last executing test programs:

7m21.631793555s ago: executing program 3 (id=247):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x0)

7m21.536939553s ago: executing program 3 (id=248):
timerfd_create(0x7, 0x80000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, 0x0}, 0x28)
syz_emit_vhci(&(0x7f0000000340)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x32, @none, "213163457eb8710215e03f2843ed46c97f87e1869be277d983af1405b62c692f08a9031a0c929c495930cccdbe301911f35e13a98763b92f93b02896985b1bcdbbc15e8ba6da6bb7130b1aa6f6087eb607dee4301849ae6dcc77cdbf8e02887ca7f7b58b74cf58e54e350c57d16fd43b1fdbe72d864f3d36ce2a0ff09ad4bdff7c6812015664d2d46f268210def5909691c3cc336d72c708b2a22e471557f0714a318ff5a51ec63b38b95d06d800dc2798514620b24e7b9aae8e26383eefd228c865fb4df94a94b3cb0b8f392303c0926223182557e683c9b90225097842e922b8538340876646ad7843e8b00668bf075967ad6db05b6e25"}}}, 0x102)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xce7c1000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000000)={0xfffffc64, 0x0})

7m20.971674581s ago: executing program 3 (id=253):
r0 = getpid()
r1 = getpid()
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r3 = epoll_create(0x7ff)
kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r2, &(0x7f0000000040)={r3, 0xffffffffffffffff, 0xac25})

7m20.921074311s ago: executing program 3 (id=254):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x20000000, 0x4041}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000000), 0x4, 0x2080)
ioctl$LOOP_SET_FD(r3, 0x4c00, r2)
ioctl$LOOP_SET_FD(r3, 0x4c05, r3)

7m17.690997839s ago: executing program 3 (id=289):
syz_open_dev$usbfs(0x0, 0x204, 0x2)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
close_range(r1, r2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)

7m17.027134071s ago: executing program 3 (id=293):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x800, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
lseek(r3, 0x9, 0x0)

7m16.727322567s ago: executing program 32 (id=293):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x800, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/asound/seq/clients\x00', 0x0, 0x0)
lseek(r3, 0x9, 0x0)

6m47.441462854s ago: executing program 0 (id=500):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000280)={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, "614af285791a63abd0f993af8077b5cd01e03d64a831683fdc3fd440829c82ae"}, 0x3c)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/ip_mr_cache\x00')
preadv(r3, &(0x7f00000001c0)=[{&(0x7f0000000000)=""/106, 0x6a}], 0x1, 0xe, 0x1)

6m47.009457037s ago: executing program 0 (id=504):
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f00002cc000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000083000/0x3000)=nil)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})

6m46.910657723s ago: executing program 0 (id=506):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x4}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x25)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x702, 0xe, 0xff0f, &(0x7f0000000540)="e460334470b8d480eb20c15286dd", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0xa4200, 0x0)

6m46.7213427s ago: executing program 0 (id=508):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_UPDATE_FT_IES(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f00000010c0)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x40000)

6m46.540620333s ago: executing program 0 (id=509):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f0000000800)=[{&(0x7f0000000100)="154d", 0x2}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x2)

6m46.228425188s ago: executing program 0 (id=510):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x9, 0xc0, &(0x7f0000000080)={0x0, 0x3, 0x205, 0xffff}, 0xfffffffffffffe25, 0x3, 0x0, 0x0, 0xfffffffd, 0x0, 0x0})

6m31.131145261s ago: executing program 33 (id=510):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x9, 0xc0, &(0x7f0000000080)={0x0, 0x3, 0x205, 0xffff}, 0xfffffffffffffe25, 0x3, 0x0, 0x0, 0xfffffffd, 0x0, 0x0})

6m3.350437053s ago: executing program 1 (id=772):
fsopen(&(0x7f0000000140)='cgroup2\x00', 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000b94f19107018010000000002030109021b00010000000009040000010a00000009058f1f73af75115db24c518810d86bebf74295bc7df79e5b87ac758d043c11657c62fa3e"], 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x4, [@var={0x2, 0x0, 0x0, 0xe, 0x2}]}, {0x0, [0x0, 0x2e]}}, 0x0, 0x2c}, 0x28)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x15, 0x0, &(0x7f0000000200))
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_CLEAR_RESOLV_LIST={{0x4}}}}, 0x7)

6m0.157391079s ago: executing program 1 (id=788):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000808, &(0x7f00000001c0)={0xa, 0x4e20, 0x8, @loopback}, 0x1c)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x6, 0x9, &(0x7f00000001c0)={{0x2, @rand_addr, 0x0, 0x0, 'lblc\x00', 0x8, 0x3, 0x2000000}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xe6c}}, 0x44)

5m59.201274293s ago: executing program 1 (id=793):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000000000), 0x651, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[], 0x20)

5m58.259515588s ago: executing program 1 (id=807):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x13, 0x10, 0x2}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000680)=@framed={{0x18, 0x8}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}]}, &(0x7f0000000000)='GPL\x00', 0x4, 0xea, &(0x7f0000000340)=""/234}, 0x94)

5m58.259340063s ago: executing program 1 (id=808):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r4, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

5m56.93936061s ago: executing program 1 (id=817):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x9, 0xc0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffd, 0x0, 0x0})

5m41.73440563s ago: executing program 34 (id=817):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x9, 0xc0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffd, 0x0, 0x0})

4m58.941819992s ago: executing program 4 (id=1134):
r0 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace(0x8, r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
wait4(r0, 0x0, 0x80000000, &(0x7f0000000340))

4m58.001502381s ago: executing program 4 (id=1141):
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
sendto$inet(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000100), 0x6)

4m57.950051316s ago: executing program 4 (id=1142):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r0 = gettid()
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000002140)={[0xfffffffffffffff5]}, 0x8, 0x0)
readv(r1, &(0x7f0000002940)=[{&(0x7f0000000240)=""/136, 0x88}], 0x1)
timer_create(0x2, &(0x7f0000000040)={0x0, 0x7, 0x4, @tid=r0}, &(0x7f0000044000))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000080)={{0x77359400}, {0x0, 0x9}}, 0x0)

4m57.837909899s ago: executing program 4 (id=1143):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1a8584c, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)

4m57.733079046s ago: executing program 4 (id=1144):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000000000010961b080000000000000109022400010000000109040000010300000009210000000122070009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x0, 0x0, 0x8}, @local=@item_4={0x3, 0x2, 0x1, "ffffffff"}, @local=@item_012={0x0, 0x2, 0x2}]}}, 0x0}, 0x0)

4m57.256014218s ago: executing program 4 (id=1146):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000001c0)={{0x0, 0x0, 0xfffd, 0x8001}, 'syz1\x00'})
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0xa0)

4m57.170294544s ago: executing program 35 (id=1146):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000340), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000001c0)={{0x0, 0x0, 0xfffd, 0x8001}, 'syz1\x00'})
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0xa0)

1m43.495286347s ago: executing program 7 (id=2047):
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000880)=ANY=[@ANYBLOB="04010000160001040000000000000000ac1414aa000000000000000000000000ff01000000000000000000000000000100000fd100040002020000000c000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc02000000000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000080010000800000000000000000f3000000000000000000000000010100000000000000000000000000000000000000000000000800000000000004000000060000000004000000000000000000000a0000009400000000000000f5"], 0x104}, 0x1, 0x0, 0x0, 0x20040080}, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r2}) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r2})
gettid() (async)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x20, 0x800000000004, @thr={&(0x7f0000000500)="22c6a9cac443f7e8b113db4f3a3402f9c4b55fc351a83d6aadfc75380378e3ce6f40c36608d96a04fc4e84148f915412ad3b47c2d639e3543a74b9330d97e7f240a4b2ebc165dfb9040d46c0d1cce30a5430ecc993d2b9074bfc8e2ad7f721e9658f805a01a1a317ea765ae220f682ec273e921760641e900b6a0ab0cf9bec710a417d1e9e9074a6e5586eae2d2801f3482e11c1f2501aeaf352f0c7a1ff3101a997425498b4894c227328f9cf4cfb78d70d55fbc723d66721faba2d4eb1f05adf321ed72cd6187589e5f1d88d69", &(0x7f0000000980)="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"}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020"], 0x138)
write$UHID_DESTROY(r7, &(0x7f0000000340), 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r6, 0xae9a)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff) (async)
r8 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_script(r8, &(0x7f0000000600)={'#! ', './file0', [{0x20, '#@$%$%+\xd7'}, {0x20, '-#}}-}&'}, {0x20, '['}, {0x20, '/dev/iommu\x00'}, {0x20, '\\\''}, {0x20, '/dev/iommu\x00'}, {0x20, '/$$*'}, {0x20, '\',\''}, {}, {0x20, '/#\xe0('}], 0xa, "2fdad077e8edfe41478400183f8f24705c0a85a270595679bb8a1d41f44c4303adf764bb73b6c5f21ca457d6df2f033b233e3e07982dc59afe3e977e3383945ddfbe713bc2ed465cc7863b6b488bfdd18f04049f5b2168dd94e6c0eb937c9bad1600cdeb1057c1196efa9f78b66b186080cb5a2a9d5abfa069f0a16311887a3ed2d17f2234a8792cf0e0d8d5cd318004729ff2aa8a5150f687473c0b96f6f0bc21f3"}, 0xea)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200})
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f00000002c0))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000002780))
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000200)={0x48, 0x2, r2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xb)

1m41.627869382s ago: executing program 7 (id=2054):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000340)=0x15)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e)
r1 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x0)

1m39.114919101s ago: executing program 7 (id=2058):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000005c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESOCT=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
rmdir(&(0x7f0000000040)='./file0/../file0/file0\x00')
read$FUSE(r0, &(0x7f000000e280)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)={0x90, 0x0, 0x10000, {0x4, 0x0, 0x0, 0x9, 0x1, 0x0, {0x0, 0x0, 0x4, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1m37.622517536s ago: executing program 7 (id=2063):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000002a082, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x28011, r3, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000000600)={0x0, 0x9, 0x1, [0x4, 0x7, 0x3, 0x100, 0xffffffff00000000], [0x0, 0x10001, 0xfffffffffffffff9, 0x6, 0x8, 0x8d, 0x7f, 0xfff, 0x7, 0x9, 0x2, 0x0, 0x3, 0x5, 0x4cf0, 0xffff, 0x5, 0x100000000, 0x2, 0xde, 0x7, 0x5d33, 0x741c0ec9, 0x8, 0x94c, 0x78ea, 0x0, 0x9, 0x7fff, 0x9, 0x1, 0x479e, 0x0, 0x2, 0x8c80, 0x401, 0x8, 0x10, 0x10, 0x0, 0x1, 0x746, 0x5, 0x25, 0x71, 0xce, 0x10, 0x6, 0x9, 0x800, 0x1, 0xd4, 0x100000001, 0x2, 0x8000000000000001, 0x7, 0x5, 0x10000, 0x1, 0x0, 0x10000, 0x1, 0x4, 0x8, 0x7, 0x4, 0x7, 0x8, 0x1000, 0x3, 0x7, 0x3, 0x4, 0x7fffffffffffffff, 0x7f, 0x1, 0x5, 0x9, 0x5, 0x7, 0x6, 0x80000001, 0x10000, 0x2, 0x5, 0xb57, 0xc3, 0x0, 0x0, 0x4, 0x6, 0x7aff, 0x204, 0x101, 0x769, 0x100000000, 0x3, 0xb7, 0x65, 0x2, 0x1, 0x1510, 0x100, 0x5, 0x2, 0x7fff, 0x101, 0x7, 0x5, 0x10, 0x7, 0x9, 0x8001, 0x100, 0xffff, 0x8, 0x64d, 0xfffffffffffff000, 0x0, 0x3ff, 0x8]})
r5 = accept4(r4, 0x0, 0x0, 0x80800)
r6 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r6, &(0x7f00000002c0)={0x27, 0x0, 0xfffffffd, 0x1, 0x0, 0x0, "d9298498abdba7f061bd1ca44c226af5160e961711a07760760beeab11e88509de7f1939e8abff005597c8ef039a5be42200", 0x800000000000003c}, 0x60)
close_range(r5, 0xffffffffffffffff, 0x0)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

1m36.961138958s ago: executing program 7 (id=2067):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, 0x0, 0x850)

1m36.728095999s ago: executing program 7 (id=2068):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000000000006110b4000000000063510800000000009500090000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x85}, 0x52)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x800, 0x0)
unshare(0x28000600)
r3 = syz_open_dev$loop(&(0x7f0000000100), 0x7, 0x0)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
ioctl$LOOP_SET_STATUS64(r3, 0x4c04, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r5, 0xc0a85320, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000200)={0x7e, 0x1, {0x3, 0x1, 0x2, 0x3, 0x12}})
syz_usb_connect$uac1(0x3, 0xa2, 0x0, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0)
sync()
sync()

1m21.584092154s ago: executing program 36 (id=2068):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000000000006110b4000000000063510800000000009500090000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x85}, 0x52)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x800, 0x0)
unshare(0x28000600)
r3 = syz_open_dev$loop(&(0x7f0000000100), 0x7, 0x0)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
ioctl$LOOP_SET_STATUS64(r3, 0x4c04, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r5, 0xc0a85320, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000200)={0x7e, 0x1, {0x3, 0x1, 0x2, 0x3, 0x12}})
syz_usb_connect$uac1(0x3, 0xa2, 0x0, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0)
sync()
sync()

16.859970021s ago: executing program 5 (id=3173):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x208, 0x0, 0x0, 0x148, 0x180, 0x148, 0x218, 0x240, 0x240, 0x218, 0x240, 0x7fffffe, 0x0, {[{{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x268)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8000000000000001})
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x4800)

16.6291995s ago: executing program 5 (id=3174):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f00000002c0)="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", 0x193}], 0x1)
r1 = syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x22c43)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r1])
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000004000a5012bbd700000000000047c00000400c2800c0001800600060008"], 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0xc800)
socket$nl_generic(0x10, 0x3, 0x10) (async)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f00000002c0)="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", 0x193}], 0x1) (async)
syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x22c43) (async)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r1]) (async)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000004000a5012bbd700000000000047c00000400c2800c0001800600060008"], 0x2c}, 0x1, 0x0, 0x0, 0x4048011}, 0xc800) (async)

16.559777997s ago: executing program 5 (id=3175):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="6000000002060500000000000000001f0000000014000780080011400000000005001500020000000500010006000000050005000200000005000400000000000900020073797a310000000013000300686173683a6e65742c6966616365"], 0x60}}, 0x0)

16.559537443s ago: executing program 5 (id=3176):
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'tunl0\x00', &(0x7f0000000040)={'erspan0\x00', <r0=>0x0, 0x7800, 0x1, 0x2, 0xffffff33, {{0xc, 0x4, 0x1, 0x26, 0x30, 0x66, 0x0, 0x7, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast, {[@timestamp_addr={0x44, 0x14, 0xae, 0x1, 0xf, [{@empty, 0x3}, {@private=0xa010102, 0x7}]}, @ra={0x94, 0x4}, @ra={0x94, 0x4, 0x1}]}}}}})
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r1, 0xc01064bd, &(0x7f0000000000)={&(0x7f00000001c0)=';-H?', 0x4, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_DESTROYPROPBLOB(r1, 0xc00464be, &(0x7f00000000c0)={r2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x410080, 0x0)
write$tun(r3, &(0x7f0000000340)={@void, @val={0x1, 0x0, 0x9, 0x8, 0x4, 0x8}, @ipv6=@gre_packet={0x8, 0x6, "118340", 0x12b8, 0x2f, 0xff, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @dev={0xfe, 0x80, '\x00', 0x2b}, {[@dstopts={0x2c, 0x5, '\x00', [@enc_lim, @pad1, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x24}}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x2a}}, @enc_lim={0x4, 0x1, 0x7}]}, @hopopts={0x16, 0x13, '\x00', [@generic={0x7d, 0x5d, "a1c1e807615cc699d98325f1d9af0b778a79aa4197b10d42f82e5e292d98a00fc5e5ad47b449447348ede6e2c0815ef449ed7538d839c35401defe343baeafec3d29be763db43c23e3e18e338650dc3089a9280d3dce33e831a4fa6aaf"}, @calipso={0x7, 0x38, {0x2, 0xc, 0x8, 0x3, [0x8, 0x2, 0xfffffffffffffffb, 0x3, 0x4a, 0x7]}}, @ra={0x5, 0x2, 0xff95}]}], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x6a, 0x3, [], "08f7293aba00185e6594216457a1dbc5c1dda0af41ca92513ec3bb76864bfcdf84c6d262d5bd6212a60c28e8b9e2771cc98b4b856a9281d9f71fed20ea9c3d372165d5bac657d8eb9bdfba51c1396aa811fccc0d3217a2226733b35903fdf9d1d92e20256cece0190c7d"}, {0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x1c, 0x40], "7d3b8cea52110fa90c7468fffbc0da7a16dbc9529f86418737b29fc4094b9836300fc100b2817283b13d3ebf92903250fd41f5357d96af988cf1fe636c9352677350c49c0f8e7c42a74b4837bdf90f8da4c9f279e916905f81d42b64b7fd17752df71b66695915bd495304259734294b5183dd21506da81d3410c27fe4b6a72ef870aa7c2943e0aaa15ba76934b216c947fc2a1ab5545dde0aa0aa9f3762bf8d9dc33eaa31cc48729ae88911247e6b0b5edd36709762e7a11b86e89bca11cfc810b3bbd2547bfbffd23a6823a1"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x86dd, [0x1e], "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"}, {0x8, 0x88be, 0x3, {{0x9, 0x1, 0x4, 0x1, 0x0, 0x0, 0x6, 0x4}, 0x1, {0x335}}}, {0x8, 0x22eb, 0x2, {{0x3, 0x2, 0x8, 0x0, 0x0, 0x0, 0x7, 0x4}, 0x2, {0x8, 0xfffc, 0x1, 0x1f, 0x0, 0x1, 0x2, 0x1}}}, {0x8, 0x6558, 0x3, "87c4594d01aa5dc11b56154bce4f445f4478b138a3b7450702c493bf60e4b5c51471e0d724667522de12197835e849eeee0341478506a0f834ce1c203ec901658b3fd4ce6933f50ae302b73aca44527a2c86ca192c1100"}}}}}, 0x12ea)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=@getqdisc={0x30, 0x26, 0x200, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r0, {0xe, 0x9}, {0xa, 0xc}, {0xfff3, 0xa}}, [{0x4}, {0x4}, {0x4}]}, 0x30}}, 0x24080050)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c00cc080000000000a37000000000000000000029e4b1f4cfa1b836cb2e4af124b2e67b74d45939161393c5cd975609b29f5fc7b554ab7a1cd5605df74c6dffd4823e47028e528269d1bb124804d2529c087c113c14ced9c36b4529a51ddc6b6b9411929a80a27efb678593e5873abe26437054291a1f51862f7a7a140260a42f2da8c65f47113ceb53bd1e3a371229927aa053ab14e347dfc91282", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800b00010065727370616e00000800028004001200140003006e696376663000"/52], 0x4c}, 0x1, 0x0, 0x0, 0x8c1}, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

16.469812718s ago: executing program 5 (id=3177):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000003f80)={&(0x7f0000002a00)={0xa, 0x4e24, 0x6, @loopback={0xfc000000}, 0x2}, 0x1c, 0x0, 0x0, &(0x7f0000003ec0)=ANY=[], 0x18}, 0x850)

16.469503609s ago: executing program 5 (id=3178):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
unshare(0x6a040000)
r1 = socket$inet6_sctp(0xa, 0x4, 0x84)
r2 = semget$private(0x0, 0x4, 0x400)
semctl$SEM_STAT(r2, 0x1, 0x12, &(0x7f0000003140)=""/119)
setsockopt(r1, 0x84, 0x81, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x7)
r4 = add_key$fscrypt_v1(&(0x7f00000003c0), &(0x7f0000000400)={'fscrypt:', @desc3}, &(0x7f0000000440)={0x0, "0a92072159ab0fbeb5e67b804d1cf7382975a202eaa7b07c5a414337d40bb803fc93d356aea4d8caeea9cc85ad688e03e566ed55c6efaeed3cb57d4c51fb0235"}, 0x48, 0xfffffffffffffffe)
keyctl$get_keyring_id(0x0, r4, 0x0)
ioctl$TIOCSLCKTRMIOS(r3, 0x8910, &(0x7f00000001c0))
setsockopt(0xffffffffffffffff, 0x100, 0x80, 0x0, 0x0)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x9)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2)
r6 = dup(r5)
syz_emit_ethernet(0x1f, &(0x7f0000000100)=ANY=[@ANYBLOB="0180c2000001e955f5ea6ade2011aa002fa7433888e7840f767ab0bdfcb9cc31c4ccedbc72b387298258c6104fe1dfeacefa63094d6a5c888c5f732f17ca1b3e2081700e1b04ab4004664f7f7638fcb55bb6815240557d8c7386a063b0ae"], 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r6, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000280)="c744240000400000c7442402c4480000c7442406000000000f0114240f20e035040000000f22e0b805000000b929b9c04e0f01d9460f23d4f20f2de30f78055b3e4a4c660fc7350ee20b93670fc79bf5e600000f001e26260f01cb", 0x5b}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_DROP_PRIVILEGES(r9, 0x4004551e, &(0x7f0000000140)=0xfffff801)
ioctl$USBDEVFS_RESET(r9, 0x5514)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r10, 0x8938, &(0x7f0000000180)={'netpci0\x00', @ifru_names='veth1_vlan\x00'})
ioctl$sock_netdev_private(r10, 0x89f6, &(0x7f0000000000))

1.879806225s ago: executing program 6 (id=3397):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$SIOCRSSL2CALL(r0, 0x891e, &(0x7f0000000180)=@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0})

1.879622765s ago: executing program 8 (id=3398):
r0 = openat$comedi(0xffffff9c, 0x0, 0x2180, 0x0)
ioctl$COMEDI_INSNLIST(r0, 0x8010640b, &(0x7f0000000080))

1.879494071s ago: executing program 6 (id=3399):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@x86={0x5, 0x5, 0x17, 0x0, 0x4000003, 0xfc, 0x2, 0xc, 0xff, 0x8, 0x6, 0x1, 0x0, 0x7, 0x5, 0x4, 0x72, 0x7, 0xfa, '\x00', 0x3, 0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x55000000)

1.878550993s ago: executing program 8 (id=3400):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_pktinfo(r3, 0x0, 0x8, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x32, 0x0, &(0x7f0000000400)=[@increfs], 0xfffffcb0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000540)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000580), 0x0, 0x0, 0x0})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="3900a4ca80da4d0000", @ANYRES16=r5, @ANYBLOB="000228bd7000fbdbdf250800000005002a0000000000060028000400000008003400ff0000000800390005000000"], 0x34}}, 0x800)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x0, 0x168, 0x9, 0x0, 0xb, 0x250, 0x250, 0x250, 0x250, 0x250, 0x3, 0x0, {[{{@ipv6={@remote, @rand_addr=' \x01\x00', [], [], 'veth0_to_bridge\x00', 'sit0\x00', {}, {}, 0x6c}, 0x6000000, 0x108, 0x150, 0x0, {0x0, 0x28e}, [@common=@inet=@ipcomp={{0x60}}, @common=@inet=@ipcomp={{0x30}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@mcast2, 'dvmrp0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x2}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)
r7 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0xc0000, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_udp_int(r8, 0x11, 0x65, 0x0, &(0x7f0000000080))
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000140)=0x7)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r9, 0x4b47, &(0x7f0000000080)={0x0, 0x7f, 0x700})
ioctl$TIOCSETD(r7, 0x5412, &(0x7f0000000140)=0xffffffc0)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000005c0)={0x2c, 0x0, &(0x7f0000000440)=[@decrefs={0x40046307, 0x1}, @clear_death={0x400c630f, 0x2}, @exit_looper, @request_death={0x400c630e, 0x2}], 0x1000, 0x0, &(0x7f0000000640)="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"})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="380000005500e502000000000000000007000000", @ANYRES32, @ANYBLOB="200001", @ANYRES64=r10, @ANYBLOB="000000f1a0"], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f00000001c0)='.\x00', &(0x7f0000000080), 0x4, &(0x7f0000000380)={'trans=virtio,', {[{@afid={'afid', 0x3d, 0x7ff}}], [{@measure}]}})
setsockopt$packet_int(r10, 0x107, 0xf, &(0x7f0000000100)=0xb, 0x4)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'lo\x00', <r12=>0x0})
bind$packet(r10, &(0x7f00000001c0)={0x11, 0x11, r12, 0x1, 0xf, 0x6, @broadcast}, 0x14)

1.687999891s ago: executing program 6 (id=3402):
r0 = syz_open_dev$video(&(0x7f0000000040), 0x7, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0205649, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)={0x980912}}) (fail_nth: 5)

1.687852458s ago: executing program 6 (id=3403):
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a)
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2b00b8, &(0x7f00000002c0)={[{@grpquota_block_hardlimit={'grpquota_block_hardlimit', 0x3d, [0x34]}}]})
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f00000000c0)='logfs\x00', 0x20001b, 0x0)

1.539969019s ago: executing program 6 (id=3404):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x1, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x9, 0x6, 0x7e, 0x10000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

925.888497ms ago: executing program 37 (id=3178):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
unshare(0x6a040000)
r1 = socket$inet6_sctp(0xa, 0x4, 0x84)
r2 = semget$private(0x0, 0x4, 0x400)
semctl$SEM_STAT(r2, 0x1, 0x12, &(0x7f0000003140)=""/119)
setsockopt(r1, 0x84, 0x81, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x7)
r4 = add_key$fscrypt_v1(&(0x7f00000003c0), &(0x7f0000000400)={'fscrypt:', @desc3}, &(0x7f0000000440)={0x0, "0a92072159ab0fbeb5e67b804d1cf7382975a202eaa7b07c5a414337d40bb803fc93d356aea4d8caeea9cc85ad688e03e566ed55c6efaeed3cb57d4c51fb0235"}, 0x48, 0xfffffffffffffffe)
keyctl$get_keyring_id(0x0, r4, 0x0)
ioctl$TIOCSLCKTRMIOS(r3, 0x8910, &(0x7f00000001c0))
setsockopt(0xffffffffffffffff, 0x100, 0x80, 0x0, 0x0)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x9)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2)
r6 = dup(r5)
syz_emit_ethernet(0x1f, &(0x7f0000000100)=ANY=[@ANYBLOB="0180c2000001e955f5ea6ade2011aa002fa7433888e7840f767ab0bdfcb9cc31c4ccedbc72b387298258c6104fe1dfeacefa63094d6a5c888c5f732f17ca1b3e2081700e1b04ab4004664f7f7638fcb55bb6815240557d8c7386a063b0ae"], 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r6, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000280)="c744240000400000c7442402c4480000c7442406000000000f0114240f20e035040000000f22e0b805000000b929b9c04e0f01d9460f23d4f20f2de30f78055b3e4a4c660fc7350ee20b93670fc79bf5e600000f001e26260f01cb", 0x5b}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_DROP_PRIVILEGES(r9, 0x4004551e, &(0x7f0000000140)=0xfffff801)
ioctl$USBDEVFS_RESET(r9, 0x5514)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r10, 0x8938, &(0x7f0000000180)={'netpci0\x00', @ifru_names='veth1_vlan\x00'})
ioctl$sock_netdev_private(r10, 0x89f6, &(0x7f0000000000))

870.146129ms ago: executing program 8 (id=3406):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x40, r3, 0x1, 0x70bd26, 0xff030000, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_FRAME={0x24, 0x33, @reassoc_resp={{{0x0, 0x0, 0x3, 0x0, 0x0, 0x1}, {}, @broadcast, @device_a, @random="37e6fc966e04", {0x0, 0x7}}, 0x4c00, 0x5d, @default, @val, @void}}]}, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

729.167658ms ago: executing program 8 (id=3409):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x25, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x70}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1206"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1000, 0x0)
ioctl$IOCTL_CONFIG_SYS_RESOURCE_PARAMETERS(r1, 0x40096100, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000100)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1313f, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000), 0x10, 0x20000}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r2, 0x4010744d, &(0x7f0000000180))
capset(&(0x7f0000000100)={0x19980330}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="b4050000000000006110a400000000001f150000000000009500000000000000704fff7649b0983f42d01eccd13e9ec8a0a0ba6f00720c38fb17c6973e6361f5710065aaf625b96d173daf810865508ce8e9e1fa28e8bc8620294d24b6e609fa8a42156ea7394b8e0f09362f9e2576fd38cecff65abf747c96f88c9e0d54c135a1666ac39044329aaff9afb6"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0x7, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
setsockopt$inet_mreqsrc(r0, 0x0, 0x1, 0x0, 0x0)

649.519122ms ago: executing program 8 (id=3412):
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x3, 0x7, 0x3})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000002, 0x12, 0xffffffffffffffff, 0x6)
msync(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="4300000002"], 0x8)
mkdir(&(0x7f0000000300)='./bus\x00', 0xe4)
mount$overlay(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

596.172152ms ago: executing program 8 (id=3414):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
syz_fuse_handle_req(r2, &(0x7f0000009b40)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)={0x78, 0x0, 0x1, {0x8, 0xffffffff, 0x0, {0x5, 0x0, 0x100000001, 0x80000001, 0x26, 0x8, 0x9eb, 0x2, 0x9, 0x8000, 0x9ea, 0x0, 0xee01, 0x200, 0xe}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
openat(r3, &(0x7f0000000c80)='./file0\x00', 0x0, 0x3a)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000c40)={0x0, 0x1, 0x6}, 0x10)
keyctl$restrict_keyring(0xa, 0x0, 0x0, &(0x7f0000000000)='i\xacl*c\x822')
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043ef502"], 0xf8)

528.279052ms ago: executing program 2 (id=3416):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000040), 0x21041, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe) (async)
ioctl$TCFLSH(r0, 0x80047437, 0xfffffffffffeffff) (async)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x1b, &(0x7f0000000880)=ANY=[@ANYBLOB="85100000fdffffff182a0000", @ANYRESDEC=0x0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7"], &(0x7f0000000300)='syzkaller\x00', 0x3, 0x1, &(0x7f0000000640)=""/1, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000580)={0x2, 0xa, 0x1, 0x2}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0x0, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0xffffffff}, 0x10, 0x0, r1}, 0x94) (async, rerun: 32)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=ANY=[], 0x188}}], 0x1, 0x810) (async, rerun: 32)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async, rerun: 64)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000340)=r2, 0x4) (async, rerun: 64)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002ac0)=[{{&(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c, 0x0}}], 0x1, 0x0) (async, rerun: 64)
r5 = socket(0x10, 0x3, 0x0) (rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000500)={'team0\x00', <r6=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0xbc, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r6, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x8c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x400, 0x0, 0x1], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x7]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x30, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x2}]}, {0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x7f}]}, {0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x4}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xc10}]}]}]}}]}, 0xbc}}, 0x8000) (async, rerun: 64)
r7 = socket$alg(0x26, 0x5, 0x0) (rerun: 64)
bind$alg(r7, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58) (async, rerun: 64)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6) (rerun: 64)
r8 = accept4(r7, 0x0, 0x0, 0x800)
sendmmsg$alg(r8, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f00000008c0)=[@op={0x18}], 0x18}], 0x1, 0x40800) (async)
recvmsg(r8, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) (async)
r9 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f00000006c0)="0f005005ea06006e000f0866b8003800000f23c80f21f86635040010000f23f8d1bf9f000f00d10f2214f30f09baf80c66b8ece8d08a66efbafc0c66b80400000066ef660f3882bc9c00", 0x4a}], 0x1, 0x11, 0x0, 0x0) (async)
pwritev(r2, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x3d, 0x5)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@gettaction={0x97, 0x32, 0x20, 0x70bd25, 0x25dfdbff, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1, 0x1}}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0xc, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x817, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}]}, 0x40}}, 0x2400c844)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000600)={0x10000, 0x4, 0x26000, 0x2000, &(0x7f0000011000/0x2000)=nil}) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000010002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async, rerun: 32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) (rerun: 32)

329.599661ms ago: executing program 2 (id=3417):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000002a082, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x28011, r3, 0x0)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2, 0x0, 0x0, 0x8dffffff}, 0x0)

219.153793ms ago: executing program 2 (id=3418):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c000000020601080000000000000000000000001400078008000840000000000800174000000004050005000a000000050001000700000005000400000000000900020073513d31000000000d0003006c6973743a736574"], 0x5c}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9e", 0x50}], 0x2}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000540)=""/88, 0x58}, {&(0x7f0000000200)=""/83, 0x53}], 0x2}, 0x40)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r3, 0x1, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x43}]}, 0x24}, 0x1, 0x0, 0x0, 0x404c044}, 0x8000)

167.345587ms ago: executing program 6 (id=3419):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'virt_wifi0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newlink={0x48, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0xa300}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_MACSEC_SCI={0xc, 0x1, 0xffffffffffffffff}]}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x48}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f00000003c0)={<r3=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000240)={r3, 0x0, r2})
r4 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r4, &(0x7f0000003f80)={&(0x7f0000002a00)={0xa, 0x4e24, 0x6, @loopback, 0x2}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x18}, 0x850)

167.141796ms ago: executing program 2 (id=3420):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000340)={0x14, 0x17, 0x1, 0xf0bd29, 0x25dfdbfc, {0x9}}, 0x14}, 0x1, 0x9000000, 0x0, 0x40}, 0x20044002)

79.205098ms ago: executing program 2 (id=3421):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000000)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
getsockname(r0, &(0x7f0000000040)=@l2={0x1f, 0x0, @none}, &(0x7f0000000100)=0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x8}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x44, 0x2c, 0x601, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xb}, {}, {0xc, 0xffe0}}, [@filter_kind_options=@f_fw={{0x7}, {0x18, 0x2, [@TCA_FW_INDEV={0x14, 0x3, 'veth0\x00'}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4884}, 0x24000840)
r2 = mq_open(&(0x7f00000000c0)=',):\x00', 0x40, 0xf4, 0x0)
lseek(r2, 0xa, 0x1)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = epoll_create1(0x0)
r5 = fcntl$dupfd(r4, 0x2, 0xffffffffffffffff)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000040)='GPL\x00'}, 0x80)
r7 = epoll_create1(0x0)
r8 = fcntl$dupfd(r7, 0x2, 0xffffffffffffffff)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@cgroup=r8, r6, 0x11, 0x0, r8}, 0x14)
bpf$BPF_PROG_ATTACH(0x9, &(0x7f0000000140)={@cgroup=r5, r6, 0x11, 0x0, r5}, 0x11)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r3)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r5, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)={0xd0, r9, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x814}, 0x44000081)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

0s ago: executing program 2 (id=3422):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x8040}, 0x40040800)
r1 = socket(0x27, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r4=>0x0})
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)={0x34, 0xd, 0xa, 0x301, 0x0, 0x0, {0x5}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000010}, 0x4000000)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmmsg$inet(r1, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000002240)=[{&(0x7f00000020c0)="153b5892461ebd20bc70f8b3b4c7775dc2402f6bdfe843352a1d41df4153", 0x1e}, {&(0x7f0000002100)="21bce3a62352dcdb", 0x8}, {&(0x7f0000002140)="071dc054f4425128ea5cc7b07e9c11bdca302a15408b9bcc4ceb47bf4065fe1b64a491ae1b0ddc15d1a11051af9f0c2002d364d8f4f5bf3be013ba1c22eb845369f0fa6afe2ed220aee376f25d7d205db188e8bff40989f9123430da89a298c6c96c534594d8abac4f", 0x69}, {&(0x7f00000021c0)="bad3c04bd67f390759b2184e07fd6daa973f0246d3d4b3d6ee6f992f1a80c89d5e2e7ead64dd0e26ffdc3e08a757750ef125932c15b9497a26c00baa7a00391f20de1f58c2ef6220417b2b2e39", 0x4d}], 0x4, &(0x7f0000002280)}}, {{&(0x7f00000022c0)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000002700)=[{&(0x7f0000002300)="a08e556a693c64f6fcc8816c52acaf8fe5560634c05e136a2d2355f9c387bc815e52a5082e4851d4f07ce357091b301ab2f97c8102aee71466ddea05ed05d59fd4773d37728a851301271b9e0406de90b3602a88c15299d943ff5665cb70f488bfe04b989da288145940f34fb78a65eb172d68c50504aa1a7ad7f390e16b9161d324d11fb180f7323403add20e33008c2bffc2c971bfefd191cf2aa1ab6b2b0fd8a5576442501270c9451dc3d46634a72901bdd7fffd5155c63bf5c3b5c78f14e9944e5cbb52a6f157700cf727275975aa3531fffcca8788", 0xd8}, {&(0x7f0000002400)="c8d782c06321610b959c0054e7ae6ea0182b6a08ceec0996cd0228a1af25886e30ab65648cb92e0345d7a9bc37186f500b2fee9726d47c8459b3de11943cc9aa679dda41bec5fb51e0d2bc8049b9b54719dc85c8889a4e2e640ed462b78002c49d5c1dfdc2d49b1ee2643bb1c4f61d7d59ba80f8d200caa8f11f8c121e78858b10663b5e0616ba57266e0f412bf7593baef8128fb2a97b51434c526aff721c8022ba9673a821424ba9a4475721cb82f9af73888fe33eae04ba88b99db7862946fefbf990c83ca99cd3873bf01ae6d25bc56e", 0xd2}, {&(0x7f0000002500)="ce190b5580a6f5a31ee552f9d9a60844f9d8a1caf801d0b52ebb31b4ff96da4a300b80d3af2543a15b569fdf17d50ad06707b2525cae536f474ce65cc2e9b6f13dab04a35b666da72d42464cc47a02c61ca7dd5719d8a7dbb67e3b867eb363d237506d068bab7e700d07dfe93a4a6f5fc332", 0x72}, {&(0x7f0000002580)="18bb20bb3ca5", 0x6}, {&(0x7f00000025c0)="31b6ccb620e40ce776cac4df7552c4578501a7bb2c4dbcd0c4c5d8c27defcb9602c60d5996db6c7319f5a752d29c85885998615535122e84820ee6f9f1debc16cb445c1dee", 0x45}, {&(0x7f0000002640)="7a6e4f4d52fe36b493ed044e84808c9d265a7c5573893deab025a29dc44d588b5bbefeb588e7b54927635b7be677440dcd9edea1c74a04da89442866315d25211533193d372636628116521ab1a9f808ba4ee312340a843e911f72619ea7cea21b4a8d214b122090f8ad6e012a3253a65777a50829ae12186136cf2ad124114c7f", 0x81}], 0x6}}, {{&(0x7f0000002780)={0x2, 0x4e21, @remote}, 0x10, &(0x7f0000002a80)=[{&(0x7f00000027c0)="d637ed4a061bb2f8222cc8da7edc546a2e6d16ac42f14d0ec74d6786ad2958329cd6e019fe061094c01995f432a7cc8da013fd8e047d6b30a85218d74bbde561cf243865f8a0bccc25720b3e882e755d80e94d46f229553022bbf4119f6d8529ab3265f85d028a1dae2e15e5aee8", 0x6e}, {&(0x7f0000002840)="bed890618fb8fdd4903fadfdc0d505ca332496672f84fe3c", 0x18}, {&(0x7f0000002880)="b29354ef54a75c40f3cfa73bad85c0c07f2889095051dc7c0f4267ad1c272d046d0503572b45246ab12e8663e1a0fe808da06d", 0x33}, {&(0x7f00000028c0)="8d54ec2f38c5142a92a45dfdfb", 0xd}, {&(0x7f0000002900)="6a6335efa0f7e7b362bd0b42ee26c4e7cd87d1bf9aaf74365c73bcb2ebf05edea0eb0624a7a2e09edf6cfd5860", 0x2d}, {&(0x7f0000002940)="b79a375c8a1e60c8a8a1ea8fede811f51c4044dfc1bb3c1b0469a476dd24205c28476141872858f858e7595c4e9bd3f72c80f816dc1b64282047478f551ffde75fe4eac7672121e6fd1d7ba7235208fc677fb1bc1abf924219e895a1071c39376889cc71dcb9", 0x66}, {&(0x7f00000029c0)="62182b190399b83944e2984c", 0xc}, {&(0x7f0000002a00)="61c0e8b500ac60d3fa7d79d1d4eab4a14760910aa84bcf8e1399e92c860900e4e868806f6419b42d69da30bf65a902bbdf579cec9ca3fff8a4ae1995cbc1467d7d63169b898666123f16496e4452a73dbdec981221e7d59c5be05322e4cbb319781724ea9b22bd8483dded73da511d895027", 0x72}], 0x8, &(0x7f0000002d00)=[@ip_retopts={{0x68, 0x0, 0x7, {[@generic={0x89, 0xe, "cfb242ea01c0b88f3c7f6835"}, @timestamp={0x44, 0x1c, 0x41, 0x0, 0x1, [0x4, 0x5a8a, 0x7fff, 0x5, 0x100, 0x1]}, @ssrr={0x89, 0xf, 0x99, [@loopback, @multicast2, @rand_addr=0x64010102]}, @noop, @noop, @ssrr={0x89, 0xf, 0x28, [@dev={0xac, 0x14, 0x14, 0x3c}, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @lsrr={0x83, 0x7, 0x55, [@remote]}, @timestamp_prespec={0x44, 0x4, 0xce}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @local, @private=0xa010101}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @local, @empty}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @multicast2, @remote}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x6}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x5}}], 0xf8}}], 0x3, 0x40800)
sendmsg$netlink(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="140100002000010000000000fbdbdf25040117800c0003"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)={0x2c, r3, 0x1, 0x70bd28, 0x1, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x4}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x2c}}, 0x80)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000001e40)={'vxcan0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@dellink={0x20, 0x11, 0x1, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, 0x1480, 0x2104}}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)

kernel console output (not intermixed with test programs):

+0x5eb/0x1690
[  486.239512][T13408]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  486.239526][T13408]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  486.239541][T13408]  ? do_vfs_ioctl+0x128/0x14f0
[  486.239555][T13408]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  486.239570][T13408]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  486.239587][T13408]  ? hook_file_ioctl_common+0x145/0x410
[  486.239605][T13408]  ? selinux_file_ioctl+0x180/0x270
[  486.239616][T13408]  ? selinux_file_ioctl+0xb4/0x270
[  486.239628][T13408]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  486.239642][T13408]  __x64_sys_ioctl+0x18e/0x210
[  486.239658][T13408]  do_syscall_64+0xcd/0xfa0
[  486.239669][T13408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  486.239679][T13408] RIP: 0033:0x7f1e88f8f749
[  486.239689][T13408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  486.239699][T13408] RSP: 002b:00007f1e89e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  486.239709][T13408] RAX: ffffffffffffffda RBX: 00007f1e891e5fa0 RCX: 00007f1e88f8f749
[  486.239715][T13408] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000007
[  486.239721][T13408] RBP: 00007f1e89e3d090 R08: 0000000000000000 R09: 0000000000000000
[  486.239727][T13408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  486.239733][T13408] R13: 00007f1e891e6038 R14: 00007f1e891e5fa0 R15: 00007fff46046ec8
[  486.239746][T13408]  </TASK>
[  486.414640][   T40] audit: type=1400 audit(1764140676.169:782): avc:  denied  { write } for  pid=13412 comm="syz.8.2515" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  486.415514][T13413] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2515'.
[  486.745884][   T40] audit: type=1400 audit(1764140676.499:783): avc:  denied  { setopt } for  pid=13430 comm="syz.8.2520" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  486.805307][T13438] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2524'.
[  486.814919][T13440] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2525'.
[  486.838881][T13444] random: crng reseeded on system resumption
[  486.847022][T13444] binder: 13443:13444 ioctl c0306201 200000000640 returned -22
[  487.030821][T13457] binder: 13456:13457 unknown command 0
[  487.033104][T13457] binder: 13456:13457 ioctl c0306201 200000000080 returned -22
[  487.036392][T13457] binder: 13456:13457 ioctl c0189371 200000000540 returned -22
[  487.041105][T13457] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  487.049416][T13457] sp0: Synchronizing with TNC
[  487.076433][   T40] audit: type=1400 audit(2000000000.270:784): avc:  denied  { ioctl } for  pid=13460 comm="syz.6.2534" path="socket:[57360]" dev="sockfs" ino=57360 ioctlcmd=0x89ea scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  487.272953][T13473] random: crng reseeded on system resumption
[  487.280532][T13473] binder: 13472:13473 ioctl c0306201 200000000540 returned -14
[  487.356288][T13482] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2542'.
[  487.393342][T13482] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=13482 comm=syz.6.2542
[  487.429995][   T40] audit: type=1400 audit(2000000000.629:785): avc:  denied  { setopt } for  pid=13486 comm="syz.2.2544" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  487.634382][ T5946] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  487.637879][ T5946] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  487.643590][ T5946] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  487.649451][ T5946] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  487.653392][ T5946] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  487.690289][T13502] lo speed is unknown, defaulting to 1000
[  487.833586][T13502] chnl_net:caif_netlink_parms(): no params data found
[  487.975589][T13502] bridge0: port 1(bridge_slave_0) entered blocking state
[  487.978083][T13502] bridge0: port 1(bridge_slave_0) entered disabled state
[  487.980384][T13502] bridge_slave_0: entered allmulticast mode
[  487.983029][T13502] bridge_slave_0: entered promiscuous mode
[  487.986250][T13502] bridge0: port 2(bridge_slave_1) entered blocking state
[  487.988987][T13502] bridge0: port 2(bridge_slave_1) entered disabled state
[  487.991265][T13502] bridge_slave_1: entered allmulticast mode
[  487.994007][T13502] bridge_slave_1: entered promiscuous mode
[  488.044927][T13502] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  488.051498][T13502] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  488.095550][T13502] team0: Port device team_slave_0 added
[  488.113853][   T92] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  488.117762][   T92] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.132098][T13502] team0: Port device team_slave_1 added
[  488.165148][T13534] random: crng reseeded on system resumption
[  488.173369][T13534] binder: 13533:13534 ioctl c0306201 200000000540 returned -22
[  488.180564][T13502] batman_adv: batadv0: Adding interface: batadv_slave_0
[  488.183407][T13502] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  488.191878][T13502] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  488.211708][   T92] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  488.215081][   T92] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.222666][T13502] batman_adv: batadv0: Adding interface: batadv_slave_1
[  488.224884][T13502] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  488.233018][T13502] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  488.275917][T13543] binder: BC_ATTEMPT_ACQUIRE not supported
[  488.278613][T13543] binder: 13542:13543 ioctl c0306201 200000000640 returned -22
[  488.286192][   T92] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  488.290988][   T92] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.301623][T13502] hsr_slave_0: entered promiscuous mode
[  488.305088][T13502] hsr_slave_1: entered promiscuous mode
[  488.387342][   T92] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  488.390781][   T92] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  488.526377][   T92] bridge_slave_1: left allmulticast mode
[  488.528723][   T92] bridge_slave_1: left promiscuous mode
[  488.530945][   T92] bridge0: port 2(bridge_slave_1) entered disabled state
[  488.537937][   T92] bridge_slave_0: left allmulticast mode
[  488.540300][   T92] bridge0: port 1(bridge_slave_0) entered disabled state
[  488.644188][T13561] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2570'.
[  488.964057][   T92] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  488.970344][   T92] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  488.975017][   T92] bond0 (unregistering): Released all slaves
[  489.294738][   T92] hsr_slave_0: left promiscuous mode
[  489.297093][   T92] hsr_slave_1: left promiscuous mode
[  489.301034][   T92] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  489.303370][   T92] batman_adv: batadv0: Removing interface: batadv_slave_0
[  489.307610][   T92] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  489.310445][   T92] batman_adv: batadv0: Removing interface: batadv_slave_1
[  489.333342][   T92] veth1_macvtap: left promiscuous mode
[  489.335091][   T92] veth0_macvtap: left promiscuous mode
[  489.336876][   T92] veth1_vlan: left promiscuous mode
[  489.339229][   T92] veth0_vlan: left promiscuous mode
[  489.380411][T13577] binder: 13576:13577 unknown command 0
[  489.382312][T13577] binder: 13576:13577 ioctl c0306201 200000000080 returned -22
[  489.385706][T13577] binder: 13576:13577 ioctl c0189371 200000000540 returned -22
[  489.391461][T13577] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  489.553190][T13580] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2576'.
[  489.606920][   T40] audit: type=1400 audit(2000000002.800:786): avc:  denied  { create } for  pid=13579 comm="syz.8.2576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  489.613727][   T40] audit: type=1400 audit(2000000002.800:787): avc:  denied  { getopt } for  pid=13579 comm="syz.8.2576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  489.689536][ T5946] Bluetooth: hci0: command tx timeout
[  489.975701][T13586] IPVS: set_ctl: invalid protocol: 43 172.20.20.56:20002
[  489.984749][   T34] IPVS: starting estimator thread 0...
[  490.077483][T13587] IPVS: using max 43 ests per chain, 103200 per kthread
[  490.126617][   T92] team0 (unregistering): Port device team_slave_1 removed
[  490.202247][   T92] team0 (unregistering): Port device team_slave_0 removed
[  490.799434][T13585] netlink: 'syz.5.2577': attribute type 14 has an invalid length.
[  490.909916][   T40] audit: type=1400 audit(2000000004.110:788): avc:  denied  { remount } for  pid=13593 comm="syz.5.2580" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1
[  490.951767][T13599] tmpfs: Bad value for 'mpol'
[  490.964962][T13502] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  490.991882][T13502] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  490.997839][T13502] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  491.004212][T13502] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  491.040974][   T40] audit: type=1400 audit(2000000004.240:789): avc:  denied  { append } for  pid=13606 comm="syz.8.2585" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  491.059419][T13619] 8021q: VLANs not supported on ip_vti0
[  491.064342][T13619] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2587'.
[  491.068146][T13619] netlink: 'syz.5.2587': attribute type 10 has an invalid length.
[  491.073282][T13619] 8021q: adding VLAN 0 to HW filter on device batadv0
[  491.078037][T13619] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  491.108928][T13502] 8021q: adding VLAN 0 to HW filter on device bond0
[  491.120032][T13621] tmpfs: Unknown parameter 'usrquotafs/binder0'
[  491.124966][T13502] 8021q: adding VLAN 0 to HW filter on device team0
[  491.135246][ T1157] bridge0: port 1(bridge_slave_0) entered blocking state
[  491.138007][ T1157] bridge0: port 1(bridge_slave_0) entered forwarding state
[  491.154537][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  491.157016][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  491.270650][T13502] 8021q: adding VLAN 0 to HW filter on device batadv0
[  491.287545][  T842] usb 13-1: new high-speed USB device number 3 using dummy_hcd
[  491.303585][T13502] veth0_vlan: entered promiscuous mode
[  491.310939][T13502] veth1_vlan: entered promiscuous mode
[  491.332715][T13502] veth0_macvtap: entered promiscuous mode
[  491.340019][T13502] veth1_macvtap: entered promiscuous mode
[  491.358485][T13502] batman_adv: batadv0: Interface activated: batadv_slave_0
[  491.366663][T13502] batman_adv: batadv0: Interface activated: batadv_slave_1
[  491.372133][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  491.374862][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  491.381377][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  491.384290][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  491.407858][   T34] usb 11-1: new high-speed USB device number 19 using dummy_hcd
[  491.419269][ T6187] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.421891][ T6187] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.421901][T13645] netlink: 'syz.5.2597': attribute type 5 has an invalid length.
[  491.446880][ T6187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.449672][  T842] usb 13-1: Using ep0 maxpacket: 8
[  491.450434][ T6187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.452798][  T842] usb 13-1: config 168 descriptor has 1 excess byte, ignoring
[  491.457433][  T842] usb 13-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  491.461081][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  491.464960][  T842] usb 13-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  491.470627][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  491.474275][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  491.478303][  T842] usb 13-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  491.482786][  T842] usb 13-1: config 168 interface 0 has no altsetting 0
[  491.485760][  T842] usb 13-1: config 168 descriptor has 1 excess byte, ignoring
[  491.490002][  T842] usb 13-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  491.493547][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  491.498518][  T842] usb 13-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  491.502365][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  491.505927][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  491.509992][  T842] usb 13-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  491.514229][  T842] usb 13-1: config 168 interface 0 has no altsetting 0
[  491.517398][  T842] usb 13-1: config 168 descriptor has 1 excess byte, ignoring
[  491.520234][  T842] usb 13-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  491.523892][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  491.527782][  T842] usb 13-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  491.532131][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  491.535706][  T842] usb 13-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  491.539422][  T842] usb 13-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  491.544113][  T842] usb 13-1: config 168 interface 0 has no altsetting 0
[  491.549213][  T842] usb 13-1: string descriptor 0 read error: -22
[  491.551736][  T842] usb 13-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  491.555348][  T842] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.557545][   T34] usb 11-1: Using ep0 maxpacket: 32
[  491.563899][   T34] usb 11-1: config 0 has an invalid interface number: 67 but max is 0
[  491.565688][  T842] adutux 13-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  491.567465][   T34] usb 11-1: config 0 has no interface number 0
[  491.569343][   T34] usb 11-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  491.577573][   T34] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.580958][   T34] usb 11-1: Product: syz
[  491.582693][   T34] usb 11-1: Manufacturer: syz
[  491.584700][   T34] usb 11-1: SerialNumber: syz
[  491.589012][   T34] usb 11-1: config 0 descriptor??
[  491.593795][   T34] smsc95xx v2.0.0
[  491.595416][   T34] smsc95xx 11-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  491.599685][   T34] smsc95xx 11-1:0.67: probe with driver smsc95xx failed with error -22
[  491.688515][ T8401] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  491.716992][T13663] binder: 13662:13663 ioctl c0306201 200000000540 returned -22
[  491.717553][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  491.758757][   T40] audit: type=1400 audit(2000000004.960:790): avc:  denied  { listen } for  pid=13664 comm="syz.2.2605" path=2F352FE91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  491.766032][  T842] usb 13-1: USB disconnect, device number 3
[  491.768237][ T5946] Bluetooth: hci0: command tx timeout
[  491.795754][T13667] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[  491.802805][   T40] audit: type=1400 audit(2000000005.000:791): avc:  denied  { relabelto } for  pid=13666 comm="syz.2.2606" name="6" dev="tmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  491.810952][   T40] audit: type=1400 audit(2000000005.000:792): avc:  denied  { associate } for  pid=13666 comm="syz.2.2606" name="6" dev="tmpfs" ino=48 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:crond_var_run_t:s0"
[  491.840962][   T40] audit: type=1400 audit(2000000005.040:793): avc:  denied  { remove_name } for  pid=13502 comm="syz-executor" name="binderfs" dev="tmpfs" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  491.853694][   T40] audit: type=1400 audit(2000000005.040:794): avc:  denied  { rmdir } for  pid=13502 comm="syz-executor" name="6" dev="tmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:crond_var_run_t:s0"
[  491.870764][   T40] audit: type=1326 audit(2000000005.070:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13668 comm="syz.2.2607" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4a42f8f749 code=0x0
[  491.887485][ T6187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  491.997134][  T842] usb 11-1: USB disconnect, device number 19
[  492.674153][   T40] audit: type=1326 audit(2000000005.870:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13688 comm="syz.5.2615" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fec9bb8f749 code=0x0
[  492.714786][T13694] binder: 13693:13694 unknown command 0
[  492.716928][T13694] binder: 13693:13694 ioctl c0306201 200000000080 returned -22
[  492.722656][T13694] binder: 13693:13694 ioctl c0189371 200000000540 returned -22
[  492.726260][T13694] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  492.729899][T13695] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2615'.
[  492.735581][T13694] sp0: Synchronizing with TNC
[  492.742725][   T40] audit: type=1400 audit(2000000005.940:797): avc:  denied  { ioctl } for  pid=13677 comm="syz.6.2610" path="socket:[58773]" dev="sockfs" ino=58773 ioctlcmd=0x89e5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  492.750632][   T40] audit: type=1400 audit(2000000005.940:798): avc:  denied  { ioctl } for  pid=13677 comm="syz.6.2610" path="socket:[58770]" dev="sockfs" ino=58770 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  492.758579][   T40] audit: type=1400 audit(2000000005.950:799): avc:  denied  { connect } for  pid=13696 comm="syz.2.2618" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  492.798748][ T6187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  492.802052][ T6187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  493.002268][T13702] binder: BC_ATTEMPT_ACQUIRE not supported
[  493.004305][T13702] binder: 13701:13702 ioctl c0306201 200000000640 returned -22
[  493.197620][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  493.278740][T13709] binder: 13708:13709 ioctl c0306201 200000000540 returned -22
[  493.737820][T13753] netlink: 64138 bytes leftover after parsing attributes in process `syz.5.2640'.
[  493.839043][ T5946] Bluetooth: hci0: command tx timeout
[  493.971023][T13779] netlink: 'syz.6.2650': attribute type 11 has an invalid length.
[  494.009079][ T5941] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  494.012837][ T5941] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  494.015954][ T5941] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  494.021309][ T5941] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  494.024175][ T5941] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  494.062796][T13780] lo speed is unknown, defaulting to 1000
[  494.228830][T13692] bond0: (slave syz_tun): Releasing backup interface
[  494.240467][T13780] chnl_net:caif_netlink_parms(): no params data found
[  494.315578][T13780] bridge0: port 1(bridge_slave_0) entered blocking state
[  494.319378][T13780] bridge0: port 1(bridge_slave_0) entered disabled state
[  494.321836][T13780] bridge_slave_0: entered allmulticast mode
[  494.324779][T13780] bridge_slave_0: entered promiscuous mode
[  494.328228][T13780] bridge0: port 2(bridge_slave_1) entered blocking state
[  494.331050][T13780] bridge0: port 2(bridge_slave_1) entered disabled state
[  494.334026][T13780] bridge_slave_1: entered allmulticast mode
[  494.337427][T13780] bridge_slave_1: entered promiscuous mode
[  494.389919][T13780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  494.397825][T13780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  494.452158][T13780] team0: Port device team_slave_0 added
[  494.457024][T13780] team0: Port device team_slave_1 added
[  494.491150][T13802] random: crng reseeded on system resumption
[  494.497168][T13780] batman_adv: batadv0: Adding interface: batadv_slave_0
[  494.499903][T13780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  494.509045][T13780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  494.514351][T13780] batman_adv: batadv0: Adding interface: batadv_slave_1
[  494.517098][T13780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  494.517768][T13802] binder: 13801:13802 ioctl c0306201 200000000540 returned -14
[  494.528052][T13780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  494.532546][T13802] binder: 13801:13802 ioctl c0306201 200000000640 returned -22
[  494.595079][T13780] hsr_slave_0: entered promiscuous mode
[  494.597437][T13780] hsr_slave_1: entered promiscuous mode
[  494.599982][T13780] debugfs: 'hsr0' already exists in 'hsr'
[  494.602036][T13780] Cannot create hsr debugfs directory
[  494.827353][   T34] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  494.863975][T13820] netlink: 'syz.6.2664': attribute type 8 has an invalid length.
[  494.917542][T13826] binder: BC_ATTEMPT_ACQUIRE not supported
[  494.920065][T13826] binder: 13824:13826 ioctl c0306201 200000000640 returned -22
[  494.948390][T13829] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2667'.
[  494.951370][T13829] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2667'.
[  494.977345][   T34] usb 7-1: Using ep0 maxpacket: 8
[  494.981796][   T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  494.985100][   T34] usb 7-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  494.990868][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  494.995819][   T34] usb 7-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  495.001046][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  495.011529][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  495.016401][   T34] usb 7-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  495.022224][   T34] usb 7-1: config 168 interface 0 has no altsetting 0
[  495.025871][   T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  495.028291][   T34] usb 7-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  495.031793][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  495.035506][   T34] usb 7-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  495.039310][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  495.042874][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  495.046768][   T34] usb 7-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  495.051242][   T34] usb 7-1: config 168 interface 0 has no altsetting 0
[  495.054294][   T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  495.056840][   T34] usb 7-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30
[  495.059950][T13834] erspan1: entered promiscuous mode
[  495.065360][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  495.066051][T13780] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  495.069297][   T34] usb 7-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  495.075434][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  495.079086][   T34] usb 7-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  495.081104][T13780] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  495.082776][   T34] usb 7-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100
[  495.089515][   T34] usb 7-1: config 168 interface 0 has no altsetting 0
[  495.092035][T13780] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  495.094616][   T34] usb 7-1: string descriptor 0 read error: -22
[  495.097055][   T34] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  495.100022][   T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  495.100280][T13780] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  495.106539][   T34] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  495.121919][T13780] bridge0: port 2(bridge_slave_1) entered blocking state
[  495.125082][T13780] bridge0: port 2(bridge_slave_1) entered forwarding state
[  495.128407][T13780] bridge0: port 1(bridge_slave_0) entered blocking state
[  495.131415][T13780] bridge0: port 1(bridge_slave_0) entered forwarding state
[  495.148196][T13845] binder: 13844:13845 ioctl c0306201 200000000540 returned -22
[  495.176476][T13780] 8021q: adding VLAN 0 to HW filter on device bond0
[  495.193996][T13780] 8021q: adding VLAN 0 to HW filter on device team0
[  495.199880][ T6187] bridge0: port 1(bridge_slave_0) entered disabled state
[  495.204136][ T6187] bridge0: port 2(bridge_slave_1) entered disabled state
[  495.227420][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  495.230061][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  495.233606][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  495.235888][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  495.299389][T13866] xt_l2tp: invalid flags combination: 8
[  495.308573][   T34] usb 7-1: USB disconnect, device number 21
[  495.362102][T13780] 8021q: adding VLAN 0 to HW filter on device batadv0
[  495.523019][T13780] veth0_vlan: entered promiscuous mode
[  495.531600][T13780] veth1_vlan: entered promiscuous mode
[  495.549180][T13780] veth0_macvtap: entered promiscuous mode
[  495.553129][T13780] veth1_macvtap: entered promiscuous mode
[  495.562250][T13780] batman_adv: batadv0: Interface activated: batadv_slave_0
[  495.569723][T13886] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2685'.
[  495.571756][T13780] batman_adv: batadv0: Interface activated: batadv_slave_1
[  495.580185][T13886] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2685'.
[  495.581251][   T46] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  495.588879][   T46] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  495.600582][   T46] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  495.603736][   T46] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  495.638713][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.641233][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.653837][   T97] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.657322][   T97] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.917748][ T5941] Bluetooth: hci0: command tx timeout
[  496.077357][ T5941] Bluetooth: hci1: command tx timeout
[  496.170242][T13918] random: crng reseeded on system resumption
[  496.179125][T13918] binder: 13917:13918 ioctl c0306201 200000000640 returned -22
[  496.220799][ T7923] hid (null): report_id 3994699541 is invalid
[  496.223703][ T7923] hid (null): unknown global tag 0xe
[  496.225483][ T7923] hid (null): unknown global tag 0xc
[  496.227304][ T7923] hid (null): invalid report_size 43835
[  496.229351][ T7923] hid (null): unknown global tag 0xc
[  496.232445][ T7923] hid-generic 000F:006F:0008.000D: report_id 3994699541 is invalid
[  496.235142][ T7923] hid-generic 000F:006F:0008.000D: item 0 4 1 8 parsing failed
[  496.238480][ T7923] hid-generic 000F:006F:0008.000D: probe with driver hid-generic failed with error -22
[  496.241894][T13930] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2698'.
[  496.242854][T13930] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2698'.
[  496.251628][T13930] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2698'.
[  496.257731][T13930] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2698'.
[  496.442772][T13937] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61840 sclass=netlink_route_socket pid=13937 comm=syz.8.2701
[  496.553759][T13949] comedi comedi0: comedi_bond: 3:3  attached, 24 channels from 1 devices
[  496.618699][T13958] binder: 13956:13958 ioctl 4018620d 0 returned -22
[  496.621680][T13958] binder: 13956:13958 ioctl c0306201 200000000540 returned -22
[  496.807578][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  496.829439][T13978] XFS (nullb0): Invalid superblock magic number
[  496.834661][ T5941] Bluetooth: hci1: unexpected event for opcode 0x0000
[  496.891796][T13990] binder: 13989:13990 ioctl 4018620d 0 returned -22
[  496.895755][T13990] binder: 13989:13990 ioctl c0306201 200000000540 returned -22
[  497.172922][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  497.172938][   T40] audit: type=1400 audit(2000000011.363:815): avc:  denied  { unmount } for  pid=13780 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  497.202850][T14010] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  497.241104][   T40] audit: type=1400 audit(2000000011.433:816): avc:  denied  { bind } for  pid=14013 comm="syz.8.2732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  497.269110][   T40] audit: type=1400 audit(2000000011.463:817): avc:  denied  { dac_override } for  pid=14017 comm="syz.6.2733" capability=1  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  497.278171][   T40] audit: type=1400 audit(2000000011.463:818): avc:  denied  { remount } for  pid=14015 comm="syz.6.2733" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  497.391857][T14027] random: crng reseeded on system resumption
[  497.399980][T14027] Bluetooth: Invalid esc byte 0x0b
[  497.400103][T14030] input: syz1 as /devices/virtual/input/input41
[  497.404606][T14027] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  497.414282][T14027] binder: 14025:14027 ioctl c0306201 200000000640 returned -22
[  497.561697][T14043] comedi comedi3: comedi_config --init_data is deprecated
[  497.862883][T14056] __nla_validate_parse: 63 callbacks suppressed
[  497.862900][T14056] netlink: 64138 bytes leftover after parsing attributes in process `syz.6.2747'.
[  498.065196][T14064] efs: cannot read volume header
[  498.083654][   T40] audit: type=1400 audit(2000000012.273:819): avc:  denied  { listen } for  pid=14075 comm="syz.6.2754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  498.101779][T14079] netlink: 60 bytes leftover after parsing attributes in process `syz.8.2755'.
[  498.609100][T14139] binder: 14136:14139 unknown command 0
[  498.612155][T14139] binder: 14136:14139 ioctl c0306201 200000000080 returned -22
[  498.616681][T14139] binder: 14136:14139 ioctl c0189371 200000000540 returned -22
[  498.626860][T14139] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  498.891650][T14160] netlink: 'syz.2.2780': attribute type 1 has an invalid length.
[  498.911314][T14160] 8021q: adding VLAN 0 to HW filter on device bond1
[  498.946147][T14160] veth3: entered promiscuous mode
[  498.952185][T14160] bond1: (slave veth3): Enslaving as an active interface with a down link
[  498.960793][T14160] bond1: entered allmulticast mode
[  499.536627][T14271] kvm: pic: non byte read
[  499.540126][T14271] kvm: pic: level sensitive irq not supported
[  499.540396][T14271] kvm: pic: non byte read
[  499.544905][T14271] kvm: pic: level sensitive irq not supported
[  499.545134][T14271] kvm: pic: non byte read
[  499.549797][T14271] kvm: pic: level sensitive irq not supported
[  499.550027][T14271] kvm: pic: non byte read
[  499.554520][T14271] kvm: pic: level sensitive irq not supported
[  499.554754][T14271] kvm: pic: non byte read
[  499.559317][T14271] kvm: pic: level sensitive irq not supported
[  499.559548][T14271] kvm: pic: non byte read
[  499.564045][T14271] kvm: pic: level sensitive irq not supported
[  499.564274][T14271] kvm: pic: non byte read
[  499.568871][T14271] kvm: pic: level sensitive irq not supported
[  499.569101][T14271] kvm: pic: non byte read
[  499.573575][T14271] kvm: pic: level sensitive irq not supported
[  499.573807][T14271] kvm: pic: non byte read
[  499.578671][T14271] kvm: pic: level sensitive irq not supported
[  499.578906][T14271] kvm: pic: non byte read
[  499.584353][T14271] kvm: pic: level sensitive irq not supported
[  499.713860][T14291] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2792'.
[  499.820048][T14301] binder: 14299:14301 unknown command 0
[  499.822500][T14301] binder: 14299:14301 ioctl c0306201 200000000080 returned -22
[  499.828549][T14301] binder: 14299:14301 ioctl c0189371 200000000540 returned -22
[  499.832568][T14301] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  499.957352][T14302] fuse: Bad value for 'fd'
[  499.964175][T14313] tmpfs: Unknown parameter '0.9
[  499.964175][T14313] „VØO€ÔTZgè¯Ü3ÖÎÒ`̹Ì–×Sòçfì÷¥Ãò¼Kó™yÃ:Ž_£+2�¡UˆqmÑ‚îiyÏ™ž$kqÞ\
[  499.964175][T14313] XhîŒz5qK˳ðŠl»‹‰ã:™GÁÅÑ€@%¯U—÷Ø}bfƒ-üâúƒVZù¡ËwïcA¾jĸ)ü»ÐL�RÕ»'
[  499.971744][T14313] random: crng reseeded on system resumption
[  499.977976][T14313] binder: 14312:14313 ioctl c0306201 200000000640 returned -22
[  500.333356][T14338] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2806'.
[  500.338863][T14338] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2806'.
[  500.462033][T14349] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2809'.
[  500.704449][T14368] binder: 14367:14368 ioctl 942e 0 returned -22
[  500.720101][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  500.722902][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  500.875779][T14379] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14379 comm=syz.8.2817
[  500.881002][ T5941] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  500.885955][ T5941] Bluetooth: hci1: Injecting HCI hardware error event
[  500.890200][T14379] overlayfs: missing 'workdir'
[  500.938158][   T40] audit: type=1400 audit(2000000015.133:820): avc:  denied  { getopt } for  pid=14385 comm="syz.2.2818" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  500.996452][T14388] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2819'.
[  500.999793][T14390] Invalid source name
[  501.001681][T14390] UBIFS error (pid: 14390): cannot open "ubifs", error -22
[  501.006679][T14390] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2820'.
[  501.048268][T14388] kvm: user requested TSC rate below hardware speed
[  501.056493][T14388] kvm: user requested TSC rate below hardware speed
[  501.655327][T14447] tipc: Started in network mode
[  501.657068][T14447] tipc: Node identity ce80860149db, cluster identity 4711
[  501.660079][T14447] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  501.663594][T14447] syzkaller0: entered promiscuous mode
[  501.665523][T14447] syzkaller0: entered allmulticast mode
[  501.683888][T14447] tipc: Resetting bearer <eth:syzkaller0>
[  501.691767][T14446] tipc: Resetting bearer <eth:syzkaller0>
[  501.705084][T14446] tipc: Disabling bearer <eth:syzkaller0>
[  501.746012][T14457] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2839'.
[  501.750259][T14457] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2839'.
[  501.886337][ T5941] Bluetooth: hci1: unknown advertising packet type: 0x82
[  501.886388][ T5941] Bluetooth: hci1: unknown advertising packet type: 0x75
[  501.888957][ T5941] Bluetooth: hci1: Dropping invalid advertising data
[  501.896284][ T5941] Bluetooth: hci1: Malformed LE Event: 0x02
[  501.937941][T14487] Bluetooth: hci3: Frame reassembly failed (-90)
[  501.941261][   T97] Bluetooth: hci3: Frame reassembly failed (-84)
[  502.090985][T14493] netlink: 'syz.2.2849': attribute type 8 has an invalid length.
[  502.129949][T14493] netdevsim netdevsim2: Firmware load for './cgroup/../file0' refused, path contains '..' component
[  502.284250][T14497] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14497 comm=syz.2.2850
[  502.405459][T14565] binder: 14564:14565 ioctl c0306201 200000000540 returned -22
[  502.732128][T14572] random: crng reseeded on system resumption
[  502.745371][T14572] binder: 14571:14572 ioctl c0306201 200000000540 returned -22
[  502.750484][T14572] binder: 14571:14572 ioctl ae01 4 returned -22
[  502.753264][T14572] binder: 14571:14572 ioctl 4068aea3 200000000240 returned -22
[  503.083512][ T5940] Bluetooth: hci1: unknown advertising packet type: 0x82
[  503.083538][ T5940] Bluetooth: hci1: unknown advertising packet type: 0x75
[  503.086109][ T5940] Bluetooth: hci1: Malformed LE Event: 0x02
[  503.411944][T14633] __nla_validate_parse: 3 callbacks suppressed
[  503.411956][T14633] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2872'.
[  503.417077][T14633] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2872'.
[  503.531490][T14645] binder: 14644:14645 ioctl c0306201 0 returned -14
[  503.578306][T14648] random: crng reseeded on system resumption
[  503.586785][T14648] binder: 14647:14648 ioctl c0306201 200000000640 returned -22
[  503.639878][T14651] binder: 14649:14651 unknown command 0
[  503.642317][T14651] binder: 14649:14651 ioctl c0306201 200000000080 returned -22
[  503.646848][T14651] binder: 14649:14651 ioctl c0189371 200000000540 returned -22
[  503.673036][T14651] sp0: Synchronizing with TNC
[  503.954420][T14675] random: crng reseeded on system resumption
[  503.961801][T14675] binder: 14674:14675 ioctl c0306201 200000000640 returned -22
[  503.997428][ T5940] Bluetooth: hci3: command 0x1003 tx timeout
[  503.999893][ T5941] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  504.036108][ T5941] Bluetooth: hci1: unexpected event for opcode 0x0419
[  504.081761][T14693] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2889'.
[  504.083550][T14694] 9pnet_virtio: no channels available for device syz
[  504.085742][T14693] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2889'.
[  504.091799][T14693] netlink: 'syz.8.2889': attribute type 11 has an invalid length.
[  504.095177][T14693] netlink: 'syz.8.2889': attribute type 13 has an invalid length.
[  504.170837][T14702] netlink: 'syz.5.2891': attribute type 1 has an invalid length.
[  504.179033][T14702] vlan2: entered promiscuous mode
[  504.180715][T14702] bridge0: entered promiscuous mode
[  504.210427][T14710] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 2648
[  504.247357][   T53] usb 11-1: new high-speed USB device number 20 using dummy_hcd
[  504.264958][T14712] loop9: detected capacity change from 0 to 7
[  504.271534][T14712]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[  504.277320][T14712] loop9: partition table partially beyond EOD, truncated
[  504.280694][T14712] loop9: p1 size 2437361653 extends beyond EOD, truncated
[  504.397377][   T53] usb 11-1: Using ep0 maxpacket: 8
[  504.406263][   T53] usb 11-1: config 0 has no interfaces?
[  504.409127][   T53] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  504.410381][T14729] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2898'.
[  504.413600][   T53] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  504.416603][T14729] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2898'.
[  504.421450][   T53] usb 11-1: config 0 descriptor??
[  504.423236][T14729] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2898'.
[  504.504550][T14749] syzkaller1: entered promiscuous mode
[  504.506823][T14749] syzkaller1: entered allmulticast mode
[  504.684263][   T40] audit: type=1400 audit(2000000018.873:821): avc:  denied  { read } for  pid=14763 comm="syz.2.2905" lport=41660 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  504.782708][T14776] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2910'.
[  504.836891][T14681] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  504.840158][T14776] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14776 comm=syz.8.2910
[  504.841690][T14681] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  504.854126][  T842] usb 11-1: USB disconnect, device number 20
[  505.197573][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  505.197882][ T5998] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  505.357493][ T5998] usb 7-1: Using ep0 maxpacket: 8
[  505.361115][ T5998] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  505.364304][ T5998] usb 7-1: config 0 has no interface number 0
[  505.366894][ T5998] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  505.371554][ T5998] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  505.376860][ T5998] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  505.381362][ T5998] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  505.385266][ T5998] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  505.391030][ T5998] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  505.395938][ T5998] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.403405][ T5998] usb 7-1: config 0 descriptor??
[  505.411665][ T5998] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  505.457573][T14886] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  505.575489][   T40] audit: type=1400 audit(2000000019.763:822): avc:  denied  { getopt } for  pid=14896 comm="syz.5.2923" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  505.577808][T14897] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«=
[  505.585533][T14897] [U] J"—e:ÀÆ"


[  505.589247][T14897] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2923'.
[  505.681120][ T5941] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  505.686280][ T5941] Bluetooth: hci2: Injecting HCI hardware error event
[  505.693207][ T5940] Bluetooth: hci2: hardware error 0x00
[  505.718360][T14912] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2927'.
[  505.765069][T14912] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  505.769731][T14912] team0: Device ipvlan2 is already an upper device of the team interface
[  505.788602][T14909] syzkaller0: entered promiscuous mode
[  505.790262][T14909] syzkaller0: entered allmulticast mode
[  505.877304][   T46] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.025761][   T40] audit: type=1400 audit(2000000020.213:823): avc:  denied  { append } for  pid=14938 comm="syz.8.2932" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  506.055343][   T46] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.196764][   T46] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.272786][   T46] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.415478][T14970] loop4: detected capacity change from 0 to 7
[  506.419255][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.422313][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.422471][   T46] bridge_slave_1: left allmulticast mode
[  506.425386][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.427686][   T46] bridge_slave_1: left promiscuous mode
[  506.430409][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.432626][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  506.435305][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.440882][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.443636][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.444282][   T46] bridge_slave_0: left allmulticast mode
[  506.446772][T14970] ldm_validate_partition_table(): Disk read failed.
[  506.449706][   T46] bridge_slave_0: left promiscuous mode
[  506.451532][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.453774][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  506.456211][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.463204][T14970] Buffer I/O error on dev loop4, logical block 0, async page read
[  506.465868][T14970] Dev loop4: unable to read RDB block 0
[  506.468209][T14970]  loop4: unable to read partition table
[  506.470731][T14970] loop4: partition table beyond EOD, truncated
[  506.473356][T14970] loop_reread_partitions: partition scan of loop4 (úùƒå¡™‰ü�¾SêjÌ–ã¢P=ý?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆŠ5) failed (rc=-5)
[  506.559784][T14990] random: crng reseeded on system resumption
[  506.577021][T14990] binder: 14989:14990 ioctl c0306201 200000000640 returned -22
[  506.617920][   T40] audit: type=1400 audit(2000000020.813:824): avc:  denied  { ioctl } for  pid=14991 comm="syz.5.2943" path="socket:[68747]" dev="sockfs" ino=68747 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  506.755812][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  506.760357][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  506.764217][   T46] bond0 (unregistering): Released all slaves
[  506.777095][T14992] veth0: entered promiscuous mode
[  506.786027][T14992] bond0: (slave vlan3): Enslaving as an active interface with an up link
[  506.961241][T15003] bond1: Unable to set up delay as MII monitoring is disabled
[  506.966465][T15003] bond1 (unregistering): Released all slaves
[  507.009298][   T46] hsr_slave_0: left promiscuous mode
[  507.012351][   T46] hsr_slave_1: left promiscuous mode
[  507.015146][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  507.018078][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  507.021465][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  507.024603][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  507.075100][   T46] veth1_macvtap: left promiscuous mode
[  507.077622][   T46] veth0_macvtap: left promiscuous mode
[  507.080125][   T46] veth1_vlan: left promiscuous mode
[  507.082640][   T46] veth0_vlan: left promiscuous mode
[  507.322726][ T5941] Bluetooth: hci2: unexpected event for opcode 0x0000
[  507.757558][ T5940] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  507.877575][ T5998] usb 7-1: USB disconnect, device number 22
[  507.891037][ T5998] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  507.913446][   T46] team0 (unregistering): Port device team_slave_1 removed
[  507.939914][T15099] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  507.945994][T15099] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[  507.950629][T15099] overlayfs: failed to set uuid (95/file0, err=-13); falling back to uuid=null.
[  508.023825][   T46] team0 (unregistering): Port device team_slave_0 removed
[  508.087463][ T5940] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  508.091495][ T5940] Bluetooth: hci1: Injecting HCI hardware error event
[  508.792790][T15085] pim6reg: tun_chr_ioctl cmd 1074025678
[  508.793830][   T40] audit: type=1400 audit(2000000022.983:825): avc:  denied  { unmount } for  pid=8662 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  508.794704][T15085] pim6reg: group set to 0
[  508.931823][T15135] binder: BC_ATTEMPT_ACQUIRE not supported
[  508.934459][T15135] binder: 15134:15135 ioctl c0306201 200000000640 returned -22
[  509.044729][T15145] binder: 15144:15145 unknown command 0
[  509.047083][T15145] binder: 15144:15145 ioctl c0306201 200000000080 returned -22
[  509.051732][T15145] binder: 15144:15145 ioctl c0189371 200000000540 returned -22
[  509.056521][T15145] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  509.068891][T15145] sp0: Synchronizing with TNC
[  509.124979][T15154] veth0: entered promiscuous mode
[  509.131142][T15154] bond0: (slave vlan2): Enslaving as an active interface with an up link
[  509.242788][T15163] tmpfs: Bad value for 'mpol'
[  509.321968][T15174] __nla_validate_parse: 1 callbacks suppressed
[  509.321987][T15174] netlink: 172 bytes leftover after parsing attributes in process `syz.5.2969'.
[  509.379515][T15180] overlayfs: cannot append lower layer
[  509.439419][T15187] netlink: 27 bytes leftover after parsing attributes in process `syz.2.2973'.
[  509.491947][T15180] delete_channel: no stack
[  509.536212][T15209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2975'.
[  509.552475][T15209] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1013 sclass=netlink_route_socket pid=15209 comm=syz.2.2975
[  509.621115][   T40] audit: type=1400 audit(2000000023.813:826): avc:  denied  { connect } for  pid=15212 comm="syz.5.2976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  509.657844][   T40] audit: type=1400 audit(2000000023.853:827): avc:  denied  { create } for  pid=15217 comm="syz.5.2978" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  509.661422][T15218] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2978'.
[  509.670249][   T40] audit: type=1400 audit(2000000023.863:828): avc:  denied  { write } for  pid=15217 comm="syz.5.2978" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  509.677621][T15218] gretap1: entered promiscuous mode
[  509.733937][   T40] audit: type=1400 audit(2000000023.923:829): avc:  denied  { connect } for  pid=15217 comm="syz.5.2978" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  509.865041][T15236] random: crng reseeded on system resumption
[  509.874762][T15236] binder: 15234:15236 ioctl c0306201 200000000640 returned -22
[  510.055344][T15259] xt_CT: You must specify a L4 protocol and not use inversions on it
[  510.068570][   T40] audit: type=1400 audit(2000000024.263:830): avc:  denied  { ioctl } for  pid=15260 comm="GPL" path="socket:[70125]" dev="sockfs" ino=70125 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  510.087712][T15265] Bluetooth: MGMT ver 1.23
[  510.186208][   T40] audit: type=1400 audit(2000000024.373:831): avc:  denied  { ioctl } for  pid=15267 comm="syz.5.2995" path="socket:[68291]" dev="sockfs" ino=68291 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  510.223973][T15278] binder: 15277:15278 unknown command 0
[  510.225991][T15278] binder: 15277:15278 ioctl c0306201 200000000080 returned -22
[  510.229365][T15278] binder: 15277:15278 ioctl c0189371 200000000540 returned -22
[  510.232752][T15278] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  510.241376][T15278] sp0: Synchronizing with TNC
[  510.381050][T15293] random: crng reseeded on system resumption
[  510.386627][T15293] binder: 15292:15293 ioctl c0306201 200000000640 returned -22
[  510.505433][T15298] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3003'.
[  510.511399][   T40] audit: type=1400 audit(2000000024.703:832): avc:  denied  { setopt } for  pid=15297 comm="syz.2.3003" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  510.772251][   T40] audit: type=1400 audit(2000000024.963:833): avc:  denied  { ioctl } for  pid=15309 comm="syz.8.3009" path="socket:[70802]" dev="sockfs" ino=70802 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  510.825937][T15314] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3011'.
[  511.233752][T15354] netdevsim netdevsim2 ªªªªªª: renamed from netdevsim0 (while UP)
[  511.267361][ T5998] usb 13-1: new high-speed USB device number 4 using dummy_hcd
[  511.430504][ T5998] usb 13-1: config index 0 descriptor too short (expected 39, got 27)
[  511.433936][ T5998] usb 13-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  511.438862][ T5998] usb 13-1: config 0 interface 0 has no altsetting 0
[  511.444100][ T5998] usb 13-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  511.448002][ T5998] usb 13-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  511.451417][ T5998] usb 13-1: Product: syz
[  511.453210][ T5998] usb 13-1: Manufacturer: syz
[  511.455181][ T5998] usb 13-1: SerialNumber: syz
[  511.459628][ T5998] usb 13-1: config 0 descriptor??
[  511.464564][ T5998] hub 13-1:0.0: bad descriptor, ignoring hub
[  511.467154][ T5998] hub 13-1:0.0: probe with driver hub failed with error -5
[  511.474436][ T5998] usb 13-1: selecting invalid altsetting 0
[  511.573741][   T40] audit: type=1400 audit(2000000025.763:834): avc:  denied  { add_name } for  pid=15380 comm="syz.6.3028" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  511.583632][   T40] audit: type=1400 audit(2000000025.763:835): avc:  denied  { create } for  pid=15380 comm="syz.6.3028" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  511.592557][   T40] audit: type=1400 audit(2000000025.763:836): avc:  denied  { associate } for  pid=15380 comm="syz.6.3028" name="cgroup.controllers" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  511.602939][   T40] audit: type=1400 audit(2000000025.773:837): avc:  denied  { read append open } for  pid=15380 comm="syz.6.3028" path="/567/file0/cgroup.controllers" dev="9p" ino=72095757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  511.614678][   T40] audit: type=1400 audit(2000000025.773:838): avc:  denied  { map } for  pid=15380 comm="syz.6.3028" path="/567/file0/cgroup.controllers" dev="9p" ino=72095757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  511.792907][T15403] binder: BC_ATTEMPT_ACQUIRE not supported
[  511.795419][T15403] binder: 15402:15403 ioctl c0306201 200000000640 returned -22
[  511.802106][T15405] binder: 15404:15405 unknown command 0
[  511.804286][T15405] binder: 15404:15405 ioctl c0306201 200000000080 returned -22
[  511.808232][T15405] binder: 15404:15405 ioctl c0189371 200000000540 returned -22
[  511.812753][T15405] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  511.819812][T15405] sp0: Synchronizing with TNC
[  511.888580][T15334] usb 13-1: reset high-speed USB device number 4 using dummy_hcd
[  511.895263][T15334] usb 13-1: device reset changed ep0 maxpacket size!
[  511.903828][ T5998] usb 13-1: USB disconnect, device number 4
[  512.057308][ T5998] usb 13-1: new high-speed USB device number 5 using dummy_hcd
[  512.207445][ T5998] usb 13-1: Using ep0 maxpacket: 32
[  512.211329][ T5998] usb 13-1: config 1 interface 0 altsetting 9 bulk endpoint 0x1 has invalid maxpacket 64
[  512.214519][ T5998] usb 13-1: config 1 interface 0 altsetting 9 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  512.218954][ T5998] usb 13-1: config 1 interface 0 has no altsetting 0
[  512.222819][ T5998] usb 13-1: New USB device found, idVendor=04b8, idProduct=0202, bcdDevice= 0.40
[  512.225884][ T5998] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.228543][ T5998] usb 13-1: Product: syz
[  512.229867][ T5998] usb 13-1: Manufacturer: syz
[  512.231382][ T5998] usb 13-1: SerialNumber: syz
[  512.235068][T15385] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  512.676483][T15474] FAULT_INJECTION: forcing a failure.
[  512.676483][T15474] name failslab, interval 1, probability 0, space 0, times 0
[  512.682397][T15474] CPU: 2 UID: 0 PID: 15474 Comm: syz.2.3047 Not tainted syzkaller #0 PREEMPT(full) 
[  512.682413][T15474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  512.682419][T15474] Call Trace:
[  512.682431][T15474]  <TASK>
[  512.682436][T15474]  dump_stack_lvl+0x16c/0x1f0
[  512.682459][T15474]  should_fail_ex+0x512/0x640
[  512.682476][T15474]  ? fs_reclaim_acquire+0xae/0x150
[  512.682490][T15474]  should_failslab+0xc2/0x120
[  512.682503][T15474]  __kmalloc_noprof+0xdd/0x880
[  512.682517][T15474]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  512.682533][T15474]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  512.682544][T15474]  tomoyo_realpath_from_path+0xc2/0x6e0
[  512.682558][T15474]  ? tomoyo_profile+0x47/0x60
[  512.682575][T15474]  tomoyo_path_number_perm+0x245/0x580
[  512.682584][T15474]  ? tomoyo_path_number_perm+0x237/0x580
[  512.682595][T15474]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  512.682606][T15474]  ? find_held_lock+0x2b/0x80
[  512.682631][T15474]  ? find_held_lock+0x2b/0x80
[  512.682643][T15474]  ? hook_file_ioctl_common+0x145/0x410
[  512.682660][T15474]  ? __fget_files+0x20e/0x3c0
[  512.682673][T15474]  security_file_ioctl+0x9b/0x240
[  512.682686][T15474]  __x64_sys_ioctl+0xb7/0x210
[  512.682701][T15474]  do_syscall_64+0xcd/0xfa0
[  512.682712][T15474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  512.682723][T15474] RIP: 0033:0x7f4a42f8f749
[  512.682731][T15474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  512.682742][T15474] RSP: 002b:00007f4a411ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  512.682752][T15474] RAX: ffffffffffffffda RBX: 00007f4a431e5fa0 RCX: 00007f4a42f8f749
[  512.682758][T15474] RDX: 0000200000000180 RSI: 00000000000089e2 RDI: 0000000000000004
[  512.682764][T15474] RBP: 00007f4a411ee090 R08: 0000000000000000 R09: 0000000000000000
[  512.682770][T15474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  512.682775][T15474] R13: 00007f4a431e6038 R14: 00007f4a431e5fa0 R15: 00007ffd449ed088
[  512.682789][T15474]  </TASK>
[  512.683248][T15474] ERROR: Out of memory at tomoyo_realpath_from_path.
[  512.883414][T15488] random: crng reseeded on system resumption
[  512.893322][T15488] binder: 15487:15488 ioctl c0306201 200000000640 returned -22
[  512.963570][ T5998] usb 13-1: USB disconnect, device number 5
[  512.985314][T15510] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3057'.
[  513.002346][T15514] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15514 comm=syz.2.3056
[  513.020617][T15518] Unsupported ieee802154 address type: 0
[  513.022770][T15517] Unsupported ieee802154 address type: 0
[  513.025336][T15518] 9pnet: Found fid 0 not clunked
[  513.026904][T15519] 9pnet: Found fid 0 not clunked
[  513.099527][T15528] binder: 15527:15528 ioctl c0306201 200000000540 returned -14
[  513.277420][   T53] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  513.437359][   T53] usb 10-1: Using ep0 maxpacket: 32
[  513.441759][   T53] usb 10-1: config 0 has an invalid interface number: 67 but max is 0
[  513.445391][   T53] usb 10-1: config 0 has no interface number 0
[  513.448232][   T53] usb 10-1: config 0 interface 67 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  513.455861][   T53] usb 10-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  513.459950][   T53] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  513.463282][   T53] usb 10-1: Product: syz
[  513.465205][   T53] usb 10-1: Manufacturer: syz
[  513.467289][   T53] usb 10-1: SerialNumber: syz
[  513.471677][   T53] usb 10-1: config 0 descriptor??
[  513.476173][   T53] smsc95xx v2.0.0
[  513.477716][   T53] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  513.483537][   T53] smsc95xx 10-1:0.67: probe with driver smsc95xx failed with error -22
[  513.584265][T15543] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1538 sclass=netlink_route_socket pid=15543 comm=syz.6.3065
[  513.643849][T15551] sp0: Synchronizing with TNC
[  513.678653][ T7923] usb 10-1: USB disconnect, device number 16
[  513.797411][T15568] netdevsim netdevsim6 ªªªªªª: renamed from netdevsim0 (while UP)
[  513.812941][T15572] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3069'.
[  513.843706][T15574] bond1 (unregistering): Released all slaves
[  513.881833][T15575] bond1 (unregistering): Released all slaves
[  513.992603][T15531] delete_channel: no stack
[  514.092441][T15725] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3076'.
[  514.095520][T15725] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3076'.
[  514.215298][T15738] binder: 15737:15738 unknown command 0
[  514.217897][T15738] binder: 15737:15738 ioctl c0306201 200000000080 returned -22
[  514.222697][T15738] binder: 15737:15738 ioctl c0189371 200000000540 returned -22
[  514.226862][T15738] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  514.237464][ T5998] usb 11-1: new low-speed USB device number 21 using dummy_hcd
[  514.238145][T15738] sp0: Synchronizing with TNC
[  514.283658][   T53] IPVS: starting estimator thread 0...
[  514.358648][T15754] xt_recent: Unsupported userspace flags (000000b2)
[  514.361993][T15754] IPVS: set_ctl: invalid protocol: 51 0.0.0.0:20002
[  514.387478][T15750] IPVS: using max 42 ests per chain, 100800 per kthread
[  514.390900][ T5998] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 32, setting to 8
[  514.394289][ T5998] usb 11-1: config 1 interface 1 altsetting 1 endpoint 0x82 is Bulk; changing to Interrupt
[  514.397761][ T5998] usb 11-1: config 1 interface 1 altsetting 1 endpoint 0x3 is Bulk; changing to Interrupt
[  514.403497][ T5998] usb 11-1: string descriptor 0 read error: -22
[  514.405588][ T5998] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  514.409713][ T5998] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  514.414674][T15713] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  514.463237][T15764] erofs (device nullb0): cannot find valid erofs superblock
[  514.565290][T15776] 9pnet_virtio: no channels available for device syz
[  514.621371][ T5998] cdc_ncm 11-1:1.0: bind() failure
[  514.634979][ T5998] cdc_ncm 11-1:1.1: CDC Union missing and no IAD found
[  514.637245][ T5998] cdc_ncm 11-1:1.1: bind() failure
[  514.641098][ T5998] usb 11-1: USB disconnect, device number 21
[  514.668776][T15798] __nla_validate_parse: 2 callbacks suppressed
[  514.668786][T15798] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3093'.
[  515.044746][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  515.044761][   T40] audit: type=1400 audit(2000000029.233:849): avc:  denied  { read } for  pid=15826 comm="syz.2.3101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  515.046708][T15827] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3101'.
[  515.062251][T15827] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3101'.
[  515.171620][T15844] FAULT_INJECTION: forcing a failure.
[  515.171620][T15844] name failslab, interval 1, probability 0, space 0, times 0
[  515.176928][T15844] CPU: 1 UID: 0 PID: 15844 Comm: syz.2.3107 Not tainted syzkaller #0 PREEMPT(full) 
[  515.176953][T15844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  515.176965][T15844] Call Trace:
[  515.176980][T15844]  <TASK>
[  515.176988][T15844]  dump_stack_lvl+0x16c/0x1f0
[  515.177022][T15844]  should_fail_ex+0x512/0x640
[  515.177049][T15844]  ? fs_reclaim_acquire+0xae/0x150
[  515.177073][T15844]  should_failslab+0xc2/0x120
[  515.177096][T15844]  __kmalloc_noprof+0xdd/0x880
[  515.177118][T15844]  ? tomoyo_encode2+0x100/0x3e0
[  515.177143][T15844]  ? tomoyo_encode2+0x100/0x3e0
[  515.177162][T15844]  tomoyo_encode2+0x100/0x3e0
[  515.177201][T15844]  tomoyo_encode+0x29/0x50
[  515.177221][T15844]  tomoyo_realpath_from_path+0x18f/0x6e0
[  515.177245][T15844]  ? tomoyo_profile+0x47/0x60
[  515.177271][T15844]  tomoyo_path_number_perm+0x245/0x580
[  515.177287][T15844]  ? tomoyo_path_number_perm+0x237/0x580
[  515.177307][T15844]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  515.177327][T15844]  ? find_held_lock+0x2b/0x80
[  515.177372][T15844]  ? find_held_lock+0x2b/0x80
[  515.177393][T15844]  ? hook_file_ioctl_common+0x145/0x410
[  515.177423][T15844]  ? __fget_files+0x20e/0x3c0
[  515.177445][T15844]  security_file_ioctl+0x9b/0x240
[  515.177466][T15844]  __x64_sys_ioctl+0xb7/0x210
[  515.177492][T15844]  do_syscall_64+0xcd/0xfa0
[  515.177509][T15844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.177527][T15844] RIP: 0033:0x7f4a42f8f749
[  515.177546][T15844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  515.177564][T15844] RSP: 002b:00007f4a411ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  515.177582][T15844] RAX: ffffffffffffffda RBX: 00007f4a431e5fa0 RCX: 00007f4a42f8f749
[  515.177593][T15844] RDX: 0000200000000180 RSI: 00000000000089e2 RDI: 0000000000000004
[  515.177604][T15844] RBP: 00007f4a411ee090 R08: 0000000000000000 R09: 0000000000000000
[  515.177615][T15844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  515.177625][T15844] R13: 00007f4a431e6038 R14: 00007f4a431e5fa0 R15: 00007ffd449ed088
[  515.177650][T15844]  </TASK>
[  515.272701][T15844] ERROR: Out of memory at tomoyo_realpath_from_path.
[  515.329308][T15856] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3111'.
[  515.384325][T15859] bpf: Bad value for 'gid'
[  515.570983][T15886] binder: 15884:15886 ioctl c0306201 200000000540 returned -14
[  515.790103][T15914] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3126'.
[  515.826197][T15920] FAULT_INJECTION: forcing a failure.
[  515.826197][T15920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  515.831793][T15920] CPU: 1 UID: 0 PID: 15920 Comm: syz.8.3128 Not tainted syzkaller #0 PREEMPT(full) 
[  515.831824][T15920] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  515.831835][T15920] Call Trace:
[  515.831849][T15920]  <TASK>
[  515.831855][T15920]  dump_stack_lvl+0x16c/0x1f0
[  515.831896][T15920]  should_fail_ex+0x512/0x640
[  515.831926][T15920]  _copy_from_user+0x2e/0xd0
[  515.831949][T15920]  binder_ioctl+0x57a/0x73b0
[  515.831986][T15920]  ? tomoyo_path_number_perm+0x18d/0x580
[  515.832012][T15920]  ? __pfx_binder_ioctl+0x10/0x10
[  515.832042][T15920]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  515.832068][T15920]  ? do_vfs_ioctl+0x128/0x14f0
[  515.832094][T15920]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  515.832118][T15920]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  515.832148][T15920]  ? hook_file_ioctl_common+0x145/0x410
[  515.832178][T15920]  ? selinux_file_ioctl+0x180/0x270
[  515.832196][T15920]  ? selinux_file_ioctl+0xb4/0x270
[  515.832217][T15920]  ? __pfx_binder_ioctl+0x10/0x10
[  515.832245][T15920]  __x64_sys_ioctl+0x18e/0x210
[  515.832271][T15920]  do_syscall_64+0xcd/0xfa0
[  515.832290][T15920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  515.832308][T15920] RIP: 0033:0x7f1e88f8f749
[  515.832324][T15920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  515.832341][T15920] RSP: 002b:00007f1e89e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  515.832359][T15920] RAX: ffffffffffffffda RBX: 00007f1e891e5fa0 RCX: 00007f1e88f8f749
[  515.832369][T15920] RDX: 0000200000000540 RSI: 00000000c0306201 RDI: 0000000000000004
[  515.832380][T15920] RBP: 00007f1e89e3d090 R08: 0000000000000000 R09: 0000000000000000
[  515.832409][T15920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  515.832420][T15920] R13: 00007f1e891e6038 R14: 00007f1e891e5fa0 R15: 00007fff46046ec8
[  515.832446][T15920]  </TASK>
[  515.832453][T15920] binder: 15918:15920 ioctl c0306201 200000000540 returned -14
[  515.874283][T15924] binder: 15923:15924 ioctl c0306201 200000000540 returned -22
[  516.106136][T15943] loop4: detected capacity change from 0 to 2560
[  516.319535][T15972] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3145'.
[  516.365119][T15980] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3147'.
[  516.371660][T15980] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3147'.
[  516.384647][T15980] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3147'.
[  516.384713][ T6193] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  516.389276][T15980] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3147'.
[  516.393023][ T6193] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  516.400274][ T6193] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  516.400310][ T6193] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  516.580421][T16016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=16016 comm=syz.6.3159
[  516.747368][ T8401] usb 13-1: new low-speed USB device number 6 using dummy_hcd
[  516.754865][T16034] FAULT_INJECTION: forcing a failure.
[  516.754865][T16034] name failslab, interval 1, probability 0, space 0, times 0
[  516.759184][T16034] CPU: 3 UID: 0 PID: 16034 Comm: syz.5.3165 Not tainted syzkaller #0 PREEMPT(full) 
[  516.759201][T16034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  516.759208][T16034] Call Trace:
[  516.759212][T16034]  <TASK>
[  516.759217][T16034]  dump_stack_lvl+0x16c/0x1f0
[  516.759231][T16034]  should_fail_ex+0x512/0x640
[  516.759245][T16034]  ? fs_reclaim_acquire+0xae/0x150
[  516.759259][T16034]  should_failslab+0xc2/0x120
[  516.759272][T16034]  kmem_cache_alloc_noprof+0x75/0x6e0
[  516.759287][T16034]  ? __pfx_map_id_range_down+0x10/0x10
[  516.759301][T16034]  ? security_inode_alloc+0x3b/0x2b0
[  516.759315][T16034]  ? security_inode_alloc+0x3b/0x2b0
[  516.759324][T16034]  security_inode_alloc+0x3b/0x2b0
[  516.759334][T16034]  inode_init_always_gfp+0xce4/0x1030
[  516.759348][T16034]  alloc_inode+0x86/0x240
[  516.759362][T16034]  sock_alloc+0x40/0x280
[  516.759379][T16034]  do_accept+0xf7/0x530
[  516.759391][T16034]  ? do_raw_spin_lock+0x12c/0x2b0
[  516.759403][T16034]  ? __pfx_do_accept+0x10/0x10
[  516.759422][T16034]  __sys_accept4+0x100/0x1c0
[  516.759434][T16034]  ? __pfx___sys_accept4+0x10/0x10
[  516.759447][T16034]  ? __pfx_ksys_write+0x10/0x10
[  516.759459][T16034]  __x64_sys_accept4+0x96/0x100
[  516.759470][T16034]  ? lockdep_hardirqs_on+0x7c/0x110
[  516.759480][T16034]  do_syscall_64+0xcd/0xfa0
[  516.759492][T16034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  516.759502][T16034] RIP: 0033:0x7ff1f578f749
[  516.759511][T16034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  516.759522][T16034] RSP: 002b:00007ff1f6636038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  516.759532][T16034] RAX: ffffffffffffffda RBX: 00007ff1f59e5fa0 RCX: 00007ff1f578f749
[  516.759539][T16034] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  516.759545][T16034] RBP: 00007ff1f6636090 R08: 0000000000000000 R09: 0000000000000000
[  516.759551][T16034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  516.759556][T16034] R13: 00007ff1f59e6038 R14: 00007ff1f59e5fa0 R15: 00007ffd2e0a81d8
[  516.759569][T16034]  </TASK>
[  516.847624][    C3] vkms_vblank_simulate: vblank timer overrun
[  516.877328][ T8401] usb 13-1: device descriptor read/64, error -71
[  516.942902][ T5941] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  516.949610][ T5941] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  516.953412][ T5941] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  516.957543][ T5941] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  516.962165][ T5941] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  516.990952][T16038] lo speed is unknown, defaulting to 1000
[  517.117379][ T8401] usb 13-1: new low-speed USB device number 7 using dummy_hcd
[  517.136057][T16038] chnl_net:caif_netlink_parms(): no params data found
[  517.247605][ T8401] usb 13-1: device descriptor read/64, error -71
[  517.256090][T16038] bridge0: port 1(bridge_slave_0) entered blocking state
[  517.260013][T16038] bridge0: port 1(bridge_slave_0) entered disabled state
[  517.262424][T16038] bridge_slave_0: entered allmulticast mode
[  517.265583][T16038] bridge_slave_0: entered promiscuous mode
[  517.281976][T16038] bridge0: port 2(bridge_slave_1) entered blocking state
[  517.285032][   T40] audit: type=1400 audit(2000000031.473:850): avc:  denied  { name_bind } for  pid=16293 comm="syz.5.3169" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  517.288887][T16038] bridge0: port 2(bridge_slave_1) entered disabled state
[  517.296903][T16038] bridge_slave_1: entered allmulticast mode
[  517.301169][T16038] bridge_slave_1: entered promiscuous mode
[  517.358981][ T8401] usb usb13-port1: attempt power cycle
[  517.364608][T16038] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  517.370806][T16038] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  517.424688][T16038] team0: Port device team_slave_0 added
[  517.429686][T16038] team0: Port device team_slave_1 added
[  517.480959][T16038] batman_adv: batadv0: Adding interface: batadv_slave_0
[  517.483640][T16038] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  517.491941][T16038] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  517.500204][T16038] batman_adv: batadv0: Adding interface: batadv_slave_1
[  517.503081][T16038] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  517.512525][T16038] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  517.567932][T16038] hsr_slave_0: entered promiscuous mode
[  517.571190][T16038] hsr_slave_1: entered promiscuous mode
[  517.573649][T16038] debugfs: 'hsr0' already exists in 'hsr'
[  517.575980][T16038] Cannot create hsr debugfs directory
[  517.579226][ T7923] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  517.709448][ T8401] usb 13-1: new low-speed USB device number 8 using dummy_hcd
[  517.735842][ T8401] usb 13-1: device descriptor read/8, error -71
[  517.737500][ T7923] usb 10-1: Using ep0 maxpacket: 32
[  517.744278][ T7923] usb 10-1: config 0 has an invalid interface number: 67 but max is 0
[  517.745494][   T92] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  517.747078][ T7923] usb 10-1: config 0 has no interface number 0
[  517.749316][ T7923] usb 10-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  517.752679][   T92] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.754433][ T7923] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  517.764375][ T7923] usb 10-1: Product: syz
[  517.776947][ T7923] usb 10-1: Manufacturer: syz
[  517.779027][ T7923] usb 10-1: SerialNumber: syz
[  517.782197][ T7923] usb 10-1: config 0 descriptor??
[  517.785442][ T7923] smsc95xx v2.0.0
[  517.786744][ T7923] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  517.790371][ T7923] smsc95xx 10-1:0.67: probe with driver smsc95xx failed with error -22
[  517.860976][   T92] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  517.865327][   T92] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.973604][   T92] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  517.977575][ T8401] usb 13-1: new low-speed USB device number 9 using dummy_hcd
[  517.978090][   T92] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  517.998245][ T8401] usb 13-1: device descriptor read/8, error -71
[  518.052576][   T92] netdevsim netdevsim6 ªªªªªª (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  518.056627][   T92] netdevsim netdevsim6 ªªªªªª (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  518.118843][ T8401] usb usb13-port1: unable to enumerate USB device
[  518.188081][   T53] usb 10-1: USB disconnect, device number 17
[  518.913971][   T92] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  518.918908][   T92] bond0 (unregistering): Released all slaves
[  518.998610][   T92] tipc: Left network mode
[  519.037833][ T5941] Bluetooth: hci3: command tx timeout
[  519.250788][T17096] program syz.5.3174 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  519.254092][T17096] openvswitch: netlink: Missing key (keys=40, expected=80)
[  519.258512][T17098] program syz.5.3174 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  519.258547][T17096] openvswitch: netlink: Missing key (keys=40, expected=80)
[  519.357616][   T92] hsr_slave_0: left promiscuous mode
[  519.361032][   T92] hsr_slave_1: left promiscuous mode
[  519.390131][   T92] veth1_macvtap: left promiscuous mode
[  519.391907][   T92] veth0_macvtap: left promiscuous mode
[  519.393815][   T92] veth1_vlan: left promiscuous mode
[  519.395499][   T92] veth0_vlan: left promiscuous mode
[  519.545997][T17120] FAULT_INJECTION: forcing a failure.
[  519.545997][T17120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  519.550582][T17120] CPU: 2 UID: 0 PID: 17120 Comm: syz.8.3179 Not tainted syzkaller #0 PREEMPT(full) 
[  519.550598][T17120] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  519.550604][T17120] Call Trace:
[  519.550608][T17120]  <TASK>
[  519.550612][T17120]  dump_stack_lvl+0x16c/0x1f0
[  519.550626][T17120]  should_fail_ex+0x512/0x640
[  519.550642][T17120]  _copy_from_user+0x2e/0xd0
[  519.550660][T17120]  rose_ioctl+0x358/0x7c0
[  519.550675][T17120]  ? __pfx_rose_ioctl+0x10/0x10
[  519.550695][T17120]  sock_do_ioctl+0x118/0x280
[  519.550712][T17120]  ? __pfx_sock_do_ioctl+0x10/0x10
[  519.550732][T17120]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  519.550753][T17120]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  519.550774][T17120]  sock_ioctl+0x227/0x6b0
[  519.550790][T17120]  ? __pfx_sock_ioctl+0x10/0x10
[  519.550803][T17120]  ? hook_file_ioctl_common+0x145/0x410
[  519.550828][T17120]  ? selinux_file_ioctl+0x180/0x270
[  519.550843][T17120]  ? selinux_file_ioctl+0xb4/0x270
[  519.550860][T17120]  ? __pfx_sock_ioctl+0x10/0x10
[  519.550876][T17120]  __x64_sys_ioctl+0x18e/0x210
[  519.550898][T17120]  do_syscall_64+0xcd/0xfa0
[  519.550916][T17120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  519.550931][T17120] RIP: 0033:0x7f1e88f8f749
[  519.550943][T17120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  519.550958][T17120] RSP: 002b:00007f1e89e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  519.550973][T17120] RAX: ffffffffffffffda RBX: 00007f1e891e5fa0 RCX: 00007f1e88f8f749
[  519.550983][T17120] RDX: 0000200000000180 RSI: 00000000000089e2 RDI: 0000000000000004
[  519.550993][T17120] RBP: 00007f1e89e3d090 R08: 0000000000000000 R09: 0000000000000000
[  519.551002][T17120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  519.551012][T17120] R13: 00007f1e891e6038 R14: 00007f1e891e5fa0 R15: 00007fff46046ec8
[  519.551034][T17120]  </TASK>
[  519.651503][T17125] usb usb8: usbfs: interface 0 claimed by hub while 'syz.5.3178' resets device
[  519.888108][T17146] random: crng reseeded on system resumption
[  519.893901][T17146] binder: 17145:17146 ioctl c0306201 200000000640 returned -22
[  520.168527][T17159] __nla_validate_parse: 3 callbacks suppressed
[  520.168543][T17159] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3187'.
[  520.250506][T17113] Falling back ldisc for ptm1.
[  521.063348][T17159] bridge_slave_1: left allmulticast mode
[  521.065589][T17159] bridge_slave_1: left promiscuous mode
[  521.067794][T17159] bridge0: port 2(bridge_slave_1) entered disabled state
[  521.072001][T17159] bridge_slave_0: left allmulticast mode
[  521.074002][T17159] bridge_slave_0: left promiscuous mode
[  521.075857][T17159] bridge0: port 1(bridge_slave_0) entered disabled state
[  521.117523][ T5941] Bluetooth: hci3: command tx timeout
[  521.197398][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  521.243208][T17194] FAULT_INJECTION: forcing a failure.
[  521.243208][T17194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  521.247783][T17194] CPU: 0 UID: 0 PID: 17194 Comm: syz.2.3191 Not tainted syzkaller #0 PREEMPT(full) 
[  521.247799][T17194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  521.247806][T17194] Call Trace:
[  521.247809][T17194]  <TASK>
[  521.247814][T17194]  dump_stack_lvl+0x16c/0x1f0
[  521.247828][T17194]  should_fail_ex+0x512/0x640
[  521.247842][T17194]  _copy_from_user+0x2e/0xd0
[  521.247856][T17194]  binder_thread_write+0xdc1/0x4e70
[  521.247879][T17194]  ? __pfx_binder_thread_write+0x10/0x10
[  521.247899][T17194]  ? binder_debug+0xde/0x1a0
[  521.247912][T17194]  ? __pfx_binder_debug+0x10/0x10
[  521.247926][T17194]  ? find_held_lock+0x2b/0x80
[  521.247939][T17194]  ? __might_fault+0xe3/0x190
[  521.247954][T17194]  ? __might_fault+0x13b/0x190
[  521.247974][T17194]  binder_ioctl+0x26db/0x73b0
[  521.247995][T17194]  ? tomoyo_path_number_perm+0x18d/0x580
[  521.248010][T17194]  ? __pfx_binder_ioctl+0x10/0x10
[  521.248027][T17194]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  521.248042][T17194]  ? do_vfs_ioctl+0x128/0x14f0
[  521.248057][T17194]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  521.248072][T17194]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  521.248089][T17194]  ? hook_file_ioctl_common+0x145/0x410
[  521.248106][T17194]  ? selinux_file_ioctl+0x180/0x270
[  521.248117][T17194]  ? selinux_file_ioctl+0xb4/0x270
[  521.248129][T17194]  ? __pfx_binder_ioctl+0x10/0x10
[  521.248145][T17194]  __x64_sys_ioctl+0x18e/0x210
[  521.248161][T17194]  do_syscall_64+0xcd/0xfa0
[  521.248172][T17194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.248182][T17194] RIP: 0033:0x7f4a42f8f749
[  521.248191][T17194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.248202][T17194] RSP: 002b:00007f4a411ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  521.248212][T17194] RAX: ffffffffffffffda RBX: 00007f4a431e5fa0 RCX: 00007f4a42f8f749
[  521.248219][T17194] RDX: 0000200000000540 RSI: 00000000c0306201 RDI: 0000000000000004
[  521.248225][T17194] RBP: 00007f4a411ee090 R08: 0000000000000000 R09: 0000000000000000
[  521.248243][T17194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  521.248250][T17194] R13: 00007f4a431e6038 R14: 00007f4a431e5fa0 R15: 00007ffd449ed088
[  521.248264][T17194]  </TASK>
[  521.248342][T17194] binder: 17190:17194 ioctl c0306201 200000000540 returned -14
[  521.252671][T16038] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  521.383989][T16038] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  521.394308][T16038] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  521.404016][T16038] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  521.405897][T17220] deleting an unspecified loop device is not supported.
[  521.491387][T16038] 8021q: adding VLAN 0 to HW filter on device bond0
[  521.508291][T16038] 8021q: adding VLAN 0 to HW filter on device team0
[  521.516771][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.519942][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  521.527917][   T97] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.530291][   T97] bridge0: port 2(bridge_slave_1) entered forwarding state
[  521.575496][T17239] VFS: Mount too revealing
[  521.610148][T17244] netlink: 'syz.8.3198': attribute type 10 has an invalid length.
[  521.625254][T17244] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  521.628865][   T40] audit: type=1400 audit(2000000035.823:851): avc:  denied  { write } for  pid=17242 comm="syz.8.3198" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  521.675359][T16038] 8021q: adding VLAN 0 to HW filter on device batadv0
[  521.802082][T17260] FAULT_INJECTION: forcing a failure.
[  521.802082][T17260] name failslab, interval 1, probability 0, space 0, times 0
[  521.813783][T17260] CPU: 2 UID: 0 PID: 17260 Comm: syz.2.3200 Not tainted syzkaller #0 PREEMPT(full) 
[  521.813808][T17260] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  521.813820][T17260] Call Trace:
[  521.813834][T17260]  <TASK>
[  521.813841][T17260]  dump_stack_lvl+0x16c/0x1f0
[  521.813875][T17260]  should_fail_ex+0x512/0x640
[  521.813899][T17260]  ? kmem_cache_alloc_lru_noprof+0x66/0x6e0
[  521.813929][T17260]  should_failslab+0xc2/0x120
[  521.813950][T17260]  kmem_cache_alloc_lru_noprof+0x79/0x6e0
[  521.813978][T17260]  ? __d_alloc+0x32/0xae0
[  521.814002][T17260]  ? __d_alloc+0x32/0xae0
[  521.814020][T17260]  __d_alloc+0x32/0xae0
[  521.814038][T17260]  ? lockdep_init_map_type+0x5c/0x280
[  521.814058][T17260]  d_alloc_pseudo+0x1c/0xc0
[  521.814083][T17260]  alloc_file_pseudo+0xcf/0x230
[  521.814108][T17260]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  521.814138][T17260]  sock_alloc_file+0x50/0x210
[  521.814165][T17260]  do_accept+0x240/0x530
[  521.814184][T17260]  ? do_raw_spin_lock+0x12c/0x2b0
[  521.814204][T17260]  ? __pfx_do_accept+0x10/0x10
[  521.814239][T17260]  __sys_accept4+0x100/0x1c0
[  521.814259][T17260]  ? __pfx___sys_accept4+0x10/0x10
[  521.814280][T17260]  ? __pfx_ksys_write+0x10/0x10
[  521.814301][T17260]  __x64_sys_accept4+0x96/0x100
[  521.814320][T17260]  ? lockdep_hardirqs_on+0x7c/0x110
[  521.814337][T17260]  do_syscall_64+0xcd/0xfa0
[  521.814356][T17260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  521.814374][T17260] RIP: 0033:0x7f4a42f8f749
[  521.814388][T17260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  521.814405][T17260] RSP: 002b:00007f4a411ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  521.814423][T17260] RAX: ffffffffffffffda RBX: 00007f4a431e5fa0 RCX: 00007f4a42f8f749
[  521.814434][T17260] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  521.814444][T17260] RBP: 00007f4a411ee090 R08: 0000000000000000 R09: 0000000000000000
[  521.814454][T17260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  521.814464][T17260] R13: 00007f4a431e6038 R14: 00007f4a431e5fa0 R15: 00007ffd449ed088
[  521.814489][T17260]  </TASK>
[  521.873151][T16038] veth0_vlan: entered promiscuous mode
[  521.913761][T16038] veth1_vlan: entered promiscuous mode
[  521.939112][T16038] veth0_macvtap: entered promiscuous mode
[  521.944586][T16038] veth1_macvtap: entered promiscuous mode
[  521.970429][T16038] batman_adv: batadv0: Interface activated: batadv_slave_0
[  521.980864][T16038] batman_adv: batadv0: Interface activated: batadv_slave_1
[  521.990287][   T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  521.994554][   T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  522.013696][   T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  522.016357][   T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  522.036825][T17270] IPv6: sit1: Disabled Multicast RS
[  522.076866][   T97] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  522.081795][   T97] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  522.106273][   T97] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  522.111363][   T97] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  522.158547][T17288] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  522.205883][T17301] binder: 17300:17301 unknown command 0
[  522.208145][T17301] binder: 17300:17301 ioctl c0306201 200000000080 returned -22
[  522.213063][T17301] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  522.222808][T17301] sp0: Synchronizing with TNC
[  522.392968][T17311] 9pnet_virtio: no channels available for device syz
[  522.396112][T17311] overlayfs: overlapping lowerdir path
[  522.400740][   T40] audit: type=1400 audit(2000000036.593:852): avc:  denied  { bind } for  pid=17310 comm="syz.2.3208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  522.979557][T17326] FAULT_INJECTION: forcing a failure.
[  522.979557][T17326] name failslab, interval 1, probability 0, space 0, times 0
[  522.984167][T17326] CPU: 1 UID: 0 PID: 17326 Comm: syz.2.3213 Not tainted syzkaller #0 PREEMPT(full) 
[  522.984189][T17326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  522.984201][T17326] Call Trace:
[  522.984207][T17326]  <TASK>
[  522.984214][T17326]  dump_stack_lvl+0x16c/0x1f0
[  522.984235][T17326]  should_fail_ex+0x512/0x640
[  522.984254][T17326]  ? fs_reclaim_acquire+0xae/0x150
[  522.984275][T17326]  should_failslab+0xc2/0x120
[  522.984294][T17326]  __kmalloc_noprof+0xdd/0x880
[  522.984317][T17326]  ? tomoyo_encode2+0x100/0x3e0
[  522.984339][T17326]  ? tomoyo_encode2+0x100/0x3e0
[  522.984358][T17326]  tomoyo_encode2+0x100/0x3e0
[  522.984381][T17326]  tomoyo_encode+0x29/0x50
[  522.984401][T17326]  tomoyo_realpath_from_path+0x18f/0x6e0
[  522.984430][T17326]  tomoyo_path_number_perm+0x245/0x580
[  522.984446][T17326]  ? tomoyo_path_number_perm+0x237/0x580
[  522.984464][T17326]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  522.984503][T17326]  ? find_held_lock+0x2b/0x80
[  522.984535][T17326]  ? find_held_lock+0x2b/0x80
[  522.984547][T17326]  ? hook_file_ioctl_common+0x145/0x410
[  522.984567][T17326]  ? __fget_files+0x20e/0x3c0
[  522.984580][T17326]  security_file_ioctl+0x9b/0x240
[  522.984593][T17326]  __x64_sys_ioctl+0xb7/0x210
[  522.984609][T17326]  do_syscall_64+0xcd/0xfa0
[  522.984621][T17326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  522.984631][T17326] RIP: 0033:0x7f4a42f8f749
[  522.984642][T17326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  522.984653][T17326] RSP: 002b:00007f4a411ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  522.984663][T17326] RAX: ffffffffffffffda RBX: 00007f4a431e5fa0 RCX: 00007f4a42f8f749
[  522.984670][T17326] RDX: 00002000000000c0 RSI: 00000000c0205649 RDI: 0000000000000003
[  522.984676][T17326] RBP: 00007f4a411ee090 R08: 0000000000000000 R09: 0000000000000000
[  522.984683][T17326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  522.984689][T17326] R13: 00007f4a431e6038 R14: 00007f4a431e5fa0 R15: 00007ffd449ed088
[  522.984703][T17326]  </TASK>
[  522.984714][T17326] ERROR: Out of memory at tomoyo_realpath_from_path.
[  523.197477][ T5941] Bluetooth: hci3: command tx timeout
[  523.358714][T17353] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3222'.
[  523.589605][   T40] audit: type=1400 audit(2000000037.783:853): avc:  denied  { map } for  pid=17363 comm="syz.6.3226" path="/dev/fb1" dev="devtmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  523.696051][T17368] binder: 17367:17368 unknown command 0
[  523.698498][T17368] binder: 17367:17368 ioctl c0306201 200000000080 returned -22
[  523.703789][T17368] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  523.714261][T17368] sp0: Synchronizing with TNC
[  523.813741][T17379] FAULT_INJECTION: forcing a failure.
[  523.813741][T17379] name failslab, interval 1, probability 0, space 0, times 0
[  523.818416][T17379] CPU: 0 UID: 0 PID: 17379 Comm: syz.8.3230 Not tainted syzkaller #0 PREEMPT(full) 
[  523.818438][T17379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  523.818448][T17379] Call Trace:
[  523.818454][T17379]  <TASK>
[  523.818465][T17379]  dump_stack_lvl+0x16c/0x1f0
[  523.818486][T17379]  should_fail_ex+0x512/0x640
[  523.818505][T17379]  ? fs_reclaim_acquire+0xae/0x150
[  523.818527][T17379]  should_failslab+0xc2/0x120
[  523.818546][T17379]  __kmalloc_noprof+0xdd/0x880
[  523.818569][T17379]  ? tomoyo_encode2+0x100/0x3e0
[  523.818592][T17379]  ? tomoyo_encode2+0x100/0x3e0
[  523.818609][T17379]  tomoyo_encode2+0x100/0x3e0
[  523.818631][T17379]  tomoyo_encode+0x29/0x50
[  523.818649][T17379]  tomoyo_realpath_from_path+0x18f/0x6e0
[  523.818671][T17379]  ? tomoyo_profile+0x47/0x60
[  523.818694][T17379]  tomoyo_path_number_perm+0x245/0x580
[  523.818710][T17379]  ? tomoyo_path_number_perm+0x237/0x580
[  523.818728][T17379]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  523.818745][T17379]  ? find_held_lock+0x2b/0x80
[  523.818786][T17379]  ? find_held_lock+0x2b/0x80
[  523.818805][T17379]  ? hook_file_ioctl_common+0x145/0x410
[  523.818832][T17379]  ? __fget_files+0x20e/0x3c0
[  523.818853][T17379]  security_file_ioctl+0x9b/0x240
[  523.818873][T17379]  __x64_sys_ioctl+0xb7/0x210
[  523.818897][T17379]  do_syscall_64+0xcd/0xfa0
[  523.818915][T17379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  523.818930][T17379] RIP: 0033:0x7f1e88f8f749
[  523.818944][T17379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  523.818959][T17379] RSP: 002b:00007f1e89e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  523.818976][T17379] RAX: ffffffffffffffda RBX: 00007f1e891e5fa0 RCX: 00007f1e88f8f749
[  523.818986][T17379] RDX: 0000000000000000 RSI: 00000000000089e2 RDI: 0000000000000004
[  523.818996][T17379] RBP: 00007f1e89e3d090 R08: 0000000000000000 R09: 0000000000000000
[  523.819005][T17379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  523.819015][T17379] R13: 00007f1e891e6038 R14: 00007f1e891e5fa0 R15: 00007fff46046ec8
[  523.819039][T17379]  </TASK>
[  523.819053][T17379] ERROR: Out of memory at tomoyo_realpath_from_path.
[  524.311013][T17419] netlink: 112 bytes leftover after parsing attributes in process `syz.2.3237'.
[  524.356262][T17424] random: crng reseeded on system resumption
[  524.364862][T17424] binder: 17423:17424 ioctl c0306201 200000000640 returned -22
[  524.632852][T17441] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3242'.
[  524.680138][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.683111][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.686005][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.689094][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.691924][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.694754][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.698135][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.701130][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.703905][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.706675][T17444] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  524.736667][T17451] FAULT_INJECTION: forcing a failure.
[  524.736667][T17451] name failslab, interval 1, probability 0, space 0, times 0
[  524.741651][T17451] CPU: 0 UID: 0 PID: 17451 Comm: syz.8.3245 Not tainted syzkaller #0 PREEMPT(full) 
[  524.741674][T17451] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  524.741684][T17451] Call Trace:
[  524.741690][T17451]  <TASK>
[  524.741697][T17451]  dump_stack_lvl+0x16c/0x1f0
[  524.741718][T17451]  should_fail_ex+0x512/0x640
[  524.741737][T17451]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  524.741766][T17451]  should_failslab+0xc2/0x120
[  524.741785][T17451]  kmem_cache_alloc_node_noprof+0x78/0x770
[  524.741813][T17451]  ? __alloc_skb+0x2b2/0x380
[  524.741837][T17451]  ? __alloc_skb+0x2b2/0x380
[  524.741855][T17451]  __alloc_skb+0x2b2/0x380
[  524.741874][T17451]  ? __pfx___alloc_skb+0x10/0x10
[  524.741893][T17451]  ? find_held_lock+0x2b/0x80
[  524.741921][T17451]  alloc_skb_with_frags+0xe0/0x860
[  524.741949][T17451]  sock_alloc_send_pskb+0x7f9/0x980
[  524.741968][T17451]  ? avc_has_perm+0x144/0x1f0
[  524.741991][T17451]  ? __pfx_avc_has_perm+0x10/0x10
[  524.742015][T17451]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  524.742038][T17451]  ? sock_has_perm+0x259/0x2f0
[  524.742062][T17451]  ? __pfx_sock_has_perm+0x10/0x10
[  524.742088][T17451]  hci_sock_sendmsg+0x1c7/0x25f0
[  524.742118][T17451]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  524.742140][T17451]  sock_write_iter+0x566/0x610
[  524.742151][T17451]  ? __pfx_sock_write_iter+0x10/0x10
[  524.742174][T17451]  ? bpf_lsm_file_permission+0x9/0x10
[  524.742190][T17451]  ? security_file_permission+0x71/0x210
[  524.742210][T17451]  ? rw_verify_area+0xcf/0x6c0
[  524.742235][T17451]  vfs_write+0x7d3/0x11d0
[  524.742251][T17451]  ? __pfx_sock_write_iter+0x10/0x10
[  524.742269][T17451]  ? __pfx_vfs_write+0x10/0x10
[  524.742282][T17451]  ? find_held_lock+0x2b/0x80
[  524.742315][T17451]  ksys_write+0x1f8/0x250
[  524.742330][T17451]  ? __pfx_ksys_write+0x10/0x10
[  524.742352][T17451]  do_syscall_64+0xcd/0xfa0
[  524.742369][T17451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  524.742385][T17451] RIP: 0033:0x7f1e88f8f749
[  524.742398][T17451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  524.742414][T17451] RSP: 002b:00007f1e89e3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  524.742430][T17451] RAX: ffffffffffffffda RBX: 00007f1e891e5fa0 RCX: 00007f1e88f8f749
[  524.742440][T17451] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 0000000000000004
[  524.742450][T17451] RBP: 00007f1e89e3d090 R08: 0000000000000000 R09: 0000000000000000
[  524.742460][T17451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  524.742469][T17451] R13: 00007f1e891e6038 R14: 00007f1e891e5fa0 R15: 00007fff46046ec8
[  524.742491][T17451]  </TASK>
[  524.881337][T17455] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  524.887141][   T97] Bluetooth: hci4: Frame reassembly failed (-84)
[  524.935600][T17455] 
@0Ù: renamed from bond_slave_1 (while UP)
[  524.949492][T17455] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  525.169873][T17480] binder: 17478:17480 unknown command 0
[  525.171792][T17480] binder: 17478:17480 ioctl c0306201 200000000080 returned -22
[  525.175966][T17480] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  525.183220][T17480] sp0: Synchronizing with TNC
[  525.459901][T17490] block nbd6: NBD_DISCONNECT
[  525.464353][T17491] block nbd6: NBD_DISCONNECT
[  526.161773][T17530] mkiss: ax0: crc mode is auto.
[  526.203590][T17531] syzkaller1: entered promiscuous mode
[  526.205582][T17531] syzkaller1: entered allmulticast mode
[  526.822429][T17575] binder: 17574:17575 unknown command 0
[  526.824302][T17575] binder: 17574:17575 ioctl c0306201 200000000080 returned -22
[  526.827853][T17575] binder: 17574:17575 ioctl c0189371 200000000540 returned -22
[  526.832913][T17575] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  526.844509][T17575] sp0: Synchronizing with TNC
[  526.958000][ T5940] Bluetooth: hci4: command 0x1003 tx timeout
[  526.962373][ T5941] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  527.030330][T17584] tmpfs: Bad value for 'mpol'
[  527.038806][   T40] audit: type=1400 audit(2000000041.233:854): avc:  denied  { read } for  pid=17583 comm="syz.8.3273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  527.043396][T17584] tmpfs: Bad value for 'mpol'
[  527.520586][   T40] audit: type=1400 audit(2000000041.713:855): avc:  denied  { name_connect } for  pid=17615 comm="syz.8.3280" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  527.652220][T17622] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3282'.
[  527.790390][   T40] audit: type=1400 audit(2000000041.983:856): avc:  denied  { create } for  pid=17628 comm="syz.6.3284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  527.793219][T17629] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3284'.
[  527.866160][   T40] audit: type=1400 audit(2000000042.053:857): avc:  denied  { name_bind } for  pid=17661 comm="syz.2.3285" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  527.920280][   T40] audit: type=1400 audit(2000000042.113:858): avc:  denied  { map } for  pid=17665 comm="syz.6.3287" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  527.921336][T17666] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3287'.
[  528.412588][T17743] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3292'.
[  528.505881][T17754] random: crng reseeded on system resumption
[  528.515865][T17754] binder: 17753:17754 ioctl c0306201 200000000640 returned -22
[  528.626624][   T40] audit: type=1400 audit(2000000042.813:859): avc:  denied  { relabelfrom } for  pid=17764 comm="syz.2.3301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  528.634766][   T40] audit: type=1400 audit(2000000042.813:860): avc:  denied  { relabelto } for  pid=17764 comm="syz.2.3301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  528.644262][   T40] audit: type=1400 audit(2000000042.833:861): avc:  denied  { attach_queue } for  pid=17764 comm="syz.2.3301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  528.780301][T17784] FAULT_INJECTION: forcing a failure.
[  528.780301][T17784] name failslab, interval 1, probability 0, space 0, times 0
[  528.784534][T17784] CPU: 3 UID: 0 PID: 17784 Comm: syz.2.3302 Not tainted syzkaller #0 PREEMPT(full) 
[  528.784555][T17784] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  528.784566][T17784] Call Trace:
[  528.784572][T17784]  <TASK>
[  528.784580][T17784]  dump_stack_lvl+0x16c/0x1f0
[  528.784599][T17784]  should_fail_ex+0x512/0x640
[  528.784620][T17784]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  528.784646][T17784]  should_failslab+0xc2/0x120
[  528.784665][T17784]  kmem_cache_alloc_node_noprof+0x78/0x770
[  528.784688][T17784]  ? __alloc_skb+0x2b2/0x380
[  528.784712][T17784]  ? __alloc_skb+0x2b2/0x380
[  528.784730][T17784]  __alloc_skb+0x2b2/0x380
[  528.784748][T17784]  ? __pfx___alloc_skb+0x10/0x10
[  528.784766][T17784]  ? find_held_lock+0x2b/0x80
[  528.784794][T17784]  alloc_skb_with_frags+0xe0/0x860
[  528.784823][T17784]  sock_alloc_send_pskb+0x7f9/0x980
[  528.784843][T17784]  ? avc_has_perm+0x144/0x1f0
[  528.784867][T17784]  ? __pfx_avc_has_perm+0x10/0x10
[  528.784892][T17784]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  528.784915][T17784]  ? sock_has_perm+0x259/0x2f0
[  528.784939][T17784]  ? __pfx_sock_has_perm+0x10/0x10
[  528.784965][T17784]  hci_sock_sendmsg+0x1c7/0x25f0
[  528.784994][T17784]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  528.785024][T17784]  sock_write_iter+0x566/0x610
[  528.785041][T17784]  ? __pfx_sock_write_iter+0x10/0x10
[  528.785064][T17784]  ? bpf_lsm_file_permission+0x9/0x10
[  528.785080][T17784]  ? security_file_permission+0x71/0x210
[  528.785101][T17784]  ? rw_verify_area+0xcf/0x6c0
[  528.785126][T17784]  vfs_write+0x7d3/0x11d0
[  528.785142][T17784]  ? __pfx_sock_write_iter+0x10/0x10
[  528.785160][T17784]  ? __pfx_vfs_write+0x10/0x10
[  528.785174][T17784]  ? find_held_lock+0x2b/0x80
[  528.785207][T17784]  ksys_write+0x1f8/0x250
[  528.785222][T17784]  ? __pfx_ksys_write+0x10/0x10
[  528.785244][T17784]  do_syscall_64+0xcd/0xfa0
[  528.785262][T17784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.785279][T17784] RIP: 0033:0x7f4a42f8f749
[  528.785293][T17784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  528.785309][T17784] RSP: 002b:00007f4a411ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  528.785326][T17784] RAX: ffffffffffffffda RBX: 00007f4a431e5fa0 RCX: 00007f4a42f8f749
[  528.785336][T17784] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 0000000000000004
[  528.785346][T17784] RBP: 00007f4a411ee090 R08: 0000000000000000 R09: 0000000000000000
[  528.785356][T17784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  528.785365][T17784] R13: 00007f4a431e6038 R14: 00007f4a431e5fa0 R15: 00007ffd449ed088
[  528.785387][T17784]  </TASK>
[  528.871835][    C3] vkms_vblank_simulate: vblank timer overrun
[  528.936052][T17790] FAULT_INJECTION: forcing a failure.
[  528.936052][T17790] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  528.936063][T17788] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3304'.
[  528.940933][T17790] CPU: 0 UID: 0 PID: 17790 Comm: syz.2.3305 Not tainted syzkaller #0 PREEMPT(full) 
[  528.940949][T17790] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  528.940956][T17790] Call Trace:
[  528.940961][T17790]  <TASK>
[  528.940965][T17790]  dump_stack_lvl+0x16c/0x1f0
[  528.940979][T17790]  should_fail_ex+0x512/0x640
[  528.940995][T17790]  _copy_to_user+0x32/0xd0
[  528.941009][T17790]  binder_ioctl+0x2694/0x73b0
[  528.941033][T17790]  ? tomoyo_path_number_perm+0x18d/0x580
[  528.941048][T17790]  ? __pfx_binder_ioctl+0x10/0x10
[  528.941065][T17790]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  528.941082][T17790]  ? do_vfs_ioctl+0x128/0x14f0
[  528.941097][T17790]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  528.941112][T17790]  ? __pfx_autoremove_wake_function+0x10/0x10
[  528.941132][T17790]  ? hook_file_ioctl_common+0x145/0x410
[  528.941149][T17790]  ? selinux_file_ioctl+0x180/0x270
[  528.941161][T17790]  ? selinux_file_ioctl+0xb4/0x270
[  528.941173][T17790]  ? __pfx_binder_ioctl+0x10/0x10
[  528.941190][T17790]  __x64_sys_ioctl+0x18e/0x210
[  528.941205][T17790]  do_syscall_64+0xcd/0xfa0
[  528.941217][T17790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.941228][T17790] RIP: 0033:0x7f4a42f8f749
[  528.941236][T17790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  528.941247][T17790] RSP: 002b:00007f4a411ee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  528.941257][T17790] RAX: ffffffffffffffda RBX: 00007f4a431e5fa0 RCX: 00007f4a42f8f749
[  528.941264][T17790] RDX: 0000200000000540 RSI: 00000000c0306201 RDI: 0000000000000004
[  528.941270][T17790] RBP: 00007f4a411ee090 R08: 0000000000000000 R09: 0000000000000000
[  528.941277][T17790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  528.941283][T17790] R13: 00007f4a431e6038 R14: 00007f4a431e5fa0 R15: 00007ffd449ed088
[  528.941296][T17790]  </TASK>
[  528.941301][T17790] binder: 17789:17790 ioctl c0306201 200000000540 returned -14
[  528.944409][T17788] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3304'.
[  528.990900][T17793] netlink: 80 bytes leftover after parsing attributes in process `syz.6.3304'.
[  529.130687][   T40] audit: type=1400 audit(2000000043.323:862): avc:  denied  { ioctl } for  pid=17799 comm="syz.6.3308" path="mnt:[4026532879]" dev="nsfs" ino=4026532879 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  529.340804][   T40] audit: type=1400 audit(2000000043.533:863): avc:  denied  { remount } for  pid=17810 comm="syz.8.3313" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  529.855278][T17845] net_ratelimit: 23 callbacks suppressed
[  529.855290][T17845] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  530.141449][T17857] binder: 17855:17857 unknown command 0
[  530.143705][T17857] binder: 17855:17857 ioctl c0306201 200000000080 returned -22
[  530.147343][T17857] binder: 17855:17857 ioctl c0189371 200000000540 returned -22
[  530.151407][T17857] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  530.158954][T17857] sp0: Synchronizing with TNC
[  530.233623][T17868] netlink: 32 bytes leftover after parsing attributes in process `syz.8.3327'.
[  530.433810][T17878] No control pipe specified
[  531.142939][T17907] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3341'.
[  531.205724][T17914] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3344'.
[  531.241841][T17918] netlink: 'syz.2.3346': attribute type 1 has an invalid length.
[  531.246180][T17918] kAFS: Can only specify source 'none' with -o dyn
[  531.255242][T17918] netlink: 'syz.2.3346': attribute type 10 has an invalid length.
[  531.265364][T17918] 8021q: adding VLAN 0 to HW filter on device batadv0
[  531.270942][T17918] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  531.487621][T17934] binder: 17933:17934 unknown command 0
[  531.489497][T17934] binder: 17933:17934 ioctl c0306201 200000000080 returned -22
[  531.494387][T17934] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  531.504170][T17934] sp0: Synchronizing with TNC
[  532.119041][T17943] ufs: You didn't specify the type of your ufs filesystem
[  532.119041][T17943] 
[  532.119041][T17943] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  532.119041][T17943] 
[  532.119041][T17943] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  532.133566][T17943] ufs: ufstype=old is supported read-only
[  532.136331][T17943] ufs: ufs_fill_super(): bad magic number
[  532.545487][T17966] netlink: 'syz.2.3357': attribute type 1 has an invalid length.
[  532.604467][T17975] binder: 17974:17975 ioctl c0306201 200000000540 returned -14
[  532.608485][T17975] FAULT_INJECTION: forcing a failure.
[  532.608485][T17975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  532.614271][T17975] CPU: 1 UID: 0 PID: 17975 Comm: syz.6.3356 Not tainted syzkaller #0 PREEMPT(full) 
[  532.614288][T17975] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  532.614296][T17975] Call Trace:
[  532.614313][T17975]  <TASK>
[  532.614320][T17975]  dump_stack_lvl+0x16c/0x1f0
[  532.614355][T17975]  should_fail_ex+0x512/0x640
[  532.614384][T17975]  _copy_to_user+0x32/0xd0
[  532.614409][T17975]  simple_read_from_buffer+0xcb/0x170
[  532.614459][T17975]  proc_fail_nth_read+0x197/0x240
[  532.614474][T17975]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  532.614492][T17975]  ? rw_verify_area+0xcf/0x6c0
[  532.614507][T17975]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  532.614523][T17975]  vfs_read+0x1e4/0xcf0
[  532.614534][T17975]  ? __pfx___mutex_lock+0x10/0x10
[  532.614546][T17975]  ? __pfx_vfs_read+0x10/0x10
[  532.614560][T17975]  ? __fget_files+0x20e/0x3c0
[  532.614574][T17975]  ksys_read+0x12a/0x250
[  532.614584][T17975]  ? __pfx_ksys_read+0x10/0x10
[  532.614598][T17975]  do_syscall_64+0xcd/0xfa0
[  532.614609][T17975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  532.614621][T17975] RIP: 0033:0x7f4c81d8e15c
[  532.614631][T17975] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  532.614641][T17975] RSP: 002b:00007f4c82b7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  532.614652][T17975] RAX: ffffffffffffffda RBX: 00007f4c81fe5fa0 RCX: 00007f4c81d8e15c
[  532.614659][T17975] RDX: 000000000000000f RSI: 00007f4c82b7f0a0 RDI: 0000000000000005
[  532.614665][T17975] RBP: 00007f4c82b7f090 R08: 0000000000000000 R09: 0000000000000000
[  532.614671][T17975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  532.614677][T17975] R13: 00007f4c81fe6038 R14: 00007f4c81fe5fa0 R15: 00007fffef1173d8
[  532.614691][T17975]  </TASK>
[  532.729964][T17981] binder: 17980:17981 ioctl c0306201 200000000540 returned -14
[  533.183630][T18062] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18062 comm=syz.6.3375
[  533.292504][T18073] vcan1: entered allmulticast mode
[  533.298366][T18073] vcan2: entered allmulticast mode
[  533.480451][T18093] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3384'.
[  533.518088][T18093] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=18093 comm=syz.2.3384
[  533.702643][T18174] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  533.705773][T18174] batman_adv: batadv0: Removing interface: batadv_slave_0
[  533.710748][T18174] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  533.713953][T18174] batman_adv: batadv0: Removing interface: batadv_slave_1
[  533.755691][T18174] bond0: (slave batadv0): Releasing backup interface
[  533.759319][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  533.759333][   T40] audit: type=1400 audit(2000000047.953:866): avc:  denied  { ioctl } for  pid=18180 comm="syz.6.3393" path="socket:[79028]" dev="sockfs" ino=79028 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  533.823757][T18187] bridge0: entered promiscuous mode
[  533.942341][T18201] netlink: 64 bytes leftover after parsing attributes in process `syz.6.3396'.
[  534.009497][T18210] binder: 18209:18210 unknown command 0
[  534.011939][T18210] binder: 18209:18210 ioctl c0306201 200000000080 returned -22
[  534.017016][T18210] x_tables: ip6_tables: ipcomp.0 match: invalid size 16 (kernel) != (user) 64
[  534.025259][T18210] sp0: Synchronizing with TNC
[  534.163638][T18224] FAULT_INJECTION: forcing a failure.
[  534.163638][T18224] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  534.168079][T18224] CPU: 0 UID: 0 PID: 18224 Comm: syz.6.3402 Not tainted syzkaller #0 PREEMPT(full) 
[  534.168094][T18224] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  534.168100][T18224] Call Trace:
[  534.168104][T18224]  <TASK>
[  534.168109][T18224]  dump_stack_lvl+0x16c/0x1f0
[  534.168124][T18224]  should_fail_ex+0x512/0x640
[  534.168139][T18224]  _copy_from_user+0x2e/0xd0
[  534.168153][T18224]  video_usercopy+0xb5e/0x1720
[  534.168165][T18224]  ? __pfx___video_do_ioctl+0x10/0x10
[  534.168181][T18224]  ? selinux_kernel_read_file+0x61/0x130
[  534.168194][T18224]  ? __pfx_video_usercopy+0x10/0x10
[  534.168212][T18224]  v4l2_ioctl+0x1bd/0x250
[  534.168227][T18224]  ? __pfx_v4l2_ioctl+0x10/0x10
[  534.168243][T18224]  __x64_sys_ioctl+0x18e/0x210
[  534.168259][T18224]  do_syscall_64+0xcd/0xfa0
[  534.168270][T18224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.168282][T18224] RIP: 0033:0x7f4c81d8f749
[  534.168290][T18224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  534.168301][T18224] RSP: 002b:00007f4c82b7f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  534.168311][T18224] RAX: ffffffffffffffda RBX: 00007f4c81fe5fa0 RCX: 00007f4c81d8f749
[  534.168318][T18224] RDX: 00002000000000c0 RSI: 00000000c0205649 RDI: 0000000000000003
[  534.168324][T18224] RBP: 00007f4c82b7f090 R08: 0000000000000000 R09: 0000000000000000
[  534.168331][T18224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  534.168336][T18224] R13: 00007f4c81fe6038 R14: 00007f4c81fe5fa0 R15: 00007fffef1173d8
[  534.168350][T18224]  </TASK>
[  534.252792][T18226] tmpfs: Cannot change global quota limit on remount
[  534.547312][   T53] usb 11-1: new high-speed USB device number 22 using dummy_hcd
[  534.697361][   T53] usb 11-1: Using ep0 maxpacket: 32
[  534.700680][   T53] usb 11-1: config 0 has an invalid interface number: 67 but max is 0
[  534.704007][   T53] usb 11-1: config 0 has no interface number 0
[  534.709258][   T53] usb 11-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  534.713198][   T53] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  534.716415][   T53] usb 11-1: Product: syz
[  534.718217][   T53] usb 11-1: Manufacturer: syz
[  534.720109][   T53] usb 11-1: SerialNumber: syz
[  534.724319][   T53] usb 11-1: config 0 descriptor??
[  534.728868][   T53] smsc95xx v2.0.0
[  534.730431][   T53] smsc95xx 11-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  534.734657][   T53] smsc95xx 11-1:0.67: probe with driver smsc95xx failed with error -22
[  535.131296][ T5940] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  535.133148][ T5984] usb 11-1: USB disconnect, device number 22
[  535.136936][T18252] QAT: failed to copy from user cfg_data.
[  535.139764][ T5940] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  535.140550][ T5940] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  535.147752][ T5940] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  535.155117][ T5940] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  535.313448][T18245] chnl_net:caif_netlink_parms(): no params data found
[  535.443021][T18245] bridge0: port 1(bridge_slave_0) entered blocking state
[  535.445708][T18245] bridge0: port 1(bridge_slave_0) entered disabled state
[  535.449727][T18245] bridge_slave_0: entered allmulticast mode
[  535.453607][T18245] bridge_slave_0: entered promiscuous mode
[  535.456823][T18245] bridge0: port 2(bridge_slave_1) entered blocking state
[  535.460969][T18245] bridge0: port 2(bridge_slave_1) entered disabled state
[  535.464510][T18245] bridge_slave_1: entered allmulticast mode
[  535.470661][T18245] bridge_slave_1: entered promiscuous mode
[  535.543066][T18245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  535.552658][T18245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  535.624685][T18245] team0: Port device team_slave_0 added
[  535.630464][T18245] team0: Port device team_slave_1 added
[  535.691006][T18245] batman_adv: batadv0: Adding interface: batadv_slave_0
[  535.694010][T18245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  535.703333][T18245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  535.715340][T18933] macsec1: entered promiscuous mode
[  535.720757][T18933] macsec1: entered allmulticast mode
[  535.723793][T18245] batman_adv: batadv0: Adding interface: batadv_slave_1
[  535.726762][T18245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  535.737879][T18245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  535.793228][T19003] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3421'.
[  535.815474][T18245] hsr_slave_0: entered promiscuous mode
[  535.818483][T18245] hsr_slave_1: entered promiscuous mode
[  535.821283][T18245] debugfs: 'hsr0' already exists in 'hsr'
[  535.823398][T18245] Cannot create hsr debugfs directory
[  535.905973][T19129] netlink: 'syz.2.3422': attribute type 3 has an invalid length.
[  535.911981][T19129] netlink: 'syz.2.3422': attribute type 1 has an invalid length.
[  535.914679][T19129] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3422'.
[  535.918753][ T5946] Bluetooth: hci1: hardware error 0x00
[  535.924024][ T5998] ------------[ cut here ]------------
[  535.926336][ T5998] workqueue: cannot queue hci_conn_timeout on wq hci1
[  535.929182][ T5998] WARNING: CPU: 1 PID: 5998 at kernel/workqueue.c:2257 __queue_work+0xd03/0x1160
[  535.932858][ T5998] Modules linked in:
[  535.934858][ T5998] CPU: 1 UID: 0 PID: 5998 Comm: kworker/1:4 Not tainted syzkaller #0 PREEMPT(full) 
[  535.938457][ T5998] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  535.942800][ T5998] Workqueue: events l2cap_chan_timeout
[  535.945054][ T5998] RIP: 0010:__queue_work+0xd03/0x1160
[  535.947111][ T5998] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 4b 04 00 00 48 8b 75 18 4c 89 fa 48 c7 c7 20 27 8c 8b e8 1e 15 f7 ff 90 <0f> 0b 90 90 e9 2f f7 ff ff e8 af e1 38 00 90 0f 0b 90 e9 b4 f5 ff
[  535.954170][ T5998] RSP: 0018:ffffc90003e9fa38 EFLAGS: 00010086
[  535.956528][ T5998] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817b1cd8
[  535.959630][ T5998] RDX: ffff8880295cc900 RSI: ffffffff817b1ce5 RDI: 0000000000000001
[  535.962923][ T5998] RBP: ffff88804b17c948 R08: 0000000000000001 R09: 0000000000000000
[  535.965892][ T5998] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  535.968840][ T5998] R13: ffff888056923800 R14: ffff88804b17c990 R15: ffff888056923978
[  535.972025][ T5998] FS:  0000000000000000(0000) GS:ffff8880d6b05000(0000) knlGS:0000000000000000
[  535.975326][ T5998] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  535.977931][ T5998] CR2: 0000200000002c40 CR3: 0000000047ed0000 CR4: 0000000000352ef0
[  535.981059][ T5998] Call Trace:
[  535.982470][ T5998]  <TASK>
[  535.983709][ T5998]  ? __cancel_work+0x2c8/0x370
[  535.985810][ T5998]  ? clear_pending_if_disabled+0xa8/0x210
[  535.988233][ T5998]  ? __pfx_clear_pending_if_disabled+0x10/0x10
[  535.990733][ T5998]  __queue_delayed_work+0x35b/0x460
[  535.992915][ T5998]  queue_delayed_work_on+0x1b5/0x200
[  535.994999][ T5998]  l2cap_chan_del+0x5a0/0x8f0
[  535.996932][ T5998]  l2cap_chan_close+0xfe/0xa30
[  535.998902][ T5998]  ? __pfx_l2cap_chan_close+0x10/0x10
[  536.001228][ T5998]  l2cap_chan_timeout+0x196/0x310
[  536.003349][ T5998]  process_one_work+0x9cf/0x1b70
[  536.005415][ T5998]  ? __pfx_process_one_work+0x10/0x10
[  536.007658][ T5998]  ? assign_work+0x1a0/0x250
[  536.009579][ T5998]  worker_thread+0x6c8/0xf10
[  536.011497][ T5998]  ? __kthread_parkme+0x19e/0x250
[  536.013529][ T5998]  ? __pfx_worker_thread+0x10/0x10
[  536.015581][ T5998]  kthread+0x3c5/0x780
[  536.017247][ T5998]  ? __pfx_kthread+0x10/0x10
[  536.019214][ T5998]  ? rcu_is_watching+0x12/0xc0
[  536.021254][ T5998]  ? __pfx_kthread+0x10/0x10
[  536.023171][ T5998]  ret_from_fork+0x675/0x7d0
[  536.025118][ T5998]  ? __pfx_kthread+0x10/0x10
[  536.027095][ T5998]  ret_from_fork_asm+0x1a/0x30
[  536.029119][ T5998]  </TASK>
[  536.030467][ T5998] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  536.033528][ T5998] CPU: 1 UID: 0 PID: 5998 Comm: kworker/1:4 Not tainted syzkaller #0 PREEMPT(full) 
[  536.037409][ T5998] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  536.041731][ T5998] Workqueue: events l2cap_chan_timeout
[  536.043954][ T5998] Call Trace:
[  536.045350][ T5998]  <TASK>
[  536.046567][ T5998]  dump_stack_lvl+0x3d/0x1f0
[  536.048683][ T5998]  vpanic+0x640/0x6f0
[  536.050422][ T5998]  ? __queue_work+0xd03/0x1160
[  536.052543][ T5998]  panic+0xca/0xd0
[  536.054105][ T5998]  ? __pfx_panic+0x10/0x10
[  536.055992][ T5998]  ? check_panic_on_warn+0x1f/0xb0
[  536.058191][ T5998]  check_panic_on_warn+0xab/0xb0
[  536.059995][ T5998]  __warn+0xf6/0x3c0
[  536.061595][ T5998]  ? __queue_work+0xd03/0x1160
[  536.063140][ T5998]  report_bug+0x3c3/0x580
[  536.064549][ T5998]  ? __queue_work+0xd03/0x1160
[  536.066426][ T5998]  handle_bug+0x184/0x210
[  536.068265][ T5998]  exc_invalid_op+0x17/0x50
[  536.069841][ T5998]  asm_exc_invalid_op+0x1a/0x20
[  536.071747][ T5998] RIP: 0010:__queue_work+0xd03/0x1160
[  536.074034][ T5998] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 4b 04 00 00 48 8b 75 18 4c 89 fa 48 c7 c7 20 27 8c 8b e8 1e 15 f7 ff 90 <0f> 0b 90 90 e9 2f f7 ff ff e8 af e1 38 00 90 0f 0b 90 e9 b4 f5 ff
[  536.082023][ T5998] RSP: 0018:ffffc90003e9fa38 EFLAGS: 00010086
[  536.084610][ T5998] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817b1cd8
[  536.087906][ T5998] RDX: ffff8880295cc900 RSI: ffffffff817b1ce5 RDI: 0000000000000001
[  536.091190][ T5998] RBP: ffff88804b17c948 R08: 0000000000000001 R09: 0000000000000000
[  536.094672][ T5998] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  536.097851][ T5998] R13: ffff888056923800 R14: ffff88804b17c990 R15: ffff888056923978
[  536.101051][ T5998]  ? __warn_printk+0x198/0x350
[  536.103080][ T5998]  ? __warn_printk+0x1a5/0x350
[  536.105130][ T5998]  ? __queue_work+0xd02/0x1160
[  536.107148][ T5998]  ? __cancel_work+0x2c8/0x370
[  536.109201][ T5998]  ? clear_pending_if_disabled+0xa8/0x210
[  536.111645][ T5998]  ? __pfx_clear_pending_if_disabled+0x10/0x10
[  536.114359][ T5998]  __queue_delayed_work+0x35b/0x460
[  536.116615][ T5998]  queue_delayed_work_on+0x1b5/0x200
[  536.118867][ T5998]  l2cap_chan_del+0x5a0/0x8f0
[  536.121011][ T5998]  l2cap_chan_close+0xfe/0xa30
[  536.123057][ T5998]  ? __pfx_l2cap_chan_close+0x10/0x10
[  536.125458][ T5998]  l2cap_chan_timeout+0x196/0x310
[  536.127606][ T5998]  process_one_work+0x9cf/0x1b70
[  536.129699][ T5998]  ? __pfx_process_one_work+0x10/0x10
[  536.131964][ T5998]  ? assign_work+0x1a0/0x250
[  536.133922][ T5998]  worker_thread+0x6c8/0xf10
[  536.135887][ T5998]  ? __kthread_parkme+0x19e/0x250
[  536.138042][ T5998]  ? __pfx_worker_thread+0x10/0x10
[  536.140209][ T5998]  kthread+0x3c5/0x780
[  536.141968][ T5998]  ? __pfx_kthread+0x10/0x10
[  536.143935][ T5998]  ? rcu_is_watching+0x12/0xc0
[  536.146013][ T5998]  ? __pfx_kthread+0x10/0x10
[  536.147911][ T5998]  ret_from_fork+0x675/0x7d0
[  536.149856][ T5998]  ? __pfx_kthread+0x10/0x10
[  536.151813][ T5998]  ret_from_fork_asm+0x1a/0x30
[  536.153865][ T5998]  </TASK>
[  536.155913][ T5998] Kernel Offset: disabled
[  536.157755][ T5998] Rebooting in 86400 seconds..