last executing test programs:

53.651310358s ago: executing program 1 (id=141):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0xe, 0xb, &(0x7f00000000c0)=@framed={{0x18, 0x4}, [@printk={@lli, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb1}}]}, &(0x7f00000005c0)='GPL\x00'}, 0x90)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x2, 0xb, 0x0, 0x0, 0x2, 0x0, 0x4070bd2c, 0x25dfdbfc}, 0x10}, 0x1, 0x7}, 0x0)
recvmmsg(r0, &(0x7f0000007ec0)=[{{&(0x7f0000000000)=@phonet, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)=""/255, 0xff}, {&(0x7f0000000240)=""/199, 0xc7}, {&(0x7f0000000340)=""/110, 0x6e}, {&(0x7f00000003c0)=""/126, 0x7e}], 0x4, &(0x7f0000000440)=""/39, 0x27}, 0x9}, {{0x0, 0x0, &(0x7f0000003940)=[{&(0x7f0000000480)=""/117, 0x75}, {&(0x7f0000000500)=""/140, 0x8c}, {&(0x7f0000000600)=""/186, 0xba}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/4096, 0x1000}, {&(0x7f0000002840)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/181, 0xb5}, {&(0x7f0000003840)=""/240, 0xf0}], 0x8, &(0x7f00000039c0)=""/5, 0x5}, 0x9}, {{&(0x7f0000003a00)=@qipcrtr, 0x80, &(0x7f0000003a80), 0x0, &(0x7f0000003ac0)=""/126, 0x7e}, 0xa0}, {{0x0, 0x0, &(0x7f0000004dc0)=[{&(0x7f0000003b40)=""/132, 0x84}, {&(0x7f0000003c00)=""/164, 0xa4}, {&(0x7f0000003cc0)=""/214, 0xd6}, {&(0x7f0000003dc0)=""/4096, 0x1000}], 0x4, &(0x7f0000004e00)=""/59, 0x3b}, 0x6}, {{&(0x7f0000004e40)=@x25={0x9, @remote}, 0x80, &(0x7f0000005000)=[{&(0x7f0000004ec0)=""/163, 0xa3}, {&(0x7f0000004f80)=""/86, 0x56}], 0x2, &(0x7f0000005040)=""/10, 0xa}, 0x59}, {{0x0, 0x0, &(0x7f0000005280)=[{&(0x7f0000005080)=""/62, 0x3e}, {&(0x7f00000050c0)=""/252, 0xfc}, {&(0x7f00000051c0)=""/148, 0x94}], 0x3, &(0x7f00000052c0)=""/107, 0x6b}, 0x1}, {{0x0, 0x0, &(0x7f0000005740)=[{&(0x7f0000005340)=""/250, 0xfa}, {&(0x7f0000005440)=""/186, 0xba}, {&(0x7f0000005500)=""/111, 0x6f}, {&(0x7f0000005580)=""/212, 0xd4}, {&(0x7f0000005680)}, {&(0x7f00000056c0)=""/94, 0x5e}], 0x6, &(0x7f00000057c0)=""/207, 0xcf}, 0x5}, {{&(0x7f00000058c0)=@can, 0x80, &(0x7f0000005a40)=[{&(0x7f0000005940)=""/206, 0xce}], 0x1}}, {{&(0x7f0000005a80)=@l2tp6={0xa, 0x0, 0x0, @private2}, 0x80, &(0x7f0000007dc0)=[{&(0x7f0000005b00)=""/71, 0x47}, {&(0x7f0000005b80)=""/61, 0x3d}, {&(0x7f0000005bc0)=""/4096, 0x1000}, {&(0x7f0000006bc0)=""/102, 0x66}, {&(0x7f0000006c40)=""/4096, 0x1000}, {&(0x7f0000007c40)=""/149, 0x95}, {&(0x7f0000007d00)=""/137, 0x89}], 0x7, &(0x7f0000007e40)=""/119, 0x77}, 0x8}], 0x9, 0x0, &(0x7f0000008100))

53.650873641s ago: executing program 1 (id=142):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x8)
ioctl$SIOCAX25ADDFWD(r0, 0x89ea, &(0x7f0000000200)={@default, @default})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000200fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000900fc000000080011000700000008000e00800000000800", @ANYRES32=r1], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000240)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
ioctl$sock_ifreq(0xffffffffffffffff, 0x8910, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
read(r4, &(0x7f0000000380)=""/46, 0xfffffeb4)
sendmsg$IPSET_CMD_SAVE(r4, &(0x7f0000000200)={0x0, 0x27, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000080601080000000000000004000000040500010006"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x10)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
socket$inet_udp(0x2, 0x2, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f00000002c0), 0x228802, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r5, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x40)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4090}, 0x0)
sendmsg$alg(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
getpeername$packet(r3, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000000c0)=0x14)
r6 = socket(0x15, 0x5, 0x0)
getsockopt(r6, 0x200000000114, 0x271e, 0x0, &(0x7f0000000040))
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r7, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x40d0}, 0x0)
socket$kcm(0x2, 0x3, 0x84)

53.547268065s ago: executing program 1 (id=144):
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bsg/2:0:0:0\x00', 0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000040))

53.469976432s ago: executing program 1 (id=145):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f0000000100), 0x5, 0x20000)
ioctl$VIDIOC_SUBDEV_G_SELECTION(r2, 0xc040563d, &(0x7f00000003c0)={0x1, 0x0, 0x2, 0x4, {0x9, 0x0, 0x3, 0x1097}})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000002, 0x13, r3, 0x0)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1c"], 0x52)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

53.360573415s ago: executing program 1 (id=148):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$9p_virtio(0x0, 0x0, 0x0, 0x800040, &(0x7f0000000200)=ANY=[@ANYBLOB="7472616e733d76697274696f2c6e6f78617474722c756e616d653d5e2c6e6f657874656e642c64656275671d3078303030303030303030303030303030362c6163636573733d757365722c63616368653d6c6f6f7365"])
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='cifs\x00', 0x0, &(0x7f00000001c0)='=\n\x9b\xa1Q\x83\xe9\n@\xf6\"2a\xd7\x1fch\x1a}#\xfa\xe4\n\xdc[\x03\x97\xcd\xf1\xa6b\x9a\x1f\xff\xff\xffIT\xe4\x8c&\xac\xe6:\xc5\xe8\xd9\"\x82\xd5\xeb\x90\xef1:\xba\xc3\xc3\xd3\xad\'\xc44\x17,,\x8dZz\x04\x17-#F\xc7<\xe6\xf5]%gC\x9e\xca\nS\xc3\xc8\x98\xd8\xc8\x9eZ\xa76\x9f\xc2=\xaa\xcet7\xb9\xbd\xd47\xe3\xc8@$8\v\x9f\xfd\xe1!\x11\x19Y\x06J\x8f\x80\xef9Tw8\x1b\xe2\xf3\x85\xd5}\xa5\xb7\xd5|')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000300)='./file1\x00', &(0x7f0000000000)='gfs2\x00', 0x0, &(0x7f0000000380)='acl')
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'wg0\x00'})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x20000a8, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f00000000c0))

53.280437393s ago: executing program 1 (id=149):
r0 = io_uring_setup(0x4a86, &(0x7f0000000300)={0x0, 0x4178, 0x40, 0x8001082, 0x112})
r1 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x105241) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r1, 0xab00, r2) (async)
ioctl$NBD_SET_SOCK(r1, 0xab03, r2) (async)
r3 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_G_FMT(r3, 0xc0d05604, &(0x7f0000000100)={0x3, @vbi={0x1, 0x7, 0x2, 0x38414262, [0x6, 0x80], [0x7f, 0x8], 0x13a}}) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

38.290711601s ago: executing program 32 (id=149):
r0 = io_uring_setup(0x4a86, &(0x7f0000000300)={0x0, 0x4178, 0x40, 0x8001082, 0x112})
r1 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x105241) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r1, 0xab00, r2) (async)
ioctl$NBD_SET_SOCK(r1, 0xab03, r2) (async)
r3 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_G_FMT(r3, 0xc0d05604, &(0x7f0000000100)={0x3, @vbi={0x1, 0x7, 0x2, 0x38414262, [0x6, 0x80], [0x7f, 0x8], 0x13a}}) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

1.865885773s ago: executing program 3 (id=661):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f00000000c0)={'wpan1\x00', <r2=>0x0}) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), 0xffffffffffffffff) (rerun: 64)
sendmsg$NL802154_CMD_NEW_INTERFACE(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x3c, r4, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFTYPE={0x8, 0x5, 0x1}, @NL802154_ATTR_EXTENDED_ADDR={0xc}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x84}, 0x4000004)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) (async)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r8=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000540)={0x1c, r6, 0x1, 0x70bd25, 0xa5dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x4c, r4, 0xd82a5a2145e45f8, 0x70bd2c, 0x25dfdbff, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xffff}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xffff}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0xc0) (async)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r10 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r10, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10) (async, rerun: 32)
sendmsg$rds(r10, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000440)=[@cswp={0x58, 0x114, 0x7, {{0x6, 0x2}, 0x0, 0x0, 0x2, 0x9, 0x9, 0x9, 0x1c, 0x4}}], 0x58}, 0x0) (async, rerun: 32)
r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
ioctl$TUNSETFILTEREBPF(r9, 0x800454e1, &(0x7f0000000080)=r11)

1.741205618s ago: executing program 4 (id=665):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000000)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa8000066450fc7b30500000041ae", 0x4b}], 0x1, 0x74, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 49)

1.737212223s ago: executing program 3 (id=667):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080c30000000e8fe55a1190015000600142603600e1209004000f8ff0700a80016000a0004400a080000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, &(0x7f0000000000)={0x79})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000001c0)={0x1, 0x0, [{0x40000071, 0x0, 0xff000000000c0700}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_INTERFACE(r4, &(0x7f0000000240)={&(0x7f0000000100), 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x20, r5, 0x10, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x1, 0x73}}}}, [""]}, 0x20}}, 0x0)

1.450952604s ago: executing program 3 (id=669):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x40074)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x12b000, 0x0)
r4 = getpgrp(0x0)
write$cgroup_pid(r3, &(0x7f0000000140)=r4, 0x12)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtfilter={0x8c, 0x2c, 0xd27, 0x70bd39, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0x0, 0x4}, {}, {0xfff2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x100, 0x1, 0x100000a, 0x8}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x8000)

1.450517941s ago: executing program 4 (id=670):
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$admmidi(&(0x7f00000001c0), 0x20, 0x0)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000001fc0)=""/209, 0xd1}], 0x1)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x1e4011, 0x0)
r2 = semget$private(0x0, 0x4000000009, 0x208)
semop(r2, &(0x7f00000002c0)=[{0x1, 0x8698, 0x1000}], 0x1)
semop(r2, &(0x7f0000000000)=[{0x0, 0xfffb}, {0x1, 0x0, 0x800}], 0x2)
semctl$SETALL(r2, 0x0, 0x11, &(0x7f0000000140)=[0x1ff])
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r3 = socket(0x10, 0x3, 0x0)
setfsuid(0xee00)
setresuid(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r3, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}}, 0x4084)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$sock_buf(r4, 0x1, 0xc, &(0x7f00000004c0)=""/118, &(0x7f0000000280)=0x76)
ioctl$RTC_UIE_ON(r0, 0x7003)

1.347919933s ago: executing program 3 (id=671):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xd}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x1, 0x2, 0x3, 0xfffffff9, 0x9, 0x101, 0x2, 0xffff}}}}]}, 0x58}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@newtfilter={0x87c, 0x2c, 0xd27, 0x70bd2d, 0x4, {0x0, 0x0, 0x0, r1, {0xe, 0x6}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x8, 0x5, 0x8, 0x401, 0x7, 0xffffffff, 0x6, 0x8, 0x360a, 0x101, 0x3, 0x9, 0x5, 0x4dc6, 0x7fff, 0x6, 0x8, 0x3, 0xd, 0x4, 0x3ae0, 0x5, 0x99, 0x1, 0xff, 0x1, 0x200006, 0x80, 0x7f1b, 0x5, 0x5, 0x80000003, 0xfffffffa, 0xffffffff, 0x800, 0xf30d, 0x800, 0x0, 0x1, 0x4, 0x80000000, 0x6, 0x9, 0x3, 0xff, 0x0, 0x9f0, 0x1ff, 0xdf7a, 0x7fffffff, 0x0, 0x0, 0xc, 0x14, 0x2, 0xc, 0x9, 0xffff, 0x9bf, 0x6f3c, 0x8, 0x9, 0x7ff, 0x3, 0x9, 0x8000, 0x8, 0xffffffc0, 0x4, 0x1, 0x2, 0x6, 0x4, 0x9, 0x200, 0x3ff, 0xf, 0x81, 0x3, 0x8, 0x800, 0x1, 0x5, 0x80000000, 0x2, 0x5, 0x5, 0x1, 0x0, 0x10001, 0x81, 0xc, 0x6, 0x80000001, 0x401, 0x6, 0x0, 0x3, 0x800, 0xf79, 0x6, 0x1, 0x4, 0xfff, 0x2, 0x1, 0x37800000, 0x0, 0x3, 0xae5, 0x4, 0x4, 0xae, 0xfffffffe, 0x1, 0x6, 0x8, 0x400, 0x1, 0x8000, 0xc, 0x1, 0x8, 0x3, 0x95, 0x1, 0x6, 0x3, 0xca, 0x0, 0x0, 0x3, 0x7, 0xffffb09a, 0x1, 0xe, 0x9, 0x5, 0x6, 0x4b, 0x9, 0x4, 0xfffffffe, 0xfffffffe, 0x4, 0x69, 0x2, 0x2, 0xffff, 0x0, 0x5, 0xffff, 0x4, 0xf1000000, 0x2, 0x6, 0xffffffd1, 0x6, 0x1, 0xb3, 0x5, 0x5, 0x1, 0x9, 0x4, 0x3, 0x9, 0x0, 0x5, 0x2c9, 0x8bf, 0x0, 0xde39067, 0x9, 0x8, 0x6, 0x1534fe8b, 0x5, 0x0, 0x6, 0x2, 0x4, 0x81, 0xd16d, 0x1000000, 0xf9, 0x9, 0x401, 0x1, 0xe19b, 0x80000000, 0x402, 0x81, 0x800, 0x9, 0x651, 0x10001, 0x80006, 0x0, 0x5, 0x2001d58, 0x401, 0x3, 0x8002, 0x8, 0xffffffff, 0x15a, 0x2, 0x6, 0x5, 0x7, 0x6, 0x79, 0x8, 0x1da, 0x1, 0x9, 0x7, 0x0, 0xfffffff9, 0x81, 0x7, 0x0, 0x27b, 0x5, 0x1001, 0x3, 0x1, 0x6, 0x5, 0x64c, 0x4, 0xfffffff7, 0x9, 0x4, 0x80000000, 0x8000, 0x7, 0x7, 0x7, 0x3, 0xa, 0x8, 0xffff, 0x22, 0x9, 0x4, 0x3, 0x3, 0x9, 0xfffffffa, 0x1, 0x6, 0x3321, 0x9, 0x5]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x80000001, 0x7, 0x3ff, 0x7, 0x4, 0x2, 0xffffffc0, 0x7ff, 0x86, 0x9, 0x9, 0x2, 0x8c, 0x1000200, 0x5, 0x5, 0x40000000, 0x5, 0x7, 0x1, 0x0, 0x4, 0x0, 0xc, 0xdaf, 0x3, 0x9, 0x49, 0x80000000, 0xd35, 0x25431060, 0xd2, 0x5, 0x9, 0xb5f0, 0x401, 0x7, 0x2, 0x6, 0x80000001, 0xa, 0x8, 0x9, 0x1, 0x10001, 0x2c800000, 0x5d, 0xc5, 0x239, 0x100005, 0x5a5057fd, 0x5, 0x4, 0x6, 0xb, 0x5, 0x200, 0x6, 0x10000, 0xf9, 0x6, 0x8, 0x7, 0x3, 0xfffffeff, 0x9, 0x1, 0x401, 0x1ff, 0x2, 0x0, 0x0, 0x800, 0x3, 0x0, 0x8, 0x10000, 0x6, 0x7c, 0x1, 0x9, 0xffffff01, 0xff, 0x8, 0x8052, 0x9, 0x5, 0x8, 0x142, 0x2d, 0x9, 0x8, 0xb, 0x81, 0x9, 0x3ff, 0x1, 0x10000, 0x9, 0x1, 0x7, 0xfffffffc, 0x5, 0xe8, 0x6, 0x2f4, 0xf, 0x3, 0x0, 0xff, 0xfffffffa, 0xfffffff7, 0x8001, 0x5, 0x9, 0x8, 0x5, 0x9, 0x2, 0x2, 0x10001, 0x8, 0x0, 0x6, 0x4, 0x866, 0x7fff, 0xe0, 0x8, 0xd3a, 0x6000000, 0xfffffffc, 0x9, 0x7fff, 0x7, 0x10000, 0x3, 0x7fff, 0x40000000, 0x1, 0x7, 0xfffffffb, 0x3, 0x1, 0x9, 0x0, 0x52bd315b, 0x6, 0x4, 0x700, 0x4, 0x1, 0x2, 0x0, 0x5, 0x7, 0x4, 0x7, 0x8, 0x8, 0xc, 0x9, 0x6, 0x5, 0x0, 0x5, 0x2, 0x6, 0x8, 0x9, 0x9, 0x9, 0x5847cb5c, 0x9, 0x2, 0x9, 0x10001, 0xfffffffc, 0x5, 0x401, 0x8, 0x1, 0x2, 0x0, 0x0, 0x1200, 0x2, 0x0, 0xef2c, 0x80000001, 0xac5ae1dd, 0x0, 0x800, 0x1ff, 0x2, 0x3, 0x1, 0x8, 0x7785, 0x8001, 0x4, 0x40000005, 0x4, 0x7, 0x0, 0x6, 0xffffff2f, 0x8001, 0x3, 0x5, 0x3, 0x4, 0x7, 0x5, 0x7, 0xabd, 0x0, 0x10001, 0x6, 0x4, 0x30000000, 0x5, 0x13c1, 0x3, 0x7, 0x1, 0x8, 0x2, 0x6, 0x1, 0x2, 0x2, 0xb, 0x8, 0xa, 0x9, 0xfffffff9, 0x7, 0x8, 0x3, 0x20008, 0x9, 0x67b, 0x6, 0xe7a9, 0x10001, 0x6, 0x0, 0xb9, 0x8cca, 0xdda5, 0x1, 0xa, 0x7fffffff, 0x10, 0x31f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x5ce6f98c, 0x84a515e295449745, 0x2ea9dcbf, 0x80000001, 0xfff, {0x7, 0x0, 0x3, 0x4, 0x9, 0x2000000}, {0x2, 0x2, 0xbae, 0x3, 0x1, 0x6}, 0x10, 0x5, 0x6}}]}]}}]}, 0x87c}}, 0x4000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
socket(0x2a, 0x2, 0x0) (async)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xd}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x1, 0x2, 0x3, 0xfffffff9, 0x9, 0x101, 0x2, 0xffff}}}}]}, 0x58}}, 0x0) (async)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@newtfilter={0x87c, 0x2c, 0xd27, 0x70bd2d, 0x4, {0x0, 0x0, 0x0, r1, {0xe, 0x6}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0x84c, 0x2, [@TCA_BASIC_POLICE={0x848, 0x4, [@TCA_POLICE_RATE={0x404, 0x2, [0x8, 0x5, 0x8, 0x401, 0x7, 0xffffffff, 0x6, 0x8, 0x360a, 0x101, 0x3, 0x9, 0x5, 0x4dc6, 0x7fff, 0x6, 0x8, 0x3, 0xd, 0x4, 0x3ae0, 0x5, 0x99, 0x1, 0xff, 0x1, 0x200006, 0x80, 0x7f1b, 0x5, 0x5, 0x80000003, 0xfffffffa, 0xffffffff, 0x800, 0xf30d, 0x800, 0x0, 0x1, 0x4, 0x80000000, 0x6, 0x9, 0x3, 0xff, 0x0, 0x9f0, 0x1ff, 0xdf7a, 0x7fffffff, 0x0, 0x0, 0xc, 0x14, 0x2, 0xc, 0x9, 0xffff, 0x9bf, 0x6f3c, 0x8, 0x9, 0x7ff, 0x3, 0x9, 0x8000, 0x8, 0xffffffc0, 0x4, 0x1, 0x2, 0x6, 0x4, 0x9, 0x200, 0x3ff, 0xf, 0x81, 0x3, 0x8, 0x800, 0x1, 0x5, 0x80000000, 0x2, 0x5, 0x5, 0x1, 0x0, 0x10001, 0x81, 0xc, 0x6, 0x80000001, 0x401, 0x6, 0x0, 0x3, 0x800, 0xf79, 0x6, 0x1, 0x4, 0xfff, 0x2, 0x1, 0x37800000, 0x0, 0x3, 0xae5, 0x4, 0x4, 0xae, 0xfffffffe, 0x1, 0x6, 0x8, 0x400, 0x1, 0x8000, 0xc, 0x1, 0x8, 0x3, 0x95, 0x1, 0x6, 0x3, 0xca, 0x0, 0x0, 0x3, 0x7, 0xffffb09a, 0x1, 0xe, 0x9, 0x5, 0x6, 0x4b, 0x9, 0x4, 0xfffffffe, 0xfffffffe, 0x4, 0x69, 0x2, 0x2, 0xffff, 0x0, 0x5, 0xffff, 0x4, 0xf1000000, 0x2, 0x6, 0xffffffd1, 0x6, 0x1, 0xb3, 0x5, 0x5, 0x1, 0x9, 0x4, 0x3, 0x9, 0x0, 0x5, 0x2c9, 0x8bf, 0x0, 0xde39067, 0x9, 0x8, 0x6, 0x1534fe8b, 0x5, 0x0, 0x6, 0x2, 0x4, 0x81, 0xd16d, 0x1000000, 0xf9, 0x9, 0x401, 0x1, 0xe19b, 0x80000000, 0x402, 0x81, 0x800, 0x9, 0x651, 0x10001, 0x80006, 0x0, 0x5, 0x2001d58, 0x401, 0x3, 0x8002, 0x8, 0xffffffff, 0x15a, 0x2, 0x6, 0x5, 0x7, 0x6, 0x79, 0x8, 0x1da, 0x1, 0x9, 0x7, 0x0, 0xfffffff9, 0x81, 0x7, 0x0, 0x27b, 0x5, 0x1001, 0x3, 0x1, 0x6, 0x5, 0x64c, 0x4, 0xfffffff7, 0x9, 0x4, 0x80000000, 0x8000, 0x7, 0x7, 0x7, 0x3, 0xa, 0x8, 0xffff, 0x22, 0x9, 0x4, 0x3, 0x3, 0x9, 0xfffffffa, 0x1, 0x6, 0x3321, 0x9, 0x5]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x80000001, 0x7, 0x3ff, 0x7, 0x4, 0x2, 0xffffffc0, 0x7ff, 0x86, 0x9, 0x9, 0x2, 0x8c, 0x1000200, 0x5, 0x5, 0x40000000, 0x5, 0x7, 0x1, 0x0, 0x4, 0x0, 0xc, 0xdaf, 0x3, 0x9, 0x49, 0x80000000, 0xd35, 0x25431060, 0xd2, 0x5, 0x9, 0xb5f0, 0x401, 0x7, 0x2, 0x6, 0x80000001, 0xa, 0x8, 0x9, 0x1, 0x10001, 0x2c800000, 0x5d, 0xc5, 0x239, 0x100005, 0x5a5057fd, 0x5, 0x4, 0x6, 0xb, 0x5, 0x200, 0x6, 0x10000, 0xf9, 0x6, 0x8, 0x7, 0x3, 0xfffffeff, 0x9, 0x1, 0x401, 0x1ff, 0x2, 0x0, 0x0, 0x800, 0x3, 0x0, 0x8, 0x10000, 0x6, 0x7c, 0x1, 0x9, 0xffffff01, 0xff, 0x8, 0x8052, 0x9, 0x5, 0x8, 0x142, 0x2d, 0x9, 0x8, 0xb, 0x81, 0x9, 0x3ff, 0x1, 0x10000, 0x9, 0x1, 0x7, 0xfffffffc, 0x5, 0xe8, 0x6, 0x2f4, 0xf, 0x3, 0x0, 0xff, 0xfffffffa, 0xfffffff7, 0x8001, 0x5, 0x9, 0x8, 0x5, 0x9, 0x2, 0x2, 0x10001, 0x8, 0x0, 0x6, 0x4, 0x866, 0x7fff, 0xe0, 0x8, 0xd3a, 0x6000000, 0xfffffffc, 0x9, 0x7fff, 0x7, 0x10000, 0x3, 0x7fff, 0x40000000, 0x1, 0x7, 0xfffffffb, 0x3, 0x1, 0x9, 0x0, 0x52bd315b, 0x6, 0x4, 0x700, 0x4, 0x1, 0x2, 0x0, 0x5, 0x7, 0x4, 0x7, 0x8, 0x8, 0xc, 0x9, 0x6, 0x5, 0x0, 0x5, 0x2, 0x6, 0x8, 0x9, 0x9, 0x9, 0x5847cb5c, 0x9, 0x2, 0x9, 0x10001, 0xfffffffc, 0x5, 0x401, 0x8, 0x1, 0x2, 0x0, 0x0, 0x1200, 0x2, 0x0, 0xef2c, 0x80000001, 0xac5ae1dd, 0x0, 0x800, 0x1ff, 0x2, 0x3, 0x1, 0x8, 0x7785, 0x8001, 0x4, 0x40000005, 0x4, 0x7, 0x0, 0x6, 0xffffff2f, 0x8001, 0x3, 0x5, 0x3, 0x4, 0x7, 0x5, 0x7, 0xabd, 0x0, 0x10001, 0x6, 0x4, 0x30000000, 0x5, 0x13c1, 0x3, 0x7, 0x1, 0x8, 0x2, 0x6, 0x1, 0x2, 0x2, 0xb, 0x8, 0xa, 0x9, 0xfffffff9, 0x7, 0x8, 0x3, 0x20008, 0x9, 0x67b, 0x6, 0xe7a9, 0x10001, 0x6, 0x0, 0xb9, 0x8cca, 0xdda5, 0x1, 0xa, 0x7fffffff, 0x10, 0x31f]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x5ce6f98c, 0x84a515e295449745, 0x2ea9dcbf, 0x80000001, 0xfff, {0x7, 0x0, 0x3, 0x4, 0x9, 0x2000000}, {0x2, 0x2, 0xbae, 0x3, 0x1, 0x6}, 0x10, 0x5, 0x6}}]}]}}]}, 0x87c}}, 0x4000) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) (async)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) (async)

1.347454414s ago: executing program 3 (id=672):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendmsg(r0, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x20008004)
setsockopt$sock_int(r0, 0x1, 0x1, &(0x7f0000000300)=0xf6a, 0x4)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f00000000c0)={[{@quota}]})
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r1, &(0x7f0000000540)="b8", 0x3b, 0x2000c851, &(0x7f0000000080)={0xa, 0x4e22, 0x2, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000400)=ANY=[], 0xd7)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000300), 0x8)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)

1.261233332s ago: executing program 3 (id=673):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1b, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x5f0f, &(0x7f0000000000)={0x0, 0xfffffffc, 0x80, 0x0, 0x1ea}, &(0x7f00000002c0), &(0x7f0000ff4000))
r1 = socket$inet6(0xa, 0x5, 0x2)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x3e, &(0x7f0000000000)=0xff, 0x4)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23, 0x8001, @empty, 0xffffff5d}, 0x1c)
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_ep_write$ath9k_ep1(r2, 0x82, 0x0, 0x0)
read$char_usb(r3, &(0x7f0000000000)=""/74, 0x4a)
listen(r1, 0x50)
listen(0xffffffffffffffff, 0x10019)
r4 = accept(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000019480)=ANY=[@ANYBLOB="02c8001f001b0001000c0301ff667c226576ef467f40ab01c903090800008001040800066a9092bab5d5a41ac53a250fea0a4ff731cb62d978404304f1c33eb618fa4228b29e8b1d4a6de873d63aac8fc8cb2062ea13eaccf4eff92a6ce6e1681d7108f94b9320a046477e14e6691ecd5cff232a8bb35af476eccf9a1622aa6aa948ecc403d1aeff3850f7b54df8a1ed759846cf651df5f717aa120b4ec291eacadadff8383bd7e500e75488b4bdb8fdcc1639c27928b6d1c627bf7c718c2fce57bb4f9e9f0b3bd009e46c82a86901018d4ec4911919c6f922fb3d06bd627e9b5375f7269ed6d89c24d551de"], 0x24)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$pokeuser(0x6, r5, 0x380, 0x3)
ptrace$setregs(0xd, r5, 0x3, &(0x7f0000000100)="e742a933f37ff726a51f1fb1010f93e96a837b8e11d417e6e3310bf49eea1fce838e98f50839bb743e63989186db03e84f2132ab37439542edad4ac17451f607214b1f357bba9e2928cad039eb1deebd41e71d789bc1bac9e1f17d276ddd7fc1c9685ecee004c924c7df313107c7a2143cb413c0ecbbfe35daa22587eabc97d6548ba84ac5332650ca66edf4453b227ca7ff03de968b419779071b9fb5e2418fe35d3100149b67fe313f9d05f9a987db")
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000080)={0x0, 0x3, 0x4, 0x7})
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x82)
syz_emit_ethernet(0x4f, &(0x7f0000000a80)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6c370c8900198401fec00000000000000000020000000000fe8000000000000000000000000000aaa5ba94e385673ccfd3fe184ab0643975bcc85fbf438632261b"], 0x0)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f0000000080)={&(0x7f0000693000/0x1000)=nil, 0x1000})
setitimer(0x2, &(0x7f0000000040)={{0x0, 0x2710}, {0x0, 0x2710}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x32cc0000)
setitimer(0x2, 0x0, 0x0)

1.200166961s ago: executing program 0 (id=675):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000480)={0xf4, 0xa, 0x6, 0x401, 0x0, 0x0, {0x0, 0x0, 0x5}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x68d}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x401}, @IPSET_ATTR_ADT={0x7c, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, {0x18, 0x7, 0x0, 0x1, @IPSET_ATTR_IFACE={0x14, 0x17, 'wlan1\x00'}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast1}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x3}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PROTO={0x5, 0x7, 0x6c}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x1}}]}, @IPSET_ATTR_DATA={0x48, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x14}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0xffffffff}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x6}, @IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}, @IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x13}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x40004854}, 0x4000000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xf}, 0x50)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000001c0), r1)
memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0) (async)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40e41, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xc201}) (async)
r4 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x48401) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r5) (async)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=@base={0x6, 0x4, 0x1010, 0x89}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000840)={0x0, &(0x7f0000000780)=""/106, &(0x7f0000000380), &(0x7f0000000000), 0x80, r7, 0x0, 0x7}, 0x38) (async)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="ab7c2bbd700000dcdf2512f7000008000300", @ANYRES32=r8, @ANYBLOB="0a000600ffffffffffff00000400ac00"], 0x2c}, 0x1, 0x0, 0x0, 0x240008d0}, 0x40002084) (async)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r4, 0xc008551c, &(0x7f0000000280)=ANY=[@ANYBLOB='\r\x00\x00\x00\b'])
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x2000c450)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
r11 = dup(r10)
ioctl$SIOCSIFHWADDR(r11, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}) (async)
write$tun(r3, &(0x7f00000000c0)=ANY=[@ANYRESOCT=r5], 0xffe) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r12=>0x0})
sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f0000004340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="310300000000000020000800000008000300", @ANYRES32=r12, @ANYBLOB="080006"], 0x24}}, 0x0)

1.030757268s ago: executing program 0 (id=676):
socket$nl_route(0x10, 0x3, 0x0)
socket(0x2b, 0x80801, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000000000000000000000001fe8000000000000000000000000000bb00000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000020000000000000000000008000000000000000000a000000000000feffffffff7f400002000000000000080000000000000000010000000000000044000500ac1414aa000000000000000000000000000000003c"], 0xfc}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x1)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x6, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
close(0xffffffffffffffff)
write(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x100000d, 0x10010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockopt$sock_buf(r3, 0x1, 0x1f, &(0x7f00000041c0)=""/4100, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
r5 = syz_open_dev$loop(&(0x7f0000000440), 0x9, 0x40000)
sync_file_range(r5, 0x2, 0x5, 0x7)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newlink={0x50, 0x10, 0xffffff1f, 0x0, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4408}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @loopback}]}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

970.956171ms ago: executing program 0 (id=677):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCDELRT(r0, 0x890c, &(0x7f00000005c0)={0x0, @bcast, @bpq0, 0x7fffffff, 'syz1\x00', @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0xa026, 0x3, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @null, @bcast, @default, @null]})
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r2 = gettid()
timer_create(0x5, &(0x7f00000000c0)={0x0, 0x5, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
r3 = accept$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
connect$phonet_pipe(r3, &(0x7f0000000080)={0x23, 0x6, 0xcb, 0x13}, 0x10)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r4, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x3, {{0x42}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2004c810}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r4, 0x10f, 0x88)

539.187367ms ago: executing program 4 (id=678):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="7f454c4605fc0040ff7f00000000000002003e00edfffbff94020000000000004000000000d9279749d4c5348ec0c0e1556a4e000000380001"], 0x78)
r1 = syz_open_dev$dvb_frontend(&(0x7f00000015c0), 0x0, 0x400)
ioctl$FE_GET_PROPERTY(r1, 0x80106f53, &(0x7f00000016c0)={0x37, &(0x7f0000001600)=[{0x15, '\x00', @st={0x4, [{0x2, @uvalue=0x8}, {0x1, @uvalue=0x2}, {0x2, @uvalue=0x2}, {0x3, @uvalue=0x9}]}, 0x3}]})
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

535.986824ms ago: executing program 4 (id=679):
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x2710}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000280)={0x9})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0xc000, 0x4, 0x5, 0xff, 0x9, 0x3, 0xa, 0xb9, 0x3, 0x8e, 0x5, 0x204}, {0x804, 0x1, 0x1, 0x45, 0xff, 0x6, 0x2, 0xff, 0x0, 0x4, 0x6, 0x7f, 0xbaf7}, {0x1, 0x3, 0x38, 0xb, 0x84, 0x7, 0x3, 0x50, 0x0, 0x5, 0x4, 0x5, 0x7fffffff}], 0xffffffff})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000400)={0x0, 0x0, @pic={0x38, 0x3, 0xb2, 0x6, 0x0, 0x1, 0x1, 0xc, 0x6, 0x0, 0x1, 0xd, 0x76, 0x1, 0x6d, 0x9}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x60000000000, 0xd4, 0x4000000000, 0x61, 0x200002000001, 0x0, 0x2004c8, 0x0, 0x0, 0x36ae, 0x5, 0x7fff, 0x3, 0x400000000], 0xf000, 0x34d010})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe2$watch_queue(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000380)={0x6, 0x0, [{0xa18, 0x0, 0x491}, {0xb22, 0x0, 0x4}, {0x91b, 0x0, 0x7}, {0x15f, 0x0, 0x9}, {0x9c, 0x0, 0xfffffffffffffff7}, {0xbae, 0x0, 0x6}]})

366.218486ms ago: executing program 2 (id=681):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = fsopen(&(0x7f0000000000)='incremental-fs\x00', 0x3d057b97055c6ad4)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80, 0x0, 0x0, 0xfffffffc}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=@ipv4_newroute={0x20, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x20}, [@RTA_METRICS={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004840}, 0x0)

365.433021ms ago: executing program 4 (id=682):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) (async)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
r3 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r3, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev={0xfe, 0x80, '\x00', 0x31}}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c00000010000305005b68fdce0afc5924000000", @ANYRES32=0x0, @ANYBLOB="0000000006100000140012800b00010062726964676500000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x440b0) (async)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c00000010000305005b68fdce0afc5924000000", @ANYRES32=0x0, @ANYBLOB="0000000006100000140012800b00010062726964676500000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x440b0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x8) (async)
r5 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000)
getsockname$packet(r5, &(0x7f0000000600)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="4400000010000104fcfffffffbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="0315000004000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r6], 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

363.555635ms ago: executing program 2 (id=683):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000080)=ANY=[@ANYBLOB="4c0000006c000100279d7000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="1a0000009c28000018003480140035000000000000000000000000696d3000"/52], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x800, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) (async)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x7, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x4, 0x1, 0x2, 0x6, 0x10001, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x8, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x6, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0xb6, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x5, 0x8e, 0xd50, 0x7, 0x2, 0x899, 0x401, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x0, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x4, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x6, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0xfffffff8, 0x201, 0x81, 0xfffffffc, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x40000438, 0x77, 0x9, 0x99, 0x7fffffff, 0x4, 0x5c, 0x1, 0x1000, 0xfffff801, 0x5], [0x4, 0xfffffffe, 0x6, 0x637b, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x800008d3, 0x200006, 0x8, 0x3ff, 0x82, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x1, 0x5, 0x9, 0xa, 0x3, 0x9, 0x1, 0xc7, 0xfff, 0x10000a, 0x10000002, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3436, 0x3, 0xd, 0x3, 0x601, 0x0, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x2, 0x7a, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x6300, 0x40, 0xfb, 0x1005, 0x9, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0xfffffffc, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0x8, 0x32d, 0x0, 0x1ff, 0x2000803, 0xfffffffc, 0x90000, 0x0, 0x1b3a, 0x81, 0x3, 0x7, 0x3, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0x82, 0x9, 0x4, 0x463f, 0x4, 0x2, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x255fdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xf, 0xffff}, {0xffe0, 0xfff3}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x4}}]}, 0x30}}, 0x44800) (async)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r7 = dup(r6) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000001200)=0x8a4, 0x4) (async)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bbr', 0x3) (async)
syz_emit_ethernet(0x46, &(0x7f0000000500)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x5, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, {[@lsrr={0x83, 0xb, 0xe4, [@initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010100]}, @generic={0x89, 0x2}]}}, {{0xfffc, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x8, 0x61}}}}}}, 0x0) (async)
sendto$inet(r0, &(0x7f00000001c0)="27b38f1e1b4a2d032a0ba03ae8afe3844726b6fa32a9cc0892eebfdd84a9b3894844dec2dd5aa75f6e80ad181846c1eeb7ae88e921fcf176bd7d24475f2da1cf272ad4875abdb6", 0x47, 0x0, 0x0, 0x0) (async)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0xa, 0xb, 0x0, 0x8001}]}, 0x10) (async)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

174.351632ms ago: executing program 2 (id=684):
madvise(&(0x7f000037a000/0x3000)=nil, 0x3000, 0x65)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xe, {"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", 0xfffffffffffffd6f}}, 0x1006)
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa07, &(0x7f0000000000)={{&(0x7f0000235000/0x2000)=nil, 0x2000}})

130.396699ms ago: executing program 2 (id=685):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x2000c08d)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x85)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
socket$qrtr(0x2a, 0x2, 0x0)

129.366139ms ago: executing program 0 (id=686):
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x14, r3, 0x1, 0x4, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x48c1}, 0x0) (async)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)={0xf8, r3, 0x10, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x64010100}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x5}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_vlan\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6ec}, @IPVS_CMD_ATTR_SERVICE={0x58, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x13}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast2}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e23}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2c, 0x19}}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x29, 0x6}}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x18}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x3b}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'sh\x00'}]}]}, 0xf8}}, 0x2)
r4 = syz_open_dev$dvb_dvr(&(0x7f0000000180), 0x401, 0x501001)
ioctl$DVB_DVR_DMX_SET_BUFFER_SIZE(r4, 0x6f2d, 0xffffffffa8ef77e9) (async)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000040)=0xc)
sendmsg$nl_route(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="380000002000010027bd7200fddbdf250a0020400000000308000000080018004e224e2214000200fe800000000000000000000000000017"], 0x38}, 0x1, 0x0, 0x0, 0x24040804}, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nbd(&(0x7f0000002200), 0xffffffffffffffff) (async)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0)

129.138806ms ago: executing program 2 (id=687):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
fchmod(r1, 0x2)
bind$bt_hci(r1, &(0x7f0000000000)={0x27}, 0x62)
listen(r1, 0x3)
close(r1)
pwritev(r0, &(0x7f0000000780)=[{&(0x7f0000000180)="80fd0fe874bf", 0x6}], 0x1, 0x0, 0x9)

61.036596ms ago: executing program 4 (id=688):
r0 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r1 = fsopen(&(0x7f0000000100)='exfat\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x82)
fchdir(r2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {<r3=>0xee00, 0xee00}}, './file0\x00'})
quotactl_fd$Q_SETINFO(r0, 0xffffffff80000602, r3, &(0x7f0000000280)={0x5, 0x80000001, 0x0, 0x5})
r4 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000000)="35072c543da70eac75941536741b2fe697941dd67f", 0x1}, {&(0x7f0000000180)="f79d8a9be98ebd84bf45be228de27cd0e8ddf2c948e17de999768a7d81f97d56e686c2e3e7913445caa34189ca5704dca15671f8755238f528fa3b49902c019f0e76817147668f5fe40e03dff04ff5944ab14f20e669c308dc04df2ebf6d4b732597e1fc2c97a7206f498ba8458ed26243324af596a67436711a4ac978c37da9288f7b78959e2810d4955822553e1b9af7eef67bc571f3478151bdbfae06afa8c171661e04c0e9f921e555fe5d130a2f0a918567a294692a049014b1b77d1ce86211caa1b5222aa1c74806fa3c2264ac941152e4182ff2346975a7fa39aa321e6ac1c151d2bd0b8684ffb64bc3ab2d52182736fbe40ae438", 0xf8}, {&(0x7f0000001780)="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", 0xff}, {&(0x7f0000001880)="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", 0x1000}, {&(0x7f0000000380)="6cc8c8ae4fbd01401dd5ccc83dd48d82f838c4a50df979491d2912fc58c4e61ec049065de53850bfab9743d2f61bab934423f3db42366709901f7565500f10aa1bb9126fd86321e231dd873f7fe870c6e1e41f5eb65bedfb2b07d4e80fa4f6574ec0e351a208043a44b8deaa145086d8e65a14539389fe8567303532720f", 0x7e}, {&(0x7f0000000600)="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", 0x1a7}, {&(0x7f0000000500)="c69107c08608339e06422551a4065f735f2003fa6d1a52646286e775b6ac70b545a8f5f69cfd47e3ed93493f2fa3f4ab5679d88a03a1eefe3c572f7fab9afe15245c493663a320d4edfa2afb3f42973cc4ead3a33eeda5296e8bb8a1cbd393b59b5927717aee381ac44b8b1f5cb731acab0e6a291eb863274e558e5d064a", 0x7e}, {&(0x7f0000001600)="aa4db9221b028cfd288fcf42fc07a528b566edc2732ef404507581561776bc7150c0c9a1de9b7a6944b9b315f27a28780abda553fa2604210d7d8500ff109b359b1174178b3386f34927afadde701e2ac9e3b09f5166b6d1f9d37e30282fd099932567b95130a82df743dadd9ebdcbaf26c52f1ee98d77b0ddffc3116a28cb62fd27ef48693e02292af6470d82a27664fee1c68c1e4b059521edb995c8fa3bb695870d8a8d90b7b5719792906fbfdf8ea8cad8287a848662d6030f2013c35262b266d4b60b75d70de04e87cd6b7e50b82c60837a1b81cae83e8103e19a56eacf4de8590a6e23d89c7dd9cf907230b39c11c163b83d", 0xf5}], 0x8, 0x0, 0x0, 0x1f00c00e}, 0x0)
r5 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r5, 0x403c6f2b, &(0x7f0000001e40)={0x6, {"2ac78e02ff04856af9fb71f0d3fe13be", "3dfab043e15fad27a639f105b5e9f977", "47eb0b1889b90f105d66b3e5a7c94742"}, 0x4, 0x4})
r6 = syz_open_dev$dvb_demux(&(0x7f0000001e00), 0x0, 0x2000)
ioctl$DVB_DEMUX_DMX_SET_FILTER(r6, 0x403c6f2b, &(0x7f0000001e40)={0x6, {"2ac78e02ff04856af9fb71f0d3fe13be", "3dfab043e15fad27a639f105b5e9f977", "47eb0b7c4fb9191024da8887f94ba4fb"}, 0x4, 0x5})
prctl$PR_SET_TIMERSLACK(0x1d, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000001, 0x13, r0, 0x0)
write(r4, &(0x7f0000000080)="b33d667b3f8174bdd9413838de2a3fb4094d2b3eaf81e39e9eebce918da49a5540fc1c9b3c9763e9659e9dc5937551e4d5bb5623515d33fdba9b5cfb8769ec4bbe7edb03ddd2e2d4ac7ea64c90f38ca5b86202a8b6c58e1270bd53b39ffb0fdc036eb4725f840a513fe284f6d98130ddf09a65cf12e6808a047771498135e85bc5c998946184de88995a3c2ba8df80613db5ceea01c8f278537862173862495d95e0c5aba97cfc57d9ddf221db02a1face5fe5f2e3b8f58b330daae3f3617f", 0xbf)
socket$inet6_udp(0xa, 0x2, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000002ac0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000002c40)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r7, &(0x7f0000002d40)={0x0, 0x0, &(0x7f0000002d00)={&(0x7f0000002c80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="e5ff2c5c0000000000000000000008000300", @ANYRES32=r9, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4000894}, 0x20004050)
syz_clone(0x5800900, 0x0, 0x0, 0x0, 0x0, 0x0)

60.368677ms ago: executing program 0 (id=689):
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000880)={0x498, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0xd8, 0x2a, [@mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0x2, 0x3}}, @dsss={0x3, 0x1, 0x9}, @random={0x2, 0xbe, "40618851f88c2b4398a6d1b60645cbc0ffe949c3552cb2a42efd7b91e0d10b040c9c5755e580f35f74eb9f9c5d3953a5d91c35eefb780156fd37f72aa77c99db1ee3902fc617a4e540d01f520b6dc37a93a0cf68af084117622921dc93111ad37926adc558efb3dc82651560b3334d1d729748bf5de8ea39d36fbe7dc78a708b9c3e2ca3fbc3c6522ba71a1bf8e3d8e10432e4afe0660541739df4406443b4a8d7bd0e69a7b3dc4fd332e5e52a9588ec9da574f9d4d18b400ce7464025b8"}, @mesh_id={0x72, 0x6}]}, @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0x1b, 0xfc, "4c53546d11c172ae23cb1ec20baabceac30cf18192c213"}], @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0x10, 0xf9, "8e029d5c39116b992f3dd220"}, @NL80211_ATTR_FILS_ERP_RRK={0xb1, 0xfc, "8ead6472a73cca146d4d98059b4e8824164b9accfd5329a75d4f72cb53047416b34da3e38ed4fd38c10fe87c06b4a478ed4cbbababcb62fa705a528ebebcc0d57cf9c366c2c593334eebff99d2787dfaa8739845d9021ce70feed55f016b52834f119f3f27e68e7eaf6040e84cc03a4c401806878b196c7fbd4c374a2ad13d3bbe17397ff5c79479e6a29a62f8fd64c80afd300177162eb21ebc2b3693eb35ad840d6bad3f9984e76aa90d5a12"}], @fils_params=[@NL80211_ATTR_FILS_ERP_REALM={0xf1, 0xfa, "ced3b9a1c28836884b170d2235c601571d3656209476692a2c52e21be386d3485901a59a4bc9cfeac3a54d95cbb1d72e06ea8c56dd15ec955f17a5a9562468798a6f15e43193b8c9d916f79fbee306d3d6f64178488a50c88d150358e94a184df160be8b0f32094358bede2f866ffa2116859166e45844b83f50bef4363cf3da84745af1b5bcfb677d50b763082fbeaafc001aa76fa8f41b3c4554864443fc3ed2401feae875a0a89eaf02fd3d8d8839b1c35ccec09587f7db7a608aae238f712108f06cf594d9b85d308ee8a828f9e7ec217db8119c363b410783bff0401c9f480db0e2a43382054d23174b8c"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x5be8}, @NL80211_ATTR_FILS_ERP_RRK={0x22, 0xfc, "fcd35c58c9f9c8420bfac28dcec2d4b8b38d9b648a1258a6d3ced99f924c"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xa, 0xf9, "9b17e409093c"}], @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0xcd, 0xfc, "da2dcde78a46af2a30062e9da850ca33bf0de67b62573568185a6b472ea84b4ef7f47418a5d9c6df690aa6eeac229dcd9c4e42b6be7005974e1ad144ec05bf3a048aad3734095e5eb079d33c390c3ba2030fefcd1daefd527e2bcec0cb422d6c1cb42af058d2f680ee149d1a9b57da3ad23a3924ec04dcead401ebb6ea3908e6ad6d83ee11ee31c2c54e98098bdc635821ab418be98b6bf22dae2d92b2646f5ac90055729a8d5cd61ddaa454d4c549e692d80aa05bf2fc17847d825702e2337c5c9be23d06fa8248cb"}, @NL80211_ATTR_FILS_ERP_RRK={0x68, 0xfc, "d20d87fa39551341d7d00d180389058b520cb809e21503464702a5d44960d2200d59b0c25c8278110997b6cbcbc89e0e9ab8e2f2fe0fe16dd24640ef11d8bc41d4e89758037a767c5dae3d71dcdd41d5b19d691b418e618988843938c135fc7b04f0ba7c"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x12, 0xf9, "d0a845c958f4ed30c4ace0ebc2e8"}, @NL80211_ATTR_FILS_ERP_REALM={0x49, 0xfa, "0665d450547c22f8aeacf37c2baa6a3ff6c8f9e125dc627cc6a2fcd450363a56b143504e47e2b932e9ed20adf7a3ed714d1bb21ac48aed7a19e042bd4b0304db99c771bda0"}]]}, 0x498}, 0x1, 0x0, 0x0, 0x8811}, 0x0) (async)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000880)={0x498, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0xd8, 0x2a, [@mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0x2, 0x3}}, @dsss={0x3, 0x1, 0x9}, @random={0x2, 0xbe, "40618851f88c2b4398a6d1b60645cbc0ffe949c3552cb2a42efd7b91e0d10b040c9c5755e580f35f74eb9f9c5d3953a5d91c35eefb780156fd37f72aa77c99db1ee3902fc617a4e540d01f520b6dc37a93a0cf68af084117622921dc93111ad37926adc558efb3dc82651560b3334d1d729748bf5de8ea39d36fbe7dc78a708b9c3e2ca3fbc3c6522ba71a1bf8e3d8e10432e4afe0660541739df4406443b4a8d7bd0e69a7b3dc4fd332e5e52a9588ec9da574f9d4d18b400ce7464025b8"}, @mesh_id={0x72, 0x6}]}, @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0x1b, 0xfc, "4c53546d11c172ae23cb1ec20baabceac30cf18192c213"}], @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0x10, 0xf9, "8e029d5c39116b992f3dd220"}, @NL80211_ATTR_FILS_ERP_RRK={0xb1, 0xfc, "8ead6472a73cca146d4d98059b4e8824164b9accfd5329a75d4f72cb53047416b34da3e38ed4fd38c10fe87c06b4a478ed4cbbababcb62fa705a528ebebcc0d57cf9c366c2c593334eebff99d2787dfaa8739845d9021ce70feed55f016b52834f119f3f27e68e7eaf6040e84cc03a4c401806878b196c7fbd4c374a2ad13d3bbe17397ff5c79479e6a29a62f8fd64c80afd300177162eb21ebc2b3693eb35ad840d6bad3f9984e76aa90d5a12"}], @fils_params=[@NL80211_ATTR_FILS_ERP_REALM={0xf1, 0xfa, "ced3b9a1c28836884b170d2235c601571d3656209476692a2c52e21be386d3485901a59a4bc9cfeac3a54d95cbb1d72e06ea8c56dd15ec955f17a5a9562468798a6f15e43193b8c9d916f79fbee306d3d6f64178488a50c88d150358e94a184df160be8b0f32094358bede2f866ffa2116859166e45844b83f50bef4363cf3da84745af1b5bcfb677d50b763082fbeaafc001aa76fa8f41b3c4554864443fc3ed2401feae875a0a89eaf02fd3d8d8839b1c35ccec09587f7db7a608aae238f712108f06cf594d9b85d308ee8a828f9e7ec217db8119c363b410783bff0401c9f480db0e2a43382054d23174b8c"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x5be8}, @NL80211_ATTR_FILS_ERP_RRK={0x22, 0xfc, "fcd35c58c9f9c8420bfac28dcec2d4b8b38d9b648a1258a6d3ced99f924c"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xa, 0xf9, "9b17e409093c"}], @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0xcd, 0xfc, "da2dcde78a46af2a30062e9da850ca33bf0de67b62573568185a6b472ea84b4ef7f47418a5d9c6df690aa6eeac229dcd9c4e42b6be7005974e1ad144ec05bf3a048aad3734095e5eb079d33c390c3ba2030fefcd1daefd527e2bcec0cb422d6c1cb42af058d2f680ee149d1a9b57da3ad23a3924ec04dcead401ebb6ea3908e6ad6d83ee11ee31c2c54e98098bdc635821ab418be98b6bf22dae2d92b2646f5ac90055729a8d5cd61ddaa454d4c549e692d80aa05bf2fc17847d825702e2337c5c9be23d06fa8248cb"}, @NL80211_ATTR_FILS_ERP_RRK={0x68, 0xfc, "d20d87fa39551341d7d00d180389058b520cb809e21503464702a5d44960d2200d59b0c25c8278110997b6cbcbc89e0e9ab8e2f2fe0fe16dd24640ef11d8bc41d4e89758037a767c5dae3d71dcdd41d5b19d691b418e618988843938c135fc7b04f0ba7c"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x12, 0xf9, "d0a845c958f4ed30c4ace0ebc2e8"}, @NL80211_ATTR_FILS_ERP_REALM={0x49, 0xfa, "0665d450547c22f8aeacf37c2baa6a3ff6c8f9e125dc627cc6a2fcd450363a56b143504e47e2b932e9ed20adf7a3ed714d1bb21ac48aed7a19e042bd4b0304db99c771bda0"}]]}, 0x498}, 0x1, 0x0, 0x0, 0x8811}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0) (async)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000380)={0x2, @sdr})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000b00)=@ipv6_newaddrlabel={0x38, 0x48, 0x1, 0x0, 0x0, {}, [@IFAL_LABEL={0x8, 0x2, 0x1}, @IFAL_ADDRESS={0x14, 0x1, @mcast1}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000000}, 0x20048000) (async)
sendmsg$nl_route(r4, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000b00)=@ipv6_newaddrlabel={0x38, 0x48, 0x1, 0x0, 0x0, {}, [@IFAL_LABEL={0x8, 0x2, 0x1}, @IFAL_ADDRESS={0x14, 0x1, @mcast1}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000000}, 0x20048000)
sendmsg$NFT_MSG_GETCHAIN(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="1400000004eb000100000000000000000aea0005"], 0x14}, 0x1, 0x0, 0x0, 0x4040080}, 0x20048040)
socket(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001a80)="d8000000180081064e81f782db4cb904021d0800fe007c05e8fe50a10a000600014002020c600e41b0000900ac000a0501000000160012000a00ff120048035c3b61c1d67f6f94007134cf6efb8007a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x894)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan1\x00', <r6=>0x0})
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
close(0x3)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r8, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt(r8, 0x84, 0x80, &(0x7f0000000000)="1400000009000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @ipv4={'\x00', '\xff\xff', @empty}}], 0x1c)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x18, r2, 0x2e132baa597db60e, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_WANT_1X_4WAY_HS={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x10}, 0x24000084)
sendmsg$inet(r8, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000380)='Y', 0x1}], 0x1}, 0x1) (async)
sendmsg$inet(r8, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000380)='Y', 0x1}], 0x1}, 0x1)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r7, 0x84, 0x5, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e24, 0x6, @local, 0x7}}}, 0x84)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r2, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x2) (async)
syz_open_dev$tty1(0xc, 0x4, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) (async)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r9, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000500)='./file0\x00', 0x150)
getxattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000000)=@known='security.selinux\x00', 0x0, 0x0)

819.465µs ago: executing program 0 (id=690):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00')
preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000400)=""/272, 0x110}], 0x1, 0x400a1, 0xfffffffd)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='mpol=bynd=s'])
ioctl$FS_IOC_ENABLE_VERITY(r1, 0x40806685, &(0x7f0000000340)={0x1, 0x1, 0x1000, 0xba, &(0x7f0000000280)="e1bd0451fda41f3eadb34a431f4e23421c0b442de8e6f4335181ac9967ebb83f15bedf67af80112e3b318457d00d8842b70e2b903c7fecc0856b7d9b9c06797c9054c9c87624433d6a8d090fb308229594f133ad861c59fce1d43282cb10c0cd76c8197932b7b483bf3e9ac8f97c4056475e7e9e54fe37d966d3bac0e3df074567cf14bdeb329370e0f49c9abdf069edacdf2dff6fb704d5983164199894dcbc8b5b4c91f53e8a10f19f10a1bf96aa7742862778853a849ce296", 0x7c, 0x0, &(0x7f0000000080)="4a5b8350f1e557afd07f99d65a4424f9dc52c8918ef9da096ee42d44a07127985e8f3922fa33150a8ca9efc352eb10513784bd7139a702d27c053decaa2311821bbf6a556c90d7d5bb0857b40bcc83f80030cf4abf4ee0799896e7a2307b89c721956dc0c7f4d4f2fb0122a099db3617ec292ec19caf816bdbfa6c26"})
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bsg/3:0:0:0\x00', 0x1c90c1, 0x0)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000140))
ioctl$SIOCX25GCALLUSERDATA(r1, 0x89e4, &(0x7f00000001c0)={0x32, "1700d75cc4a181aba81acbb88590b1104f41adadc11b79f9cc14fe17d1cb3a260d6530857d70c5aa315e654e542afb46f8a95a27b688d73f9a637fd3992a5c0cc2ecc067bfa5da28f0c283778ff86cab8f9e00d12467baf7f3f94f199fa7002eacebee508400d5266bcff4930c185537befb370b56319b2f8d3f64ebcf3b7d53"})
r3 = socket$inet6(0xa, 0x800, 0x1)
shutdown(r3, 0x1)

0s ago: executing program 2 (id=691):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000000c0)={0xf0f045})
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = geteuid()
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@allocspi={0x1a0, 0x16, 0x201, 0x70bd2d, 0x25dfdbfc, {{{@in=@rand_addr=0x64010102, @in=@rand_addr=0x64010100, 0x4e21, 0xeb1, 0x4e22, 0x1, 0x2, 0xa0, 0x70, 0x3b, 0x0, r2}, {@in=@local, 0x4d4, 0x33}, @in6=@dev={0xfe, 0x80, '\x00', 0x25}, {0x1, 0x1, 0x5, 0x2, 0x80000000, 0x8001, 0x200, 0x6}, {0x40, 0x6, 0x6, 0x7}, {0x0, 0x8, 0xb}, 0x70bd26, 0x3504, 0xa, 0x3, 0x10, 0x1}, 0x0, 0xe}, [@lastused={0xc}, @migrate={0x9c, 0x11, [{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in=@empty, @in=@local, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xff, 0x2, 0x0, 0x3501, 0x2, 0x2}, {@in=@private=0xa010100, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@mcast1, @in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0xff, 0xb0cfe76dfca7b43, 0x0, 0x3504, 0x0, 0xf}]}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="3800000040000701fefffff8ff000000017c0000040042800c00018006000600800a000014000280100014800c0016800800b600884709"], 0x38}, 0x1, 0x0, 0x0, 0x4048011}, 0xc800)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000000206050000000000000000000100000605000400000000000900020073797a31000000000c000780050015008b0000000500050002000000050001000600000014000300686173683a69702c706f72742c6970"], 0x58}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="5206"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r4)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x24, r6, 0x200, 0x70bd2d, 0x25dfdc02, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x401}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x24}}, 0x40000c0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000100)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x41100, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1313f, 0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)}, 0x94)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r8=>0xffffffffffffffff})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r9, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000280)={0x40, r10, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_STA_FLAGS={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
close(r7)
r12 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r12, 0xc004743e, 0x110e22fff6)
close_range(r12, r0, 0x0)
ioctl$TUNGETVNETLE(r7, 0x4010744d, &(0x7f0000000180))
r13 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r13, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c00000046000701fefffffffcdbdf25047c0000080001"], 0x1c}}, 0xc000)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000018000100feffffff0001000000000000000000000000ffffe0000002fc0100000000000000000000000000010001071c4e230005000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c000000ac14142500000000000000000000000000000000000000009201000000000000a39b000000000000ffff0000000000001c250800000000000500000000000000fcffffffffffffff0000000000000000ffffffffffffffff00000000000000001f00000000000000fefffffffffffffffafffffffcffffff00000000800000000035000002"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0xc084)

kernel console output (not intermixed with test programs):

my_hcd
[   60.499232][ T1304] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[   60.509793][ T6467] openvswitch: netlink: Flow actions attr not present in new flow.
[   60.567229][ T6023] usb 8-1: Using ep0 maxpacket: 32
[   60.572229][ T6471] netlink: 'syz.1.126': attribute type 4 has an invalid length.
[   60.574068][ T6023] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[   60.577279][ T6471] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[   60.577421][ T6023] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   60.585114][ T6023] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[   60.588485][ T6023] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   60.591616][ T6023] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   60.594745][ T6023] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   60.598882][ T6023] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   60.602854][ T6023] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.608173][ T6023] usb 8-1: config 0 descriptor??
[   60.629219][ T1304] usb 7-1: device descriptor read/64, error -71
[   60.765002][ T6478] "syz.1.128" (6478) uses obsolete ecb(arc4) skcipher
[   60.817871][ T6023] usblp 8-1:0.0: usblp1: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   60.879448][ T1304] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[   61.009221][ T1304] usb 7-1: device descriptor read/64, error -71
[   61.119680][ T1304] usb usb7-port1: attempt power cycle
[   61.201232][    C3] plantronics 0003:047F:FFFF.0003: usb_submit_urb(ctrl) failed: -1
[   61.259327][ T5946] Bluetooth: hci3: command tx timeout
[   61.259407][ T5294] Bluetooth: hci2: command tx timeout
[   61.259502][ T5934] Bluetooth: hci1: command tx timeout
[   61.339598][ T5294] Bluetooth: hci0: command tx timeout
[   61.446310][ T5998] usb 8-1: USB disconnect, device number 2
[   61.453909][ T5998] usblp1: removed
[   61.459460][ T1304] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[   61.480212][ T1304] usb 7-1: device descriptor read/8, error -71
[   61.729318][ T1304] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[   61.769979][ T1304] usb 7-1: device descriptor read/8, error -71
[   61.786495][ T6502] __nla_validate_parse: 5 callbacks suppressed
[   61.786507][ T6502] netlink: 16 bytes leftover after parsing attributes in process `syz.0.133'.
[   61.817311][ T6504] sctp: [Deprecated]: syz.0.134 (pid 6504) Use of struct sctp_assoc_value in delayed_ack socket option.
[   61.817311][ T6504] Use struct sctp_sack_info instead
[   61.846718][ T6504] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=6504 comm=syz.0.134
[   61.879426][ T1304] usb usb7-port1: unable to enumerate USB device
[   61.949645][ T6513] openvswitch: netlink: Tunnel attr 9 has unexpected len 4 expected 2
[   61.953196][ T6513] openvswitch: netlink: Tunnel attr 9 has unexpected len 4 expected 2
[   61.956693][ T6513] openvswitch: netlink: Tunnel attr 9 has unexpected len 4 expected 2
[   61.988080][   T24] usb 5-1: USB disconnect, device number 2
[   62.089440][ T6520] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   62.370347][ T6537] MTD: Attempt to mount non-MTD device "/dev/sr0"
[   62.379667][ T6537] cramfs: wrong magic
[   62.407944][ T6542] netlink: 8 bytes leftover after parsing attributes in process `syz.0.146'.
[   62.414207][ T6542] netlink: 20 bytes leftover after parsing attributes in process `syz.0.146'.
[   62.426883][ T1155] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   62.429358][ T6542] netlink: 8 bytes leftover after parsing attributes in process `syz.0.146'.
[   62.430877][ T1155] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   62.434285][ T6542] netlink: 20 bytes leftover after parsing attributes in process `syz.0.146'.
[   62.437801][ T1155] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   62.437834][ T1155] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   62.518330][ T6546] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[   62.526332][ T6546] CIFS mount error: No usable UNC path provided in device string!
[   62.526332][ T6546] 
[   62.529587][ T6546] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[   62.534689][ T6546] gfs2: error -5 reading superblock
[   62.559703][ T6547] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64 sclass=netlink_route_socket pid=6547 comm=syz.0.147
[   63.162271][ T6549] netlink: 4 bytes leftover after parsing attributes in process `syz.3.150'.
[   63.235546][ T6557] gfs2: gfs2 mount does not exist
[   63.245288][ T6557] program syz.3.152 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   63.252630][ T6557] netlink: 8 bytes leftover after parsing attributes in process `syz.3.152'.
[   63.330185][   T40] kauditd_printk_skb: 67 callbacks suppressed
[   63.330202][   T40] audit: type=1400 audit(1770459323.074:333): avc:  denied  { map_write } for  pid=6567 comm="syz.2.154" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   63.333892][ T6568] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   63.412944][ T6572] macvtap1: entered promiscuous mode
[   63.415429][ T6572] macvtap1: entered allmulticast mode
[   63.417565][ T6572] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[   63.420879][ T6572] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[   63.426312][ T6572] team0: Device macvtap1 failed to register rx_handler
[   63.430131][ T6572] mac80211_hwsim hwsim2 wlan0: left allmulticast mode
[   63.431556][   T40] audit: type=1400 audit(1770459323.174:334): avc:  denied  { create } for  pid=6573 comm="syz.2.157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   63.432519][ T6572] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[   63.441972][   T40] audit: type=1400 audit(1770459323.174:335): avc:  denied  { setopt } for  pid=6573 comm="syz.2.157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   63.557207][   T40] audit: type=1400 audit(1770459323.294:336): avc:  denied  { write } for  pid=6589 comm="syz.2.161" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   63.565766][ T6590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.161'.
[   63.603355][   T40] audit: type=1400 audit(1770459323.344:337): avc:  denied  { setopt } for  pid=6598 comm="syz.0.163" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   63.616291][   T40] audit: type=1400 audit(1770459323.354:338): avc:  denied  { map } for  pid=6598 comm="syz.0.163" path="socket:[12475]" dev="sockfs" ino=12475 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   63.626316][   T40] audit: type=1400 audit(1770459323.354:339): avc:  denied  { read accept } for  pid=6598 comm="syz.0.163" path="socket:[12475]" dev="sockfs" ino=12475 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   63.636907][   T40] audit: type=1400 audit(1770459323.374:340): avc:  denied  { setopt } for  pid=6601 comm="syz.2.164" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   63.649347][   T40] audit: type=1400 audit(1770459323.374:341): avc:  denied  { map } for  pid=6601 comm="syz.2.164" path="/dev/comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   63.656806][   T40] audit: type=1400 audit(1770459323.374:342): avc:  denied  { execute } for  pid=6601 comm="syz.2.164" path="/dev/comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   63.683976][ T6606] netlink: 8 bytes leftover after parsing attributes in process `syz.0.166'.
[   63.692487][ T6611] netlink: 12 bytes leftover after parsing attributes in process `syz.2.167'.
[   63.904878][ T6632] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6632 comm=syz.2.174
[   64.030415][ T1304] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   64.194012][ T1304] usb 8-1: New USB device found, idVendor=0fe9, idProduct=db55, bcdDevice=69.fb
[   64.197128][ T1304] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=201
[   64.200169][ T1304] usb 8-1: Product: syz
[   64.201537][ T1304] usb 8-1: Manufacturer: syz
[   64.203458][ T1304] usb 8-1: SerialNumber: syz
[   64.208141][ T1304] usb 8-1: config 0 descriptor??
[   64.214531][ T1304] dvb-usb: found a 'DigitalNow DVB-T Dual USB' in warm state.
[   64.217810][ T1304] dvb-usb: bulk message failed: -22 (2/0)
[   64.223979][ T1304] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   64.228148][ T1304] dvbdev: DVB: registering new adapter (DigitalNow DVB-T Dual USB)
[   64.231302][ T1304] usb 8-1: media controller created
[   64.240759][ T1304] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   64.421940][ T6614] dvb-usb: bulk message failed: -22 (4/0)
[   64.424583][ T6614] cxusb: i2c read failed
[   64.428787][ T1304] cxusb: set interface failed
[   64.431436][ T1304] dvb-usb: bulk message failed: -22 (1/0)
[   64.449961][ T1304] DVB: Unable to find symbol mt352_attach()
[   64.451881][ T1304] dvb-usb: bulk message failed: -22 (5/0)
[   64.453873][ T1304] zl10353_read_register: readreg error (reg=127, ret==-121)
[   64.456235][ T1304] dvb-usb: no frontend was attached by 'DigitalNow DVB-T Dual USB'
[   64.509254][ T1304] rc_core: IR keymap rc-dvico-mce not found
[   64.511205][ T1304] Registered IR keymap rc-empty
[   64.514673][ T1304] rc rc0: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.3/usb8/8-1/rc/rc0
[   64.519281][ T1304] input: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.3/usb8/8-1/rc/rc0/input7
[   64.525402][ T1304] dvb-usb: schedule remote query interval to 100 msecs.
[   64.527731][ T1304] dvb-usb: DigitalNow DVB-T Dual USB successfully initialized and connected.
[   64.531418][ T1304] usb 8-1: USB disconnect, device number 3
[   64.559055][ T1304] dvb-usb: DigitalNow DVB-T Dual USB successfully deinitialized and disconnected.
[   65.306638][ T6671] validate_nla: 1 callbacks suppressed
[   65.306650][ T6671] netlink: 'syz.3.189': attribute type 1 has an invalid length.
[   65.510756][ T6687] tmpfs: Bad value for 'mpol'
[   65.522370][ T6691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6691 comm=syz.2.194
[   65.526390][ T6691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6691 comm=syz.2.194
[   65.531507][ T6691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6691 comm=syz.2.194
[   65.536093][ T6691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6691 comm=syz.2.194
[   65.540899][ T6691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6691 comm=syz.2.194
[   65.546044][ T6691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6691 comm=syz.2.194
[   65.553560][ T6691] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=6691 comm=syz.2.194
[   65.765843][ T6709] A link change request failed with some changes committed already. Interface vlan2 may have been left with an inconsistent configuration, please check.
[   66.413837][ T6739] tmpfs: Bad value for 'huge'
[   66.778911][ T5294] Bluetooth: hci1: adv larger than maximum supported
[   67.835585][ T6788] mmap: syz.3.222 (6788) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   67.871342][ T6790] QAT: failed to copy from user cfg_data.
[   67.940542][ T6794] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0
[   68.030584][ T6807] xt_hashlimit: overflow, rate too high: 0
[   68.169891][ T6828] Bluetooth: MGMT ver 1.23
[   68.310885][ T6846] Bluetooth: MGMT ver 1.23
[   68.375564][   T40] kauditd_printk_skb: 45 callbacks suppressed
[   68.375575][   T40] audit: type=1400 audit(2000000004.419:388): avc:  denied  { append } for  pid=6856 comm="syz.2.245" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   68.377993][ T6858] random: crng reseeded on system resumption
[   68.386657][ T6857] __nla_validate_parse: 8 callbacks suppressed
[   68.386668][ T6857] netlink: 4 bytes leftover after parsing attributes in process `syz.3.246'.
[   68.387758][   T40] audit: type=1400 audit(2000000004.419:389): avc:  denied  { write } for  pid=6856 comm="syz.2.245" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   68.387783][   T40] audit: type=1400 audit(2000000004.419:390): avc:  denied  { open } for  pid=6856 comm="syz.2.245" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   68.387804][   T40] audit: type=1400 audit(2000000004.439:391): avc:  denied  { read } for  pid=6856 comm="syz.2.245" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   68.445821][ T6857] team0: Port device team_slave_0 removed
[   68.469294][   T61] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[   68.519045][   T40] audit: type=1400 audit(2000000004.559:392): avc:  denied  { search } for  pid=5644 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   68.525973][   T40] audit: type=1400 audit(2000000004.559:393): avc:  denied  { search } for  pid=5644 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   68.532891][   T40] audit: type=1400 audit(2000000004.559:394): avc:  denied  { search } for  pid=5644 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   68.569071][   T40] audit: type=1400 audit(2000000004.609:395): avc:  denied  { read open } for  pid=6871 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1902 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   68.578415][   T40] audit: type=1400 audit(2000000004.619:396): avc:  denied  { getattr } for  pid=6871 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1902 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   68.586922][   T40] audit: type=1400 audit(2000000004.619:397): avc:  denied  { add_name } for  pid=6869 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   68.632725][   T61] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[   68.635398][   T61] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[   68.638082][   T61] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[   68.641392][   T61] usb 5-1: config 250 has no interface number 0
[   68.643952][ T6876] ip6t_srh: unknown srh invflags 51E8
[   68.643999][   T61] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 64
[   68.650004][   T61] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 231, setting to 64
[   68.653507][   T61] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[   68.657781][   T61] usb 5-1: config 250 interface 228 has no altsetting 0
[   68.663328][   T61] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   68.666385][   T61] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   68.669203][   T61] usb 5-1: Product: syz
[   68.670506][   T61] usb 5-1: SerialNumber: syz
[   68.676272][   T61] hub 5-1:250.228: bad descriptor, ignoring hub
[   68.678252][   T61] hub 5-1:250.228: probe with driver hub failed with error -5
[   68.744095][ T6885] netlink: 'syz.2.251': attribute type 2 has an invalid length.
[   68.883308][   T61] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 3 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[   68.988203][ T6898] capability: warning: `syz.2.254' uses 32-bit capabilities (legacy support in use)
[   69.140385][ T6903] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.143698][ T6903] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.172590][    C2] usblp0: nonzero read bulk status received: -71
[   69.210883][ T5978] usb 5-1: USB disconnect, device number 3
[   69.215687][ T5978] usblp0: removed
[   69.567298][ T6914] netlink: 108 bytes leftover after parsing attributes in process `syz.2.259'.
[   69.804864][ T6932] netlink: 4 bytes leftover after parsing attributes in process `syz.0.264'.
[   70.299043][ T6952] Invalid source name
[   70.301330][ T6952] UBIFS error (pid: 6952): cannot open "ubifs", error -22
[   70.515863][ T6965] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   70.521518][ T6966] iommufd_mock iommufd_mock1: Adding to iommu group 10
[   70.646904][ T6976] netlink: 'syz.2.275': attribute type 21 has an invalid length.
[   72.848753][ T6934] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   73.057339][ T6994] kernel read not supported for file /policy (pid: 6994 comm: syz.0.280)
[   73.426915][   T40] kauditd_printk_skb: 12 callbacks suppressed
[   73.426932][   T40] audit: type=1800 audit(2000000009.469:410): pid=7009 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.0.286" name="/pmem0" dev="devtmpfs" ino=710 res=0 errno=0
[   73.488604][ T7013] FAULT_INJECTION: forcing a failure.
[   73.488604][ T7013] name failslab, interval 1, probability 0, space 0, times 1
[   73.493542][ T7013] CPU: 2 UID: 0 PID: 7013 Comm: syz.0.287 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   73.493573][ T7013] Tainted: [L]=SOFTLOCKUP
[   73.493577][ T7013] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   73.493583][ T7013] Call Trace:
[   73.493587][ T7013]  <TASK>
[   73.493592][ T7013]  dump_stack_lvl+0x100/0x190
[   73.493631][ T7013]  should_fail_ex.cold+0x5/0xa
[   73.493643][ T7013]  should_failslab+0xc2/0x120
[   73.493658][ T7013]  ? lsm_blob_alloc+0x68/0x90
[   73.493681][ T7013]  __kmalloc_noprof+0xf6/0x9c0
[   73.493690][ T7013]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   73.493711][ T7013]  ? lsm_blob_alloc+0x68/0x90
[   73.493725][ T7013]  ? __asan_memset+0x23/0x50
[   73.493734][ T7013]  lsm_blob_alloc+0x68/0x90
[   73.493749][ T7013]  security_task_alloc+0x2a/0x260
[   73.493763][ T7013]  copy_process+0x25cc/0x7890
[   73.493788][ T7013]  ? __pfx_copy_process+0x10/0x10
[   73.493807][ T7013]  ? lockdep_init_map_type+0x5c/0x250
[   73.493820][ T7013]  ? lockdep_init_map_type+0x5c/0x250
[   73.493832][ T7013]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[   73.493845][ T7013]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[   73.493864][ T7013]  vhost_task_create+0x1db/0x370
[   73.493878][ T7013]  ? __pfx_vhost_task_create+0x10/0x10
[   73.493890][ T7013]  ? register_lock_class+0x40/0x560
[   73.493905][ T7013]  ? __pfx_vhost_task_fn+0x10/0x10
[   73.493920][ T7013]  ? __pfx___mutex_lock+0x10/0x10
[   73.493948][ T7013]  kvm_mmu_post_init_vm+0x1b3/0x370
[   73.493970][ T7013]  kvm_arch_vcpu_ioctl_run+0x66/0x1830
[   73.493986][ T7013]  ? kvm_vcpu_ioctl+0x150f/0x16d0
[   73.494001][ T7013]  kvm_vcpu_ioctl+0x730/0x16d0
[   73.494014][ T7013]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.494026][ T7013]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   73.494044][ T7013]  ? do_vfs_ioctl+0x226/0x13e0
[   73.494055][ T7013]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   73.494064][ T7013]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[   73.494078][ T7013]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   73.494099][ T7013]  ? selinux_file_ioctl+0x139/0x290
[   73.494110][ T7013]  ? selinux_file_ioctl+0xb4/0x290
[   73.494124][ T7013]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.494140][ T7013]  __x64_sys_ioctl+0x18e/0x210
[   73.494151][ T7013]  do_syscall_64+0xc9/0xf80
[   73.494165][ T7013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.494177][ T7013] RIP: 0033:0x7f475419aeb9
[   73.494186][ T7013] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   73.494196][ T7013] RSP: 002b:00007f47550f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   73.494207][ T7013] RAX: ffffffffffffffda RBX: 00007f4754415fa0 RCX: 00007f475419aeb9
[   73.494214][ T7013] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   73.494220][ T7013] RBP: 00007f47550f5090 R08: 0000000000000000 R09: 0000000000000000
[   73.494226][ T7013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.494232][ T7013] R13: 00007f4754416038 R14: 00007f4754415fa0 R15: 00007ffcbef3fb98
[   73.494246][ T7013]  </TASK>
[   73.758252][ T7018] overlayfs: conflicting lowerdir path
[   73.847988][ T7025] netlink: 'syz.2.290': attribute type 1 has an invalid length.
[   73.870277][ T7025] 8021q: adding VLAN 0 to HW filter on device bond2
[   73.887400][ T7025] bond2: (slave geneve2): making interface the new active one
[   73.892923][ T7025] bond2: (slave geneve2): Enslaving as an active interface with an up link
[   74.269160][   T40] audit: type=1400 audit(2000000010.309:411): avc:  denied  { create } for  pid=7035 comm="syz.0.293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   74.276227][   T40] audit: type=1400 audit(2000000010.319:412): avc:  denied  { write } for  pid=7035 comm="syz.0.293" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[   74.291428][ T7036] bond1 (unregistering): Released all slaves
[   74.329254][ T7038] netlink: 28 bytes leftover after parsing attributes in process `syz.0.293'.
[   74.659428][   T10] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   74.667647][   T40] audit: type=1800 audit(2000000010.709:413): pid=7046 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.296" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[   74.780007][   T40] audit: type=1400 audit(2000000010.819:414): avc:  denied  { name_connect } for  pid=7048 comm="syz.2.297" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   74.831104][   T10] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[   74.835056][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   74.838740][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   74.842630][   T10] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   74.848587][   T10] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[   74.851951][   T10] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[   74.854590][   T10] usb 5-1: Manufacturer: syz
[   74.857552][   T10] usb 5-1: config 0 descriptor??
[   74.936090][   T40] audit: type=1400 audit(2000000010.979:415): avc:  denied  { write } for  pid=7056 comm="syz.2.299" name="cgroup.subtree_control" dev="cgroup2" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   74.941050][ T7057] netlink: 14 bytes leftover after parsing attributes in process `syz.2.299'.
[   74.960698][ T7057] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   74.965701][ T7057] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   74.969821][ T7057] bond0 (unregistering): Released all slaves
[   75.267658][   T10] appleir 0003:05AC:8243.0004: unknown main item tag 0x0
[   75.275160][   T10] appleir 0003:05AC:8243.0004: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[   75.473532][ T7040] trusted_key: syz.0.294 sent an empty control message without MSG_MORE.
[   76.085850][   T40] audit: type=1400 audit(2000000012.129:416): avc:  denied  { listen } for  pid=7069 comm="syz.2.302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   76.095264][   T40] audit: type=1400 audit(2000000012.139:417): avc:  denied  { accept } for  pid=7069 comm="syz.2.302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   76.312946][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[   76.315104][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[   76.494655][ T7076] netlink: 40 bytes leftover after parsing attributes in process `syz.3.304'.
[   76.498278][   T40] audit: type=1400 audit(2000000012.539:418): avc:  denied  { connect } for  pid=7075 comm="syz.3.304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   76.504821][   T40] audit: type=1400 audit(2000000012.549:419): avc:  denied  { getopt } for  pid=7075 comm="syz.3.304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   76.759181][ T6022] usb 5-1: reset high-speed USB device number 4 using dummy_hcd
[   76.935734][ T7080] veth1: entered promiscuous mode
[   76.937869][ T7080] veth1: entered allmulticast mode
[   76.950201][ T7080] CIFS mount error: No usable UNC path provided in device string!
[   76.950201][ T7080] 
[   76.953660][ T7080] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[   77.393608][ T7089] openvswitch: netlink: IP tunnel dst address not specified
[   77.469183][ T7096] loop6: detected capacity change from 0 to 2640
[   77.472565][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.475831][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.478592][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.481188][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.483409][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.485743][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.491355][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.494223][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.497081][ T7096] ldm_validate_partition_table(): Disk read failed.
[   77.510031][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.512477][ T7096] Buffer I/O error on dev loop6, logical block 0, async page read
[   77.514882][ T7096] Dev loop6: unable to read RDB block 0
[   77.516751][ T7096]  loop6: unable to read partition table
[   77.520634][ T7096] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[   77.654973][ T7116] netlink: 20 bytes leftover after parsing attributes in process `syz.0.315'.
[   77.662107][ T5946] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   77.665560][ T5946] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   77.668245][ T5946] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   77.679320][ T5946] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   77.683605][ T5946] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   77.793488][ T7118] chnl_net:caif_netlink_parms(): no params data found
[   77.875664][ T7134] netlink: 104 bytes leftover after parsing attributes in process `syz.3.321'.
[   77.959667][ T7118] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.961946][ T7118] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.964763][ T7118] bridge_slave_0: entered allmulticast mode
[   77.967740][ T7118] bridge_slave_0: entered promiscuous mode
[   77.971769][ T7118] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.973932][ T7118] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.976383][ T7118] bridge_slave_1: entered allmulticast mode
[   77.978840][ T7118] bridge_slave_1: entered promiscuous mode
[   77.994278][ T7118] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.998733][ T7118] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.999609][ T7146] binder: 7145:7146 ioctl c00c620f 2000000004c0 returned -22
[   78.008850][ T7146] netlink: 'syz.2.323': attribute type 1 has an invalid length.
[   78.023594][ T7146] bond0: entered promiscuous mode
[   78.025574][ T7146] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.028944][ T7118] team0: Port device team_slave_0 added
[   78.037486][ T7146] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.039981][ T7146] bond0: (slave xfrm1): The slave device specified does not support setting the MAC address
[   78.043045][ T7146] bond0: (slave xfrm1): Setting fail_over_mac to active for active-backup mode
[   78.047157][ T7146] bond0: (slave xfrm1): making interface the new active one
[   78.049684][ T7146] xfrm1: entered promiscuous mode
[   78.052008][ T7146] bond0: (slave xfrm1): Enslaving as an active interface with an up link
[   78.056238][ T7118] team0: Port device team_slave_1 added
[   78.071744][ T7118] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.074140][ T7118] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.082842][ T7118] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.087178][ T7118] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.090160][ T7118] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   78.098235][ T7118] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.124928][ T7118] hsr_slave_0: entered promiscuous mode
[   78.127258][ T7118] hsr_slave_1: entered promiscuous mode
[   78.129576][ T7118] debugfs: 'hsr0' already exists in 'hsr'
[   78.131319][ T7118] Cannot create hsr debugfs directory
[   78.202679][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.211227][  T842] usb 5-1: USB disconnect, device number 4
[   78.306494][ T7118] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   78.312008][ T7118] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   78.317128][ T7118] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   78.323277][ T7118] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   78.338571][ T7118] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.341091][ T7118] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.344138][ T7118] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.346445][ T7118] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.370218][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.394811][ T7118] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.404612][ T1150] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.410537][ T1150] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.427782][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.435139][ T7118] 8021q: adding VLAN 0 to HW filter on device team0
[   78.443417][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.446371][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.456618][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.459796][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.510560][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.555944][   T40] kauditd_printk_skb: 14 callbacks suppressed
[   78.555956][   T40] audit: type=1400 audit(2000000014.599:434): avc:  denied  { ioctl } for  pid=7180 comm="syz.0.328" path="user:[4026531837]" dev="nsfs" ino=4026531837 ioctlcmd=0x9414 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   78.560824][ T7181] netlink: 'syz.0.328': attribute type 9 has an invalid length.
[   78.571426][ T7118] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.626751][   T12] bridge_slave_1: left allmulticast mode
[   78.628834][   T12] bridge_slave_1: left promiscuous mode
[   78.632139][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.637701][   T12] bridge_slave_0: left allmulticast mode
[   78.641172][   T12] bridge_slave_0: left promiscuous mode
[   78.643080][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.667277][   T40] audit: type=1400 audit(2000000014.709:435): avc:  denied  { listen } for  pid=7193 comm="syz.0.331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   78.916466][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.926401][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.934477][   T12] bond0 (unregistering): Released all slaves
[   78.973553][ T7212] netfs: Couldn't get user pages (rc=-14)
[   79.018307][   T12] tipc: Left network mode
[   79.048543][ T7118] veth0_vlan: entered promiscuous mode
[   79.063861][ T7118] veth1_vlan: entered promiscuous mode
[   79.116482][   T40] audit: type=1326 audit(2000000015.159:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7152 comm="syz.2.325" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b6d99aeb9 code=0x7fc00000
[   79.126591][   T40] audit: type=1326 audit(2000000015.159:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7152 comm="syz.2.325" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1b6d99aeb9 code=0x7fc00000
[   79.167955][ T7118] veth0_macvtap: entered promiscuous mode
[   79.173041][ T7118] veth1_macvtap: entered promiscuous mode
[   79.185122][ T7118] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.187597][ T7230] warning: `syz.2.341' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   79.219173][ T7118] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.281192][ T1150] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.284003][ T1150] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.300870][ T1150] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.304949][ T1150] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.334351][   T12] hsr_slave_0: left promiscuous mode
[   79.336580][   T12] hsr_slave_1: left promiscuous mode
[   79.339584][   T40] audit: type=1400 audit(2000000015.379:438): avc:  denied  { ioctl } for  pid=7236 comm="syz.0.342" path="socket:[17972]" dev="sockfs" ino=17972 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[   79.343631][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.353458][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.366024][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   79.372888][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.399644][   T12] veth1_macvtap: left promiscuous mode
[   79.402944][   T12] veth0_macvtap: left promiscuous mode
[   79.405705][   T12] veth1_vlan: left promiscuous mode
[   79.408696][   T12] veth0_vlan: left promiscuous mode
[   79.466891][ T7249] FAULT_INJECTION: forcing a failure.
[   79.466891][ T7249] name failslab, interval 1, probability 0, space 0, times 0
[   79.472570][ T7249] CPU: 0 UID: 0 PID: 7249 Comm: syz.0.344 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   79.472598][ T7249] Tainted: [L]=SOFTLOCKUP
[   79.472604][ T7249] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   79.472614][ T7249] Call Trace:
[   79.472620][ T7249]  <TASK>
[   79.472627][ T7249]  dump_stack_lvl+0x100/0x190
[   79.472682][ T7249]  should_fail_ex.cold+0x5/0xa
[   79.472702][ T7249]  should_failslab+0xc2/0x120
[   79.472726][ T7249]  kmem_cache_alloc_noprof+0x83/0x780
[   79.472749][ T7249]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[   79.472770][ T7249]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   79.472795][ T7249]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   79.472815][ T7249]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   79.472843][ T7249]  mmu_topup_memory_caches+0x25/0x170
[   79.472870][ T7249]  kvm_mmu_load+0xd6/0x23e0
[   79.472892][ T7249]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[   79.472909][ T7249]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   79.472925][ T7249]  ? kvm_msr_allowed+0x47/0x450
[   79.472952][ T7249]  ? __pfx_kvm_mmu_load+0x10/0x10
[   79.472972][ T7249]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   79.472994][ T7249]  ? kvm_check_and_inject_events+0x961/0x10c0
[   79.473023][ T7249]  vcpu_run+0x39ee/0x5ca0
[   79.473051][ T7249]  ? __lock_acquire+0x4a5/0x2630
[   79.473074][ T7249]  ? __pfx_vcpu_run+0x10/0x10
[   79.473123][ T7249]  ? rcu_is_watching+0x12/0xc0
[   79.473150][ T7249]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   79.473175][ T7249]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   79.473207][ T7249]  kvm_vcpu_ioctl+0x730/0x16d0
[   79.473229][ T7249]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.473248][ T7249]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   79.473276][ T7249]  ? do_vfs_ioctl+0x226/0x13e0
[   79.473293][ T7249]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   79.473309][ T7249]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[   79.473342][ T7249]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   79.473377][ T7249]  ? selinux_file_ioctl+0x139/0x290
[   79.473396][ T7249]  ? selinux_file_ioctl+0xb4/0x290
[   79.473415][ T7249]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.473441][ T7249]  __x64_sys_ioctl+0x18e/0x210
[   79.473460][ T7249]  do_syscall_64+0xc9/0xf80
[   79.473492][ T7249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.473510][ T7249] RIP: 0033:0x7f475419aeb9
[   79.473526][ T7249] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   79.473541][ T7249] RSP: 002b:00007f47550f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   79.473559][ T7249] RAX: ffffffffffffffda RBX: 00007f4754415fa0 RCX: 00007f475419aeb9
[   79.473570][ T7249] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   79.473581][ T7249] RBP: 00007f47550f5090 R08: 0000000000000000 R09: 0000000000000000
[   79.473590][ T7249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   79.473600][ T7249] R13: 00007f4754416038 R14: 00007f4754415fa0 R15: 00007ffcbef3fb98
[   79.473624][ T7249]  </TASK>
[   79.739269][ T5946] Bluetooth: hci4: command tx timeout
[   79.753529][ T7252] openvswitch: netlink: Duplicate key (type 6).
[   79.864310][   T12] team0 (unregistering): Port device team_slave_1 removed
[   79.894395][   T12] team0 (unregistering): Port device team_slave_0 removed
[   79.915994][ T7255] fuse: Bad value for 'fd'
[   80.148640][   T12] team0 (unregistering): Port device dummy0 removed
[   80.279856][ T1147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.282425][ T1147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.307861][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.311830][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.368859][   T40] audit: type=1400 audit(2000000016.409:439): avc:  denied  { mounton } for  pid=7118 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2837 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   80.499847][   T40] audit: type=1400 audit(2000000016.539:440): avc:  denied  { write } for  pid=7280 comm="syz.4.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   80.544855][   T40] audit: type=1400 audit(2000000016.589:441): avc:  denied  { connect } for  pid=7284 comm="syz.0.351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   80.552922][ T7285] 9pnet_virtio: no channels available for device syz
[   80.638868][ T7293] FAULT_INJECTION: forcing a failure.
[   80.638868][ T7293] name failslab, interval 1, probability 0, space 0, times 0
[   80.644624][ T7293] CPU: 0 UID: 0 PID: 7293 Comm: syz.2.352 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   80.644649][ T7293] Tainted: [L]=SOFTLOCKUP
[   80.644654][ T7293] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   80.644663][ T7293] Call Trace:
[   80.644668][ T7293]  <TASK>
[   80.644674][ T7293]  dump_stack_lvl+0x100/0x190
[   80.644703][ T7293]  should_fail_ex.cold+0x5/0xa
[   80.644725][ T7293]  should_failslab+0xc2/0x120
[   80.644750][ T7293]  kmem_cache_alloc_noprof+0x83/0x780
[   80.644768][ T7293]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[   80.644782][ T7293]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   80.644797][ T7293]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   80.644810][ T7293]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   80.644827][ T7293]  mmu_topup_memory_caches+0x25/0x170
[   80.644843][ T7293]  kvm_mmu_load+0xd6/0x23e0
[   80.644858][ T7293]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[   80.644869][ T7293]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   80.644879][ T7293]  ? kvm_msr_allowed+0x47/0x450
[   80.644895][ T7293]  ? __pfx_kvm_mmu_load+0x10/0x10
[   80.644909][ T7293]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   80.644922][ T7293]  ? kvm_check_and_inject_events+0x961/0x10c0
[   80.644941][ T7293]  vcpu_run+0x39ee/0x5ca0
[   80.644958][ T7293]  ? __lock_acquire+0x4a5/0x2630
[   80.644972][ T7293]  ? __pfx_vcpu_run+0x10/0x10
[   80.644993][ T7293]  ? rcu_is_watching+0x12/0xc0
[   80.645010][ T7293]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   80.645025][ T7293]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   80.645045][ T7293]  kvm_vcpu_ioctl+0x730/0x16d0
[   80.645059][ T7293]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.645071][ T7293]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   80.645089][ T7293]  ? do_vfs_ioctl+0x226/0x13e0
[   80.645100][ T7293]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   80.645109][ T7293]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[   80.645124][ T7293]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   80.645145][ T7293]  ? selinux_file_ioctl+0x139/0x290
[   80.645155][ T7293]  ? selinux_file_ioctl+0xb4/0x290
[   80.645167][ T7293]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.645180][ T7293]  __x64_sys_ioctl+0x18e/0x210
[   80.645191][ T7293]  do_syscall_64+0xc9/0xf80
[   80.645205][ T7293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.645217][ T7293] RIP: 0033:0x7f1b6d99aeb9
[   80.645226][ T7293] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   80.645236][ T7293] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   80.645251][ T7293] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[   80.645258][ T7293] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   80.645264][ T7293] RBP: 00007f1b6e8a0090 R08: 0000000000000000 R09: 0000000000000000
[   80.645270][ T7293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.645276][ T7293] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[   80.645290][ T7293]  </TASK>
[   80.656618][   T12] IPVS: stop unused estimator thread 0...
[   80.688715][ T7299] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.736429][ T7304] =======================================================
[   80.736429][ T7304] WARNING: The mand mount option has been deprecated and
[   80.736429][ T7304]          and is ignored by this kernel. Remove the mand
[   80.736429][ T7304]          option from the mount to silence this warning.
[   80.736429][ T7304] =======================================================
[   80.742874][ T7299] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.779857][ T7304] MTD: Attempt to mount non-MTD device "/dev/loop4"
[   80.786289][ T7304] cramfs: wrong magic
[   80.803782][ T7307] netlink: 36 bytes leftover after parsing attributes in process `syz.3.354'.
[   80.808507][ T7307] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.811670][ T7307] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.877183][ T7308] Process accounting resumed
[   80.879349][   T40] audit: type=1400 audit(2000000016.919:442): avc:  denied  { map } for  pid=7310 comm="syz.3.357" path="socket:[19789]" dev="sockfs" ino=19789 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   80.889282][   T40] audit: type=1400 audit(2000000016.919:443): avc:  denied  { accept } for  pid=7310 comm="syz.3.357" path="socket:[19789]" dev="sockfs" ino=19789 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   81.069290][  T842] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   81.242541][  T842] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   81.257342][  T842] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   81.258684][ T7331] selinux_netlink_send: 26 callbacks suppressed
[   81.258695][ T7331] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=8192 sclass=netlink_tcpdiag_socket pid=7331 comm=syz.2.364
[   81.262493][  T842] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   81.279411][  T842] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.286061][ T7304] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[   81.294073][  T842] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[   81.381391][ T7338] FAULT_INJECTION: forcing a failure.
[   81.381391][ T7338] name failslab, interval 1, probability 0, space 0, times 0
[   81.385571][ T7338] CPU: 1 UID: 0 PID: 7338 Comm: syz.2.366 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   81.385589][ T7338] Tainted: [L]=SOFTLOCKUP
[   81.385593][ T7338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   81.385600][ T7338] Call Trace:
[   81.385605][ T7338]  <TASK>
[   81.385610][ T7338]  dump_stack_lvl+0x100/0x190
[   81.385630][ T7338]  should_fail_ex.cold+0x5/0xa
[   81.385642][ T7338]  should_failslab+0xc2/0x120
[   81.385658][ T7338]  kmem_cache_alloc_noprof+0x83/0x780
[   81.385672][ T7338]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[   81.385685][ T7338]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   81.385701][ T7338]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   81.385714][ T7338]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   81.385731][ T7338]  mmu_topup_memory_caches+0x25/0x170
[   81.385747][ T7338]  kvm_mmu_load+0xd6/0x23e0
[   81.385761][ T7338]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[   81.385772][ T7338]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   81.385782][ T7338]  ? kvm_msr_allowed+0x47/0x450
[   81.385798][ T7338]  ? __pfx_kvm_mmu_load+0x10/0x10
[   81.385811][ T7338]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   81.385824][ T7338]  ? kvm_check_and_inject_events+0x961/0x10c0
[   81.385843][ T7338]  vcpu_run+0x39ee/0x5ca0
[   81.385861][ T7338]  ? __lock_acquire+0x4a5/0x2630
[   81.385874][ T7338]  ? __pfx_vcpu_run+0x10/0x10
[   81.385895][ T7338]  ? rcu_is_watching+0x12/0xc0
[   81.385912][ T7338]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   81.385928][ T7338]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   81.385948][ T7338]  kvm_vcpu_ioctl+0x730/0x16d0
[   81.385961][ T7338]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.385973][ T7338]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   81.385990][ T7338]  ? do_vfs_ioctl+0x226/0x13e0
[   81.386002][ T7338]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   81.386011][ T7338]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[   81.386025][ T7338]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   81.386046][ T7338]  ? selinux_file_ioctl+0x139/0x290
[   81.386057][ T7338]  ? selinux_file_ioctl+0xb4/0x290
[   81.386069][ T7338]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.386081][ T7338]  __x64_sys_ioctl+0x18e/0x210
[   81.386093][ T7338]  do_syscall_64+0xc9/0xf80
[   81.386107][ T7338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.386118][ T7338] RIP: 0033:0x7f1b6d99aeb9
[   81.386128][ T7338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   81.386138][ T7338] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.386149][ T7338] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[   81.386156][ T7338] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   81.386162][ T7338] RBP: 00007f1b6e8a0090 R08: 0000000000000000 R09: 0000000000000000
[   81.386167][ T7338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   81.386173][ T7338] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[   81.386187][ T7338]  </TASK>
[   81.459372][ T6022] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   81.496455][   T34] usb 9-1: USB disconnect, device number 2
[   81.629611][ T6022] usb 5-1: too many configurations: 9, using maximum allowed: 8
[   81.633130][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.635994][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.639614][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.644738][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.648516][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.653301][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.657279][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.660937][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.664786][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.667976][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.671273][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.675839][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.680019][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.683738][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.688399][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.692888][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.696885][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.702572][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.706881][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.710239][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.714180][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.717453][ T6022] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   81.720516][ T6022] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   81.723939][ T6022] usb 5-1: config 0 interface 0 has no altsetting 0
[   81.727608][ T6022] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   81.730900][ T6022] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   81.734447][ T6022] usb 5-1: Product: syz
[   81.736130][ T6022] usb 5-1: Manufacturer: syz
[   81.737678][ T6022] usb 5-1: SerialNumber: syz
[   81.743897][ T6022] usb 5-1: config 0 descriptor??
[   81.749881][ T6022] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[   81.819373][ T5946] Bluetooth: hci4: command tx timeout
[   82.065584][ T7365] FAULT_INJECTION: forcing a failure.
[   82.065584][ T7365] name failslab, interval 1, probability 0, space 0, times 0
[   82.070296][ T7365] CPU: 0 UID: 0 PID: 7365 Comm: syz.3.375 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[   82.070315][ T7365] Tainted: [L]=SOFTLOCKUP
[   82.070319][ T7365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   82.070326][ T7365] Call Trace:
[   82.070329][ T7365]  <TASK>
[   82.070335][ T7365]  dump_stack_lvl+0x100/0x190
[   82.070354][ T7365]  should_fail_ex.cold+0x5/0xa
[   82.070367][ T7365]  should_failslab+0xc2/0x120
[   82.070382][ T7365]  kmem_cache_alloc_noprof+0x83/0x780
[   82.070396][ T7365]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[   82.070410][ T7365]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   82.070425][ T7365]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   82.070438][ T7365]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[   82.070455][ T7365]  mmu_topup_memory_caches+0x25/0x170
[   82.070471][ T7365]  kvm_mmu_load+0xd6/0x23e0
[   82.070485][ T7365]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[   82.070496][ T7365]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   82.070506][ T7365]  ? kvm_msr_allowed+0x47/0x450
[   82.070523][ T7365]  ? __pfx_kvm_mmu_load+0x10/0x10
[   82.070536][ T7365]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   82.070549][ T7365]  ? kvm_check_and_inject_events+0x961/0x10c0
[   82.070568][ T7365]  vcpu_run+0x39ee/0x5ca0
[   82.070586][ T7365]  ? __lock_acquire+0x4a5/0x2630
[   82.070599][ T7365]  ? __pfx_vcpu_run+0x10/0x10
[   82.070620][ T7365]  ? rcu_is_watching+0x12/0xc0
[   82.070637][ T7365]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   82.070652][ T7365]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[   82.070672][ T7365]  kvm_vcpu_ioctl+0x730/0x16d0
[   82.070685][ T7365]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   82.070698][ T7365]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   82.070716][ T7365]  ? do_vfs_ioctl+0x226/0x13e0
[   82.070727][ T7365]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   82.070736][ T7365]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[   82.070750][ T7365]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   82.070772][ T7365]  ? selinux_file_ioctl+0x139/0x290
[   82.070782][ T7365]  ? selinux_file_ioctl+0xb4/0x290
[   82.070794][ T7365]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   82.070807][ T7365]  __x64_sys_ioctl+0x18e/0x210
[   82.070819][ T7365]  do_syscall_64+0xc9/0xf80
[   82.070833][ T7365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.070845][ T7365] RIP: 0033:0x7f7c0899aeb9
[   82.070854][ T7365] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   82.070864][ T7365] RSP: 002b:00007f7c09784028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   82.070876][ T7365] RAX: ffffffffffffffda RBX: 00007f7c08c15fa0 RCX: 00007f7c0899aeb9
[   82.070882][ T7365] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   82.070888][ T7365] RBP: 00007f7c09784090 R08: 0000000000000000 R09: 0000000000000000
[   82.070894][ T7365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   82.070900][ T7365] R13: 00007f7c08c16038 R14: 00007f7c08c15fa0 R15: 00007ffe3d7ee328
[   82.070914][ T7365]  </TASK>
[   82.114478][    C2] usb 5-1: yurex_control_callback - control failed: -71
[   82.114654][ T6413] usb 5-1: USB disconnect, device number 5
[   82.196145][ T6413] yurex 5-1:0.0: USB YUREX #0 now disconnected
[   82.294203][ T7372] overlayfs: failed to resolve './file0': -2
[   82.651982][ T7393] netlink: 32 bytes leftover after parsing attributes in process `syz.3.382'.
[   82.655138][ T7393] netlink: 4 bytes leftover after parsing attributes in process `syz.3.382'.
[   82.924694][ T7398] xt_hashlimit: size too large, truncated to 1048576
[   83.008533][ T7398] netlink: 8 bytes leftover after parsing attributes in process `syz.3.384'.
[   83.899684][ T5946] Bluetooth: hci4: command tx timeout
[   84.629882][ T5946] Bluetooth: hci0: command 0x0406 tx timeout
[   85.979302][ T5294] Bluetooth: hci4: command tx timeout
[   86.551831][   T29] cfg80211: failed to load regulatory.db
[   99.226448][ T7443] MTD: Attempt to mount non-MTD device "/dev/loop4"
[   99.229669][ T7443] cramfs: wrong magic
[   99.235521][ T7445] netlink: 'syz.0.385': attribute type 1 has an invalid length.
[   99.240873][ T7448] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   99.249301][ T7444] netlink: 8 bytes leftover after parsing attributes in process `syz.0.385'.
[   99.251349][ T7448] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   99.256741][ T7445] netlink: 28 bytes leftover after parsing attributes in process `syz.0.385'.
[   99.272262][ T7450] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   99.288571][ T7455] tmpfs: Bad value for 'mpol'
[   99.288869][ T7456] openvswitch: netlink: IP tunnel dst address not specified
[   99.317908][ T7455] tmpfs: Bad value for 'mpol'
[   99.431368][ T7467] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   99.459482][  T842] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[   99.472742][   T40] kauditd_printk_skb: 5 callbacks suppressed
[   99.472753][   T40] audit: type=1400 audit(2000000035.519:449): avc:  denied  { ioctl } for  pid=7468 comm="syz.4.394" path="socket:[19117]" dev="sockfs" ino=19117 ioctlcmd=0x661b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   99.476011][ T7469] comedi comedi0: pcl724: I/O port conflict (0x7,4)
[   99.487548][ T7470] comedi comedi0: pcl724: I/O port conflict (0x7,4)
[   99.524561][ T7473] netlink: 8 bytes leftover after parsing attributes in process `syz.4.395'.
[   99.568669][ T7476] binder: Bad value for 'max'
[   99.570625][   T40] audit: type=1400 audit(2000000035.609:450): avc:  denied  { mounton } for  pid=7475 comm="syz.3.396" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   99.630575][  T842] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[   99.634103][  T842] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[   99.637659][  T842] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[   99.641607][  T842] usb 5-1: config 250 has no interface number 0
[   99.644388][  T842] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 64
[   99.653484][  T842] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid maxpacket 231, setting to 64
[   99.658340][  T842] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[   99.664153][  T842] usb 5-1: config 250 interface 228 has no altsetting 0
[   99.668571][  T842] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   99.679194][  T842] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   99.682549][  T842] usb 5-1: Product: syz
[   99.684285][  T842] usb 5-1: SerialNumber: syz
[   99.701729][  T842] hub 5-1:250.228: bad descriptor, ignoring hub
[   99.704382][  T842] hub 5-1:250.228: probe with driver hub failed with error -5
[   99.765363][ T7490] netlink: 8 bytes leftover after parsing attributes in process `syz.4.400'.
[   99.830761][ T7493] netlink: 12 bytes leftover after parsing attributes in process `syz.4.401'.
[   99.906387][  T842] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 6 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[   99.929782][  T842] usb 5-1: USB disconnect, device number 6
[   99.936638][  T842] usblp0: removed
[   99.950610][   T40] audit: type=1400 audit(2000000035.999:451): avc:  denied  { mount } for  pid=7496 comm="syz.3.403" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   99.966843][   T40] audit: type=1400 audit(2000000036.009:452): avc:  denied  { getopt } for  pid=7494 comm="syz.4.402" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   99.987571][ T7506] netlink: 40 bytes leftover after parsing attributes in process `syz.2.404'.
[  100.197881][   T62] IPVS: starting estimator thread 0...
[  100.209899][ T7520] netlink: 8 bytes leftover after parsing attributes in process `syz.2.407'.
[  100.212735][ T7520] netlink: 20 bytes leftover after parsing attributes in process `syz.2.407'.
[  100.220346][ T7520] Failed to initialize the IGMP autojoin socket (err -2)
[  100.309428][ T7521] IPVS: using max 28 ests per chain, 67200 per kthread
[  100.440196][ T7536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.411'.
[  100.443138][ T7536] netlink: 8 bytes leftover after parsing attributes in process `syz.2.411'.
[  100.469035][   T40] audit: type=1400 audit(2000000036.509:453): avc:  denied  { unmount } for  pid=5930 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  100.488256][ T7537] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2689438118 (5378876236 ns) > initial count (2190874760 ns). Using initial count to start timer.
[  100.601884][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  100.639947][ T7550] FAULT_INJECTION: forcing a failure.
[  100.639947][ T7550] name failslab, interval 1, probability 0, space 0, times 0
[  100.644447][ T7550] CPU: 1 UID: 0 PID: 7550 Comm: syz.3.412 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  100.644465][ T7550] Tainted: [L]=SOFTLOCKUP
[  100.644468][ T7550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  100.644475][ T7550] Call Trace:
[  100.644489][ T7550]  <TASK>
[  100.644493][ T7550]  dump_stack_lvl+0x100/0x190
[  100.644526][ T7550]  should_fail_ex.cold+0x5/0xa
[  100.644539][ T7550]  should_failslab+0xc2/0x120
[  100.644555][ T7550]  kmem_cache_alloc_noprof+0x83/0x780
[  100.644570][ T7550]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  100.644583][ T7550]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  100.644599][ T7550]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  100.644611][ T7550]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  100.644629][ T7550]  mmu_topup_memory_caches+0x25/0x170
[  100.644646][ T7550]  kvm_mmu_load+0xd6/0x23e0
[  100.644661][ T7550]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  100.644672][ T7550]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  100.644682][ T7550]  ? kvm_msr_allowed+0x47/0x450
[  100.644698][ T7550]  ? __pfx_kvm_mmu_load+0x10/0x10
[  100.644712][ T7550]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  100.644726][ T7550]  ? kvm_check_and_inject_events+0x961/0x10c0
[  100.644745][ T7550]  vcpu_run+0x39ee/0x5ca0
[  100.644763][ T7550]  ? __lock_acquire+0x4a5/0x2630
[  100.644777][ T7550]  ? __pfx_vcpu_run+0x10/0x10
[  100.644797][ T7550]  ? rcu_is_watching+0x12/0xc0
[  100.644814][ T7550]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  100.644830][ T7550]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  100.644851][ T7550]  kvm_vcpu_ioctl+0x730/0x16d0
[  100.644864][ T7550]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  100.644877][ T7550]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  100.644894][ T7550]  ? do_vfs_ioctl+0x226/0x13e0
[  100.644906][ T7550]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  100.644915][ T7550]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  100.644938][ T7550]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  100.644959][ T7550]  ? selinux_file_ioctl+0x139/0x290
[  100.644970][ T7550]  ? selinux_file_ioctl+0xb4/0x290
[  100.644982][ T7550]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  100.644995][ T7550]  __x64_sys_ioctl+0x18e/0x210
[  100.645007][ T7550]  do_syscall_64+0xc9/0xf80
[  100.645030][ T7550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.645042][ T7550] RIP: 0033:0x7f7c0899aeb9
[  100.645052][ T7550] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  100.645062][ T7550] RSP: 002b:00007f7c06bf6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  100.645073][ T7550] RAX: ffffffffffffffda RBX: 00007f7c08c16090 RCX: 00007f7c0899aeb9
[  100.645080][ T7550] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  100.645086][ T7550] RBP: 00007f7c06bf6090 R08: 0000000000000000 R09: 0000000000000000
[  100.645092][ T7550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  100.645099][ T7550] R13: 00007f7c08c16128 R14: 00007f7c08c16090 R15: 00007ffe3d7ee328
[  100.645113][ T7550]  </TASK>
[  100.775301][ T7554] fuse: Unknown parameter '0xffffffffffffffff'
[  101.023867][   T40] audit: type=1400 audit(2000000037.069:454): avc:  denied  { unlink } for  pid=7567 comm="syz.0.421" name="#3" dev="tmpfs" ino=557 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  101.029879][ T7568] evm: overlay not supported
[  101.130701][ T7571] netlink: '\%@': attribute type 10 has an invalid length.
[  101.171012][ T7571] team0: Port device dummy0 added
[  101.222393][ T7574] kAFS: unparsable volume name
[  101.302871][   T40] audit: type=1400 audit(2000000037.349:455): avc:  denied  { bind } for  pid=7583 comm="syz.0.427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  101.359309][   T40] audit: type=1400 audit(2000000037.389:456): avc:  denied  { setopt } for  pid=7585 comm="syz.4.428" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  101.389702][ T7590] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[  101.404681][   T40] audit: type=1400 audit(2000000037.449:457): avc:  denied  { create } for  pid=7589 comm="syz.4.430" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[  101.412833][ T7591] netlink: 'syz.2.429': attribute type 29 has an invalid length.
[  101.419025][   T40] audit: type=1326 audit(2000000037.459:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7593 comm="syz.0.431" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f475419aeb9 code=0x0
[  101.549400][ T7599] netlink: 'syz.3.433': attribute type 6 has an invalid length.
[  101.559760][ T7599] netlink: 'syz.3.433': attribute type 5 has an invalid length.
[  101.563130][ T7599] netlink: 'syz.3.433': attribute type 4 has an invalid length.
[  101.771752][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.829826][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  101.908786][ T7622] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  101.919739][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.986765][ T7624] FAULT_INJECTION: forcing a failure.
[  101.986765][ T7624] name failslab, interval 1, probability 0, space 0, times 0
[  101.992014][ T7624] CPU: 2 UID: 0 PID: 7624 Comm: syz.4.442 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  101.992040][ T7624] Tainted: [L]=SOFTLOCKUP
[  101.992044][ T7624] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  101.992053][ T7624] Call Trace:
[  101.992059][ T7624]  <TASK>
[  101.992065][ T7624]  dump_stack_lvl+0x100/0x190
[  101.992090][ T7624]  should_fail_ex.cold+0x5/0xa
[  101.992106][ T7624]  should_failslab+0xc2/0x120
[  101.992126][ T7624]  kmem_cache_alloc_noprof+0x83/0x780
[  101.992144][ T7624]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  101.992161][ T7624]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  101.992183][ T7624]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  101.992199][ T7624]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  101.992222][ T7624]  mmu_topup_memory_caches+0x25/0x170
[  101.992243][ T7624]  kvm_mmu_load+0xd6/0x23e0
[  101.992262][ T7624]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  101.992278][ T7624]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  101.992291][ T7624]  ? kvm_msr_allowed+0x47/0x450
[  101.992318][ T7624]  ? __pfx_kvm_mmu_load+0x10/0x10
[  101.992336][ T7624]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  101.992354][ T7624]  ? kvm_check_and_inject_events+0x961/0x10c0
[  101.992380][ T7624]  vcpu_run+0x39ee/0x5ca0
[  101.992403][ T7624]  ? __lock_acquire+0x4a5/0x2630
[  101.992421][ T7624]  ? __pfx_vcpu_run+0x10/0x10
[  101.992449][ T7624]  ? rcu_is_watching+0x12/0xc0
[  101.992472][ T7624]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  101.992492][ T7624]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  101.992519][ T7624]  kvm_vcpu_ioctl+0x730/0x16d0
[  101.992536][ T7624]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  101.992553][ T7624]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  101.992575][ T7624]  ? do_vfs_ioctl+0x226/0x13e0
[  101.992590][ T7624]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  101.992603][ T7624]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  101.992623][ T7624]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  101.992654][ T7624]  ? selinux_file_ioctl+0x139/0x290
[  101.992668][ T7624]  ? selinux_file_ioctl+0xb4/0x290
[  101.992684][ T7624]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  101.992702][ T7624]  __x64_sys_ioctl+0x18e/0x210
[  101.992718][ T7624]  do_syscall_64+0xc9/0xf80
[  101.992737][ T7624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.992752][ T7624] RIP: 0033:0x7f86d199aeb9
[  101.992764][ T7624] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  101.992778][ T7624] RSP: 002b:00007f86d27aa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  101.992794][ T7624] RAX: ffffffffffffffda RBX: 00007f86d1c15fa0 RCX: 00007f86d199aeb9
[  101.992804][ T7624] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  101.992813][ T7624] RBP: 00007f86d27aa090 R08: 0000000000000000 R09: 0000000000000000
[  101.992822][ T7624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  101.992830][ T7624] R13: 00007f86d1c16038 R14: 00007f86d1c15fa0 R15: 00007ffd692903e8
[  101.992851][ T7624]  </TASK>
[  102.377299][   T13] Bluetooth: hci3: received HCILL_GO_TO_SLEEP_ACK in state 1
[  102.385500][  T103] Bluetooth: hci3: Frame reassembly failed (-84)
[  102.464754][ T7671] netlink: 'syz.2.456': attribute type 9 has an invalid length.
[  102.654611][ T7695] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  102.793570][ T7710] syzkaller0: entered promiscuous mode
[  102.795403][ T7710] syzkaller0: entered allmulticast mode
[  103.231498][ T7714] netlink: 'syz.2.470': attribute type 5 has an invalid length.
[  103.234635][ T7714] netlink: 'syz.2.470': attribute type 4 has an invalid length.
[  103.530669][ T7735] loop4: detected capacity change from 0 to 7
[  103.549325][ T7447]  loop4: [CUMANA/ADFS] p1 [ADFS] p1
[  103.551656][ T7447] loop4: partition table partially beyond EOD, truncated
[  103.556497][ T7447] loop4: p1 size 2989602745 extends beyond EOD, truncated
[  103.594727][ T7744] team_slave_1: entered promiscuous mode
[  103.597469][ T7744] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  103.618079][ T7735]  loop4: [CUMANA/ADFS] p1 [ADFS] p1
[  103.629179][ T7735] loop4: partition table partially beyond EOD, truncated
[  103.631511][ T7735] loop4: p1 size 2989602745 extends beyond EOD, truncated
[  103.657178][ T7752] batadv_slave_1: vlans aren't supported yet for dev_uc|mc_add()
[  103.716371][ T7447] udevd[7447]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  103.722082][ T7758] FAULT_INJECTION: forcing a failure.
[  103.722082][ T7758] name failslab, interval 1, probability 0, space 0, times 0
[  103.727678][ T7758] CPU: 0 UID: 0 PID: 7758 Comm: syz.2.483 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  103.727711][ T7758] Tainted: [L]=SOFTLOCKUP
[  103.727721][ T7758] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  103.727731][ T7758] Call Trace:
[  103.727737][ T7758]  <TASK>
[  103.727745][ T7758]  dump_stack_lvl+0x100/0x190
[  103.727794][ T7758]  should_fail_ex.cold+0x5/0xa
[  103.727814][ T7758]  should_failslab+0xc2/0x120
[  103.727835][ T7758]  kmem_cache_alloc_noprof+0x83/0x780
[  103.727857][ T7758]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  103.727877][ T7758]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  103.727902][ T7758]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  103.727921][ T7758]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  103.727948][ T7758]  mmu_topup_memory_caches+0x25/0x170
[  103.728006][ T7758]  kvm_mmu_load+0xd6/0x23e0
[  103.728038][ T7758]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  103.728056][ T7758]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  103.728071][ T7758]  ? kvm_msr_allowed+0x47/0x450
[  103.728096][ T7758]  ? __pfx_kvm_mmu_load+0x10/0x10
[  103.728116][ T7758]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  103.728138][ T7758]  ? kvm_check_and_inject_events+0x961/0x10c0
[  103.728167][ T7758]  vcpu_run+0x39ee/0x5ca0
[  103.728195][ T7758]  ? __lock_acquire+0x4a5/0x2630
[  103.728218][ T7758]  ? __pfx_vcpu_run+0x10/0x10
[  103.728250][ T7758]  ? rcu_is_watching+0x12/0xc0
[  103.728276][ T7758]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  103.728299][ T7758]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  103.728330][ T7758]  kvm_vcpu_ioctl+0x730/0x16d0
[  103.728350][ T7758]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  103.728368][ T7758]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  103.728395][ T7758]  ? do_vfs_ioctl+0x226/0x13e0
[  103.728412][ T7758]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  103.728434][ T7758]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  103.728469][ T7758]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  103.728504][ T7758]  ? selinux_file_ioctl+0x139/0x290
[  103.728521][ T7758]  ? selinux_file_ioctl+0xb4/0x290
[  103.728540][ T7758]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  103.728560][ T7758]  __x64_sys_ioctl+0x18e/0x210
[  103.728579][ T7758]  do_syscall_64+0xc9/0xf80
[  103.728609][ T7758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.728627][ T7758] RIP: 0033:0x7f1b6d99aeb9
[  103.728642][ T7758] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  103.728658][ T7758] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  103.728675][ T7758] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[  103.728686][ T7758] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  103.728696][ T7758] RBP: 00007f1b6e8a0090 R08: 0000000000000000 R09: 0000000000000000
[  103.728707][ T7758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  103.728717][ T7758] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[  103.728742][ T7758]  </TASK>
[  103.735299][ T7447] udevd[7447]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  103.802754][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.828789][ T7770] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7770 comm=syz.0.486
[  103.832214][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.858928][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.861091][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.863841][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.865966][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.873007][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.875291][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.877801][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.879773][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.882438][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.884967][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.888084][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.890908][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.893557][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.895430][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.897736][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.899660][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.902177][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.904074][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.906386][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.908243][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.910976][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.912926][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.915355][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.917277][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.920991][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.923456][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.925911][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.928085][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.931591][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.933695][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.936243][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.938214][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.941439][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.943459][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.945915][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.947796][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.950530][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.952426][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.954774][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.956859][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.959754][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.961698][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.964335][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.966489][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.969840][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.971800][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.974540][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.976814][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.979612][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.981519][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.984200][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.986247][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.989039][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.993936][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  103.996471][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  103.998427][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  104.000980][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  104.003370][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  104.005786][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  104.007693][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  104.010239][ T7767] binder: BINDER_SET_CONTEXT_MGR already set
[  104.012231][ T7767] binder: 7766:7767 ioctl 4018620d 200000000040 returned -16
[  104.379444][ T5294] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  104.379455][ T5946] Bluetooth: hci3: command 0x1003 tx timeout
[  106.950734][ T7779] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  107.068515][   T40] kauditd_printk_skb: 15 callbacks suppressed
[  107.068530][   T40] audit: type=1400 audit(2000000043.109:474): avc:  denied  { ioctl } for  pid=7818 comm="syz.0.500" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xf516 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  107.101500][ T7814] FAULT_INJECTION: forcing a failure.
[  107.101500][ T7814] name failslab, interval 1, probability 0, space 0, times 0
[  107.106059][ T7814] CPU: 2 UID: 0 PID: 7814 Comm: syz.4.498 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  107.106076][ T7814] Tainted: [L]=SOFTLOCKUP
[  107.106080][ T7814] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  107.106087][ T7814] Call Trace:
[  107.106092][ T7814]  <TASK>
[  107.106097][ T7814]  dump_stack_lvl+0x100/0x190
[  107.106116][ T7814]  should_fail_ex.cold+0x5/0xa
[  107.106129][ T7814]  should_failslab+0xc2/0x120
[  107.106144][ T7814]  kmem_cache_alloc_noprof+0x83/0x780
[  107.106158][ T7814]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  107.106171][ T7814]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.106187][ T7814]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.106200][ T7814]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.106219][ T7814]  mmu_topup_memory_caches+0x25/0x170
[  107.106236][ T7814]  kvm_mmu_load+0xd6/0x23e0
[  107.106250][ T7814]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  107.106261][ T7814]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  107.106272][ T7814]  ? kvm_msr_allowed+0x47/0x450
[  107.106288][ T7814]  ? __pfx_kvm_mmu_load+0x10/0x10
[  107.106302][ T7814]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  107.106315][ T7814]  ? kvm_check_and_inject_events+0x961/0x10c0
[  107.106334][ T7814]  vcpu_run+0x39ee/0x5ca0
[  107.106352][ T7814]  ? __lock_acquire+0x4a5/0x2630
[  107.106366][ T7814]  ? __pfx_vcpu_run+0x10/0x10
[  107.106387][ T7814]  ? rcu_is_watching+0x12/0xc0
[  107.106405][ T7814]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.106421][ T7814]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.106441][ T7814]  kvm_vcpu_ioctl+0x730/0x16d0
[  107.106454][ T7814]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.106467][ T7814]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.106486][ T7814]  ? do_vfs_ioctl+0x226/0x13e0
[  107.106498][ T7814]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  107.106507][ T7814]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  107.106522][ T7814]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  107.106543][ T7814]  ? selinux_file_ioctl+0x139/0x290
[  107.106554][ T7814]  ? selinux_file_ioctl+0xb4/0x290
[  107.106567][ T7814]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.106579][ T7814]  __x64_sys_ioctl+0x18e/0x210
[  107.106591][ T7814]  do_syscall_64+0xc9/0xf80
[  107.106606][ T7814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.106618][ T7814] RIP: 0033:0x7f86d199aeb9
[  107.106627][ T7814] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.106638][ T7814] RSP: 002b:00007f86d27aa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.106649][ T7814] RAX: ffffffffffffffda RBX: 00007f86d1c15fa0 RCX: 00007f86d199aeb9
[  107.106656][ T7814] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  107.106662][ T7814] RBP: 00007f86d27aa090 R08: 0000000000000000 R09: 0000000000000000
[  107.106669][ T7814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  107.106675][ T7814] R13: 00007f86d1c16038 R14: 00007f86d1c15fa0 R15: 00007ffd692903e8
[  107.106690][ T7814]  </TASK>
[  107.143124][   T40] audit: type=1400 audit(2000000043.169:475): avc:  denied  { map } for  pid=7830 comm="syz.2.503" path="socket:[22811]" dev="sockfs" ino=22811 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  107.218048][   T40] audit: type=1400 audit(2000000043.169:476): avc:  denied  { accept } for  pid=7830 comm="syz.2.503" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  107.229307][ T7839] sp0: Synchronizing with TNC
[  107.269269][   T40] audit: type=1800 audit(2000000043.309:477): pid=7844 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.505" name="file0" dev="tmpfs" ino=673 res=0 errno=0
[  107.277305][   T40] audit: type=1804 audit(2000000043.319:478): pid=7844 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.0.505" name="/newroot/123/file0" dev="tmpfs" ino=673 res=1 errno=0
[  107.404909][   T40] audit: type=1400 audit(2000000043.449:479): avc:  denied  { mounton } for  pid=7854 comm="syz.3.509" path="/proc/369/task" dev="proc" ino=24598 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  107.488120][ T7860] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  107.548426][   T40] audit: type=1400 audit(2000000043.589:480): avc:  denied  { read } for  pid=7863 comm="syz.4.513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  107.595700][ T7870] __nla_validate_parse: 11 callbacks suppressed
[  107.595718][ T7870] netlink: 8 bytes leftover after parsing attributes in process `syz.4.515'.
[  107.604641][ T7870] netlink: 20 bytes leftover after parsing attributes in process `syz.4.515'.
[  107.623876][ T7872] FAULT_INJECTION: forcing a failure.
[  107.623876][ T7872] name failslab, interval 1, probability 0, space 0, times 0
[  107.628922][ T7872] CPU: 2 UID: 0 PID: 7872 Comm: syz.2.516 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  107.628951][ T7872] Tainted: [L]=SOFTLOCKUP
[  107.628956][ T7872] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  107.628966][ T7872] Call Trace:
[  107.628973][ T7872]  <TASK>
[  107.628980][ T7872]  dump_stack_lvl+0x100/0x190
[  107.629007][ T7872]  should_fail_ex.cold+0x5/0xa
[  107.629027][ T7872]  should_failslab+0xc2/0x120
[  107.629050][ T7872]  kmem_cache_alloc_noprof+0x83/0x780
[  107.629073][ T7872]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  107.629107][ T7872]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.629135][ T7872]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.629156][ T7872]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  107.629183][ T7872]  mmu_topup_memory_caches+0x25/0x170
[  107.629208][ T7872]  kvm_mmu_load+0xd6/0x23e0
[  107.629230][ T7872]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  107.629248][ T7872]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  107.629265][ T7872]  ? kvm_msr_allowed+0x47/0x450
[  107.629290][ T7872]  ? __pfx_kvm_mmu_load+0x10/0x10
[  107.629312][ T7872]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  107.629333][ T7872]  ? kvm_check_and_inject_events+0x961/0x10c0
[  107.629363][ T7872]  vcpu_run+0x39ee/0x5ca0
[  107.629391][ T7872]  ? __lock_acquire+0x4a5/0x2630
[  107.629414][ T7872]  ? __pfx_vcpu_run+0x10/0x10
[  107.629447][ T7872]  ? rcu_is_watching+0x12/0xc0
[  107.629473][ T7872]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.629496][ T7872]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  107.629529][ T7872]  kvm_vcpu_ioctl+0x730/0x16d0
[  107.629549][ T7872]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.629568][ T7872]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  107.629596][ T7872]  ? do_vfs_ioctl+0x226/0x13e0
[  107.629613][ T7872]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  107.629628][ T7872]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  107.629650][ T7872]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  107.629687][ T7872]  ? selinux_file_ioctl+0x139/0x290
[  107.629703][ T7872]  ? selinux_file_ioctl+0xb4/0x290
[  107.629723][ T7872]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  107.629743][ T7872]  __x64_sys_ioctl+0x18e/0x210
[  107.629763][ T7872]  do_syscall_64+0xc9/0xf80
[  107.629785][ T7872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.629801][ T7872] RIP: 0033:0x7f1b6d99aeb9
[  107.629816][ T7872] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  107.629832][ T7872] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  107.629849][ T7872] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[  107.629861][ T7872] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  107.629870][ T7872] RBP: 00007f1b6e8a0090 R08: 0000000000000000 R09: 0000000000000000
[  107.629880][ T7872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  107.629890][ T7872] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[  107.629921][ T7872]  </TASK>
[  107.871379][   T40] audit: type=1400 audit(2000000043.919:481): avc:  denied  { setopt } for  pid=7885 comm="syz.4.521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  107.879007][   T40] audit: type=1400 audit(2000000043.919:482): avc:  denied  { read write } for  pid=7885 comm="syz.4.521" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  107.886760][   T40] audit: type=1400 audit(2000000043.919:483): avc:  denied  { open } for  pid=7885 comm="syz.4.521" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  108.097295][ T7897] nfs: Unknown parameter 'grpquota'
[  108.105256][ T7903] netlink: 12 bytes leftover after parsing attributes in process `syz.0.528'.
[  108.157030][ T7910] netlink: 'syz.0.530': attribute type 21 has an invalid length.
[  108.214205][ T7916] netlink: 20 bytes leftover after parsing attributes in process `syz.3.533'.
[  108.247222][ T7457] block nbd64: NBD_DISCONNECT
[  108.261399][ T7916] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.279429][ T7916] bond0: (slave rose0): Enslaving as an active interface with an up link
[  108.321368][ T7930] netlink: 'syz.0.537': attribute type 1 has an invalid length.
[  108.323846][ T7930] netlink: 228 bytes leftover after parsing attributes in process `syz.0.537'.
[  108.326945][ T7930] netlink: 8 bytes leftover after parsing attributes in process `syz.0.537'.
[  108.365230][ T7447] udevd[7447]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  108.394218][ T7951] tmpfs: Unknown parameter 'nr�o�des'
[  108.572448][ T7972] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  108.602801][ T7976] binder: 7975:7976 ioctl c0306201 2000000003c0 returned -14
[  108.706079][ T7967] netlink: 8 bytes leftover after parsing attributes in process `syz.3.543'.
[  108.844039][ T8002] mmap: syz.0.554 (8002): VmData 29073408 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  108.970239][ T8006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.556'.
[  109.059892][ T8019] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'.
[  109.064959][ T8020] netlink: 8 bytes leftover after parsing attributes in process `syz.0.559'.
[  109.298006][   T13] Bluetooth: hci3: Frame reassembly failed (-84)
[  109.302285][   T13] Bluetooth: hci3: Frame reassembly failed (-84)
[  109.833275][ T8053] FAULT_INJECTION: forcing a failure.
[  109.833275][ T8053] name failslab, interval 1, probability 0, space 0, times 0
[  109.837506][ T8053] CPU: 1 UID: 0 PID: 8053 Comm: syz.2.568 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  109.837524][ T8053] Tainted: [L]=SOFTLOCKUP
[  109.837528][ T8053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  109.837534][ T8053] Call Trace:
[  109.837540][ T8053]  <TASK>
[  109.837545][ T8053]  dump_stack_lvl+0x100/0x190
[  109.837583][ T8053]  should_fail_ex.cold+0x5/0xa
[  109.837595][ T8053]  should_failslab+0xc2/0x120
[  109.837611][ T8053]  kmem_cache_alloc_noprof+0x83/0x780
[  109.837626][ T8053]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  109.837639][ T8053]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  109.837655][ T8053]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  109.837668][ T8053]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  109.837685][ T8053]  mmu_topup_memory_caches+0x25/0x170
[  109.837702][ T8053]  kvm_mmu_load+0xd6/0x23e0
[  109.837716][ T8053]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  109.837728][ T8053]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  109.837738][ T8053]  ? kvm_msr_allowed+0x47/0x450
[  109.837755][ T8053]  ? __pfx_kvm_mmu_load+0x10/0x10
[  109.837769][ T8053]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  109.837783][ T8053]  ? kvm_check_and_inject_events+0x961/0x10c0
[  109.837802][ T8053]  vcpu_run+0x39ee/0x5ca0
[  109.837819][ T8053]  ? __lock_acquire+0x4a5/0x2630
[  109.837833][ T8053]  ? __pfx_vcpu_run+0x10/0x10
[  109.837854][ T8053]  ? rcu_is_watching+0x12/0xc0
[  109.837872][ T8053]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  109.837888][ T8053]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  109.837908][ T8053]  kvm_vcpu_ioctl+0x730/0x16d0
[  109.837921][ T8053]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  109.837934][ T8053]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  109.837952][ T8053]  ? do_vfs_ioctl+0x226/0x13e0
[  109.837968][ T8053]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.837981][ T8053]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  109.838012][ T8053]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  109.838044][ T8053]  ? selinux_file_ioctl+0x139/0x290
[  109.838059][ T8053]  ? selinux_file_ioctl+0xb4/0x290
[  109.838076][ T8053]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  109.838094][ T8053]  __x64_sys_ioctl+0x18e/0x210
[  109.838114][ T8053]  do_syscall_64+0xc9/0xf80
[  109.838140][ T8053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.838152][ T8053] RIP: 0033:0x7f1b6d99aeb9
[  109.838161][ T8053] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  109.838172][ T8053] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.838183][ T8053] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[  109.838190][ T8053] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  109.838196][ T8053] RBP: 00007f1b6e8a0090 R08: 0000000000000000 R09: 0000000000000000
[  109.838202][ T8053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  109.838209][ T8053] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[  109.838231][ T8053]  </TASK>
[  110.177924][ T8070] befs: (nullb0): No write support. Marking filesystem read-only
[  110.183462][ T8070] befs: (nullb0): invalid magic header
[  110.423982][ T8085] FAULT_INJECTION: forcing a failure.
[  110.423982][ T8085] name failslab, interval 1, probability 0, space 0, times 0
[  110.429831][ T8085] CPU: 3 UID: 0 PID: 8085 Comm: syz.4.578 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  110.429859][ T8085] Tainted: [L]=SOFTLOCKUP
[  110.429865][ T8085] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  110.429875][ T8085] Call Trace:
[  110.429881][ T8085]  <TASK>
[  110.429888][ T8085]  dump_stack_lvl+0x100/0x190
[  110.429945][ T8085]  should_fail_ex.cold+0x5/0xa
[  110.429966][ T8085]  should_failslab+0xc2/0x120
[  110.429990][ T8085]  kmem_cache_alloc_noprof+0x83/0x780
[  110.430012][ T8085]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  110.430031][ T8085]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  110.430057][ T8085]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  110.430077][ T8085]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  110.430105][ T8085]  mmu_topup_memory_caches+0x25/0x170
[  110.430130][ T8085]  kvm_mmu_load+0xd6/0x23e0
[  110.430151][ T8085]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  110.430167][ T8085]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  110.430181][ T8085]  ? kvm_msr_allowed+0x47/0x450
[  110.430208][ T8085]  ? __pfx_kvm_mmu_load+0x10/0x10
[  110.430228][ T8085]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  110.430250][ T8085]  ? kvm_check_and_inject_events+0x961/0x10c0
[  110.430279][ T8085]  vcpu_run+0x39ee/0x5ca0
[  110.430306][ T8085]  ? __lock_acquire+0x4a5/0x2630
[  110.430327][ T8085]  ? __pfx_vcpu_run+0x10/0x10
[  110.430360][ T8085]  ? rcu_is_watching+0x12/0xc0
[  110.430385][ T8085]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  110.430408][ T8085]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  110.430457][ T8085]  kvm_vcpu_ioctl+0x730/0x16d0
[  110.430479][ T8085]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  110.430499][ T8085]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  110.430527][ T8085]  ? do_vfs_ioctl+0x226/0x13e0
[  110.430546][ T8085]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  110.430560][ T8085]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  110.430592][ T8085]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  110.430629][ T8085]  ? selinux_file_ioctl+0x139/0x290
[  110.430646][ T8085]  ? selinux_file_ioctl+0xb4/0x290
[  110.430666][ T8085]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  110.430686][ T8085]  __x64_sys_ioctl+0x18e/0x210
[  110.430707][ T8085]  do_syscall_64+0xc9/0xf80
[  110.430737][ T8085]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.430755][ T8085] RIP: 0033:0x7f86d199aeb9
[  110.430771][ T8085] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  110.430787][ T8085] RSP: 002b:00007f86d27aa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  110.430805][ T8085] RAX: ffffffffffffffda RBX: 00007f86d1c15fa0 RCX: 00007f86d199aeb9
[  110.430816][ T8085] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  110.430827][ T8085] RBP: 00007f86d27aa090 R08: 0000000000000000 R09: 0000000000000000
[  110.430836][ T8085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  110.430846][ T8085] R13: 00007f86d1c16038 R14: 00007f86d1c15fa0 R15: 00007ffd692903e8
[  110.430868][ T8085]  </TASK>
[  110.635012][ T8098] Failed to initialize the IGMP autojoin socket (err -2)
[  110.707536][ T8102] Failed to initialize the IGMP autojoin socket (err -2)
[  110.842173][ T8109] program syz.4.585 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  111.326170][ T8145] netlink: 'syz.4.596': attribute type 3 has an invalid length.
[  111.339778][ T5946] Bluetooth: hci3: command 0x1003 tx timeout
[  111.339805][ T5294] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  111.559649][ T8159] syzkaller0: entered promiscuous mode
[  111.561883][ T8159] syzkaller0: entered allmulticast mode
[  111.884694][ T8182] qnx4: no qnx4 filesystem (no root dir).
[  111.981611][ T8189] tmpfs: Unknown parameter 'grpquota_ctrl'
[  112.132224][   T40] kauditd_printk_skb: 28 callbacks suppressed
[  112.132241][   T40] audit: type=1400 audit(2000000000.090:512): avc:  denied  { mac_admin } for  pid=8208 comm="syz.2.620" capability=33  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  112.132370][ T8210] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  112.149172][   T40] audit: type=1400 audit(2000000000.100:513): avc:  denied  { create } for  pid=8208 comm="syz.2.620" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  112.208910][   T40] audit: type=1400 audit(2000000000.100:514): avc:  denied  { associate } for  pid=8208 comm="syz.2.620" name="bus" scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  112.259382][   T40] audit: type=1400 audit(2000000000.100:515): avc:  denied  { mounton } for  pid=8208 comm="syz.2.620" path="/205/bus" dev="tmpfs" ino=1116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  112.301058][   T40] audit: type=1400 audit(2000000000.100:516): avc:  denied  { setattr } for  pid=8208 comm="syz.2.620" name="work" dev="tmpfs" ino=1117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  112.304515][ T8216] program syz.2.622 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.368346][   T40] audit: type=1400 audit(2000000000.100:517): avc:  denied  { write } for  pid=8208 comm="syz.2.620" name="work" dev="tmpfs" ino=1117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  112.374785][   T40] audit: type=1400 audit(2000000000.100:518): avc:  denied  { write open } for  pid=8208 comm="syz.2.620" path=2F202864656C6574656429 dev="tmpfs" ino=1118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  112.376955][ T8216] ata1.00: invalid service action 31
[  112.413970][   T40] audit: type=1400 audit(2000000000.110:519): avc:  denied  { write } for  pid=8208 comm="syz.2.620" name="work" dev="tmpfs" ino=1117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  112.452308][   T40] audit: type=1400 audit(2000000000.110:520): avc:  denied  { add_name } for  pid=8208 comm="syz.2.620" name="#f" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  112.492177][   T40] audit: type=1400 audit(2000000000.110:521): avc:  denied  { create } for  pid=8208 comm="syz.2.620" name="#f" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  112.638922][ T8225] loop5: detected capacity change from 0 to 7
[  112.687748][ T8225] Dev loop5: unable to read RDB block 7
[  112.692983][ T8225]  loop5: unable to read partition table
[  112.695784][ T8225] loop5: partition table beyond EOD, truncated
[  112.698682][ T8225] loop_reread_partitions: partition scan of loop5 (�被x������ ) failed (rc=-5)
[  112.885662][ T8230] binder: 8229:8230 unknown command 0
[  112.888031][ T8230] binder: 8229:8230 ioctl c0306201 200000000080 returned -22
[  112.893803][ T8230] binder: BINDER_SET_CONTEXT_MGR already set
[  112.895872][ T8230] binder: 8229:8230 ioctl 4018620d 200000000040 returned -16
[  112.956920][ T8236] xfs: Unknown parameter 'discard��c�'
[  113.043797][ T8251] netlink: 'syz.4.632': attribute type 1 has an invalid length.
[  113.063088][ T8249] FAULT_INJECTION: forcing a failure.
[  113.063088][ T8249] name failslab, interval 1, probability 0, space 0, times 0
[  113.067982][ T8249] CPU: 1 UID: 0 PID: 8249 Comm: syz.2.631 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  113.068018][ T8249] Tainted: [L]=SOFTLOCKUP
[  113.068022][ T8249] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  113.068029][ T8249] Call Trace:
[  113.068034][ T8249]  <TASK>
[  113.068039][ T8249]  dump_stack_lvl+0x100/0x190
[  113.068078][ T8249]  should_fail_ex.cold+0x5/0xa
[  113.068091][ T8249]  should_failslab+0xc2/0x120
[  113.068107][ T8249]  kmem_cache_alloc_noprof+0x83/0x780
[  113.068122][ T8249]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  113.068135][ T8249]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  113.068150][ T8249]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  113.068163][ T8249]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  113.068181][ T8249]  mmu_topup_memory_caches+0x25/0x170
[  113.068198][ T8249]  kvm_mmu_load+0xd6/0x23e0
[  113.068212][ T8249]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  113.068224][ T8249]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  113.068234][ T8249]  ? kvm_msr_allowed+0x47/0x450
[  113.068250][ T8249]  ? __pfx_kvm_mmu_load+0x10/0x10
[  113.068264][ T8249]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  113.068277][ T8249]  ? kvm_check_and_inject_events+0x961/0x10c0
[  113.068296][ T8249]  vcpu_run+0x39ee/0x5ca0
[  113.068314][ T8249]  ? __lock_acquire+0x4a5/0x2630
[  113.068328][ T8249]  ? __pfx_vcpu_run+0x10/0x10
[  113.068349][ T8249]  ? rcu_is_watching+0x12/0xc0
[  113.068366][ T8249]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  113.068382][ T8249]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  113.068402][ T8249]  kvm_vcpu_ioctl+0x730/0x16d0
[  113.068416][ T8249]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  113.068428][ T8249]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.068446][ T8249]  ? do_vfs_ioctl+0x226/0x13e0
[  113.068461][ T8249]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  113.068472][ T8249]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  113.068494][ T8249]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  113.068516][ T8249]  ? selinux_file_ioctl+0x139/0x290
[  113.068526][ T8249]  ? selinux_file_ioctl+0xb4/0x290
[  113.068539][ T8249]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  113.068551][ T8249]  __x64_sys_ioctl+0x18e/0x210
[  113.068563][ T8249]  do_syscall_64+0xc9/0xf80
[  113.068585][ T8249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.068597][ T8249] RIP: 0033:0x7f1b6d99aeb9
[  113.068607][ T8249] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  113.068618][ T8249] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  113.068629][ T8249] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[  113.068636][ T8249] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  113.068643][ T8249] RBP: 00007f1b6e8a0090 R08: 0000000000000000 R09: 0000000000000000
[  113.068649][ T8249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  113.068655][ T8249] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[  113.068669][ T8249]  </TASK>
[  113.400223][ T8271] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8271 comm=syz.2.637
[  113.405395][ T8271] netlink: 'syz.2.637': attribute type 1 has an invalid length.
[  113.467879][ T8271] bond3: (slave bridge3): making interface the new active one
[  113.471758][ T8271] bond3: (slave bridge3): Enslaving as an active interface with an up link
[  113.485258][ T8277] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  113.608968][ T8305] __nla_validate_parse: 6 callbacks suppressed
[  113.608991][ T8305] netlink: 8 bytes leftover after parsing attributes in process `syz.3.647'.
[  113.616487][ T8305] netlink: 4 bytes leftover after parsing attributes in process `syz.3.647'.
[  113.640185][ T8305] netlink: 80 bytes leftover after parsing attributes in process `syz.3.647'.
[  113.651930][ T8305] netlink: 8 bytes leftover after parsing attributes in process `syz.3.647'.
[  113.655206][ T8305] netlink: 8 bytes leftover after parsing attributes in process `syz.3.647'.
[  113.662992][ T8309] FAULT_INJECTION: forcing a failure.
[  113.662992][ T8309] name failslab, interval 1, probability 0, space 0, times 0
[  113.668220][ T8309] CPU: 0 UID: 0 PID: 8309 Comm: syz.0.646 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  113.668246][ T8309] Tainted: [L]=SOFTLOCKUP
[  113.668251][ T8309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  113.668261][ T8309] Call Trace:
[  113.668267][ T8309]  <TASK>
[  113.668274][ T8309]  dump_stack_lvl+0x100/0x190
[  113.668301][ T8309]  should_fail_ex.cold+0x5/0xa
[  113.668319][ T8309]  should_failslab+0xc2/0x120
[  113.668340][ T8309]  __kvmalloc_node_noprof+0x101/0xac0
[  113.668360][ T8309]  ? trace_kmem_cache_alloc+0x80/0xb0
[  113.668397][ T8309]  ? kmem_cache_alloc_noprof+0x2ff/0x780
[  113.668415][ T8309]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  113.668433][ T8309]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  113.668456][ T8309]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  113.668473][ T8309]  __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  113.668498][ T8309]  mmu_topup_memory_caches+0xbc/0x170
[  113.668521][ T8309]  kvm_mmu_load+0xd6/0x23e0
[  113.668540][ T8309]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  113.668556][ T8309]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  113.668570][ T8309]  ? kvm_msr_allowed+0x47/0x450
[  113.668593][ T8309]  ? __pfx_kvm_mmu_load+0x10/0x10
[  113.668611][ T8309]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  113.668629][ T8309]  ? kvm_check_and_inject_events+0x961/0x10c0
[  113.668656][ T8309]  vcpu_run+0x39ee/0x5ca0
[  113.668680][ T8309]  ? __lock_acquire+0x4a5/0x2630
[  113.668699][ T8309]  ? __pfx_vcpu_run+0x10/0x10
[  113.668727][ T8309]  ? rcu_is_watching+0x12/0xc0
[  113.668751][ T8309]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  113.668772][ T8309]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  113.668801][ T8309]  kvm_vcpu_ioctl+0x730/0x16d0
[  113.668820][ T8309]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  113.668837][ T8309]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.668860][ T8309]  ? do_vfs_ioctl+0x226/0x13e0
[  113.668877][ T8309]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  113.668890][ T8309]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  113.668911][ T8309]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  113.668943][ T8309]  ? selinux_file_ioctl+0x139/0x290
[  113.668958][ T8309]  ? selinux_file_ioctl+0xb4/0x290
[  113.668975][ T8309]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  113.668993][ T8309]  __x64_sys_ioctl+0x18e/0x210
[  113.669010][ T8309]  do_syscall_64+0xc9/0xf80
[  113.669030][ T8309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.669046][ T8309] RIP: 0033:0x7f475419aeb9
[  113.669061][ T8309] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  113.669076][ T8309] RSP: 002b:00007f47550d4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  113.669105][ T8309] RAX: ffffffffffffffda RBX: 00007f4754416090 RCX: 00007f475419aeb9
[  113.669117][ T8309] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  113.669127][ T8309] RBP: 00007f47550d4090 R08: 0000000000000000 R09: 0000000000000000
[  113.669136][ T8309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  113.669150][ T8309] R13: 00007f4754416128 R14: 00007f4754416090 R15: 00007ffcbef3fb98
[  113.669173][ T8309]  </TASK>
[  113.948982][ T8335] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  113.957456][ T8335] overlayfs: failed to set xattr on upper
[  113.961993][ T8335] overlayfs: ...falling back to redirect_dir=nofollow.
[  113.964798][ T8335] overlayfs: ...falling back to index=off.
[  113.967051][ T8335] overlayfs: ...falling back to uuid=null.
[  113.998653][ T8352] hfsplus: unable to find HFS+ superblock
[  114.001798][ T8355] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  114.004720][ T8355] batadv_slave_0: entered promiscuous mode
[  114.006800][ T8355] batadv_slave_0: entered allmulticast mode
[  114.022355][ T8355] netlink: 60 bytes leftover after parsing attributes in process `syz.0.660'.
[  114.100192][ T8353] nbd0: detected capacity change from 0 to 127
[  114.148169][ T8376] netlink: 'syz.3.667': attribute type 64 has an invalid length.
[  114.153127][ T8376] netlink: 'syz.3.667': attribute type 4 has an invalid length.
[  114.161860][ T8376] netlink: 152 bytes leftover after parsing attributes in process `syz.3.667'.
[  114.185272][ T8380] FAULT_INJECTION: forcing a failure.
[  114.185272][ T8380] name failslab, interval 1, probability 0, space 0, times 0
[  114.190823][ T8380] CPU: 0 UID: 0 PID: 8380 Comm: syz.4.665 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  114.190850][ T8380] Tainted: [L]=SOFTLOCKUP
[  114.190856][ T8380] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  114.190867][ T8380] Call Trace:
[  114.190873][ T8380]  <TASK>
[  114.190880][ T8380]  dump_stack_lvl+0x100/0x190
[  114.190909][ T8380]  should_fail_ex.cold+0x5/0xa
[  114.190929][ T8380]  should_failslab+0xc2/0x120
[  114.190952][ T8380]  kmem_cache_alloc_noprof+0x83/0x780
[  114.190980][ T8380]  ? __kvm_mmu_topup_memory_cache+0x455/0x5f0
[  114.191000][ T8380]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  114.191025][ T8380]  ? __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  114.191045][ T8380]  __kvm_mmu_topup_memory_cache+0x18f/0x5f0
[  114.191072][ T8380]  mmu_topup_memory_caches+0x25/0x170
[  114.191097][ T8380]  kvm_mmu_load+0xd6/0x23e0
[  114.191120][ T8380]  ? kvm_apic_has_interrupt+0xfe/0x1f0
[  114.191136][ T8380]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  114.191152][ T8380]  ? kvm_msr_allowed+0x47/0x450
[  114.191178][ T8380]  ? __pfx_kvm_mmu_load+0x10/0x10
[  114.191199][ T8380]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  114.191219][ T8380]  ? kvm_check_and_inject_events+0x961/0x10c0
[  114.191249][ T8380]  vcpu_run+0x39ee/0x5ca0
[  114.191277][ T8380]  ? __lock_acquire+0x4a5/0x2630
[  114.191300][ T8380]  ? __pfx_vcpu_run+0x10/0x10
[  114.191334][ T8380]  ? rcu_is_watching+0x12/0xc0
[  114.191360][ T8380]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  114.191384][ T8380]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  114.191417][ T8380]  kvm_vcpu_ioctl+0x730/0x16d0
[  114.191438][ T8380]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  114.191458][ T8380]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  114.191485][ T8380]  ? do_vfs_ioctl+0x226/0x13e0
[  114.191503][ T8380]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  114.191518][ T8380]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  114.191540][ T8380]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  114.191577][ T8380]  ? selinux_file_ioctl+0x139/0x290
[  114.191594][ T8380]  ? selinux_file_ioctl+0xb4/0x290
[  114.191613][ T8380]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  114.191633][ T8380]  __x64_sys_ioctl+0x18e/0x210
[  114.191652][ T8380]  do_syscall_64+0xc9/0xf80
[  114.191675][ T8380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.191693][ T8380] RIP: 0033:0x7f86d199aeb9
[  114.191707][ T8380] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  114.191722][ T8380] RSP: 002b:00007f86d2789028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  114.191739][ T8380] RAX: ffffffffffffffda RBX: 00007f86d1c16090 RCX: 00007f86d199aeb9
[  114.191750][ T8380] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  114.191761][ T8380] RBP: 00007f86d2789090 R08: 0000000000000000 R09: 0000000000000000
[  114.191771][ T8380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  114.191781][ T8380] R13: 00007f86d1c16128 R14: 00007f86d1c16090 R15: 00007ffd692903e8
[  114.191807][ T8380]  </TASK>
[  114.349319][ T5999] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  114.500492][ T5999] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD4, changing to 0x84
[  114.504886][ T5999] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 51544, setting to 1024
[  114.509978][ T5999] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1024
[  114.517182][ T5999] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  114.522031][ T5999] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.525805][ T5999] usb 7-1: Product: syz
[  114.527673][ T5999] usb 7-1: Manufacturer: syz
[  114.535253][ T5999] usb 7-1: SerialNumber: syz
[  114.542193][ T5999] usb 7-1: config 0 descriptor??
[  114.546408][ T8360] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  114.624104][ T8407] netlink: 'syz.4.670': attribute type 30 has an invalid length.
[  114.681492][ T8417] netlink: 'syz.4.670': attribute type 30 has an invalid length.
[  114.752126][ T8353] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  114.833396][ T8429] netlink: 'syz.0.676': attribute type 1 has an invalid length.
[  114.848511][ T8429] 8021q: adding VLAN 0 to HW filter on device bond1
[  114.857769][ T8429] bond1: (slave geneve2): making interface the new active one
[  114.862235][ T8429] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  114.960290][   T61] usb 7-1: USB disconnect, device number 7
[  114.964806][ T5294] block nbd0: Receive control failed (result -104)
[  114.979338][ T6413] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  115.139271][ T6413] usb 8-1: Using ep0 maxpacket: 8
[  115.142190][ T6413] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  115.145661][ T6413] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  115.148551][ T6413] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.152888][ T6413] usb 8-1: config 0 descriptor??
[  115.358637][ T6413] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  115.402264][ T8437] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  115.412468][ T8437] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  115.520235][ T8445] netlink: 'syz.4.682': attribute type 1 has an invalid length.
[  115.537287][ T8445] bond3: entered promiscuous mode
[  115.539920][ T8445] 8021q: adding VLAN 0 to HW filter on device bond3
[  115.545196][ T8449] netlink: 20 bytes leftover after parsing attributes in process `syz.2.683'.
[  115.555196][ T8445] bond3: (slave bridge1): making interface the new active one
[  115.557956][ T8445] bridge1: entered promiscuous mode
[  115.562403][ T8445] bond3: (slave bridge1): Enslaving as an active interface with an up link
[  115.574567][ T8446] bond3: (slave bridge2): Enslaving as a backup interface with an up link
[  115.586392][ T8445] bond3: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  115.591978][ T8445] bond3: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  115.733119][ T8456] Driver unsupported XDP return value 0 on prog  (id 73) dev N/A, expect packet loss!
[  115.818994][ T8469] netlink: 'syz.0.689': attribute type 6 has an invalid length.
[  115.822349][ T8469] netlink: 'syz.0.689': attribute type 6 has an invalid length.
[  115.862576][ T8474] tmpfs: Bad value for 'mpol'
[  115.903764][ T8479] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  115.912691][ T8479] ------------[ cut here ]------------
[  115.914739][ T8479] !chanctx_conf
[  115.914747][ T8479] WARNING: net/mac80211/rate.c:53 at rate_control_rate_init+0x5c5/0x730, CPU#3: syz.2.691/8479
[  115.919888][ T8479] Modules linked in:
[  115.920946][ T8482] syz.3.673 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  115.921335][ T8479] CPU: 3 UID: 0 PID: 8479 Comm: syz.2.691 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  115.928953][ T8479] Tainted: [L]=SOFTLOCKUP
[  115.930662][ T8479] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  115.933858][ T8479] RIP: 0010:rate_control_rate_init+0x5c5/0x730
[  115.935773][ T8479] Code: 48 8d 35 00 00 00 00 e8 e9 88 f4 f6 e8 e4 02 fe f6 e9 20 fe ff ff e8 aa 65 18 f7 90 0f 0b 90 e9 12 fe ff ff e8 9c 65 18 f7 90 <0f> 0b 90 eb b1 e8 91 65 18 f7 e8 ac 09 fd f6 31 ff 89 c3 89 c6 e8
[  115.942932][ T8479] RSP: 0018:ffffc90003a17210 EFLAGS: 00010283
[  115.944925][ T8479] RAX: 0000000000000770 RBX: ffff888053c04000 RCX: ffffc9000c131000
[  115.947727][ T8479] RDX: 0000000000080000 RSI: ffffffff8aee99e4 RDI: ffff88802660a4c0
[  115.950867][ T8479] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[  115.953432][ T8479] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888053f8a6a0
[  115.955977][ T8479] R13: ffff888054d20e80 R14: ffff888052f54000 R15: 0000000000000000
[  115.958669][ T8479] FS:  00007f1b6e8a06c0(0000) GS:ffff8880d68d9000(0000) knlGS:0000000000000000
[  115.962065][ T8479] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  115.964661][ T8479] CR2: 0000200000001080 CR3: 000000005523d000 CR4: 0000000000352ef0
[  115.967247][ T8479] DR0: 0000000000000007 DR1: 0000000000000005 DR2: 0000000000000006
[  115.970458][ T8479] DR3: 0000000000007fff DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  115.973037][ T8479] Call Trace:
[  115.974133][ T8479]  <TASK>
[  115.975140][ T8479]  rate_control_rate_init_all_links+0x76/0x1f0
[  115.977150][ T8479]  sta_apply_auth_flags.isra.0+0x4aa/0x500
[  115.979647][ T8479]  sta_apply_parameters+0xcb3/0x1950
[  115.981733][ T8479]  ieee80211_add_station+0x3fe/0x6d0
[  115.983550][ T8479]  nl80211_new_station+0x1357/0x1c30
[  115.985356][ T8479]  ? __pfx_nl80211_new_station+0x10/0x10
[  115.987166][ T8479]  ? nl80211_pre_doit+0x19a/0xae0
[  115.988791][ T8479]  genl_family_rcv_msg_doit+0x214/0x300
[  115.990865][ T8479]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  115.992839][ T8479]  ? bpf_lsm_capable+0x9/0x10
[  115.994359][ T8479]  ? security_capable+0x80/0x260
[  115.996068][ T8479]  ? ns_capable+0xd2/0xf0
[  115.997844][ T8479]  genl_rcv_msg+0x560/0x800
[  115.999801][ T8479]  ? __pfx_genl_rcv_msg+0x10/0x10
[  116.001434][ T8479]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  116.002465][ T8484] netlink: 64 bytes leftover after parsing attributes in process `syz.2.691'.
[  116.003147][ T8479]  ? __pfx_nl80211_new_station+0x10/0x10
[  116.008746][ T8479]  ? __pfx_nl80211_post_doit+0x10/0x10
[  116.010952][ T8479]  netlink_rcv_skb+0x159/0x420
[  116.012610][ T8479]  ? __pfx_genl_rcv_msg+0x10/0x10
[  116.014300][ T8479]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  116.016109][ T8479]  ? netlink_deliver_tap+0x1ae/0xcc0
[  116.017858][ T8479]  genl_rcv+0x28/0x40
[  116.019237][ T8479]  netlink_unicast+0x5aa/0x870
[  116.020897][ T8479]  ? __pfx_netlink_unicast+0x10/0x10
[  116.022629][ T8479]  netlink_sendmsg+0x8b0/0xda0
[  116.024210][ T8479]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.025943][ T8479]  ? __might_fault+0xb0/0x140
[  116.027485][ T8479]  ____sys_sendmsg+0xa54/0xc30
[  116.029038][ T8479]  ? __pfx_____sys_sendmsg+0x10/0x10
[  116.030976][ T8479]  ? try_to_wake_up+0x644/0x1a60
[  116.032616][ T8479]  ___sys_sendmsg+0x190/0x1e0
[  116.034170][ T8479]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.035963][ T8479]  ? futex_private_hash_put+0x107/0x1c0
[  116.037818][ T8479]  ? find_held_lock+0x2b/0x80
[  116.039409][ T8479]  __sys_sendmsg+0x170/0x220
[  116.040972][ T8479]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.042656][ T8479]  ? __x64_sys_futex+0x34f/0x4d0
[  116.044475][ T8479]  do_syscall_64+0xc9/0xf80
[  116.046024][ T8479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.048006][ T8479] RIP: 0033:0x7f1b6d99aeb9
[  116.049554][ T8479] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  116.055966][ T8479] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.058897][ T8479] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[  116.062023][ T8479] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 000000000000000b
[  116.064770][ T8479] RBP: 00007f1b6da08c1f R08: 0000000000000000 R09: 0000000000000000
[  116.067482][ T8479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  116.070103][ T8479] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[  116.072668][ T8479]  </TASK>
[  116.073711][ T8479] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  116.076017][ T8479] CPU: 3 UID: 0 PID: 8479 Comm: syz.2.691 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  116.079276][ T8479] Tainted: [L]=SOFTLOCKUP
[  116.080668][ T8479] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  116.083832][ T8479] Call Trace:
[  116.084952][ T8479]  <TASK>
[  116.085915][ T8479]  dump_stack_lvl+0x100/0x190
[  116.087519][ T8479]  vpanic+0x20d/0x630
[  116.088803][ T8479]  panic+0xd1/0xd1
[  116.089984][ T8479]  ? __pfx_panic+0x10/0x10
[  116.091421][ T8479]  check_panic_on_warn.cold+0x19/0x34
[  116.093324][ T8479]  ? rate_control_rate_init+0x5c5/0x730
[  116.095184][ T8479]  __warn.cold+0x191/0x2f8
[  116.096834][ T8479]  __report_bug+0x296/0x3d0
[  116.098326][ T8479]  ? rate_control_rate_init+0x5c5/0x730
[  116.100159][ T8479]  ? __pfx___report_bug+0x10/0x10
[  116.101892][ T8479]  ? netlink_rcv_skb+0x159/0x420
[  116.103620][ T8479]  ? genl_rcv+0x28/0x40
[  116.105143][ T8479]  ? netlink_unicast+0x5aa/0x870
[  116.106755][ T8479]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  116.108803][ T8479]  ? __sys_sendmsg+0x170/0x220
[  116.110368][ T8479]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.112330][ T8479]  ? rate_control_rate_init+0x5c5/0x730
[  116.114091][ T8479]  report_bug+0xb2/0x220
[  116.115545][ T8479]  ? rate_control_rate_init+0x5c5/0x730
[  116.117405][ T8479]  handle_bug+0x166/0x2a0
[  116.118802][ T8479]  exc_invalid_op+0x17/0x50
[  116.120342][ T8479]  asm_exc_invalid_op+0x1a/0x20
[  116.121909][ T8479] RIP: 0010:rate_control_rate_init+0x5c5/0x730
[  116.123896][ T8479] Code: 48 8d 35 00 00 00 00 e8 e9 88 f4 f6 e8 e4 02 fe f6 e9 20 fe ff ff e8 aa 65 18 f7 90 0f 0b 90 e9 12 fe ff ff e8 9c 65 18 f7 90 <0f> 0b 90 eb b1 e8 91 65 18 f7 e8 ac 09 fd f6 31 ff 89 c3 89 c6 e8
[  116.130692][ T8479] RSP: 0018:ffffc90003a17210 EFLAGS: 00010283
[  116.132708][ T8479] RAX: 0000000000000770 RBX: ffff888053c04000 RCX: ffffc9000c131000
[  116.135217][ T8479] RDX: 0000000000080000 RSI: ffffffff8aee99e4 RDI: ffff88802660a4c0
[  116.138184][ T8479] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[  116.140702][ T8479] R10: 0000000000000001 R11: 0000000000000000 R12: ffff888053f8a6a0
[  116.143305][ T8479] R13: ffff888054d20e80 R14: ffff888052f54000 R15: 0000000000000000
[  116.145906][ T8479]  ? rate_control_rate_init+0x5c4/0x730
[  116.147745][ T8479]  rate_control_rate_init_all_links+0x76/0x1f0
[  116.149763][ T8479]  sta_apply_auth_flags.isra.0+0x4aa/0x500
[  116.151684][ T8479]  sta_apply_parameters+0xcb3/0x1950
[  116.153473][ T8479]  ieee80211_add_station+0x3fe/0x6d0
[  116.155256][ T8479]  nl80211_new_station+0x1357/0x1c30
[  116.157012][ T8479]  ? __pfx_nl80211_new_station+0x10/0x10
[  116.158878][ T8479]  ? nl80211_pre_doit+0x19a/0xae0
[  116.160613][ T8479]  genl_family_rcv_msg_doit+0x214/0x300
[  116.162444][ T8479]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  116.164454][ T8479]  ? bpf_lsm_capable+0x9/0x10
[  116.166060][ T8479]  ? security_capable+0x80/0x260
[  116.167723][ T8479]  ? ns_capable+0xd2/0xf0
[  116.169180][ T8479]  genl_rcv_msg+0x560/0x800
[  116.170705][ T8479]  ? __pfx_genl_rcv_msg+0x10/0x10
[  116.172406][ T8479]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  116.174176][ T8479]  ? __pfx_nl80211_new_station+0x10/0x10
[  116.176089][ T8479]  ? __pfx_nl80211_post_doit+0x10/0x10
[  116.177953][ T8479]  netlink_rcv_skb+0x159/0x420
[  116.179545][ T8479]  ? __pfx_genl_rcv_msg+0x10/0x10
[  116.181257][ T8479]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  116.183016][ T8479]  ? netlink_deliver_tap+0x1ae/0xcc0
[  116.184818][ T8479]  genl_rcv+0x28/0x40
[  116.186162][ T8479]  netlink_unicast+0x5aa/0x870
[  116.187780][ T8479]  ? __pfx_netlink_unicast+0x10/0x10
[  116.189606][ T8479]  netlink_sendmsg+0x8b0/0xda0
[  116.191137][ T8479]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.193021][ T8479]  ? __might_fault+0xb0/0x140
[  116.194607][ T8479]  ____sys_sendmsg+0xa54/0xc30
[  116.196254][ T8479]  ? __pfx_____sys_sendmsg+0x10/0x10
[  116.197969][ T8479]  ? try_to_wake_up+0x644/0x1a60
[  116.199593][ T8479]  ___sys_sendmsg+0x190/0x1e0
[  116.201156][ T8479]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.202807][ T8479]  ? futex_private_hash_put+0x107/0x1c0
[  116.204674][ T8479]  ? find_held_lock+0x2b/0x80
[  116.206271][ T8479]  __sys_sendmsg+0x170/0x220
[  116.207832][ T8479]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.209546][ T8479]  ? __x64_sys_futex+0x34f/0x4d0
[  116.211204][ T8479]  do_syscall_64+0xc9/0xf80
[  116.212778][ T8479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.214731][ T8479] RIP: 0033:0x7f1b6d99aeb9
[  116.216288][ T8479] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  116.222587][ T8479] RSP: 002b:00007f1b6e8a0028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.225439][ T8479] RAX: ffffffffffffffda RBX: 00007f1b6dc15fa0 RCX: 00007f1b6d99aeb9
[  116.228099][ T8479] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 000000000000000b
[  116.230754][ T8479] RBP: 00007f1b6da08c1f R08: 0000000000000000 R09: 0000000000000000
[  116.233421][ T8479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  116.236141][ T8479] R13: 00007f1b6dc16038 R14: 00007f1b6dc15fa0 R15: 00007ffeee830d38
[  116.238905][ T8479]  </TASK>
[  116.240715][ T8479] Kernel Offset: disabled
[  116.242194][ T8479] Rebooting in 86400 seconds..