  173.097904][T11419]  ? clear_bhb_loop+0x40/0x90
[  173.097920][T11419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.097936][T11419] RIP: 0033:0x7fe4ed19bc0b
[  173.097949][T11419] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  173.097962][T11419] RSP: 002b:00007fe4ee0db450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  173.097973][T11419] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007fe4ed19bc0b
[  173.097980][T11419] RDX: 00007fe4ee0dbbd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  173.097987][T11419] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  173.097993][T11419] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  173.098000][T11419] R13: 00007fe4ee0dbbd0 R14: 0000200000fea000 R15: 0000000000000002
[  173.098013][T11419]  </TASK>
[  173.212760][ T5993] usb 5-1: device descriptor read/64, error -71
[  173.328806][ T5993] usb usb5-port1: attempt power cycle
[  173.715854][ T5993] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  173.758040][ T5993] usb 5-1: device descriptor read/8, error -71
[  173.792816][T11430] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1448'.
[  173.796195][T11430] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1448'.
[  173.920917][T11442] netlink: 'syz.3.1452': attribute type 1 has an invalid length.
[  173.923547][T11442] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1452'.
[  173.960043][ T5941] Bluetooth: hci1: command 0x0405 tx timeout
[  174.013128][ T5993] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  174.048772][ T5993] usb 5-1: device descriptor read/8, error -71
[  174.123907][ T2292] libceph: connect (1)[c::]:6789 error -101
[  174.125984][ T2292] libceph: mon0 (1)[c::]:6789 connect error
[  174.163168][ T5993] usb usb5-port1: unable to enumerate USB device
[  174.410877][ T5993] libceph: connect (1)[c::]:6789 error -101
[  174.412986][ T5993] libceph: mon0 (1)[c::]:6789 connect error
[  174.965243][ T5993] libceph: connect (1)[c::]:6789 error -101
[  174.968918][ T5993] libceph: mon0 (1)[c::]:6789 connect error
[  175.004287][T11447] ceph: No mds server is up or the cluster is laggy
[  175.104183][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  175.104198][   T40] audit: type=1326 audit(2000000009.329:41531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11456 comm="syz.3.1457" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8566f9bf79 code=0x0
[  175.173525][T11458] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1457'.
[  175.177023][T11458] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1457'.
[  175.195693][T11458] bond20: option arp_validate: invalid value (3473409)
[  175.202672][T11458] bond20 (unregistering): Released all slaves
[  175.373256][T11458] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1457'.
[  175.376250][T11458] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1457'.
[  175.388519][T11458] bond20: option arp_validate: invalid value (3473409)
[  175.391741][T11458] bond20 (unregistering): Released all slaves
[  175.578895][T11474] netlink: 'syz.0.1464': attribute type 1 has an invalid length.
[  175.581377][T11474] netlink: 'syz.0.1464': attribute type 4 has an invalid length.
[  175.583848][T11474] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.1464'.
[  175.586861][T11475] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1463'.
[  175.616614][   T40] audit: type=1400 audit(2000000009.806:41532): avc:  denied  { getopt } for  pid=11473 comm="syz.5.1463" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  175.624312][ T5941] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  175.632527][ T5941] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  175.636469][ T5941] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  175.641282][ T5941] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  175.649620][ T5941] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  175.688249][ T9446] syz_tun (unregistering): left allmulticast mode
[  175.854015][T11478] chnl_net:caif_netlink_parms(): no params data found
[  175.931010][T11478] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.934129][T11478] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.937355][T11478] bridge_slave_0: entered allmulticast mode
[  175.941743][T11478] bridge_slave_0: entered promiscuous mode
[  175.946332][T11478] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.949425][T11478] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.952577][T11478] bridge_slave_1: entered allmulticast mode
[  175.956962][T11478] bridge_slave_1: entered promiscuous mode
[  175.994711][T11405] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  175.999164][T11405] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.045481][  T830] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  176.051693][   T40] audit: type=1400 audit(2000000010.217:41533): avc:  denied  { read } for  pid=11499 comm="syz.3.1469" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  176.061133][   T40] audit: type=1400 audit(2000000010.217:41534): avc:  denied  { open } for  pid=11499 comm="syz.3.1469" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  176.078485][T11478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  176.084939][T11478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  176.117698][T11478] team0: Port device team_slave_0 added
[  176.122469][T11478] team0: Port device team_slave_1 added
[  176.145781][T11478] batman_adv: batadv0: Adding interface: batadv_slave_0
[  176.148653][T11478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  176.161870][T11478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  176.168678][T11478] batman_adv: batadv0: Adding interface: batadv_slave_1
[  176.171484][T11478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  176.182088][T11478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  176.209731][T11405] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  176.213819][T11405] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.227773][  T830] usb 5-1: Using ep0 maxpacket: 8
[  176.232436][  T830] usb 5-1: config 0 has an invalid interface number: 55 but max is 0
[  176.235777][  T830] usb 5-1: config 0 has no interface number 0
[  176.238849][  T830] usb 5-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  176.243160][  T830] usb 5-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  176.247918][  T830] usb 5-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  176.251668][T11478] hsr_slave_0: entered promiscuous mode
[  176.252537][  T830] usb 5-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  176.255122][T11478] hsr_slave_1: entered promiscuous mode
[  176.259602][  T830] usb 5-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  176.259627][  T830] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.261921][  T830] usb 5-1: config 0 descriptor??
[  176.263322][T11478] debugfs: 'hsr0' already exists in 'hsr'
[  176.269214][  T830] ldusb 5-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  176.271440][T11478] Cannot create hsr debugfs directory
[  176.300987][T11508] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1472'.
[  176.323543][T11405] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  176.327606][T11405] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.445564][T11405] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  176.449219][T11405] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.515194][T11478] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  176.524739][T11478] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  176.531710][T11478] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  176.551914][T11478] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  176.594281][T11405] bridge_slave_1: left allmulticast mode
[  176.596153][T11405] bridge_slave_1: left promiscuous mode
[  176.598047][T11405] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.604089][T11405] bridge_slave_0: left allmulticast mode
[  176.606045][T11405] bridge_slave_0: left promiscuous mode
[  176.608783][T11405] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.735994][T11405] bond4 (unregistering): (slave erspan1): Releasing active interface
[  176.739219][T11405] erspan1 (unregistering): left promiscuous mode
[  176.764484][T11405] bond7 (unregistering): (slave gretap1): Releasing backup interface
[  176.776985][T11405] bond3 (unregistering): (slave geneve3): Releasing active interface
[  176.934828][T11500] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  176.937209][T11500] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  176.945785][T11500] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  176.949701][T11500] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  176.952018][T11500] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  176.955574][T11500] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  176.958169][T11500] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  176.969052][T11500] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  176.971083][T11500] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  176.974171][T11500] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  177.023774][T11405] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  177.030596][T11405] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  177.034914][T11405] bond0 (unregistering): Released all slaves
[  177.044081][T11405] bond1 (unregistering): Released all slaves
[  177.057322][T11405] bond2 (unregistering): Released all slaves
[  177.068652][T11405] bond3 (unregistering): Released all slaves
[  177.079445][T11405] bond4 (unregistering): Released all slaves
[  177.090131][T11405] bond5 (unregistering): Released all slaves
[  177.100843][T11405] bond6 (unregistering): Released all slaves
[  177.114284][T11405] bond7 (unregistering): (slave bond8): Releasing backup interface
[  177.117269][T11405] bond7 (unregistering): Released all slaves
[  177.127461][T11405] bond8 (unregistering): Released all slaves
[  177.213992][T11478] 8021q: adding VLAN 0 to HW filter on device bond0
[  177.228112][T11478] 8021q: adding VLAN 0 to HW filter on device team0
[  177.237991][T11410] bridge0: port 1(bridge_slave_0) entered blocking state
[  177.240663][T11410] bridge0: port 1(bridge_slave_0) entered forwarding state
[  177.251345][T11383] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.254238][T11383] bridge0: port 2(bridge_slave_1) entered forwarding state
[  177.511847][T11478] 8021q: adding VLAN 0 to HW filter on device batadv0
[  177.646956][T11405] hsr_slave_0: left promiscuous mode
[  177.649104][T11405] hsr_slave_1: left promiscuous mode
[  177.652639][T11405] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  177.655240][T11405] batman_adv: batadv0: Removing interface: batadv_slave_0
[  177.658092][T11405] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  177.660563][T11405] batman_adv: batadv0: Removing interface: batadv_slave_1
[  177.667424][T11405] veth0_macvtap: left promiscuous mode
[  177.669204][T11405] veth1_vlan: left promiscuous mode
[  177.670945][T11405] veth0_vlan: left promiscuous mode
[  177.802703][T11405] team0 (unregistering): Port device team_slave_1 removed
[  177.808061][T11575] netlink: 'syz.5.1481': attribute type 30 has an invalid length.
[  177.824069][T11405] team0 (unregistering): Port device team_slave_0 removed
[  177.863895][T11576] netlink: 'syz.5.1481': attribute type 30 has an invalid length.
[  177.980016][T11478] veth0_vlan: entered promiscuous mode
[  177.987723][T11478] veth1_vlan: entered promiscuous mode
[  178.020246][T11478] veth0_macvtap: entered promiscuous mode
[  178.031059][T11478] veth1_macvtap: entered promiscuous mode
[  178.060070][T11478] batman_adv: batadv0: Interface activated: batadv_slave_0
[  178.074051][T11478] batman_adv: batadv0: Interface activated: batadv_slave_1
[  178.082028][T11383] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  178.085708][T11383] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  178.102713][T11383] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  178.112263][T11383] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  178.184394][T11584] FAULT_INJECTION: forcing a failure.
[  178.184394][T11584] name failslab, interval 1, probability 0, space 0, times 0
[  178.189780][T11584] CPU: 3 UID: 0 PID: 11584 Comm: syz.5.1482 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  178.189807][T11584] Tainted: [L]=SOFTLOCKUP
[  178.189814][T11584] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  178.189825][T11584] Call Trace:
[  178.189832][T11584]  <TASK>
[  178.189839][T11584]  dump_stack_lvl+0x100/0x190
[  178.189886][T11584]  should_fail_ex.cold+0x5/0xa
[  178.189912][T11584]  should_failslab+0xc2/0x120
[  178.189938][T11584]  __kmalloc_node_noprof+0xe6/0x850
[  178.189960][T11584]  ? __vmalloc_node_range_noprof+0x3dc/0x1530
[  178.189984][T11584]  __vmalloc_node_range_noprof+0x3dc/0x1530
[  178.190004][T11584]  ? __kernel_text_address+0xd/0x30
[  178.190028][T11584]  ? __vcalloc_noprof+0x4d/0x80
[  178.190061][T11584]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  178.190082][T11584]  ? lock_acquire+0x1cf/0x380
[  178.190117][T11584]  ? __vcalloc_noprof+0x4d/0x80
[  178.190141][T11584]  __vmalloc_node_noprof+0xad/0xf0
[  178.190159][T11584]  ? __vcalloc_noprof+0x4d/0x80
[  178.190187][T11584]  __vmalloc_noprof+0xa3/0x120
[  178.190227][T11584]  ? __pfx___vmalloc_noprof+0x10/0x10
[  178.190248][T11584]  ? __pfx___mutex_lock+0x10/0x10
[  178.190282][T11584]  __vcalloc_noprof+0x4d/0x80
[  178.190308][T11584]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  178.190347][T11584]  kvm_set_memslot+0x139/0x1740
[  178.190374][T11584]  ? kasan_save_track+0x14/0x30
[  178.190399][T11584]  kvm_set_memory_region+0xe1c/0x1570
[  178.190436][T11584]  kvm_vm_ioctl+0x1dee/0x4080
[  178.190467][T11584]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  178.190501][T11584]  ? tomoyo_path_number_perm+0x46d/0x580
[  178.190538][T11584]  ? kasan_quarantine_put+0x104/0x240
[  178.190559][T11584]  ? lockdep_hardirqs_on+0x78/0x100
[  178.190579][T11584]  ? find_held_lock+0x2b/0x80
[  178.190601][T11584]  ? tomoyo_path_number_perm+0x28f/0x580
[  178.190620][T11584]  ? tomoyo_path_number_perm+0x28f/0x580
[  178.190644][T11584]  ? tomoyo_path_number_perm+0x188/0x580
[  178.190665][T11584]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  178.190694][T11584]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  178.190733][T11584]  ? __fget_files+0x215/0x3d0
[  178.190758][T11584]  ? hook_file_ioctl_common+0x146/0x410
[  178.190791][T11584]  ? selinux_file_ioctl+0x139/0x290
[  178.190814][T11584]  ? selinux_file_ioctl+0xb4/0x290
[  178.190837][T11584]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  178.190859][T11584]  __x64_sys_ioctl+0x18e/0x210
[  178.190885][T11584]  do_syscall_64+0x106/0xf80
[  178.190902][T11584]  ? clear_bhb_loop+0x40/0x90
[  178.190925][T11584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.190944][T11584] RIP: 0033:0x7fe4ed19bc0b
[  178.190960][T11584] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  178.190976][T11584] RSP: 002b:00007fe4ee0db450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  178.190994][T11584] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007fe4ed19bc0b
[  178.191006][T11584] RDX: 00007fe4ee0dbbd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  178.191017][T11584] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  178.191027][T11584] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  178.191038][T11584] R13: 00007fe4ee0dbbd0 R14: 0000200000fea000 R15: 0000000000000002
[  178.191063][T11584]  </TASK>
[  178.334481][ T5941] Bluetooth: hci2: command 0x0401 tx timeout
[  178.348610][T11410] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  178.351115][T11410] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  178.385954][T11410] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  178.390062][T11410] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  178.408965][   T40] audit: type=1400 audit(2000000012.414:41535): avc:  denied  { mounton } for  pid=11478 comm="syz-executor" path="/syzkaller.htoc2F/syz-tmp" dev="sda1" ino=2040 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  178.722682][T11623] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  178.732465][T11623] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  178.959920][T11638] 9pnet_fd: p9_fd_create_unix (11638): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  178.962181][T11638] 9pnet_fd: p9_fd_create_unix (11638): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  178.965025][ T6010] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  179.045560][   T34] usb 5-1: USB disconnect, device number 17
[  179.061607][   T34] ldusb 5-1:0.55: LD USB Device #0 now disconnected
[  179.066904][T11642] JFS: discard option not supported on device
[  179.070483][T11642] Mount JFS Failure: -5
[  179.093555][ T5941] Bluetooth: hci1: command 0x0405 tx timeout
[  179.180758][ T5941] Bluetooth: hci4: command 0x041b tx timeout
[  179.197147][ T6010] usb 11-1: config index 0 descriptor too short (expected 23569, got 27)
[  179.200097][ T6010] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  179.204147][ T6010] usb 11-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  179.207118][ T6010] usb 11-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  179.209704][ T6010] usb 11-1: Manufacturer: syz
[  179.215582][ T6010] usb 11-1: config 0 descriptor??
[  179.244873][T11656] netlink: 'syz.5.1497': attribute type 1 has an invalid length.
[  179.259052][T11656] bond13: entered promiscuous mode
[  179.260963][T11656] 8021q: adding VLAN 0 to HW filter on device bond13
[  179.264450][ T6010] rc_core: IR keymap rc-hauppauge not found
[  179.266393][ T6010] Registered IR keymap rc-empty
[  179.269278][ T6010] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0
[  179.273938][ T6010] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0/input16
[  179.434477][T11621] syzkaller0: entered promiscuous mode
[  179.436914][T11621] syzkaller0: entered allmulticast mode
[  179.457177][   T29] usb 11-1: USB disconnect, device number 2
[  179.488789][   T34] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[  179.672116][   T34] usb 5-1: config 0 has an invalid interface number: 251 but max is 0
[  179.675459][   T34] usb 5-1: config 0 has no interface number 0
[  179.677945][   T34] usb 5-1: config 0 interface 251 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  179.686343][   T34] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  179.690072][   T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.693620][   T34] usb 5-1: Product: syz
[  179.695440][   T34] usb 5-1: Manufacturer: syz
[  179.697315][   T34] usb 5-1: SerialNumber: syz
[  179.699628][   T40] audit: type=1400 audit(2000000013.630:41536): avc:  denied  { map } for  pid=11668 comm="syz.5.1501" path="socket:[47969]" dev="sockfs" ino=47969 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  179.705062][   T34] usb 5-1: config 0 descriptor??
[  179.708774][   T40] audit: type=1400 audit(2000000013.630:41537): avc:  denied  { accept } for  pid=11668 comm="syz.5.1501" path="socket:[47969]" dev="sockfs" ino=47969 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  179.714143][   T34] asix 5-1:0.251: probe with driver asix failed with error -22
[  179.751958][T11674] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  179.878898][T11678] __nla_validate_parse: 5 callbacks suppressed
[  179.878917][T11678] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1504'.
[  179.885691][T11678] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1504'.
[  180.034289][ T6010] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  180.194635][ T6010] usb 8-1: Using ep0 maxpacket: 8
[  180.197900][ T6010] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  180.200835][ T6010] usb 8-1: config 0 has no interface number 0
[  180.202858][ T6010] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  180.206768][ T6010] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  180.210386][ T6010] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  180.214094][ T6010] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  180.218433][ T6010] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  180.221221][ T6010] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.225534][ T6010] usb 8-1: config 0 descriptor??
[  180.235269][ T6010] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  180.254878][T11685] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1506'.
[  180.299332][T11688] FAULT_INJECTION: forcing a failure.
[  180.299332][T11688] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  180.303727][T11688] CPU: 1 UID: 0 PID: 11688 Comm: syz.5.1507 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  180.303756][T11688] Tainted: [L]=SOFTLOCKUP
[  180.303764][T11688] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  180.303789][T11688] Call Trace:
[  180.303797][T11688]  <TASK>
[  180.303805][T11688]  dump_stack_lvl+0x100/0x190
[  180.303862][T11688]  should_fail_ex.cold+0x5/0xa
[  180.303875][T11688]  ? prepare_alloc_pages+0x16d/0x5f0
[  180.303893][T11688]  should_fail_alloc_page+0xeb/0x140
[  180.303911][T11688]  prepare_alloc_pages+0x1f0/0x5f0
[  180.303931][T11688]  __alloc_frozen_pages_noprof+0x19a/0x2ba0
[  180.303952][T11688]  ? find_held_lock+0x2b/0x80
[  180.303966][T11688]  ? is_bpf_text_address+0x8a/0x1a0
[  180.303981][T11688]  ? is_bpf_text_address+0x8a/0x1a0
[  180.303996][T11688]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  180.304011][T11688]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  180.304026][T11688]  ? is_bpf_text_address+0x94/0x1a0
[  180.304041][T11688]  ? kernel_text_address+0x8d/0x100
[  180.304053][T11688]  ? __kernel_text_address+0xd/0x30
[  180.304065][T11688]  ? unwind_get_return_address+0x59/0xa0
[  180.304084][T11688]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.304100][T11688]  ? policy_nodemask+0xed/0x4f0
[  180.304118][T11688]  alloc_pages_mpol+0x1fb/0x550
[  180.304135][T11688]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  180.304152][T11688]  ? kasan_save_stack+0x30/0x50
[  180.304165][T11688]  ? kasan_save_track+0x14/0x30
[  180.304179][T11688]  ? __kasan_kmalloc+0xaa/0xb0
[  180.304192][T11688]  ? __get_vm_area_node+0x101/0x330
[  180.304208][T11688]  ? __vmalloc_node_range_noprof+0x213/0x1530
[  180.304221][T11688]  alloc_pages_noprof+0x131/0x390
[  180.304243][T11688]  get_free_pages_noprof+0x10/0xb0
[  180.304259][T11688]  __kasan_populate_vmalloc+0xa0/0x210
[  180.304276][T11688]  alloc_vmap_area+0x95d/0x2bd0
[  180.304299][T11688]  ? __pfx_alloc_vmap_area+0x10/0x10
[  180.304319][T11688]  __get_vm_area_node+0x1ca/0x330
[  180.304339][T11688]  __vmalloc_node_range_noprof+0x213/0x1530
[  180.304351][T11688]  ? __vcalloc_noprof+0x4d/0x80
[  180.304371][T11688]  ? __vcalloc_noprof+0x4d/0x80
[  180.304390][T11688]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  180.304403][T11688]  ? lock_acquire+0x1cf/0x380
[  180.304424][T11688]  ? __vcalloc_noprof+0x4d/0x80
[  180.304440][T11688]  __vmalloc_node_noprof+0xad/0xf0
[  180.304450][T11688]  ? __vcalloc_noprof+0x4d/0x80
[  180.304467][T11688]  __vmalloc_noprof+0xa3/0x120
[  180.304479][T11688]  ? __pfx___vmalloc_noprof+0x10/0x10
[  180.304491][T11688]  ? __pfx___mutex_lock+0x10/0x10
[  180.304513][T11688]  __vcalloc_noprof+0x4d/0x80
[  180.304529][T11688]  kvm_arch_prepare_memory_region+0x35c/0x8d0
[  180.304553][T11688]  kvm_set_memslot+0x139/0x1740
[  180.304571][T11688]  ? kasan_save_track+0x14/0x30
[  180.304586][T11688]  kvm_set_memory_region+0xe1c/0x1570
[  180.304609][T11688]  kvm_vm_ioctl+0x1dee/0x4080
[  180.304628][T11688]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  180.304649][T11688]  ? tomoyo_path_number_perm+0x46d/0x580
[  180.304673][T11688]  ? kasan_quarantine_put+0x104/0x240
[  180.304686][T11688]  ? lockdep_hardirqs_on+0x78/0x100
[  180.304699][T11688]  ? find_held_lock+0x2b/0x80
[  180.304712][T11688]  ? tomoyo_path_number_perm+0x28f/0x580
[  180.304724][T11688]  ? tomoyo_path_number_perm+0x28f/0x580
[  180.304739][T11688]  ? tomoyo_path_number_perm+0x188/0x580
[  180.304752][T11688]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  180.304769][T11688]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  180.304792][T11688]  ? __fget_files+0x215/0x3d0
[  180.304809][T11688]  ? hook_file_ioctl_common+0x146/0x410
[  180.304830][T11688]  ? selinux_file_ioctl+0x139/0x290
[  180.304846][T11688]  ? selinux_file_ioctl+0xb4/0x290
[  180.304866][T11688]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  180.304889][T11688]  __x64_sys_ioctl+0x18e/0x210
[  180.304915][T11688]  do_syscall_64+0x106/0xf80
[  180.304934][T11688]  ? clear_bhb_loop+0x40/0x90
[  180.304956][T11688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.304977][T11688] RIP: 0033:0x7fe4ed19bc0b
[  180.304991][T11688] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  180.305003][T11688] RSP: 002b:00007fe4ee0db450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  180.305014][T11688] RAX: ffffffffffffffda RBX: 0000200000fe8000 RCX: 00007fe4ed19bc0b
[  180.305022][T11688] RDX: 00007fe4ee0dbbd0 RSI: 000000004020ae46 RDI: 0000000000000004
[  180.305028][T11688] RBP: 0000000000000004 R08: 0000000000000001 R09: 0000000000000043
[  180.305035][T11688] R10: 0000000000000004 R11: 0000000000000246 R12: 00000000fec00000
[  180.305042][T11688] R13: 00007fe4ee0dbbd0 R14: 0000200000fea000 R15: 0000000000000002
[  180.305057][T11688]  </TASK>
[  180.317987][    T9] usb 5-1: USB disconnect, device number 18
[  180.548491][ T5941] Bluetooth: hci2: command 0x0401 tx timeout
[  180.614776][T11705] netlink: 212368 bytes leftover after parsing attributes in process `syz.5.1512'.
[  180.684829][T11711] netlink: 'syz.5.1514': attribute type 4 has an invalid length.
[  180.860792][T11714] sctp: [Deprecated]: syz.5.1515 (pid 11714) Use of struct sctp_assoc_value in delayed_ack socket option.
[  180.860792][T11714] Use struct sctp_sack_info instead
[  180.917004][T11714] ocfs2: Unknown parameter 'usrquota
[  180.917004][T11714] '
[  181.284442][   T40] audit: type=1400 audit(2000000015.107:41538): avc:  denied  { read write } for  pid=11727 comm="syz.0.1519" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  181.296641][   T40] audit: type=1400 audit(2000000015.107:41539): avc:  denied  { open } for  pid=11727 comm="syz.0.1519" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  181.306166][   T40] audit: type=1400 audit(2000000015.117:41540): avc:  denied  { connect } for  pid=11727 comm="syz.0.1519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  181.317581][ T5941] Bluetooth: hci1: command 0x0405 tx timeout
[  181.329173][T11730] pim6reg99999999: entered allmulticast mode
[  181.340534][T11729] overlayfs: missing 'workdir'
[  181.403768][ T5941] Bluetooth: hci4: command 0x041b tx timeout
[  181.823756][   T40] audit: type=1400 audit(2000000015.622:41541): avc:  denied  { connect } for  pid=11750 comm="syz.6.1528" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  181.932753][   T40] audit: type=1326 audit(2000000015.715:41542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11754 comm="syz.6.1529" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f749139bf79 code=0x7fc00000
[  181.969503][T11761] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  182.204885][ T5941] Bluetooth: hci4: unexpected event for opcode 0x0c5a
[  182.215950][ T5941] Bluetooth: hci4: unexpected event for opcode 0x0c5a
[  182.772483][ T5941] Bluetooth: hci2: command 0x0401 tx timeout
[  182.816930][T11797] kvm: user requested TSC rate below hardware speed
[  182.998864][   T29] usb 8-1: USB disconnect, device number 16
[  183.008060][   T29] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  183.024744][T11801] netlink: get zone limit has 4 unknown bytes
[  183.027867][   T40] audit: type=1400 audit(2000000016.734:41543): avc:  denied  { map } for  pid=11800 comm="syz.3.1541" path="socket:[49549]" dev="sockfs" ino=49549 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  183.037753][   T40] audit: type=1400 audit(2000000016.734:41544): avc:  denied  { accept } for  pid=11800 comm="syz.3.1541" path="socket:[49549]" dev="sockfs" ino=49549 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  183.074808][T11805] nbd: must specify at least one socket
[  183.077080][T11805] veth0_to_bond: entered allmulticast mode
[  183.082785][   T40] audit: type=1400 audit(2000000016.800:41545): avc:  denied  { bind } for  pid=11802 comm="syz.5.1542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  183.335295][T11811] macsec1: entered promiscuous mode
[  183.396131][T11813] netlink: 'syz.5.1546': attribute type 9 has an invalid length.
[  183.398747][T11813] netlink: 'syz.5.1546': attribute type 11 has an invalid length.
[  183.401585][T11813] netlink: 'syz.5.1546': attribute type 12 has an invalid length.
[  183.404568][T11813] netlink: 210020 bytes leftover after parsing attributes in process `syz.5.1546'.
[  183.408343][T11813] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1546'.
[  183.415297][T11813] overlayfs: failed to clone lowerpath
[  183.542587][ T5941] Bluetooth: hci1: command 0x0405 tx timeout
[  183.628493][T11823] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[  183.668130][T11828] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1552'.
[  183.671122][T11828] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1552'.
[  183.686285][T11830] ������: renamed from wg2 (while UP)
[  183.705301][T11830] evm: overlay not supported
[  183.740613][   T40] audit: type=1400 audit(2000000017.408:41546): avc:  denied  { ioctl } for  pid=11833 comm="syz.0.1555" path="socket:[52330]" dev="sockfs" ino=52330 ioctlcmd=0x5820 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  183.761918][   T40] audit: type=1400 audit(2000000017.426:41547): avc:  denied  { compute_member } for  pid=11835 comm="syz.5.1556" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  183.779260][T11838] netlink: 'syz.0.1557': attribute type 1 has an invalid length.
[  183.882528][T11849] fuse: blksize only supported for fuseblk
[  184.191519][T11876] netlink: 'syz.3.1571': attribute type 63 has an invalid length.
[  184.195850][T11876] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1571'.
[  184.199334][T11876] gretap0: entered allmulticast mode
[  184.201828][T11876] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  184.222646][T11876] Invalid argument reading file caps for ./file0
[  184.229775][T11876] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  184.232218][T11876] cramfs: wrong magic
[  184.242572][T11876] XFS (nullb0): Invalid superblock magic number
[  184.320720][T11894] tmpfs: Too small a size for current use
[  184.342274][T11894] bridge_slave_0: left allmulticast mode
[  184.344163][T11894] bridge_slave_0: left promiscuous mode
[  184.346114][T11894] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.350584][T11894] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  184.402660][T11900] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1578'.
[  184.413897][T11904] netlink: 'syz.5.1579': attribute type 1 has an invalid length.
[  184.418199][    C0] vcan0: j1939_tp_rxtimer: 0xffff888025bd7000: rx timeout, send abort
[  184.669143][T11925] program syz.0.1586 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  184.752295][T11930] netlink: 'syz.0.1588': attribute type 1 has an invalid length.
[  184.757643][T11930] "syz.0.1588" (11930) uses obsolete ecb(arc4) skcipher
[  184.781914][T11932] fuse: Bad value for 'fd'
[  184.851106][T11934] syzkaller1: entered promiscuous mode
[  184.853104][T11934] syzkaller1: entered allmulticast mode
[  184.952995][    C0] vcan0: j1939_tp_rxtimer: 0xffff888025bd5400: rx timeout, send abort
[  184.957414][    C0] vcan0: j1939_tp_rxtimer: 0xffff888025bd7000: abort rx timeout. Force session deactivation
[  185.018274][T11948] [U] zͻ�i������[27|
[  185.020030][T11948] [U] �Bs��w�A�er��OU�]~�A��`1e��X�!��j5i�5�����y2�ڂ_�S�"q��h$�������6���\P�[2�*/��Wb_$�0A�7� X�ۖ(wc#����� =��g����<�
[  185.025000][T11948] [U] �I��w�u��b:l��E�e�iBH��k��^�VI|ȥ�\x�d��
[  185.027680][T11948] [U] ����|K�IH�����;F~�{I�ӎ�����=Mkq%����hd9�!�@a�*���lz��~`E���=��[>me��L�h��c��`��'�u���~+ۤ�m�ͷL�����X��������X����舂�i'�j��3�e=:3�/�C�_��<i�eT^��.��q9!��c���7Q���uR�`���S��+Z�	�
[  185.035055][T11948] [U] T�qt�v�b����|�@��D D��E/Q�u�ٝ
3������2������y�rr�|l;6�D�����%��jK���Ʒ2A[��ikuC��덁-T1x�T���v���3��l<��3Α��K�Ì5I�.��>��81�(FW
[  185.041423][T11948] [U] 8)��X�)�YvxRĻ���b��m�b�N�
@ox�;JD�����,
[  185.043854][T11948] [U] *C�n�3��v7�K�E�Xgt_3�����
[  185.046030][T11948] [U] D��/Q�a���zҬE�H��gE1$_k����s�=�R@
[  185.048612][T11948] [U] �ϼcEv��@�
[  185.050314][T11948] [U] a�
�%
[  185.051777][T11948] [U] �@���������cÏ_-Ʊ��Z����&�<Z9�ah�_�L@bKÈ�s�3J�J�5����D��;w�W��ˆUu�yL���bҳ53�ż��{�4XRQ���r�H=M"�/�@	o��������p��S�����~{P���ӡ�~i*�T���~W����)�Q�~ȵ�_ߜ�ͬz�~Vq�۪`
[  185.059474][T11948] [U] �f1�p�3
[  185.061671][T11948] [U] N0[L;a�_��l�&�k�M�C��
[  185.063803][T11948] [U] ��r6w^����g��P$�u����4�~GC����ߚp�k��Ft��w��~�@�L1�
[  185.138457][T11946] [U] �:��K!:��Y咑�;R�����dm����a9�tb�����t���=� Ҫ�+�sS�i�-�Y�Jc� �(����ґ��x�|]k|��_V�
�����҉�T�8MN�i���׎�ͪ���Y΃�zAM�"e�v3�KěO0q]^�)��?ס8ⅴ��S��	�ܝX�e�ݢ��%4�<�g�!���y.����w��a�����׹����)�0�P�/��Q����{���n
[  185.344933][T11963] syz.0.1600 (11963): attempted to duplicate a private mapping with mremap.  This is not supported.
[  185.384454][T11966] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1602'.
[  185.388054][T11966] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1602'.
[  185.394794][T11966] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1602'.
[  185.398760][T11966] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1602'.
[  185.407913][T11968] fuse: Bad value for 'fd'
[  185.491154][    C0] vcan0: j1939_tp_rxtimer: 0xffff888025bd5400: abort rx timeout. Force session deactivation
[  185.766590][ T5941] Bluetooth: hci1: command 0x0405 tx timeout
[  186.104535][T11997] IPv6: NLM_F_CREATE should be specified when creating new route
[  186.262787][T12002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1613'.
[  186.266770][T12002] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1613'.
[  186.300141][T12002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1613'.
[  186.304175][T12002] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1613'.
[  186.792053][T12021] IPv6: NLM_F_CREATE should be specified when creating new route
[  186.857422][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  186.857434][   T40] audit: type=1400 audit(2000000020.316:41563): avc:  denied  { append } for  pid=12022 comm="syz.6.1619" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  187.732128][T12025] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  187.735045][T12025] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  187.737771][T12025] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  187.815680][T12034] netlink: 'syz.6.1622': attribute type 1 has an invalid length.
[  187.820127][T12007] delete_channel: no stack
[  187.874950][T12034] 8021q: adding VLAN 0 to HW filter on device bond2
[  187.880172][T12034] bond1: (slave bond2): making interface the new active one
[  187.882954][T12034] bond1: (slave bond2): Enslaving as an active interface with an up link
[  187.894287][T12034] bond1: (slave gretap1): Enslaving as a backup interface with an up link
[  187.899356][T12034] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1622'.
[  187.974225][T12051] netlink: 'syz.5.1626': attribute type 3 has an invalid length.
[  187.976906][T12051] netlink: 'syz.5.1626': attribute type 3 has an invalid length.
[  188.311942][ T6010] usb 5-1: new low-speed USB device number 19 using dummy_hcd
[  188.439273][T12085] netlink: 'syz.6.1634': attribute type 15 has an invalid length.
[  188.476097][ T6010] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  188.479318][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  188.489743][ T6010] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  188.511086][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  188.516179][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  188.536950][ T6010] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  188.540134][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  188.547838][ T6010] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  188.552545][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  188.568832][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  188.580468][ T6010] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  188.583493][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  188.587826][ T6010] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  188.592598][   T63] Bluetooth: hci3: command 0x1003 tx timeout
[  188.592964][ T5941] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  188.610731][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  188.622054][ T6010] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  188.629358][ T6010] usb 5-1: string descriptor 0 read error: -22
[  188.632211][ T6010] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  188.640285][ T6010] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.667868][ T6010] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  188.685035][   T40] audit: type=1400 audit(2000000022.027:41564): avc:  denied  { write } for  pid=12104 comm="syz.6.1638" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  188.710905][T12105] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  188.722733][   T40] audit: type=1800 audit(2000000022.055:41565): pid=12107 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.5.1637" name="SYSV00000000" dev="tmpfs" ino=3 res=0 errno=0
[  188.902672][   T53] usb 5-1: USB disconnect, device number 19
[  188.939110][T12130] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  188.943610][T12130] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  188.946425][T12130] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  188.956536][T12143] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  188.963520][   T40] audit: type=1400 audit(2000000022.289:41566): avc:  denied  { watch watch_with_perm watch_reads } for  pid=12141 comm="syz.0.1644" path="/bus" dev="hugetlbfs" ino=51762 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  189.037789][T12153] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  189.045048][T12153] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  189.051869][T12136] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  189.502812][T12187] kAFS: unable to lookup cell '(,c��L'
[  189.508999][T12187] kAFS: unable to lookup cell '(,c��L'
[  189.852862][T12203] overlayfs: unescaped trailing colons in lowerdir mount option.
[  189.993814][   T53] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  190.140740][   T53] usb 5-1: device descriptor read/64, error -71
[  190.408054][   T53] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  190.547163][   T53] usb 5-1: device descriptor read/64, error -71
[  190.665024][   T53] usb usb5-port1: attempt power cycle
[  191.040077][   T53] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  191.063513][   T53] usb 5-1: device descriptor read/8, error -71
[  191.157754][ T5941] Bluetooth: hci2: command 0x0401 tx timeout
[  191.157792][   T63] Bluetooth: hci4: command 0x041b tx timeout
[  191.159813][ T5941] Bluetooth: hci1: command 0x0405 tx timeout
[  191.339162][   T53] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  191.356825][T12213] program syz.5.1657 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  191.359809][T12213] ata1.00: invalid command format 0
[  191.371971][   T53] usb 5-1: device descriptor read/8, error -71
[  191.426194][T12217] netlink: 'syz.5.1660': attribute type 1 has an invalid length.
[  191.437789][T12219] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  191.499169][   T53] usb usb5-port1: unable to enumerate USB device
[  191.512111][   T40] audit: type=1400 audit(2000000024.682:41567): avc:  denied  { wake_alarm } for  pid=12218 comm="syz.3.1659" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  191.575963][T12219] netlink: zone id is out of range
[  191.583630][T12219] netlink: zone id is out of range
[  191.585629][T12219] netlink: zone id is out of range
[  191.595647][T12219] syz.3.1659 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  192.419263][T12256] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1664'.
[  192.464746][   T40] audit: type=1326 audit(2000000025.571:41568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12257 comm="syz.5.1666" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe4ed19bf79 code=0x0
[  192.731299][   T40] audit: type=1400 audit(2000000025.823:41569): avc:  denied  { mounton } for  pid=12264 comm="syz.3.1668" path="/382/file0" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=dir permissive=1
[  192.846089][T12273] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  193.387413][T12292] 9pnet_fd: p9_fd_create_tcp (12292): problem connecting socket to 127.0.0.1
[  193.392017][ T5941] Bluetooth: hci4: command 0x041b tx timeout
[  193.396135][   T40] audit: type=1400 audit(2000000026.440:41570): avc:  denied  { setopt } for  pid=12291 comm="syz.6.1676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  193.404770][   T40] audit: type=1400 audit(2000000026.440:41571): avc:  denied  { connect } for  pid=12291 comm="syz.6.1676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  193.412188][T12296] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1677'.
[  193.515966][T12304] binder: 12301:12304 unknown command 0
[  193.518335][T12304] binder: 12301:12304 ioctl c0306201 200000000080 returned -22
[  193.526149][T12304] xt_hashlimit: size too large, truncated to 1048576
[  193.588513][T12309] binder: 12301:12309 ioctl 89e7 200000000040 returned -22
[  193.656848][   T40] audit: type=1400 audit(2000000026.674:41572): avc:  denied  { associate } for  pid=12313 comm="syz.3.1682" name="cgroup" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  193.657510][T12314] tun0: tun_chr_ioctl cmd 1074025672
[  193.669756][T12314] tun0: ignored: set checksum enabled
[  193.711616][T12317] openvswitch: netlink: Duplicate or invalid key (type 0).
[  193.714436][T12317] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  193.718450][T12317] syz.6.1683 uses old SIOCAX25GETINFO
[  193.804530][T12321] xt_hashlimit: size too large, truncated to 1048576
[  194.098108][ T6010] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  194.281323][ T6010] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  194.284770][ T6010] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  194.288434][ T6010] usb 8-1: config 0 interface 0 has no altsetting 0
[  194.297029][ T6010] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  194.300843][ T6010] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  194.303489][ T6010] usb 8-1: Product: syz
[  194.305162][ T6010] usb 8-1: Manufacturer: syz
[  194.311880][ T6010] usb 8-1: SerialNumber: syz
[  194.320101][ T6010] usb 8-1: config 0 descriptor??
[  194.328016][ T6010] hub 8-1:0.0: bad descriptor, ignoring hub
[  194.330242][ T6010] hub 8-1:0.0: probe with driver hub failed with error -5
[  194.345916][ T6010] usb 8-1: selecting invalid altsetting 0
[  194.377687][T12340] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1687'.
[  194.413020][   T40] audit: type=1400 audit(2000000027.385:41573): avc:  denied  { ioctl } for  pid=12341 comm="syz.0.1693" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 ioctlcmd=0x586a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1
[  194.415279][T12344] netlink: 'syz.5.1692': attribute type 1 has an invalid length.
[  194.438423][T12344] 8021q: adding VLAN 0 to HW filter on device bond16
[  194.470822][ T5941] Bluetooth: hci2: SCO packet for unknown connection handle 201
[  194.626520][ T5941] Bluetooth: hci1: unexpected event for opcode 0x0404
[  194.631343][ T5941] Bluetooth: hci1: ACL packet for unknown connection handle 1
[  194.682790][T12372] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21504 sclass=netlink_route_socket pid=12372 comm=syz.5.1700
[  194.782481][   T34] usb 11-1: new full-speed USB device number 3 using dummy_hcd
[  194.878946][T12375] netlink: 'syz.5.1701': attribute type 1 has an invalid length.
[  194.901540][T12375] 8021q: adding VLAN 0 to HW filter on device bond18
[  194.905917][T12375] bond17: (slave bond18): making interface the new active one
[  194.908591][T12375] bond17: (slave bond18): Enslaving as an active interface with an up link
[  194.913154][T12375] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1701'.
[  194.916898][T12375] 8021q: adding VLAN 0 to HW filter on device bond17
[  194.944305][   T34] usb 11-1: config index 0 descriptor too short (expected 5924, got 36)
[  194.947651][   T34] usb 11-1: config 250 has an invalid interface number: 228 but max is -1
[  194.950768][   T34] usb 11-1: config 250 has 1 interface, different from the descriptor's value: 0
[  194.953745][   T34] usb 11-1: config 250 has no interface number 0
[  194.955730][   T34] usb 11-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 64
[  194.959221][   T34] usb 11-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 231, setting to 64
[  194.962742][   T34] usb 11-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  194.966966][   T34] usb 11-1: config 250 interface 228 has no altsetting 0
[  194.970329][   T34] usb 11-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  194.973145][   T34] usb 11-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  194.975913][   T34] usb 11-1: Product: syz
[  194.977265][   T34] usb 11-1: SerialNumber: syz
[  194.987296][   T34] hub 11-1:250.228: bad descriptor, ignoring hub
[  194.989624][   T34] hub 11-1:250.228: probe with driver hub failed with error -5
[  194.997925][T12323] usb 8-1: reset high-speed USB device number 17 using dummy_hcd
[  195.174851][T12388] netlink: 'syz.5.1703': attribute type 1 has an invalid length.
[  195.191923][T12323] usb 8-1: device firmware changed
[  195.195373][ T6010] usb 8-1: USB disconnect, device number 17
[  195.202260][   T34] usblp 11-1:250.228: usblp0: USB Bidirectional printer dev 3 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  195.370949][ T6010] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  195.418979][   T40] audit: type=1400 audit(2000000028.329:41574): avc:  denied  { read write } for  pid=12337 comm="syz.6.1691" name="lp0" dev="devtmpfs" ino=3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  195.432248][T12392] macsec0: entered promiscuous mode
[  195.433141][   T40] audit: type=1400 audit(2000000028.329:41575): avc:  denied  { open } for  pid=12337 comm="syz.6.1691" path="/dev/usb/lp0" dev="devtmpfs" ino=3311 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:printer_device_t tclass=chr_file permissive=1
[  195.434228][T12392] macsec0: entered allmulticast mode
[  195.445535][T12392] veth1_macvtap: entered allmulticast mode
[  195.459826][T12392] loop7: detected capacity change from 0 to 7
[  195.467129][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.470228][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.474713][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.474963][T12349] fuse: Unknown parameter 'fd���HC�I�>�Z��hT�.�Bh�&@��
�6�!z�0x000000000000000f'
[  195.477768][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.484844][    C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.488435][    C2] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.491304][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.494415][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.497390][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.500873][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.504118][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.507063][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.512471][    C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.515858][T12394] overlayfs: failed to resolve './file1': -2
[  195.516010][    C3] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.525448][ T8009] ldm_validate_partition_table(): Disk read failed.
[  195.528367][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.531596][    C2] usblp0: nonzero read bulk status received: -71
[  195.532543][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.538679][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.542614][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.547936][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.550852][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  195.553753][ T6010] usb 8-1: config index 0 descriptor too short (expected 39, got 27)
[  195.553780][ T8009] Dev loop7: unable to read RDB block 0
[  195.557966][ T6010] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  195.563632][ T6010] usb 8-1: config 0 interface 0 has no altsetting 0
[  195.563674][ T8009]  loop7: unable to read partition table
[  195.566728][    T9] usb 11-1: USB disconnect, device number 3
[  195.568368][ T8009] loop7: partition table beyond EOD, truncated
[  195.579251][ T6010] usb 8-1: string descriptor 0 read error: -22
[  195.581826][T12392] ldm_validate_partition_table(): Disk read failed.
[  195.581948][ T6010] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  195.588660][ T6010] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  195.588869][T12392] Dev loop7: unable to read RDB block 0
[  195.593636][    T9] usblp0: removed
[  195.594652][T12392]  loop7: unable to read partition table
[  195.599476][T12392] loop7: partition table beyond EOD, truncated
[  195.601564][T12392] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  195.605001][ T6010] usb 8-1: config 0 descriptor??
[  195.606373][ T5941] Bluetooth: hci4: command 0x041b tx timeout
[  195.610720][ T6010] hub 8-1:0.0: bad descriptor, ignoring hub
[  195.610740][ T6010] hub 8-1:0.0: probe with driver hub failed with error -5
[  195.620838][ T6010] usb 8-1: selecting invalid altsetting 0
[  195.781837][T12418] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1712'.
[  195.785131][T12418] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1712'.
[  195.788498][T12418] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1712'.
[  195.791169][T12418] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1712'.
[  195.831590][T12423] netlink: 'syz.5.1714': attribute type 1 has an invalid length.
[  195.847654][T12423] 8021q: adding VLAN 0 to HW filter on device bond19
[  195.856835][T12423] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1714'.
[  195.860968][   T40] audit: type=1400 audit(2000000028.740:41576): avc:  denied  { ioctl } for  pid=12421 comm="syz.5.1714" path="socket:[55341]" dev="sockfs" ino=55341 ioctlcmd=0xae46 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  195.885243][T12423] bond19: (slave dummy0): making interface the new active one
[  195.890178][T12423] bond19: (slave dummy0): Enslaving as an active interface with an up link
[  195.898022][T12423] netlink: 'syz.5.1714': attribute type 10 has an invalid length.
[  195.901351][T12423] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1714'.
[  195.904537][T12423] dummy0: entered promiscuous mode
[  195.910319][T12423] bond19: (slave dummy0): Releasing active interface
[  195.950835][ T5992] usb 8-1: USB disconnect, device number 18
[  195.953591][T12432] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12432 comm=syz.5.1718
[  196.063641][T12438] bond17: Unable to set up delay as MII monitoring is disabled
[  196.067623][T12438] bond17 (unregistering): Released all slaves
[  196.112699][T12440] netlink: 'syz.0.1720': attribute type 1 has an invalid length.
[  196.300001][ T5992] hid_parser_main: 4095 callbacks suppressed
[  196.300015][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.304587][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.307144][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.309550][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.312216][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.314593][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.316939][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.319301][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.321729][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.324215][ T5992] hid-generic 0005:00B6:0009.0008: unknown main item tag 0x0
[  196.344928][ T5992] hid-generic 0005:00B6:0009.0008: hidraw1: BLUETOOTH HID v1ade12.f3 Device [syz0] on syz1
[  196.392463][T12454] fido_id[12454]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  196.635364][T12492] netlink: 'syz.0.1735': attribute type 61 has an invalid length.
[  197.779417][T12526] netlink: 'syz.5.1747': attribute type 1 has an invalid length.
[  197.800175][T12526] bond20: (slave vxcan3): The slave device specified does not support setting the MAC address
[  197.804574][T12526] bond20: (slave vxcan3): Error -95 calling set_mac_address
[  197.826753][T12529] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=38946 sclass=netlink_route_socket pid=12529 comm=syz.0.1748
[  197.831084][ T5941] Bluetooth: hci4: command 0x041b tx timeout
[  197.853124][T12533] __nla_validate_parse: 9 callbacks suppressed
[  197.853141][T12533] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1747'.
[  197.982574][ T5941] Bluetooth: hci4: unexpected event 0x2f length: 509 > 260
[  198.147014][T12557] netlink: 'syz.6.1755': attribute type 1 has an invalid length.
[  198.364590][T12576] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1762'.
[  198.367652][T12576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1762'.
[  198.372969][T12576] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1762'.
[  198.376393][T12576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1762'.
[  198.414970][T12579] xt_hashlimit: Unknown mode mask 84, kernel too old?
[  198.484281][T12587] netlink: 'syz.5.1766': attribute type 1 has an invalid length.
[  198.496476][T12590] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1767'.
[  198.501639][T12587] 8021q: adding VLAN 0 to HW filter on device bond21
[  198.523017][T12587] bond21: (slave gretap3): making interface the new active one
[  198.528409][T12587] bond21: (slave gretap3): Enslaving as an active interface with an up link
[  198.530122][   T40] audit: type=1400 audit(2000000031.237:41577): avc:  denied  { map } for  pid=12588 comm="syz.0.1767" path="/dev/comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  198.533243][T12587] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12587 comm=syz.5.1766
[  198.575245][T12594] XFS (nullb0): Invalid superblock magic number
[  198.698326][T12610] bond4: (slave geneve2): making interface the new active one
[  198.700939][T12610] bond4: (slave geneve2): Enslaving as an active interface with an up link
[  198.715903][  T159] netdevsim netdevsim6 netdevsim0: set [1, 1] type 2 family 0 port 20004 - 0
[  198.719005][  T159] netdevsim netdevsim6 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[  198.721923][  T159] netdevsim netdevsim6 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[  198.724828][  T159] netdevsim netdevsim6 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[  198.759887][T12615] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1774'.
[  198.846812][ T5941] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  198.879312][T12627] jfs: Unknown parameter 'grpquota(��9��A�x������}'m���h^���$��11Ǣ<����5ڢ%�꼗�T��J�3&P�f��E;"|��ޖ�A�y���A��]1'
[  198.951654][   T40] audit: type=1326 audit(2000000031.630:41578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12630 comm="syz.6.1778" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f749139bf79 code=0x0
[  199.036173][T12641] smb3: Unknown parameter 'a�'
[  199.038292][T12641] CIFS mount error: No usable UNC path provided in device string!
[  199.038292][T12641] 
[  199.044541][T12641] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  199.141511][T12651] 8021q: adding VLAN 0 to HW filter on device bond22
[  199.151141][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.153696][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.156260][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.159687][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.162868][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.166442][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.166494][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.166543][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.166591][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.166638][T12652] ICMPv6: RA: ndisc_router_discovery failed to add default route
[  199.210135][T12652] bond22: (slave ip6erspan0): making interface the new active one
[  199.213352][T12652] bond22: (slave ip6erspan0): Enslaving as an active interface with an up link
[  199.391922][   T40] audit: type=1400 audit(2000000032.041:41579): avc:  denied  { bind } for  pid=12662 comm="syz.5.1788" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  199.466604][   T34] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  199.637765][   T34] usb 11-1: Using ep0 maxpacket: 8
[  199.641828][   T34] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  199.646581][   T34] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  199.658169][   T34] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  199.661518][   T34] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  199.666247][   T34] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  199.669286][   T34] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.900334][   T34] usb 11-1: usb_control_msg returned -32
[  199.902569][   T34] usbtmc 11-1:16.0: can't read capabilities
[  200.752423][T12679] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  200.755817][T12679] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  200.761431][T12679] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  200.830365][T12692] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.1795'.
[  200.833579][T12692] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.1795'.
[  200.836977][T12692] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.1795'.
[  200.928297][T12697] SELinux:  unknown common 
[  200.930336][T12697] SELinux: failed to load policy
[  200.933887][T12697] tipc: Started in network mode
[  200.936044][T12697] tipc: Node identity 4eea10fb63f9, cluster identity 3865
[  200.938956][T12697] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  200.942180][T12697] syzkaller0: entered promiscuous mode
[  200.944706][T12697] syzkaller0: entered allmulticast mode
[  200.964691][T12697] tipc: Resetting bearer <eth:syzkaller0>
[  200.985736][T12697] tipc: Disabling bearer <eth:syzkaller0>
[  201.231201][   T34] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  201.277912][   T40] audit: type=1400 audit(2000000033.808:41580): avc:  denied  { execheap } for  pid=12711 comm="syz.0.1802" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  201.283998][   T40] audit: type=1400 audit(2000000033.808:41581): avc:  denied  { write } for  pid=12711 comm="syz.0.1802" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  201.415555][   T34] usb 10-1: Using ep0 maxpacket: 32
[  201.421387][   T34] usb 10-1: too many configurations: 17, using maximum allowed: 8
[  201.433205][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.439413][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  201.442312][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  201.446656][   T34] usb 10-1: config 0 has no interface number 0
[  201.450126][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.453104][   T34] usb 10-1: config 0 has no interface number 0
[  201.460504][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.463189][   T34] usb 10-1: config 0 has no interface number 0
[  201.471945][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.475179][   T34] usb 10-1: config 0 has no interface number 0
[  201.478722][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.481209][   T34] usb 10-1: config 0 has no interface number 0
[  201.484068][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.487277][   T34] usb 10-1: config 0 has no interface number 0
[  201.490295][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.492925][   T34] usb 10-1: config 0 has no interface number 0
[  201.496109][   T34] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[  201.500077][   T34] usb 10-1: config 0 has no interface number 0
[  201.507249][   T34] usb 10-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2
[  201.511792][   T34] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.514405][   T34] usb 10-1: Product: syz
[  201.515780][   T34] usb 10-1: Manufacturer: syz
[  201.517329][   T34] usb 10-1: SerialNumber: syz
[  201.525701][   T34] usb 10-1: config 0 descriptor??
[  201.530730][   T34] etas_es58x 10-1:0.2: Starting syz syz (Serial Number syz)
[  201.802577][T12724] loop6: detected capacity change from 0 to 524287999
[  201.807392][T12724] buffer_io_error: 25 callbacks suppressed
[  201.807407][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.814444][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.817778][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.821181][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.824516][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.827753][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.831058][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.834374][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.837707][T12724] ldm_validate_partition_table(): Disk read failed.
[  201.840567][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.844480][T12724] Buffer I/O error on dev loop6, logical block 0, async page read
[  201.847785][T12724] Dev loop6: unable to read RDB block 0
[  201.850359][T12724]  loop6: unable to read partition table
[  201.853731][T12724] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[  201.938988][T12724] ldm_validate_partition_table(): Disk read failed.
[  201.941769][T12724] Dev loop6: unable to read RDB block 0
[  201.944394][T12724]  loop6: unable to read partition table
[  201.946804][T12724] loop_reread_partitions: partition scan of loop6 (3��x��C�

) failed (rc=-5)
[  201.994812][T12726] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  202.108528][ T5941] Bluetooth: hci2: command 0x0401 tx timeout
[  202.420828][    T9] usb 11-1: USB disconnect, device number 4
[  202.518362][   T40] audit: type=1326 audit(2000000034.968:41582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12748 comm="syz.6.1817" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f749139bf79 code=0x0
[  202.633691][   T40] audit: type=1400 audit(2000000035.080:41583): avc:  denied  { listen } for  pid=12754 comm="syz.0.1819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  202.652785][   T40] audit: type=1400 audit(2000000035.089:41584): avc:  denied  { accept } for  pid=12754 comm="syz.0.1819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  202.832980][T12766] ip6t_rpfilter: unknown options
[  202.858352][T12766] bridge0: port 3(syz_tun) entered disabled state
[  202.864346][T12766] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.904876][T12766] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  202.933177][T12766] veth1_vlan: left allmulticast mode
[  202.974485][ T5941] Bluetooth: hci4: command 0x041b tx timeout
[  202.974496][   T63] Bluetooth: hci1: command 0x0405 tx timeout
[  202.986780][T11412] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 20004 - 0
[  202.989408][T11412] netdevsim netdevsim0 eth0: unset [1, 1] type 2 family 0 port 6081 - 0
[  202.991965][T11412] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 20004 - 0
[  202.994645][T11412] netdevsim netdevsim0 eth1: unset [1, 1] type 2 family 0 port 6081 - 0
[  202.997945][T11412] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 20004 - 0
[  203.001427][T11412] netdevsim netdevsim0 eth2: unset [1, 1] type 2 family 0 port 6081 - 0
[  203.004824][T11412] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 20004 - 0
[  203.007156][T11415] nci: nci_rsp_packet: unsupported rsp opcode 0xf00
[  203.008302][T11412] netdevsim netdevsim0 eth3: unset [1, 1] type 2 family 0 port 6081 - 0
[  204.177928][   T34] etas_es58x 10-1:0.2: could not retrieve the product info string
[  204.204725][   T34] usb 10-1: USB disconnect, device number 10
[  204.207696][   T34] etas_es58x 10-1:0.2: Disconnecting syz syz
[  204.814046][   T34] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  204.974375][   T34] usb 10-1: Using ep0 maxpacket: 16
[  204.977387][   T34] usb 10-1: config 1 interface 0 altsetting 255 has an endpoint descriptor with address 0x4A, changing to 0xA
[  204.980764][   T34] usb 10-1: config 1 interface 0 altsetting 255 endpoint 0xA has invalid maxpacket 54091, setting to 1024
[  204.984077][   T34] usb 10-1: config 1 interface 0 altsetting 255 bulk endpoint 0xA has invalid maxpacket 1024
[  204.989015][   T34] usb 10-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  204.992779][   T34] usb 10-1: config 1 interface 0 has no altsetting 0
[  204.997180][   T34] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  204.999996][   T34] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.002393][   T34] usb 10-1: Product: syz
[  205.003804][   T34] usb 10-1: Manufacturer: syz
[  205.005262][   T34] usb 10-1: SerialNumber: syz
[  205.009278][T12784] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  205.228214][   T34] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 11 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  205.442131][    C3] usblp0: nonzero write bulk status received: -71
[  206.034534][T12771] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  206.218868][T12800] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[  206.230829][T12800] input: syz1 as /devices/virtual/input/input19
[  206.539162][T12824] cgroup2: Unknown parameter 'memory_hugetlb_accou'
[  206.610629][   T53] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  206.771035][   T53] usb 5-1: device descriptor read/64, error -71
[  207.049111][   T53] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  207.198816][   T53] usb 5-1: device descriptor read/64, error -71
[  207.316791][   T53] usb usb5-port1: attempt power cycle
[  207.531220][T12837] trusted_key: encrypted_key: insufficient parameters specified
[  207.587181][T12839] syzkaller1: entered promiscuous mode
[  207.589074][T12839] syzkaller1: entered allmulticast mode
[  207.680172][   T53] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  207.702128][ T7550] usb 10-1: USB disconnect, device number 11
[  207.702216][   T53] usb 5-1: device descriptor read/8, error -71
[  207.706623][ T7550] usblp0: removed
[  207.750431][T12841] fuse: Bad value for 'fd'
[  207.780955][T12843] loop6: detected capacity change from 0 to 64
[  207.871409][   T40] audit: type=1400 audit(2000000039.970:41585): avc:  denied  { setopt } for  pid=12851 comm="syz.6.1844" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  207.871676][T12852] dlm: no local IP address has been set
[  207.881613][T12852] dlm: cannot start dlm midcomms -107
[  207.958169][   T53] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  207.980107][   T53] usb 5-1: device descriptor read/8, error -71
[  208.108212][   T53] usb usb5-port1: unable to enumerate USB device
[  208.259351][T12863] validate_nla: 2 callbacks suppressed
[  208.259367][T12863] netlink: 'syz.5.1846': attribute type 10 has an invalid length.
[  208.267567][T12863] team0: Cannot enslave team device to itself
[  208.450090][ T5941] Bluetooth: hci2: command 0x0401 tx timeout
[  208.450100][ T5938] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  208.455425][ T5938] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  209.092356][T12867] __nla_validate_parse: 70 callbacks suppressed
[  209.092369][T12867] netlink: 100 bytes leftover after parsing attributes in process `syz.6.1848'.
[  209.183252][T12878] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1852'.
[  209.187131][T12878] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1852'.
[  209.229444][T12881] input: syz0 as /devices/virtual/input/input20
[  209.351261][   T40] audit: type=1400 audit(2000000041.354:41586): avc:  denied  { write } for  pid=12876 comm="syz.5.1851" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  209.640095][T12904] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1860'.
[  209.643807][T12904] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1860'.
[  209.709835][T12913] vivid-000: disconnect
[  209.718520][T12912] vivid-000: reconnect
[  209.789633][T12918] net_ratelimit: 102 callbacks suppressed
[  209.789647][T12918] openvswitch: netlink: Tunnel attr 16 has unexpected len 4504 expected 0
[  209.819196][    T9] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  209.885942][T12918] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  209.952544][T12924] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=12924 comm=syz.0.1862
[  210.014451][    T9] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  210.018025][    T9] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  210.021196][    T9] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  210.043905][    T9] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  210.046945][    T9] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.051531][    T9] usb 11-1: config 0 descriptor??
[  210.490979][    T9] plantronics 0003:047F:FFFF.0009: reserved main item tag 0xd
[  210.499463][    T9] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  210.664038][ T5938] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  210.664055][ T5938] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  210.664268][    C0] ------------[ cut here ]------------
[  210.664309][    C0] workqueue: cannot queue hci_cmd_timeout on wq hci1
[  210.664353][    C0] WARNING: kernel/workqueue.c:2270 at __queue_work+0xd08/0x1150, CPU#0: syz.5.1864/12930
[  210.664380][    C0] Modules linked in:
[  210.664429][    C0] CPU: 0 UID: 0 PID: 12930 Comm: syz.5.1864 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  210.664451][    C0] Tainted: [L]=SOFTLOCKUP
[  210.664458][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  210.664468][    C0] RIP: 0010:__queue_work+0xd0c/0x1150
[  210.664486][    C0] Code: 00 00 00 fc ff df 49 8d 94 24 78 01 00 00 48 89 f9 48 c1 e9 03 80 3c 01 00 0f 85 04 04 00 00 48 8d 3d 98 52 0c 0f 48 8b 75 18 <67> 48 0f b9 3a e9 2a f7 ff ff e8 25 d0 38 00 90 0f 0b 90 e9 b2 f5
[  210.664505][    C0] RSP: 0000:ffffc900036efb20 EFLAGS: 00010046
[  210.664520][    C0] RAX: dffffc0000000000 RBX: 0000000000000100 RCX: 1ffff1100c8d5151
[  210.664534][    C0] RDX: ffff888055926178 RSI: ffffffff8a818760 RDI: ffffffff90dc0b20
[  210.664547][    C0] RBP: ffff8880646a8a70 R08: 0000000000000005 R09: 0000000000000000
[  210.664559][    C0] R10: 0000000000000100 R11: 0000000000000000 R12: ffff888055926000
[  210.664571][    C0] R13: 1ffff920006ddf76 R14: ffffffff81cfc9a0 R15: 0000000000000001
[  210.664587][    C0] FS:  00005555734af500(0000) GS:ffff8880d6358000(0000) knlGS:0000000000000000
[  210.664621][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  210.664636][    C0] CR2: 00007fe4ed4102f8 CR3: 000000005e3df000 CR4: 0000000000352ef0
[  210.664650][    C0] DR0: 0000000000000081 DR1: 000000000000000f DR2: 00000000000007ff
[  210.664662][    C0] DR3: 0000000000000001 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  210.664675][    C0] Call Trace:
[  210.664681][    C0]  <TASK>
[  210.664695][    C0]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  210.664715][    C0]  call_timer_fn+0x19a/0x670
[  210.664740][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  210.664767][    C0]  ? __run_timers+0x560/0xb30
[  210.664792][    C0]  ? __run_timers+0x560/0xb30
[  210.664821][    C0]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  210.664842][    C0]  __run_timers+0x570/0xb30
[  210.664874][    C0]  ? __pfx___run_timers+0x10/0x10
[  210.664909][    C0]  ? _raw_spin_lock_irq+0x45/0x50
[  210.664941][    C0]  run_timer_base+0x114/0x190
[  210.664966][    C0]  ? __pfx_run_timer_base+0x10/0x10
[  210.664994][    C0]  run_timer_softirq+0x1a/0x50
[  210.665019][    C0]  handle_softirqs+0x1eb/0x9e0
[  210.665045][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  210.665074][    C0]  __irq_exit_rcu+0xef/0x150
[  210.665096][    C0]  irq_exit_rcu+0x9/0x30
[  210.665118][    C0]  sysvec_apic_timer_interrupt+0x56/0xc0
[  210.665149][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  210.665170][    C0] RIP: 0033:0x7fe4ed06c515
[  210.665187][    C0] Code: 00 48 39 f2 72 65 66 0f c6 c0 01 0f 11 45 00 4c 89 e6 eb 09 90 48 8b 4b 08 48 83 c3 08 48 39 d1 72 f3 48 8d 46 f8 48 8b 76 f8 <48> 39 f2 73 13 66 0f 1f 44 00 00 48 8b 70 f8 48 83 e8 08 48 39 f2
[  210.665210][    C0] RSP: 002b:00007fff312e4bf0 EFLAGS: 00000212
[  210.665224][    C0] RAX: 00007fe4ececeff8 RBX: 00007fe4ecc09278 RCX: ffffffff825a1323
[  210.665234][    C0] RDX: ffffffff825771da RSI: ffffffff825a2be2 RDI: 00007fe4ecdff000
[  210.665245][    C0] RBP: 00007fe4ecbff008 R08: 00007fe4ed400000 R09: 00007fe4ed416038
[  210.665257][    C0] R10: 0000000000000003 R11: 0000000000000004 R12: 00007fe4ecfff000
[  210.665269][    C0] R13: 0000000000000023 R14: 000000000007ffff R15: 0000000000000003
[  210.665286][    C0]  ? copy_page_range+0x1f63/0x6570
[  210.665306][    C0]  ? folio_test_large+0xa/0xa0
[  210.665328][    C0]  ? copy_page_range+0x3822/0x6570
[  210.665352][    C0]  </TASK>
[  210.665362][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  210.665377][    C0] CPU: 0 UID: 0 PID: 12930 Comm: syz.5.1864 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  210.665402][    C0] Tainted: [L]=SOFTLOCKUP
[  210.665410][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  210.665421][    C0] Call Trace:
[  210.665428][    C0]  <TASK>
[  210.665435][    C0]  dump_stack_lvl+0x100/0x190
[  210.665466][    C0]  vpanic+0x552/0x970
[  210.665485][    C0]  ? __pfx_vpanic+0x10/0x10
[  210.665511][    C0]  panic+0xd1/0xe0
[  210.665530][    C0]  ? __pfx_panic+0x10/0x10
[  210.665556][    C0]  ? check_panic_on_warn+0x1f/0x90
[  210.665583][    C0]  check_panic_on_warn.cold+0x19/0x34
[  210.665603][    C0]  ? __queue_work+0xd08/0x1150
[  210.665621][    C0]  __warn.cold+0x191/0x348
[  210.665643][    C0]  __report_bug+0x296/0x3d0
[  210.665670][    C0]  ? __queue_work+0xd08/0x1150
[  210.665691][    C0]  ? __pfx___report_bug+0x10/0x10
[  210.665721][    C0]  ? __pfx_hci_cmd_timeout+0x10/0x10
[  210.665752][    C0]  ? try_to_wake_up+0x154/0x1a80
[  210.665777][    C0]  ? look_up_lock_class+0x64/0x120
[  210.665802][    C0]  report_bug_entry+0xe1/0x290
[  210.665831][    C0]  ? __queue_work+0xd0c/0x1150
[  210.665852][    C0]  handle_bug+0x1c9/0x2a0
[  210.665876][    C0]  exc_invalid_op+0x17/0x50
[  210.665900][    C0]  asm_exc_invalid_op+0x1a/0x20
[  210.665950][    C0] RIP: 0010:__queue_work+0xd0c/0x1150
[  210.665970][    C0] Code: 00 00 00 fc ff df 49 8d 94 24 78 01 00 00 48 89 f9 48 c1 e9 03 80 3c 01 00 0f 85 04 04 00 00 48 8d 3d 98 52 0c 0f 48 8b 75 18 <67> 48 0f b9 3a e9 2a f7 ff ff e8 25 d0 38 00 90 0f 0b 90 e9 b2 f5
[  210.665988][    C0] RSP: 0000:ffffc900036efb20 EFLAGS: 00010046
[  210.666005][    C0] RAX: dffffc0000000000 RBX: 0000000000000100 RCX: 1ffff1100c8d5151
[  210.666018][    C0] RDX: ffff888055926178 RSI: ffffffff8a818760 RDI: ffffffff90dc0b20
[  210.666031][    C0] RBP: ffff8880646a8a70 R08: 0000000000000005 R09: 0000000000000000
[  210.666044][    C0] R10: 0000000000000100 R11: 0000000000000000 R12: ffff888055926000
[  210.666057][    C0] R13: 1ffff920006ddf76 R14: ffffffff81cfc9a0 R15: 0000000000000001
[  210.666072][    C0]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  210.666100][    C0]  ? __pfx_hci_cmd_timeout+0x10/0x10
[  210.666139][    C0]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  210.666162][    C0]  call_timer_fn+0x19a/0x670
[  210.666190][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  210.666224][    C0]  ? __run_timers+0x560/0xb30
[  210.666249][    C0]  ? __run_timers+0x560/0xb30
[  210.666276][    C0]  ? __pfx_delayed_work_timer_fn+0x10/0x10
[  210.666292][    C0]  __run_timers+0x570/0xb30
[  210.666324][    C0]  ? __pfx___run_timers+0x10/0x10
[  210.666358][    C0]  ? _raw_spin_lock_irq+0x45/0x50
[  210.666385][    C0]  run_timer_base+0x114/0x190
[  210.666410][    C0]  ? __pfx_run_timer_base+0x10/0x10
[  210.666439][    C0]  run_timer_softirq+0x1a/0x50
[  210.666463][    C0]  handle_softirqs+0x1eb/0x9e0
[  210.666490][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  210.666518][    C0]  __irq_exit_rcu+0xef/0x150
[  210.666541][    C0]  irq_exit_rcu+0x9/0x30
[  210.666562][    C0]  sysvec_apic_timer_interrupt+0x56/0xc0
[  210.666592][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  210.666614][    C0] RIP: 0033:0x7fe4ed06c515
[  210.666629][    C0] Code: 00 48 39 f2 72 65 66 0f c6 c0 01 0f 11 45 00 4c 89 e6 eb 09 90 48 8b 4b 08 48 83 c3 08 48 39 d1 72 f3 48 8d 46 f8 48 8b 76 f8 <48> 39 f2 73 13 66 0f 1f 44 00 00 48 8b 70 f8 48 83 e8 08 48 39 f2
[  210.666646][    C0] RSP: 002b:00007fff312e4bf0 EFLAGS: 00000212
[  210.666661][    C0] RAX: 00007fe4ececeff8 RBX: 00007fe4ecc09278 RCX: ffffffff825a1323
[  210.666674][    C0] RDX: ffffffff825771da RSI: ffffffff825a2be2 RDI: 00007fe4ecdff000
[  210.666687][    C0] RBP: 00007fe4ecbff008 R08: 00007fe4ed400000 R09: 00007fe4ed416038
[  210.666699][    C0] R10: 0000000000000003 R11: 0000000000000004 R12: 00007fe4ecfff000
[  210.666711][    C0] R13: 0000000000000023 R14: 000000000007ffff R15: 0000000000000003
[  210.666730][    C0]  ? copy_page_range+0x1f63/0x6570
[  210.666749][    C0]  ? folio_test_large+0xa/0xa0
[  210.666772][    C0]  ? copy_page_range+0x3822/0x6570
[  210.666796][    C0]  </TASK>
[  210.667528][    C0] Kernel Offset: disabled