last executing test programs:

57.998139498s ago: executing program 3 (id=343):
timer_create(0x1, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0x503, 0x70bd28, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_SNOOPING={0x5, 0x17, 0x1}]}}}]}, 0x3c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_GET_MSRS_sys(r3, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x48d, 0x0, 0x8}]})
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$RTC_PIE_ON(r4, 0x7005)
ioctl$RTC_IRQP_SET(r4, 0x4008700c, 0x80000000000725)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x28, 0x3, 0x8, 0x201, 0x0, 0x0, {0x3, 0x0, 0xa}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x7}]}]}, 0x28}}, 0x40000)
ioctl$SG_SET_COMMAND_Q(r0, 0x2271, &(0x7f0000000400))

57.556650729s ago: executing program 3 (id=346):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)={0x48, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x4, 0x119}, @nested={0x34, 0x11, 0x0, 0x1, [@nested={0x2e, 0xcf, 0x0, 0x1, [@generic="d478b585fcf4962925eb81095dd3d92e983e841d6ef7368187237f5e91a74d57e8aaee05ec63", @typed={0x4, 0x15}]}]}]}, 0x48}], 0x1, 0x0, 0x0, 0x40004}, 0x300)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
pread64(r1, &(0x7f0000000940)=""/4096, 0x1000, 0x81)
ioctl$USBDEVFS_DISCSIGNAL(r1, 0x8010550e, &(0x7f0000000080)={0x8, &(0x7f0000000200)="127b41df7d3ca49ad34bad1d3c56f66841c72988d44258c3f7a01843f4e5db5f07931cb332ece972d3980208b2f1f7913ab9967de97f8993ea6c59bc2309bb06939b58037f204af112034ee616aaaff52f0406f8f73b310343b722a98b30a86678d3ba41466c80999a8b8f831859a219f487d408679fe7bb19c0ebdd367f399c7867e07253f12e20d7a40733055ca08821bcc884"})

57.420868428s ago: executing program 3 (id=347):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x70bd28, 0x0, {{@in=@multicast1, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10, 0x20, 0x0, 0x0, 0xee01}, {}, {0x0, 0xe97b}, 0x400000, 0x0, 0x0, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x40)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="8801000014"], 0x188}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)={0x20, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}]}, 0x20}}, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f00000002c0)={@local, @remote, <r7=>0x0}, &(0x7f0000000300)=0xc)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r8, &(0x7f0000006180)={0x2020, 0x0, 0x0, <r9=>0x0, <r10=>0x0}, 0x2020)
syz_fuse_handle_req(r8, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r9, r10, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=@delpolicy={0x11f4, 0x14, 0x1, 0x70bd2c, 0x25dfdbff, {{@in=@multicast2, @in6=@remote, 0x4e20, 0x55da, 0x4e22, 0xeada, 0x2, 0xa0, 0xa0, 0x1, r7, r9}, 0x6e6bbb, 0x2}, [@replay_val={0x10, 0xa, {0x70bd28, 0x70bd27, 0x6}}, @algo_comp={0x12e, 0x3, {{'lzs\x00'}, 0x730, "ebec2db2e37121229e15538618ee573ff42155bf51804e70b2ed31d44547976ebfea63cba67e72c2c3dfda9f72e99ed83b527d0c75f2ddacabb2ca145800d6d925bc1a52874ecdaa9ac1b3112442e211ba2b5f7d552851e3a976f79a0437c6199744d05390d871f3a0937c6d83c60f70609ba87144b22926c70e433a91f128fc16c123f8e71a02a43ed4035d2b37fcd78174ddb59dc2c86d5765d7d268c3dc00af5fd78ac6ebf6927741ed5f46b29a1124177f1bf11c8155a8b91a90d9b6eaaed0f23bf55092e4f18e3b5de87dfd89304b00151b44859c4ca666e7cfc75fd676c4f7bbb60d01"}}, @algo_crypt={0x1048, 0x2, {{'rfc3686(ecb(des3_ede))\x00'}, 0x8000, "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"}}, @offload={0xc, 0x1c, {0x0, 0x3}}, @XFRMA_SET_MARK={0x8, 0x1d, 0x1}, @proto={0x5, 0x19, 0x6c}]}, 0x11f4}, 0x1, 0x0, 0x0, 0x4010}, 0x20088416)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, r2, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x44000}, 0x20000080)

57.16923442s ago: executing program 3 (id=349):
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x2, 0x2f, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/cgroup\x00')
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff6000/0x3000)=nil, 0x2000})
syz_io_uring_setup(0x44cd, &(0x7f00000004c0)={0x0, 0x5331, 0x10100, 0x1000006, 0xfffefffe}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x4400, 0x0)
io_uring_enter(r4, 0x2d3e, 0xec81, 0x1, 0x0, 0x0)
r5 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
read$dsp(r5, &(0x7f00000002c0)=""/4096, 0x1000)
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, &(0x7f0000000240)={0x5b9d, 0x1d, [{0xb, 0x1}, {0xe}, {0xc, 0x1}, {0xd}, {0xe}, {0xb}, {0x0, 0x1}, {0x1}, {0x1}, {}, {0x4}, {0x7}, {0xe}, {0x5, 0x1}, {0x5, 0x1}, {0xc, 0x1}, {0x8, 0x1}, {0xa, 0x1}, {0x9, 0x1}, {0x2}, {0xf, 0x1}, {0x2}, {0xd}, {0xe, 0x1}, {0xd, 0x1}, {0x3}, {0x1, 0x1}, {0x2, 0x1}, {0xb, 0x1}]})

57.08002216s ago: executing program 3 (id=350):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
r1 = fanotify_init(0x60, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0xffe0, 0xa}, {0x0, 0x9}, {0x1, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8848}, @TCA_FLOWER_KEY_MPLS_OPTS={0x18, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x14, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_MPLS_OPT_LSE_BOS={0x5, 0x3, 0x40}, @TCA_FLOWER_KEY_MPLS_OPT_LSE_DEPTH={0x5, 0x1, 0x2}]}}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002600)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$unix(r6, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18, 0x20000000}, 0x2000810)
recvmmsg(r7, &(0x7f0000001140), 0x700, 0x2, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000040)=0x20)
r8 = getpgrp(0x0)
syz_pidfd_open(r8, 0x0)
prlimit64(r8, 0xb, &(0x7f0000000080)={0xce9, 0x3ecd}, &(0x7f00000001c0))
timer_delete(0x0)
fanotify_mark(r1, 0x2, 0x20, r5, &(0x7f0000000000)='./file0\x00')
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz1\x00', {0x0, 0x10, 0x2}, 0xffffffff, [0x0, 0x0, 0x0, 0x40000, 0x1, 0x2, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffe, 0x0, 0xffffffff, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x296, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x6, 0x5f1], [0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x7, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0xfffffffe, 0x400, 0x0, 0x200, 0x0, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xfffffffd, 0x0, 0x5, 0x0, 0x0, 0x7, 0x0, 0x4, 0x0, 0xffff], [0x8001, 0xfc, 0x0, 0xffffffff, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x0, 0x4, 0x9, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0xffffffff, 0x0, 0x0, 0x9fa, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6, 0x0, 0x0, 0xbda6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52c, 0x0, 0x5, 0x0, 0xfff, 0x3, 0x0, 0xfffffffe, 0x0, 0xe727, 0x8], [0x40000000, 0x0, 0x74e2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000002, 0x40, 0x0, 0x0, 0xbd, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x8, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x80000000, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x40, 0xcaa, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xf, 0x4]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
socket$nl_netfilter(0x10, 0x3, 0xc)
write$uinput_user_dev(r0, &(0x7f0000000380)={'syz1\x00', {0x0, 0x7, 0x800, 0x101}, 0x9, [0x7, 0x80000000, 0x8, 0x10, 0xfffffffd, 0x9, 0x0, 0x10001, 0x1000, 0x0, 0x2, 0x5, 0x4, 0x200, 0x10000, 0x5, 0xffffa53c, 0xffffff6e, 0x80000001, 0x0, 0x48000, 0x7fffffff, 0x8, 0x1, 0xfffffffd, 0x2, 0x7, 0x6, 0x10001, 0x905a, 0x8, 0x4, 0x8, 0x7e3, 0x1000, 0x10001, 0x2, 0x3ff, 0x63, 0xc48, 0x1e4, 0x200, 0x0, 0x1, 0x2, 0x7a2, 0xbd, 0x6, 0xe, 0x9, 0x6, 0x8, 0x1, 0x10001, 0x3ff, 0x3, 0x3, 0x4, 0x28, 0x3, 0x1, 0x4, 0x7, 0xa], [0x7, 0x5, 0x1, 0x0, 0x2, 0x6, 0x9, 0x7ff, 0x80000000, 0x6, 0xab, 0x9, 0x82, 0x6, 0x1, 0x1, 0x7, 0x4, 0x9, 0xc0bd, 0x2, 0xff, 0x1, 0x8, 0xb0c, 0x3ff, 0xffffff5d, 0xd, 0x7, 0x9, 0x5, 0x800, 0x2, 0x10001, 0x4, 0x37f, 0x7, 0x7, 0x1, 0x3ff, 0x7fffffff, 0x5, 0x1, 0x8, 0xffffffff, 0x9, 0x2, 0x9, 0xffffffff, 0x51a, 0x1fd, 0x0, 0x1, 0x8, 0x101, 0x3, 0x6, 0x7, 0x8, 0x7, 0x22, 0x0, 0x40], [0xff, 0x47ac31ee, 0x7f, 0x2, 0x8, 0x6, 0xfde, 0x7, 0xb7b5, 0x111, 0x1a01, 0x9, 0x2, 0x10000, 0x80000001, 0x9, 0x2, 0x8, 0x1, 0x6, 0x7, 0x7, 0x8, 0x200, 0xb749, 0x9, 0x4, 0x3, 0x7, 0x0, 0x5, 0x0, 0x6, 0x200, 0x9, 0x8, 0xfffffff9, 0xc3, 0x6e, 0x200, 0x5, 0xefa, 0xde12, 0x101, 0x80000000, 0x800, 0x0, 0x1, 0x9, 0x1ff, 0x4, 0x7, 0x7b557614, 0x6, 0x9, 0x4, 0x2e8, 0x6, 0x509, 0x1200, 0x4, 0x62aeb40a, 0x3, 0x1ff], [0x8, 0xfffffff2, 0xf, 0xfffff800, 0x1, 0x800, 0x0, 0x7, 0x4, 0x0, 0x4, 0x5, 0xfffffff8, 0x800, 0x6, 0xfff, 0x3, 0x3, 0x8, 0x5, 0x7, 0xfff, 0xf, 0x6, 0x200, 0xffff7fff, 0x7, 0x1ff, 0x5, 0x6, 0x1, 0x7, 0x5e, 0x5, 0x10000, 0xffff, 0x4, 0x6, 0x5, 0xe, 0x45fa, 0x9, 0x5, 0x2, 0x3, 0x8, 0x8, 0x35b, 0x7ff, 0x400, 0x0, 0x8, 0x7, 0x3, 0xd, 0x1, 0x3, 0x3000, 0xffffff00, 0x5, 0xffffffff, 0x8, 0x81, 0x8]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)

56.850265652s ago: executing program 3 (id=355):
pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, &(0x7f0000000f40)=ANY=[@ANYBLOB="0500000000000000008000000700000014f7ffff0900000009000000af010000a2b900001000000008000000020000008af7ffff0600000009000000f7090000030000000100000000000000040000000f0000000800000000020000ff01000009000000ff0100004f09000001000000cbd9e573090000000000000009000000f7ffffff0004000005000000ffffff7f0f000000bf000000000100000000000000000100018000c0b31f310000010000bbb9080f2e00000003000000080000000800000006000000b10000000700000007000000000000000001000004000000"]) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f00000016c0)={0x10, 0x0, 0x25dfdbfb, 0x40000044}, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000600)={{0x14, 0x10, 0x1, 0x0, 0x2000000, {0x1}}, [@NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @masq={{0x9}, @void}}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x11c}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x90}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x88}, 0x1, 0x0, 0x0, 0x4000850}, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
r3 = socket$pppl2tp(0x18, 0x1, 0x1) (async)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x2, 0x0, 0x1, 0x0, {0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r7, 0x4400ae8f, &(0x7f00000001c0)={"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"}) (async, rerun: 64)
ioctl$KVM_CAP_HYPERV_SYNIC2(r7, 0x4068aea3, &(0x7f0000000140)) (rerun: 64)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000b0, 0x0, 0xfffffffffffffffd}, {0x400000b1, 0x0, 0x5}]})
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r8, 0x40045304, &(0x7f0000000540)={{}, 'port0\x00'}) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async, rerun: 64)
r9 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r10 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), r9)
sendmsg$L2TP_CMD_SESSION_DELETE(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01000cbd70100400000005000000080009000200000008000c00a80a000008000b0002000000060001000700000005001300f700"], 0x44}, 0x1, 0x0, 0x0, 0x40811}, 0x20)
r11 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r11, 0x84, 0x6e, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}], 0x1c) (async, rerun: 32)
r12 = socket$inet_sctp(0x2, 0x1, 0x84) (rerun: 32)
getsockopt$inet_sctp_SCTP_MAX_BURST(r12, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r13=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_CONTEXT(r11, 0x84, 0x11, &(0x7f00000003c0)={r13, 0x101}, 0x8)

43.560678703s ago: executing program 2 (id=529):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x12)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000180)={{0x0, 0x100}, 'syz0\x00', 0x1f})
ioctl$UI_DEV_CREATE(r0, 0x5501)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f00000028c0)={0x2020}, 0x2020)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd25, 0x2fdfdbfd, {0x0, 0x0, 0x0, 0x0, 0x35a71, 0x11963}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FLAGS={0x8, 0x8, 0x3a}]}}}]}, 0x3c}}, 0x0)

43.440526549s ago: executing program 2 (id=533):
r0 = timerfd_create(0x1, 0x800)
ioctl$TFD_IOC_SET_TICKS(r0, 0x40085400, 0x0)
r1 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfec9, 0x8, 0x1, 0x3d4}, &(0x7f0000000040), &(0x7f0000000280))
io_uring_enter(r1, 0xdb4, 0x0, 0x0, 0x0, 0x0) (async)
io_uring_enter(r1, 0xdb4, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f0000000000)={{r0}, 0x0, 0x0, @unused=[0xfffffffffffffffb, 0xb, 0x3ff, 0x8], @name="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"})

43.439791235s ago: executing program 2 (id=535):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 64)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0) (rerun: 64)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f0000000100)={0x1, 0x1}, 0x2) (async, rerun: 32)
write$USERIO_CMD_REGISTER(r1, &(0x7f00000000c0), 0x2) (async, rerun: 32)
write$USERIO_CMD_SEND_INTERRUPT(r1, &(0x7f0000000440)={0x2, 0xfe}, 0x2)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) (async)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x6, &(0x7f0000000140)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @alu={0x6, 0x0, 0xd}, @call={0x85, 0x0, 0x0, 0x18}]}, 0x0, 0x4}, 0x94) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 64)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0) (rerun: 64)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14) (async, rerun: 32)
r5 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0) (rerun: 32)
syz_usb_control_io(r5, 0x0, &(0x7f0000000300)={0x44, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 64)
r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) (rerun: 64)
ioctl$FS_IOC_GETVERSION(r6, 0xc0145b0e, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r3, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000340)={'syztnl0\x00', &(0x7f0000000280)={'gretap0\x00', <r7=>0x0, 0x20, 0x40, 0x4e, 0x3, {{0xf, 0x4, 0x3, 0x38, 0x3c, 0x68, 0x0, 0x9, 0x4, 0x0, @empty, @multicast1, {[@timestamp_addr={0x44, 0xc, 0x27, 0x1, 0xc, [{@remote, 0x6}]}, @ssrr={0x89, 0x1b, 0xc8, [@dev={0xac, 0x14, 0x14, 0x1d}, @private=0xa010100, @private=0xa010102, @multicast1, @empty, @loopback]}, @noop]}}}}})
setsockopt$MRT6_DEL_MIF(r3, 0x29, 0xcb, &(0x7f0000000380)={0x1, 0x1, 0xf4, r7}, 0xc) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

42.710594302s ago: executing program 2 (id=543):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = fanotify_init(0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r2, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newlink={0x34, 0x10, 0x40d, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x10, 0x202}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
recvmsg$kcm(r2, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
connect$inet6(r1, &(0x7f00000005c0)={0xa, 0x4e22, 0x7f, @dev={0xfe, 0x80, '\x00', 0xe}}, 0x1c)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/oops_count', 0x408100, 0x1c0)
fanotify_mark(r0, 0x10, 0x10, r4, &(0x7f0000000140)='./file1\x00')
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r5, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r5, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r5, &(0x7f00000002c0)=[{&(0x7f0000000300)="00214717a70d000000000306010000000000002133a65108027d8b7f1c60495d18fec3f83634cfe5cff0e0716010615e88f55306e4d10c4c406904261e0d3fb996e1714f3435bbdeb35b793cb42c3131463efbd3d852", 0x56}], 0x1, 0xe, 0x200004)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
r6 = open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x80c42, 0x1d0)
quotactl_fd$Q_GETFMT(r6, 0xffffffff80000401, 0xee01, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x0)
statx(r4, &(0x7f0000000340)='./file1\x00', 0x0, 0x100, &(0x7f0000000700))
r7 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r7}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r7, &(0x7f00000021c0)={0x2020, 0x0, <r8=>0x0}, 0x2020)
write$FUSE_INIT(r7, &(0x7f0000000080)={0x50, 0x0, r8, {0x7, 0x29, 0x9, 0xffffffff90adedc4, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r7, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

41.779886318s ago: executing program 2 (id=546):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_GETMODE(r0, 0x5601, &(0x7f0000000000))
r1 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
close(r1)

41.779353786s ago: executing program 32 (id=355):
pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, &(0x7f0000000f40)=ANY=[@ANYBLOB="0500000000000000008000000700000014f7ffff0900000009000000af010000a2b900001000000008000000020000008af7ffff0600000009000000f7090000030000000100000000000000040000000f0000000800000000020000ff01000009000000ff0100004f09000001000000cbd9e573090000000000000009000000f7ffffff0004000005000000ffffff7f0f000000bf000000000100000000000000000100018000c0b31f310000010000bbb9080f2e00000003000000080000000800000006000000b10000000700000007000000000000000001000004000000"]) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f00000016c0)={0x10, 0x0, 0x25dfdbfb, 0x40000044}, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000600)={{0x14, 0x10, 0x1, 0x0, 0x2000000, {0x1}}, [@NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @masq={{0x9}, @void}}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x11c}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x90}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x88}, 0x1, 0x0, 0x0, 0x4000850}, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
r3 = socket$pppl2tp(0x18, 0x1, 0x1) (async)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x2, 0x0, 0x1, 0x0, {0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r7, 0x4400ae8f, &(0x7f00000001c0)={"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"}) (async, rerun: 64)
ioctl$KVM_CAP_HYPERV_SYNIC2(r7, 0x4068aea3, &(0x7f0000000140)) (rerun: 64)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000b0, 0x0, 0xfffffffffffffffd}, {0x400000b1, 0x0, 0x5}]})
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r8, 0x40045304, &(0x7f0000000540)={{}, 'port0\x00'}) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async, rerun: 64)
r9 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
r10 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), r9)
sendmsg$L2TP_CMD_SESSION_DELETE(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="01000cbd70100400000005000000080009000200000008000c00a80a000008000b0002000000060001000700000005001300f700"], 0x44}, 0x1, 0x0, 0x0, 0x40811}, 0x20)
r11 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r11, 0x84, 0x6e, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}], 0x1c) (async, rerun: 32)
r12 = socket$inet_sctp(0x2, 0x1, 0x84) (rerun: 32)
getsockopt$inet_sctp_SCTP_MAX_BURST(r12, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r13=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_CONTEXT(r11, 0x84, 0x11, &(0x7f00000003c0)={r13, 0x101}, 0x8)

41.341431548s ago: executing program 2 (id=549):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r1=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16, @ANYBLOB="010028bd7040010000000f00000005002a000000000008000300", @ANYRES32=r1, @ANYBLOB="08002b000800000005002f00000000000800320005000000050029"], 0x5c}}, 0x18)

41.318807398s ago: executing program 33 (id=549):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r1=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16, @ANYBLOB="010028bd7040010000000f00000005002a000000000008000300", @ANYRES32=r1, @ANYBLOB="08002b000800000005002f00000000000800320005000000050029"], 0x5c}}, 0x18)

4.453566025s ago: executing program 1 (id=1119):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x13, 0x0, 0x2, [{0x5}]}]}}, 0x0, 0x32}, 0x20)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0}, 0x68)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000180)=0xbe)
r2 = openat$cgroup_subtree(r0, &(0x7f0000000200), 0x2, 0x0)
rmdir(&(0x7f0000000040)='./cgroup/../file0\x00')
ppoll(&(0x7f0000000240)=[{r2, 0x4400}], 0x1, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
chdir(&(0x7f0000000100)='./cgroup/../file0\x00')
setitimer(0x2, 0x0, &(0x7f0000000180))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000014c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r3, 0xfeffff, 0xa40, 0x3f000002, &(0x7f0000000700)="c45c57ce395de5b289f07d637a223920f181c2e57d71483cfb2d075a3ff07258e080a194805cdb0c26d3f7ffb1e0d9cf4fa36dcb2168b72de48ac8f93e6804f1c4d70898d0810e044d7e1778eaac5dfdcc9f1208905522025bcfdf1b6f969b094d5c022c2b7ffefde71e0627b9a2069cc1e0175c4b8860aad4b0a103c589f676b6c4e85eb3950c533b6e62c39ccf9ae9bfe54ee5887358d44f46337fbe090d7c7e55847edee8130ffd3d1e719e01a68b0e691c0d35b0b56e0b514036342fd56f08ac0083f3c2fe41a1295a3d23cf3d160d4fd90f66beba68860456ed41272e1e68d16c2564c85f5556e18784113c493d13253e14d6eb891707fba3c30d07d5ee8619e4426cafec4cf6a3723c455d09b586b248", 0x0, 0xf0, 0x0, 0xf0, 0xffffff0c}, 0x40)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r3, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], 0x0, 0x86, &(0x7f0000000380)=[{}, {}], 0x10, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
r4 = io_uring_setup(0x9, &(0x7f0000000040)={0x0, 0x3109, 0x1c881, 0x8, 0xd1})
r5 = io_uring_setup(0x137b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f7, 0x0, r4})
ioctl$FICLONE(r4, 0x40049409, r0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x5c8c, 0x0, @empty, @mcast1, 0x80, 0x0, 0x0, 0x20000000}})
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x2d, 0x0, 0x1f, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4)
io_uring_enter(r5, 0x2219, 0x7721, 0x16, 0x0, 0x0)
rt_sigqueueinfo(0x0, 0x38, &(0x7f0000000240)={0x20, 0x4})
io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0)

4.339536586s ago: executing program 1 (id=1123):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x14, 0x2e, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x20000041}, 0x0)

4.339319988s ago: executing program 1 (id=1124):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_mtu=0x6})
ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000))
bind$bt_sco(r0, &(0x7f0000000180), 0x8) (async)
bind$bt_sco(r0, &(0x7f0000000180), 0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) (async)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
io_uring_setup(0x68ac, &(0x7f0000000480)={0x0, 0x10000000, 0x1880, 0x2}) (async)
r3 = io_uring_setup(0x68ac, &(0x7f0000000480)={0x0, 0x10000000, 0x1880, 0x2})
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000040)={@my=0x1}) (async)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
socket$can_j1939(0x1d, 0x2, 0x7) (async)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r6, &(0x7f00000000c0)="ab", 0x1, 0xc1, &(0x7f0000000280)={0x2, 0x4e22, @rand_addr=0x64010101}, 0x10)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f00000001c0)={r9, 0x8}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000300)={r9, @in6={{0xa, 0x4e23, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}}, 0x0, 0x80, 0xcdd, 0x557f2e01, 0x19, 0x7}, &(0x7f00000001c0)=0x9c)
ioctl$sock_SIOCOUTQNSD(r5, 0x894b, &(0x7f0000000140))
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="97c47f34042ca9bf9985a237e114000000040601"], 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x800)

4.258107434s ago: executing program 0 (id=1126):
r0 = socket(0x2, 0x3, 0xff)
sendto$inet(r0, 0x0, 0x0, 0x404c000, 0x0, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000002e00090029bd7000000000000400000005000b00000001"], 0x1c}, 0x1, 0x0, 0x0, 0x42804}, 0x50)

4.257182579s ago: executing program 0 (id=1127):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x40d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x12214, 0x30000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x6}, @IFLA_BOND_PRIMARY={0x8}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c0}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00', <r4=>0x0})
r5 = syz_io_uring_setup(0xbda, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0x1, 0x40000333}, &(0x7f0000000dc0)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000480)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) (async)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000480)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='io_uring_file_get\x00', r8, 0x0, 0xf}, 0x18)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r5, 0x847ba, 0x0, 0xe, 0x0, 0x0) (async)
io_uring_enter(r5, 0x847ba, 0x0, 0xe, 0x0, 0x0)
sendmsg$NL80211_CMD_START_NAN(r2, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, r3, 0x300, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1, 0x5}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x1}]}, 0x30}}, 0x40)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x5, 0x30}, 0xc)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in6={{0xa, 0x4e24, 0x9, @loopback, 0x2a4}}, 0x1c2, 0x2}, &(0x7f00000004c0)=0x90) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000400)={0x0, @in6={{0xa, 0x4e24, 0x9, @loopback, 0x2a4}}, 0x1c2, 0x2}, &(0x7f00000004c0)=0x90)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, &(0x7f0000000000)=""/36, &(0x7f0000000040)=0x24) (async)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, &(0x7f0000000000)=""/36, &(0x7f0000000040)=0x24)

4.048143688s ago: executing program 0 (id=1132):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_type(r5, &(0x7f00000001c0), 0x2, 0x0)
sendfile(r3, r6, &(0x7f0000000040)=0x6b18d85, 0x7)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r7, @ANYBLOB="01030003000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="4c00000010001ffffcfffffffdffffff00000000", @ANYRES32=0x0, @ANYBLOB="0002010000000000240012800b00010065727370616e000014000280050016000000000008000700ac1414bb08000a00", @ANYRES32=r7], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r10}}, 0x24}}, 0x0)

3.776918086s ago: executing program 0 (id=1135):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)='xfs\x00', 0x0, &(0x7f0000000140)='grpquota')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
sendmmsg$unix(r0, &(0x7f0000000000), 0x0, 0x80)

3.670812221s ago: executing program 0 (id=1138):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) (async)
r2 = socket$netlink(0x10, 0x3, 0x0) (async, rerun: 32)
r3 = socket$unix(0x1, 0x1, 0x0) (rerun: 32)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newqdisc={0x94, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r4, {0xffff}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x4, [0xc, 0x5, 0x0, 0xf, 0x10, 0x2, 0x4, 0x2, 0xf, 0x6, 0x3, 0x7, 0x8, 0x4, 0x10, 0x4], 0x3, [0xb, 0x3, 0xad1e, 0x2002, 0x1, 0x4, 0x2, 0xd06, 0xff05, 0x2, 0xb, 0x3, 0x5, 0x6, 0xd, 0x100], [0xfff1, 0x5, 0xffff, 0xfff5, 0x4, 0x8, 0x1, 0x9, 0x5, 0x2, 0xc, 0x40, 0xfffc, 0x3, 0x1]}}]}}, @TCA_RATE={0x6, 0x5, {0xd9, 0xfb}}]}, 0x94}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00', <r5=>0x0}) (async)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'syztnl2\x00', &(0x7f0000000180)={'sit0\x00', <r6=>0x0, 0x8010, 0x7800, 0x2, 0x4a, {{0x6, 0x4, 0x0, 0x0, 0x18, 0x68, 0x2, 0x15, 0x4, 0x0, @multicast1, @multicast2, {[@noop]}}}}})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x98, r1, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x4080}, 0x4) (async, rerun: 64)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000000)=ANY=[@ANYRES32=r0], 0xb8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) (rerun: 64)

3.430046827s ago: executing program 1 (id=1144):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000000c0)={0xffffffffffffffff, 0xc8, 0x3})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000000c0)={0x4, 0xffffffffffffffff, 0x1})
socket$nl_generic(0x10, 0x3, 0x10)
r3 = mq_open(&(0x7f0000000380)='&\x00w\xb4N6Bf\xa9\xc2\xd0\b\x06L\xbbQ\xd6T\xe3+SD\xa8\x0f\xefwHw\xdab\xc4\x1a\xe55@hA5\xd6\xec.)\x8f}\xc5#L\x99\"\x84;{\xfa\x04~\xf1\x17\x1d\x90\x83\xfc\x1e\xae\xb0/(\xbb\xd3\xb7\xca\x13j\xab\xfa\xc5Mq\xb7ks\xe0 \x9d\xf8\x7f\x84b\xa4h\xeekc\xffZ\x9fg\x84lm\xd7F\x97\xdcd\v\x00\x00\x90\x03\x12^\xf2{\xf1\xbe\x12[~\xe7\xca\xe4\x13\xd6k\xa6\xf3v5F\xc9.\xce\x87z\xd4<\xa8\xba\xd0\x9c\ff\xe1\xe2\xf9\x18\xc0\xd0\xa1\x02K\xdd<a\xbe\xbeZ\r\xce\x9f\x835W\x87\xea\xe4e\xbdD\xc7\xb2', 0x8c1, 0x1a2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x28a5291, 0x0)
mount(0x0, &(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000040)='devpts\x00', 0x3000415, 0x0)
mq_notify(r3, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})
mq_timedsend(r3, 0x0, 0x0, 0x4, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x181942, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/pm_test', 0x8a881, 0xbb)
r5 = syz_open_dev$loop(&(0x7f0000000000), 0x3, 0x4800)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r7, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @loopback}, 0xc)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r8, 0x8914, &(0x7f0000000040)={'lo\x00'})
setsockopt$inet_msfilter(r8, 0x0, 0x29, &(0x7f0000000240)=ANY=[@ANYRES16=r2, @ANYRES64=r4], 0x18)
sendmsg$nl_route_sched(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x34, 0x10, 0x1, 0x70bd29, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe, 0xd}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x5bd7}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x0)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f0000000080)={r4, 0x0, {0x0, 0x0, 0x0, 0x1, 0x4000000000000ffd, 0x0, 0x0, 0x3, 0xc, "faf98317e5a1149989fc67be43ea6acc96e3a2503dc31c97214d58128bbad0099cebdc25f5ab60c9e69098c8b534464c516bdd8a0f350000000000000300", "32d8cc26f7061a74df2cfc06489f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc03d81a8ca55ba139c01802c4dae4162e43ac61b7ad33", [0x2, 0x8]}})
ioctl$LOOP_SET_CAPACITY(r5, 0x4c07)
ioctl$FS_IOC_GETFLAGS(r8, 0x80086601, &(0x7f0000000280))

3.116640303s ago: executing program 1 (id=1145):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000040000000400000008"], 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, 0x49, 0x1, 0x2, 0x0, {0xa, 0x0, 0x6e80}}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0c00000004000000040000000900000000000000", @ANYRES32=r0], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x44, &(0x7f0000000000)={0x0, 0x0}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000080)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="1d0b2bbd7000fedbdf25010000000c000600020000000000000008000300", @ANYRES32=r5], 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x48850)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xd)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000a40000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r6, 0x84, 0x8, &(0x7f0000000040)=0x1, 0x4)

3.115754813s ago: executing program 0 (id=1147):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @multicast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @private0, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x1, 0x9}}}}}}}, 0x0)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1}, 0x18)
sendmsg$can_j1939(r2, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newtfilter={0x24, 0x11, 0x101, 0x70bd29, 0x100000, {0x0, 0x0, 0x74, r1, {0xa, 0x9}, {0xb, 0xfff3}, {0xffff, 0x6}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4040840}, 0x240000c0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400), r2)
sendmsg$IPVS_CMD_GET_INFO(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r3, 0x337704acf124f21a, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4c001)
sendmsg$can_j1939(r2, &(0x7f0000000340)={&(0x7f0000000000)={0x1d, r1, 0x1, {0x2, 0xfe}, 0xfd}, 0x18, &(0x7f0000000140)={&(0x7f0000000280)="916bc95893293e6c0d4f25997730acf6c77cf6a6db887a8bc65b5ebe58fbdb09ef94a420572326f1a5d94928a1db9bcd369df25433bc14b60fbaa967356b6e80bf7efd0089037df505c67ae58e6b78fdbe8abdb9debb967fa253ccc79de86996a8aba5d8388825eea29e0ccb519bf652bf2bf5645b29fe68e35ee0c3b7d9bd3d081e75248efc322bc2de42395f239d7e571b22963cf214545cd33b82d10f", 0x9e}, 0x1, 0x0, 0x0, 0x4008801}, 0x8040)

2.977555937s ago: executing program 34 (id=1147):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @multicast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @private0, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x1, 0x9}}}}}}}, 0x0)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1}, 0x18)
sendmsg$can_j1939(r2, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newtfilter={0x24, 0x11, 0x101, 0x70bd29, 0x100000, {0x0, 0x0, 0x74, r1, {0xa, 0x9}, {0xb, 0xfff3}, {0xffff, 0x6}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4040840}, 0x240000c0)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400), r2)
sendmsg$IPVS_CMD_GET_INFO(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r3, 0x337704acf124f21a, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4c001)
sendmsg$can_j1939(r2, &(0x7f0000000340)={&(0x7f0000000000)={0x1d, r1, 0x1, {0x2, 0xfe}, 0xfd}, 0x18, &(0x7f0000000140)={&(0x7f0000000280)="916bc95893293e6c0d4f25997730acf6c77cf6a6db887a8bc65b5ebe58fbdb09ef94a420572326f1a5d94928a1db9bcd369df25433bc14b60fbaa967356b6e80bf7efd0089037df505c67ae58e6b78fdbe8abdb9debb967fa253ccc79de86996a8aba5d8388825eea29e0ccb519bf652bf2bf5645b29fe68e35ee0c3b7d9bd3d081e75248efc322bc2de42395f239d7e571b22963cf214545cd33b82d10f", 0x9e}, 0x1, 0x0, 0x0, 0x4008801}, 0x8040)

2.745633405s ago: executing program 1 (id=1155):
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x24903, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0xfffd, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x190, 0x1}, 0xe)
getsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000100)=0xb6e, &(0x7f0000000180)=0x2)
ioctl$CDROMVOLCTRL(r0, 0x31e, &(0x7f0000000040)={0x3, 0x43, 0x3, 0x6})

2.612124886s ago: executing program 35 (id=1155):
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x24903, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0xfffd, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x190, 0x1}, 0xe)
getsockopt$bt_BT_RCVMTU(r1, 0x112, 0xd, &(0x7f0000000100)=0xb6e, &(0x7f0000000180)=0x2)
ioctl$CDROMVOLCTRL(r0, 0x31e, &(0x7f0000000040)={0x3, 0x43, 0x3, 0x6})

1.880810722s ago: executing program 5 (id=1161):
listen(0xffffffffffffffff, 0x2)
symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00')
mkdir(0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x38, 0x55, 0x2e5, 0x70bd26, 0x1, {0x7, r2}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x1, 0x0, 0xffe, {@ip4=@empty}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c844}, 0x20000110)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
r4 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r4, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000000c0)='xfrm0\x00', 0x10)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x4e1d, @private=0xa012100}, 0x10)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'vlan1\x00', 0x2000})
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000340)={'syzkaller1\x00', @link_local})
sendmmsg$inet(r4, &(0x7f0000000f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
ioctl$CDROMREADMODE1(r3, 0x530d, &(0x7f0000000180)={0x56, 0xff, 0xfe, 0x81, 0x9a, 0x7})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r8 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x40001, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r9, 0x560e, &(0x7f00000003c0)={0x2, {0x2, 0x80e, 0x8, 0xc1e6, 0x1ff}})
ioctl$SNDCTL_DSP_GETCAPS(r8, 0x8004500f, &(0x7f0000000080))
r10 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r11, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x64, 0x2c, 0xd27, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r11, {0xc, 0xa}, {0x0, 0x9}, {0xfff3, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x34, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8848}, @TCA_FLOWER_KEY_MPLS_OPTS={0x28, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x24, 0x1, 0x0, 0x1, [@TCA_FLOWER_KEY_MPLS_OPT_LSE_BOS={0x5}, @TCA_FLOWER_KEY_MPLS_OPT_LSE_LABEL={0x8, 0x5, {0x6}}, @TCA_FLOWER_KEY_MPLS_OPT_LSE_TTL={0x5, 0x2, 0x9}, @TCA_FLOWER_KEY_MPLS_OPT_LSE_DEPTH={0x5, 0x1, 0x6}]}}]}}]}, 0x64}}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x2800003)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.42978507s ago: executing program 5 (id=1166):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket(0x11, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'gre0\x00', <r3=>0x0}) (async)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r5, 0x400448ca, 0x0) (async)
bind$bt_hci(r5, &(0x7f00000000c0)={0x1f, 0x0, 0x1}, 0x6) (async)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000040)=0x4795, 0x4)
bind$packet(r1, &(0x7f0000000180)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14) (async)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000200)=0xe9, 0x4) (async)
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(r6, 0xb, 0x0, &(0x7f0000000280)) (async)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000016c0)={{{@in=@empty, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@mcast2}}, &(0x7f00000001c0)=0xe8)
sendmsg$netlink(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000380)={0x1304, 0x28, 0x2, 0x70bd25, 0x25dfdbfc, "", [@generic="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", @nested={0xa9, 0xbe, 0x0, 0x1, [@typed={0x8, 0xa9, 0x0, 0x0, @pid=r6}, @typed={0x6e, 0x2a, 0x0, 0x0, @binary="1c84b80cfb3286384b63fb853188473cfa7358d526ccf3216fb3dccbbac27afc2b7a0537ad584f1919693e08b0c7cedbc2745aba1b674d4debba1b2f0bff74f1b1cb8e7200dfb02960df5b6b986e76db118f685c302fef68a7b0d37a9f90e54abcde205decbe2bbcb57e"}, @nested={0x4, 0xf}, @generic="8cdfba122d5e2685162a660ea304d567569c7c90aa9fb564ac300d8d35a6dc8746d055c719982fa05e"]}, @nested={0x24, 0x10a, 0x0, 0x1, [@nested={0x4, 0x100}, @typed={0x14, 0x11e, 0x0, 0x0, @ipv6=@loopback}, @typed={0x8, 0xc, 0x0, 0x0, @u32=0x9f3}]}, @generic="6be937cdf2b8a9ceea0ae6aba77a88334ffbe3c8a14e6ef8d17a286ac96a24c201747fa00f6e666120bde6de11fc342fc09fb5cfa55840f8cae2ac7078422eeadc58beb9d541c27429c706e76b310db70c429260cea2addda8c4655b00515352d4117530ef98dcd819239e6f6af16dea6146c1fa9f24a4565f20771fec925c5ab544e0a4d96bb26062a2fb433e1ed794cfab22c25680fe4a9c0a944eeb1e3296f1912517531fc313e56558", @generic="afc08460159c0ed6b9f8624bd73d2115184352ba0619e8f8efc2a2eb26af16996133213058f0a4dab0d089e745a76dcb22b2c5967fa5e8f6ba80fffa3ed298f8a54b25e05d76125c36fb7068c87d2dcab1eddb4949e5e1622690df091e419e35776b257c3e5d19630b954d1817ae2b1ea8c76d937ef8f5e340e7a7ce2a146f083d610aefeed2a99f16e0f567ef", @typed={0xc, 0xc8, 0x0, 0x0, @u64=0xc}, @typed={0xb3, 0x139, 0x0, 0x0, @binary="b0b4e13c4b462f6b254d7ce3f9b8701131c3330edfe07d5c21be7c30861f2f6a2e704734f9d50df1a36d42f481d86f0852e5510066298ccfb28b6aad98fbdb663c2d5cbdbe3a49519906587b12709a6888a4bb5c1dc6e1a6f0abac8d65a10a7e2e1570570dac3e7b4ef660f44d37369854cde345b3fc27a8acafeb3509519f9f961c8bb694605540547e1d161c61902e0248455e8bac6bfa784a586196ab9602a98bd9f8e5c656cbd03b0bc484b661"}, @generic="d7696752877a57721608021725", @nested={0x1c, 0x4b, 0x0, 0x1, [@typed={0xc, 0x80, 0x0, 0x0, @u64=0x2}, @nested={0x4, 0x12f}, @typed={0x8, 0x53, 0x0, 0x0, @fd=r0}]}]}, 0x1304}, {&(0x7f00000017c0)={0x304, 0x29, 0x20, 0x70bd25, 0x25dfdbfb, "", [@generic="592dfc7803a37fd0a05f8b9eed805028144f58302d04cd90583de84cc1d13aeafe55ca4294146927714440ee5a6f042e4314c8efcbf255942b67271ec04d432dee00bcad7119b5b866dc9c26417a24a2cd84da497a969fc110f10018f28e96b9cbedd0d81056dcec8c54c5a0bbb102419160c9d56cf525eb764174971aac2c399697307dbd435d8c9e61ac80", @typed={0x8, 0xf6, 0x0, 0x0, @u32=0xfffffffd}, @typed={0x8, 0x45, 0x0, 0x0, @uid=r7}, @typed={0x8, 0x16, 0x0, 0x0, @u32=0x7f}, @nested={0x1f6, 0x53, 0x0, 0x1, [@generic="256190f1b872f240cb9bf55b185e982c77c28fb55ee2192ec7d0458aa8609be711e5010b02714f5810b76d9d04b665ae6ebf73082bb5ce76b7176c0dd5a61cdb443787119729d9df435990f426d22f0e37308e1e52b20920b9107f600e1f3717a2110e60e08ed17e0660fddf9d2bcd3b74349662bb56aca894e9017eb0566c3a0d040472d888fbe07c0acb53fa64e009685739ecc07c22ee309e4f1f041ebd8e2b43f253e5318335d1f4f2b4f75e643408382cc74e8bd8ed91d95a3240c40fd5d18cda2551d1d703913b80b82381cec76b0d8eaa", @nested={0x4, 0x8}, @generic="f57b909c054900691c235b52bd0d3f34c0a7a6767be91a71ab0963a71912db84b9bdd4c7ee93672dc798e48873dabb5b9fb90308c1740a65a50efd13e605a4b00d5cf9e2f5d29756ff57359fcd316151f4d42dfbe849210459810f5c298300876cf0c311200e59cf3b562f89ce", @typed={0x9, 0x12f, 0x0, 0x0, @str='\xaa\xaa\xaa\xaa\xaa'}, @nested={0x4, 0x2}, @generic="3735879d9d20b8303fc890d15dd8345d76e340aa9edbd3c035503ba6d4bce44232abb424fd924bec5034a9c2e5ded1d40ee80ecd077aac9827473080503145663febf67452b9926b10133274b023d1b1a02610141c9ae5d45208c8af7aba16b4a3add763d1e5c38cf218e06790ce7e0b58c97a5ebb53bfd22e6665f143002943cad5468895b6ae6a12ab48328297004ca019961a99dd966d28", @nested={0x4, 0x81}]}, @generic="1276b2eaa132edf30ba32ffc14fd020865e06d62483a961b68fed6dd082548d114e016a95c26a5a94866b799a761bfb9156cce1a32823a4456677231fad67d7d4a1685d0aca6eb5fa2f2a2a796174646456538b6f1895b55"]}, 0x304}, {&(0x7f0000001b00)={0x88, 0x34, 0x4, 0x70bd2a, 0x25dfdbfb, "", [@generic="2c48ef195d4edcebeb1eb15eec29f218d8c7906934195c84790d89063f6ec6fbe1171d053809cbebda51513a60b1a6755e220e1663c8f24b9fe5b17a1121b14eccf34b8951314890a9b4704464bc9464fa1a1171d6e936657a13c0e39a9ad206bda9", @typed={0x14, 0x34, 0x0, 0x0, @ipv6=@empty}]}, 0x88}, {&(0x7f0000001bc0)={0x1480, 0x1f, 0x400, 0x70bd2c, 0x25dfdbff, "", [@generic="822529e979442522ea1074da6a9a0aa2a8b6f7675036dc3da4e77f123e43d284b5e4d65de07fc68082f86756a5ec594e073535fe8640c53ce5e15e6842f6ebb7aa446bdd7db297458b73d27daefe464f1b4e07b96f9e5c00876e3cda5e0a53d1c96b7f1a52b728ea33430fc832c0a45750bf1afa38ed3b96552d8baf4976864e12ed0bf977819942587be75bfc17bec2eccf7c64641d067ce6e728", @typed={0x9, 0x15, 0x0, 0x0, @str='gre0\x00'}, @generic="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", @nested={0x12b6, 0x24, 0x0, 0x1, [@generic="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", @nested={0x4, 0x70}, @generic="d9eeb6530a765cef7e6ce8740e956b3c9f801bc5b3c1c5a17c4a1882178dbfdc7a376b1e0927490c305097e6bee3b3291c5ce4a24c24f3920f5e219c73aa744d99fc29eee1e33879ed893863d4cccedd72b54f37ff4d60e5c995a743b01b34d51569b015ef301a770296640fc470286d14f3544b0e399ad1d956dbc9dc9f500fd1198bac94e63ebb12a88473103ef1675211396995cda33a30e30345b880aa072130bab342c3a751de86fcd552c586e418bac59f9d1c391f99acea", @typed={0x8, 0x5a, 0x0, 0x0, @fd=r2}, @generic="e0b85d32fdc9495d362671ec99ff4d01ff812396b2dbcfb4b47d5330c39c98bd6f3471b2b43900651422f6f046b9001ce5655c5f8fee02e2f4174eec19d581923e10d3b4e7b6d899efe03c4c54d9d6c0bffd9adad2cafc1bb648afb6101cd1daec660e3ae0842ed6d52ff9b1e24e2f400c90dcea0c90b5baedfb5fa2db7767b189edd53c26b7a3f0f0c1bc10e0aa75d508db", @generic="646bc5d43db547fc34f7b44c3f3c90b9a626af5bdbbd988276d3df8ffb6f3dc6a138cd8b338c3fbb916d909dd4fea25715ff05e4475c48c6a3d5a611d410555da0d2a12637b6eb96ebe31c8816d4f595ae848f8139b0fa40af33facfcd9fbb88d30408e1ee3ce29f1600cf228e139c34bad29621937a55a5e3c8f15728b5531ae168503837ec04f4fc9949b5c2230e75b776aa35accecdf0c7cf7d7fa8ffab7815a634a91e8b69aee0bee628777eff6d687da3820548aba8b25ce37d56e6a8e6758eadec03474a1364f3c9d13cecb28b99fecd0a9e901eff9144882fa274c522246334f4", @generic="89", @typed={0x6, 0xa5, 0x0, 0x0, @str='\\\x00'}, @generic="ddf84c9916350fd865d0527b1d4af5f1ce8f512d85e0b6dd57544207d9ae2e206a4864dac5d67646419aa04bab932fc43247943058b197ef28a637b3082b69b98cb6e2dad103883e471b2816a3168bf648d35db64269674969e8d21f6b014ccd9e0605100db11af4", @nested={0x4, 0x100}]}, @typed={0x8, 0xbc, 0x0, 0x0, @u32=0x2}, @typed={0x9, 0x3, 0x0, 0x0, @str='\xaa\xaa\xaa\xaa\xaa'}]}, 0x1480}], 0x4}, 0x0) (async)
r8 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
getsockopt$llc_int(r8, 0x10c, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x1c, 0x17, 0x1, 0x70bd26, 0x25dfdbff, {0x5}, [@typed={0x8, 0x1, 0x0, 0x0, @u32=0xf}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48080}, 0x40010) (async)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42, 0x0)
close_range(r9, 0xffffffffffffffff, 0x0) (async)
sched_setattr(0x0, &(0x7f0000000000)={0x63}, 0x0) (async)
ioctl$VIDIOC_CROPCAP(r9, 0xc02c563a, &(0x7f0000000000)={0x5, {0x7, 0x5e, 0x5615, 0x1000}, {0x2, 0x7, 0x6e, 0x7f}, {0x8}})

1.427778491s ago: executing program 4 (id=1167):
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000600)={0xffffffffffffffff, 0x20, &(0x7f00000005c0)={&(0x7f00000006c0)=""/167, 0xa7, <r0=>0x0, &(0x7f0000000780)=""/197, 0xc5}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000001801f2150a2cf3530000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000009500"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x1, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x800)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x10, @scatter={0x0, 0xcc, 0x0}, &(0x7f0000000240)="128db2cf0800", 0x0, 0x0, 0x0, 0xffffffff, 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f00000000c0)={{0x7, 0x2, 0x0, 0x200000}, 0x0, [0x9, 0x0, 0x3, 0xfffffffffffffffe, 0xfffffffff7fffffe, 0x0, 0x5, 0x0, 0x10000, 0x4, 0x4, 0x0, 0x0, 0x661, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7, 0x4, 0x0, 0x6, 0x0, 0x703a, 0x6, 0xae4f, 0x8000000, 0x0, 0x1, 0x0, 0x8, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfff, 0x3, 0xd5e4, 0x0, 0x7, 0x1ff, 0x0, 0x0, 0x6, 0x1, 0x0, 0xfffffffffffffffb, 0x4, 0x377, 0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x4000, 0x1, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x5, 0x6, 0x3, 0x0, 0x800, 0x0, 0x0, 0x0, 0x5, 0x8, 0xc, 0x0, 0x0, 0x9, 0x4000000000000, 0x0, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4, 0xd30, 0x1000, 0x6, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, 0x0, 0x7fffffff]})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000640)="d8df0f23b3b9ce000000b807000000ba000000000f301b8154fea900c1210680320000c4e28ddc8dcd000000c182fd3f0000c8b950020000b801000400b9a6080000660f38031166b8377a000000d80f300f300fc79d53bf00000f0057000f01c3", 0xffffffffffffffad}], 0x1, 0x4, 0x0, 0x0)
r6 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f00000008c0)='trusted\x00', &(0x7f0000000900)=@keyring)
write$cgroup_int(r4, &(0x7f0000000040)=0x7, 0x12)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000600)={0xffffffffffffffff, 0x20, &(0x7f00000005c0)={&(0x7f00000006c0)=""/167, 0xa7, 0x0, &(0x7f0000000780)=""/197, 0xc5}}, 0x10) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000001801f2150a2cf3530000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000009500"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
syz_open_dev$sndctrl(&(0x7f0000000080), 0x1, 0x0) (async)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x800) (async)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x10, @scatter={0x0, 0xcc, 0x0}, &(0x7f0000000240)="128db2cf0800", 0x0, 0x0, 0x0, 0xffffffff, 0x0}) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f00000000c0)={{0x7, 0x2, 0x0, 0x200000}, 0x0, [0x9, 0x0, 0x3, 0xfffffffffffffffe, 0xfffffffff7fffffe, 0x0, 0x5, 0x0, 0x10000, 0x4, 0x4, 0x0, 0x0, 0x661, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7, 0x4, 0x0, 0x6, 0x0, 0x703a, 0x6, 0xae4f, 0x8000000, 0x0, 0x1, 0x0, 0x8, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfff, 0x3, 0xd5e4, 0x0, 0x7, 0x1ff, 0x0, 0x0, 0x6, 0x1, 0x0, 0xfffffffffffffffb, 0x4, 0x377, 0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x4000, 0x1, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x5, 0x6, 0x3, 0x0, 0x800, 0x0, 0x0, 0x0, 0x5, 0x8, 0xc, 0x0, 0x0, 0x9, 0x4000000000000, 0x0, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4, 0xd30, 0x1000, 0x6, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, 0x0, 0x7fffffff]}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000640)="d8df0f23b3b9ce000000b807000000ba000000000f301b8154fea900c1210680320000c4e28ddc8dcd000000c182fd3f0000c8b950020000b801000400b9a6080000660f38031166b8377a000000d80f300f300fc79d53bf00000f0057000f01c3", 0xffffffffffffffad}], 0x1, 0x4, 0x0, 0x0) (async)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) (async)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f00000008c0)='trusted\x00', &(0x7f0000000900)=@keyring) (async)
write$cgroup_int(r4, &(0x7f0000000040)=0x7, 0x12) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

1.427546723s ago: executing program 4 (id=1168):
r0 = socket$netlink(0x10, 0x3, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x80001, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "c6a41d106c72fffffffffffffff5000007000000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x4048010) (async)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "c6a41d106c72fffffffffffffff5000007000000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x4048010)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r2=>0x0})
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001d00070f000000000000000007000000", @ANYRES32=r2, @ANYBLOB="00005200060005000100000008000800", @ANYRES16=r2], 0x2c}}, 0x20008000)

1.426512399s ago: executing program 5 (id=1169):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c)
madvise(&(0x7f0000122000/0x4000)=nil, 0x4000, 0x66)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00')
r2 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0xd4}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=@newsa={0x128, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2, 0x0, 0x10000000, 0xffffffffffffffff}, {0x0, 0x200000, 0x7}, {0x40000, 0xfffffffd, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x34}, [@coaddr={0x14, 0xe, @in6=@remote}, @lifetime_val={0x24, 0x9, {0x3, 0x8000000000000001, 0xb4, 0x5}}]}, 0x128}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newsa={0x104, 0x1a, 0x7, 0x70bd2a, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x1b}, @in=@multicast1, 0xffff, 0x0, 0x4e22, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x5a, 0xb400, 0x2, 0xfeffff7f00000001, 0x0, 0x60000}, {0x0, 0x200000, 0x7, 0xfffffffffffffffd}, {0x40000, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000019200)={0x93e, {{0xa, 0x4e20, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}}, {{0xa, 0x4e21, 0xbcee, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8}}}, 0x108)
close(r2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r0, {0x7}}, './file0\x00'})
openat$cgroup_subtree(r5, &(0x7f00000000c0), 0x2, 0x0)
sendmsg$IPVS_CMD_GET_INFO(r1, &(0x7f0000019380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000019340)={&(0x7f0000000140)={0x64, 0x0, 0x20, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x48, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x5}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1656}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x7}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6dd}]}, 0x64}, 0x1, 0x0, 0x0, 0x1}, 0x8004)
fcntl$setlease(r5, 0x400, 0x2)
pread64(r1, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f00000083c0)={{0x1}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r6, 0x40505412, &(0x7f0000000540)={0x5, 0x6dff, 0x3fb, 0x0, 0x12})
sendmsg$nl_route(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000040)=ANY=[@ANYBLOB="6c0000180000000000000000", @ANYRES32=0x0, @ANYRESDEC=r0], 0x6c}, 0x1, 0x0, 0x0, 0x20000800}, 0x48000)

1.330054311s ago: executing program 5 (id=1170):
io_setup(0x0, &(0x7f0000000000)=<r0=>0x0)
io_pgetevents(r0, 0xffffffff, 0xa, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000180)={0x0, 0x989680}, &(0x7f0000000200)={&(0x7f00000001c0)={[0x1004000000000000]}, 0x8})
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
io_getevents(r0, 0x9, 0x4, &(0x7f0000000240)=[{}, {}, {}, {}], 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f00000002c0), 0xe0, 0x101000)
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r1, 0xc008551a, &(0x7f0000000300)={0x2, 0x1c, [0x3, 0x1000, 0x2, 0x2, 0x1, 0x1, 0xdb18]})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000340)={0x2})
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r3=>r1, {0xffffffff}}, './file0\x00'})
io_submit(r0, 0x2, &(0x7f0000000540)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x3, 0x6, r1, &(0x7f0000000380)="80601b49eed4641ac2a93268237466d306d7e0c72aa55d37224ee2d7d366a9e09459adfea96970e7b3cc060ad55248", 0x2f, 0x7, 0x0, 0x1, r3}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x400, r1, &(0x7f0000000440)="d47fbd92b29726ac2b6fa08eb5b13b4c86da9cf274f8fd3f04a47cb38cf764f770d9e20940c7346394f1daca6e0e8ca905fff2defd3c88b2c1113c2954cab40237b47c921d35d2069099fa82fc7ef0a417b508e69669c9c88fa1817c3dd63dab211be947a6da1899ff9be88e49340e3498292cd0f13bb10918014ba0bef575278f02287274852d473c8d6408e0fddc9b1e80581e498507ad52c75e", 0x9b, 0x800, 0x0, 0x2}])
syz_clone(0x4202c000, &(0x7f0000000580)="a1403ade2fc181f76ea550c1d276cc022087b85100e2ad47c6cb54e0ca41dd439e2dd6a8ca0d2154f751ad236b64a2c4b4ccf549eeeef75137baad3e8c2fe48a8f2714b5c64115655a0dc70b2aa0e17c928637e19bebc35930feb075050b05f11d8cc5a8555d11d9ffe535136036da645e7f84a9334def00e091cb522a8c58335152084bb8b64d6adc2a5a53cd217f0bda6e3878a0cac386a6344ac3433598e7fe4b3626202e6f8e76f72e116f0fee528eeb3a5ed560e6fe79c201880a70920a7f21d2f4911779f50fad2a91eca600f07ca2b60f9c3b2f44952c9fd729b13fdb0b60d933b3a6830514748f8bb892df4dbea4cd20", 0xf4, &(0x7f0000000680), &(0x7f00000006c0), &(0x7f0000000700)="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")
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$PPPIOCSMAXCID(r3, 0x40047451, &(0x7f0000001700)=0x401)
io_submit(0x0, 0x1, &(0x7f0000001840)=[&(0x7f0000001800)={0x0, 0x0, 0x0, 0x7, 0x7, r4, &(0x7f0000001740)="1f35748f4c3a314fa418b787615884254da53b98f4472932b14453bb7ab2854077b982a05b5caa37308a12e2df5f48ea370a7741bda07ee4daa14aa4d09db721f686bb4c64f539ce87d015c175c7c7d4a95bd423b1f0b8105b564b81a7fda824e8b06a26110cd784f6cc77bc5c47964ff1c944bc487258a622ad337d16f078fdd1bfb98dcee89800d032f26061c219c1df334b7356f59c8c44", 0x99, 0xffffffffffffffff, 0x0, 0x3, r3}])
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001900)={r3, 0x58, &(0x7f0000001880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r5=>0x0}}, 0x10)
setsockopt$inet6_mreq(r3, 0x29, 0x59a5dd2956ec7f8f, &(0x7f0000001940)={@private2={0xfc, 0x2, '\x00', 0x1}, r5}, 0x14)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f00000019c0)={&(0x7f0000001980)=[0x0], 0x1})
mknodat$loop(r3, &(0x7f0000001a00)='./file0\x00', 0x200, 0x1)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000001a80)={r3, <r6=>0xffffffffffffffff}, 0x4)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001ac0)=@generic={&(0x7f0000001a40)='./file0\x00', r6}, 0x18)
getsockopt$IP_VS_SO_GET_TIMEOUT(r4, 0x0, 0x486, &(0x7f0000001b00), &(0x7f0000001b40)=0xc)
r7 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000001b80)='./binderfs/binder-control\x00', 0x0, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r7, 0xf503, 0x0)
futex(&(0x7f0000001bc0), 0x8, 0x0, &(0x7f0000001c00)={0x0, 0x3938700}, &(0x7f0000001c40)=0x2, 0x2)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000001c80)={{0x1, 0x1, 0x18, <r8=>r2}, './file0\x00'})
sendmsg$can_bcm(r8, &(0x7f0000001dc0)={&(0x7f0000001cc0)={0x1d, r5}, 0x10, &(0x7f0000001d80)={&(0x7f0000001d00)={0x2, 0x2, 0x4, {0x77359400}, {}, {0x0, 0x1, 0x0, 0x1}, 0x1, @canfd={{0x0, 0x1}, 0x14, 0x0, 0x0, 0x0, "f756d9a2727a7a82a3ff83149dc7f89be3de920b116f37604bfdce39fd17b618ea24040c115251d2c48fc9ba4da2bd9c0cf31f5c2295da90683b86b5f577021b"}}, 0x80}, 0x1, 0x0, 0x0, 0x4001}, 0x10)
stat(&(0x7f0000001e00)='./file0\x00', &(0x7f0000001e40))
ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r3, 0x800442d4, &(0x7f0000001ec0)=0xfa1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000001f40)={0x14})

770.774072ms ago: executing program 4 (id=1171):
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000005c0)={[0x5835, 0x8, 0x7, 0x4000000000000e52, 0x0, 0x5479, 0x1041, 0x200000000006, 0x9, 0x1, 0xfffffffffffffffe, 0x100000000, 0x1, 0x40000000009, 0x8000000000005, 0x10000800040068], 0xd000, 0x80})
sendmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x400c1)
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000180)=@in={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="200000000000000300ffc900e0ffffff0000007655631a791fcd7105c6e60c7f3ccb0875a3d09ac33a62d6d2bb90dda1cf119ed6615c9e28213e801a"], 0x20}], 0x1, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$F2FS_IOC_RESIZE_FS(0xffffffffffffffff, 0x4008f510, &(0x7f0000000000)=0x59)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x2, &(0x7f00000000c0)=[{0x3, 0x8, 0x0, 0x9}, {0x2, 0xc, 0x5, 0x8001}]})

506.528541ms ago: executing program 4 (id=1172):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r0 = socket$unix(0x1, 0x5, 0x0) (async)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000feffffff30d73c010ab4700001000000000000000c4100000014001462726f6164636173742d6c696e6b0000"], 0x30}}, 0x0)
connect$qrtr(0xffffffffffffffff, 0x0, 0x0) (async)
ioctl$sock_qrtr_TIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100)={0x0, 0x0, 0x1000}, 0x10}, 0x94) (async)
socket(0x10, 0x3, 0x0) (async)
getpid()
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000010000001c000180060001000200000008000300ac1414aa0800060006000000bdf3b3ca772f61cfe803e38313387c0cf025dafdbed2bcefd4aceda9c214b29a13a2cc084f7d"], 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x6f6)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[], 0x28}}, 0x14000818)
ioctl$sock_proto_private(r0, 0x8b01, &(0x7f0000000080)) (async)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x50e40) (async)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00', 0x32a})
write$sndseq(r8, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x16, 0x0, 0xffe3, 0x10, &(0x7f0000000100), 0x0, 0x0, 0x1b, 0x8, 0x0, 0x0}}, 0x10)
r9 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000001c0)=@bpf_lsm={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="8510000004000000950080000000000018000000000000000000000000000002950000000000000085100000fcffffff95"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r9, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000c, 0x8, 0x0, 0x0}}, 0x10)

400.393272ms ago: executing program 4 (id=1173):
r0 = socket(0x10, 0x3, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001400)=@newqdisc={0x50, 0x14, 0xf0b, 0xfffffffe, 0x0, {0x2, 0x0, 0x0, 0x0, {0x0, 0x4}, {0x0, 0x5}, {0x6, 0xfff3}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x2}, @qdisc_kind_options=@q_pie={{0x8}, {0x1c, 0x2, [@TCA_PIE_ECN={0x8, 0x6, 0x1}, @TCA_PIE_ALPHA={0x8, 0x4, 0x19}, @TCA_PIE_TUPDATE={0x8, 0x3, 0x4}]}}]}, 0x50}}, 0x0)

350.856808ms ago: executing program 4 (id=1174):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x3}, 0x80, &(0x7f0000002540)=[{&(0x7f0000000540)="b88a00", 0x3}], 0x1}, 0x20000000) (async)
sendmsg$kcm(r0, &(0x7f0000000200)={&(0x7f0000001340)=@hci={0x1f, 0x0, 0x3}, 0x80, &(0x7f0000002540)=[{&(0x7f0000000540)="b88a00", 0x3}], 0x1}, 0x20000000)
socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="28000000106d88646600000047ceec0435e965e4", @ANYRES32=0x0, @ANYBLOB="0000000000000000080020009fd70000"], 0x28}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f0000000280)={0x5}, 0x1) (async)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f0000000280)={0x5}, 0x1)
r5 = syz_pidfd_open(r3, 0x0)
ftruncate(r5, 0x9) (async)
ftruncate(r5, 0x9)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r6, 0x4, 0x70bd2c, 0x25dfdbfc, {{}, {}, {0x18, 0x18, {0x0, @bearer=@l2={'ib', 0x3a, 'veth1_vlan\x00'}}}}, [""]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x40080)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r7, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendfile(r8, r7, 0x0, 0x100000005)
r9 = openat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x10082, 0x142, 0x1d}, 0x18)
clock_gettime(0x0, &(0x7f0000000200)) (async)
clock_gettime(0x0, &(0x7f0000000200)={<r10=>0x0, <r11=>0x0})
futimesat(r9, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)={{r10, r11/1000+10000}, {0x77359400}})

77.292673ms ago: executing program 5 (id=1175):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="bc1b0000400007012bbd700000000000027c00000400c2800c000180060006000806"], 0x1bbc}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r1 = io_uring_setup(0x519, &(0x7f0000000640)={0x0, 0x3cb4, 0x2, 0xd01fa, 0x8100014e})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a59000000060a0b08feffffff00000000020000004c000480240001800b000100736f636b657400001400028008000240000000030800179f97478400014000000002240001800b0001007470726f78790000140002800800014000000002010073797a3000000000090000000011000100000000000000"], 0xa0}}, 0x40880)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x20, 0x1405, 0x621, 0x70bd26, 0x0, "", [{{0x8}, {0xffffffffffffffde}}]}, 0x20}}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

0s ago: executing program 5 (id=1176):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000140)={'nat\x00', 0x0, 0x0, 0x0, [0x9, 0x4009, 0x3, 0x3, 0x2, 0x5]}, &(0x7f0000000000)=0x78)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='sched_switch\x00', r1}, 0x18)
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='fsc'])
r2 = io_uring_setup(0x7d3, &(0x7f0000000580)={0x0, 0xaf9a, 0x2, 0xfffffffe, 0x2000181})
close_range(r2, r2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_netdev_private(r3, 0x8946, &(0x7f0000000140)="a6cc04e2d8f1c38afbf14b29b86e3a")
clock_nanosleep(0x2, 0x0, &(0x7f0000000180)={0x77359400}, 0x0)

kernel console output (not intermixed with test programs):

6] ip6t_srh: unknown srh match flags  4000
[  435.197595][ T8566] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  435.266251][   T54] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  435.269979][   T54] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  435.275819][   T54] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  435.279606][   T54] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  435.284149][   T54] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  435.290295][   T54] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  435.294170][   T54] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  435.297562][   T54] usb 9-1: Product: syz
[  435.299079][   T54] usb 9-1: Manufacturer: syz
[  435.303610][   T54] cdc_wdm 9-1:1.0: skipping garbage
[  435.305736][   T54] cdc_wdm 9-1:1.0: skipping garbage
[  435.308468][   T54] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  435.310543][   T54] cdc_wdm 9-1:1.0: Unknown control protocol
[  435.343440][ T5921] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  435.373950][ T5921] usb 5-1: device descriptor read/8, error -71
[  435.504723][   T54] usb 9-1: USB disconnect, device number 3
[  435.613445][ T5921] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  435.634176][ T5921] usb 5-1: device descriptor read/8, error -71
[  435.743921][ T5921] usb usb5-port1: unable to enumerate USB device
[  435.904202][ T8575] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  435.909281][ T8575] CPU: 0 UID: 0 PID: 8575 Comm: syz.5.665 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  435.909306][ T8575] Tainted: [L]=SOFTLOCKUP
[  435.909312][ T8575] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  435.909322][ T8575] Call Trace:
[  435.909329][ T8575]  <TASK>
[  435.909336][ T8575]  dump_stack_lvl+0x16c/0x1f0
[  435.909375][ T8575]  sysfs_warn_dup+0x7f/0xa0
[  435.909396][ T8575]  sysfs_do_create_link_sd+0x124/0x140
[  435.909419][ T8575]  sysfs_create_link+0x61/0xc0
[  435.909438][ T8575]  device_add+0x652/0x1980
[  435.909461][ T8575]  ? __pfx_device_add+0x10/0x10
[  435.909480][ T8575]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  435.909527][ T8575]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  435.909564][ T8575]  wiphy_register+0x1ea1/0x2cc0
[  435.909591][ T8575]  ? __rtnl_unlock+0x68/0xf0
[  435.909615][ T8575]  ? __dev_change_flags+0x570/0x6f0
[  435.909641][ T8575]  ? __pfx_wiphy_register+0x10/0x10
[  435.909668][ T8575]  ? __asan_memset+0x23/0x50
[  435.909693][ T8575]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  435.909722][ T8575]  ieee80211_register_hw+0x2bb2/0x4160
[  435.909757][ T8575]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  435.909782][ T8575]  ? __pfx___debug_object_init+0x10/0x10
[  435.909807][ T8575]  ? find_held_lock+0x2b/0x80
[  435.909829][ T8575]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  435.909847][ T8575]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  435.909867][ T8575]  ? __hrtimer_setup+0x176/0x280
[  435.909891][ T8575]  mac80211_hwsim_new_radio+0x3323/0x5150
[  435.909931][ T8575]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  435.909961][ T8575]  ? __asan_memcpy+0x3c/0x60
[  435.909980][ T8575]  hwsim_new_radio_nl+0xba2/0x1330
[  435.910006][ T8575]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  435.910037][ T8575]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  435.910061][ T8575]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  435.910090][ T8575]  genl_family_rcv_msg_doit+0x209/0x2f0
[  435.910113][ T8575]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  435.910146][ T8575]  ? bpf_lsm_capable+0x9/0x10
[  435.910165][ T8575]  ? security_capable+0x7e/0x260
[  435.910184][ T8575]  ? ns_capable+0xd7/0x110
[  435.910209][ T8575]  genl_rcv_msg+0x55c/0x800
[  435.910233][ T8575]  ? __pfx_genl_rcv_msg+0x10/0x10
[  435.910257][ T8575]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  435.910285][ T8575]  ? __lock_acquire+0x436/0x2890
[  435.910317][ T8575]  netlink_rcv_skb+0x158/0x420
[  435.910340][ T8575]  ? __pfx_genl_rcv_msg+0x10/0x10
[  435.910366][ T8575]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  435.910420][ T8575]  ? netlink_deliver_tap+0x1ae/0xd30
[  435.910448][ T8575]  genl_rcv+0x28/0x40
[  435.910470][ T8575]  netlink_unicast+0x5aa/0x870
[  435.910495][ T8575]  ? __pfx_netlink_unicast+0x10/0x10
[  435.910525][ T8575]  netlink_sendmsg+0x8c8/0xdd0
[  435.910557][ T8575]  ? __pfx_netlink_sendmsg+0x10/0x10
[  435.910589][ T8575]  ____sys_sendmsg+0xa5d/0xc30
[  435.910611][ T8575]  ? copy_msghdr_from_user+0x10a/0x160
[  435.910630][ T8575]  ? __pfx_____sys_sendmsg+0x10/0x10
[  435.910657][ T8575]  ? __pfx_futex_wake_mark+0x10/0x10
[  435.910679][ T8575]  ___sys_sendmsg+0x134/0x1d0
[  435.910699][ T8575]  ? __pfx____sys_sendmsg+0x10/0x10
[  435.910718][ T8575]  ? futex_private_hash_put+0x160/0x1b0
[  435.910771][ T8575]  __sys_sendmsg+0x16d/0x220
[  435.910790][ T8575]  ? __pfx___sys_sendmsg+0x10/0x10
[  435.910807][ T8575]  ? __x64_sys_futex+0x1e0/0x4c0
[  435.910847][ T8575]  do_syscall_64+0xcd/0xf80
[  435.910873][ T8575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  435.910891][ T8575] RIP: 0033:0x7f04ce38f7c9
[  435.910905][ T8575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  435.910922][ T8575] RSP: 002b:00007f04cf2e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  435.910941][ T8575] RAX: ffffffffffffffda RBX: 00007f04ce5e5fa0 RCX: 00007f04ce38f7c9
[  435.910952][ T8575] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  435.910962][ T8575] RBP: 00007f04ce413f91 R08: 0000000000000000 R09: 0000000000000000
[  435.910972][ T8575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  435.910982][ T8575] R13: 00007f04ce5e6038 R14: 00007f04ce5e5fa0 R15: 00007ffe13365d38
[  435.911008][ T8575]  </TASK>
[  436.153475][   T53] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  436.249264][ T8587] IPv6: addrconf: prefix option has invalid lifetime
[  436.259970][ T8583] ISOFS: Unable to identify CD-ROM format.
[  436.305153][   T53] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  436.312448][   T53] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  436.321442][   T53] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  436.325714][   T53] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  436.330463][   T53] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  436.334374][ T8593] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  436.336949][   T53] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  436.342951][   T53] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  436.346989][   T53] usb 9-1: Product: syz
[  436.348820][   T53] usb 9-1: Manufacturer: syz
[  436.365139][   T53] cdc_wdm 9-1:1.0: skipping garbage
[  436.367485][   T53] cdc_wdm 9-1:1.0: skipping garbage
[  436.370859][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  436.370871][   T40] audit: type=1400 audit(2000000027.109:759): avc:  denied  { read } for  pid=8595 comm="syz.5.673" path="socket:[28639]" dev="sockfs" ino=28639 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  436.376181][   T53] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  436.385849][   T53] cdc_wdm 9-1:1.0: Unknown control protocol
[  436.456515][ T8604] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  436.460479][ T8604] CPU: 2 UID: 0 PID: 8604 Comm: syz.5.675 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  436.460497][ T8604] Tainted: [L]=SOFTLOCKUP
[  436.460502][ T8604] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  436.460510][ T8604] Call Trace:
[  436.460514][ T8604]  <TASK>
[  436.460519][ T8604]  dump_stack_lvl+0x16c/0x1f0
[  436.460537][ T8604]  sysfs_warn_dup+0x7f/0xa0
[  436.460550][ T8604]  sysfs_do_create_link_sd+0x124/0x140
[  436.460565][ T8604]  sysfs_create_link+0x61/0xc0
[  436.460577][ T8604]  device_add+0x652/0x1980
[  436.460593][ T8604]  ? __pfx_device_add+0x10/0x10
[  436.460603][ T8604]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  436.460617][ T8604]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  436.460633][ T8604]  wiphy_register+0x1ea1/0x2cc0
[  436.460648][ T8604]  ? __rtnl_unlock+0x68/0xf0
[  436.460661][ T8604]  ? __dev_change_flags+0x570/0x6f0
[  436.460675][ T8604]  ? __pfx_wiphy_register+0x10/0x10
[  436.460689][ T8604]  ? __asan_memset+0x23/0x50
[  436.460704][ T8604]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  436.460720][ T8604]  ieee80211_register_hw+0x2bb2/0x4160
[  436.460740][ T8604]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  436.460760][ T8604]  ? __pfx___debug_object_init+0x10/0x10
[  436.460776][ T8604]  ? find_held_lock+0x2b/0x80
[  436.460792][ T8604]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  436.460809][ T8604]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  436.460827][ T8604]  ? __hrtimer_setup+0x176/0x280
[  436.460853][ T8604]  mac80211_hwsim_new_radio+0x3323/0x5150
[  436.460891][ T8604]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  436.460917][ T8604]  ? __asan_memcpy+0x3c/0x60
[  436.460929][ T8604]  hwsim_new_radio_nl+0xba2/0x1330
[  436.460946][ T8604]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  436.460966][ T8604]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  436.460982][ T8604]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  436.461000][ T8604]  genl_family_rcv_msg_doit+0x209/0x2f0
[  436.461016][ T8604]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  436.461034][ T8604]  ? bpf_lsm_capable+0x9/0x10
[  436.461046][ T8604]  ? security_capable+0x7e/0x260
[  436.461057][ T8604]  ? ns_capable+0xd7/0x110
[  436.461072][ T8604]  genl_rcv_msg+0x55c/0x800
[  436.461088][ T8604]  ? __pfx_genl_rcv_msg+0x10/0x10
[  436.461103][ T8604]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  436.461119][ T8604]  ? __lock_acquire+0x436/0x2890
[  436.461133][ T8604]  netlink_rcv_skb+0x158/0x420
[  436.461146][ T8604]  ? __pfx_genl_rcv_msg+0x10/0x10
[  436.461160][ T8604]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  436.461179][ T8604]  ? netlink_deliver_tap+0x1ae/0xd30
[  436.461193][ T8604]  genl_rcv+0x28/0x40
[  436.461205][ T8604]  netlink_unicast+0x5aa/0x870
[  436.461220][ T8604]  ? __pfx_netlink_unicast+0x10/0x10
[  436.461237][ T8604]  netlink_sendmsg+0x8c8/0xdd0
[  436.461252][ T8604]  ? __pfx_netlink_sendmsg+0x10/0x10
[  436.461270][ T8604]  ____sys_sendmsg+0xa5d/0xc30
[  436.461284][ T8604]  ? copy_msghdr_from_user+0x10a/0x160
[  436.461294][ T8604]  ? __pfx_____sys_sendmsg+0x10/0x10
[  436.461316][ T8604]  ? __pfx_futex_wake_mark+0x10/0x10
[  436.461335][ T8604]  ___sys_sendmsg+0x134/0x1d0
[  436.461355][ T8604]  ? __pfx____sys_sendmsg+0x10/0x10
[  436.461374][ T8604]  ? futex_private_hash_put+0x160/0x1b0
[  436.461404][ T8604]  __sys_sendmsg+0x16d/0x220
[  436.461415][ T8604]  ? __pfx___sys_sendmsg+0x10/0x10
[  436.461425][ T8604]  ? __x64_sys_futex+0x1e0/0x4c0
[  436.461447][ T8604]  do_syscall_64+0xcd/0xf80
[  436.461462][ T8604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.461472][ T8604] RIP: 0033:0x7f04ce38f7c9
[  436.461481][ T8604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  436.461490][ T8604] RSP: 002b:00007f04cf2e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  436.461530][ T8604] RAX: ffffffffffffffda RBX: 00007f04ce5e5fa0 RCX: 00007f04ce38f7c9
[  436.461538][ T8604] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  436.461545][ T8604] RBP: 00007f04ce413f91 R08: 0000000000000000 R09: 0000000000000000
[  436.461551][ T8604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  436.461558][ T8604] R13: 00007f04ce5e6038 R14: 00007f04ce5e5fa0 R15: 00007ffe13365d38
[  436.461573][ T8604]  </TASK>
[  436.566773][ T8562] overlayfs: upper fs does not support file handles, falling back to index=off.
[  436.617230][ T6089] usb 9-1: USB disconnect, device number 4
[  437.091207][ T8617] syzkaller0: entered promiscuous mode
[  437.093798][ T8617] syzkaller0: entered allmulticast mode
[  437.192196][ T8622] __nla_validate_parse: 4 callbacks suppressed
[  437.192208][ T8622] netlink: 4 bytes leftover after parsing attributes in process `syz.1.682'.
[  437.198436][ T8622] netlink: 4 bytes leftover after parsing attributes in process `syz.1.682'.
[  437.214379][ T8624] netlink: 8 bytes leftover after parsing attributes in process `syz.4.683'.
[  437.259455][ T8627] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  437.266103][ T8627] CPU: 0 UID: 0 PID: 8627 Comm: syz.1.684 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  437.266134][ T8627] Tainted: [L]=SOFTLOCKUP
[  437.266141][ T8627] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  437.266152][ T8627] Call Trace:
[  437.266159][ T8627]  <TASK>
[  437.266166][ T8627]  dump_stack_lvl+0x16c/0x1f0
[  437.266191][ T8627]  sysfs_warn_dup+0x7f/0xa0
[  437.266213][ T8627]  sysfs_do_create_link_sd+0x124/0x140
[  437.266236][ T8627]  sysfs_create_link+0x61/0xc0
[  437.266254][ T8627]  device_add+0x652/0x1980
[  437.266276][ T8627]  ? __pfx_device_add+0x10/0x10
[  437.266296][ T8627]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  437.266317][ T8627]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  437.266345][ T8627]  wiphy_register+0x1ea1/0x2cc0
[  437.266384][ T8627]  ? __rtnl_unlock+0x68/0xf0
[  437.266408][ T8627]  ? __dev_change_flags+0x570/0x6f0
[  437.266435][ T8627]  ? __pfx_wiphy_register+0x10/0x10
[  437.266462][ T8627]  ? __asan_memset+0x23/0x50
[  437.266490][ T8627]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  437.266518][ T8627]  ieee80211_register_hw+0x2bb2/0x4160
[  437.266554][ T8627]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  437.266580][ T8627]  ? __pfx___debug_object_init+0x10/0x10
[  437.266607][ T8627]  ? find_held_lock+0x2b/0x80
[  437.266635][ T8627]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  437.266655][ T8627]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  437.266677][ T8627]  ? __hrtimer_setup+0x176/0x280
[  437.266702][ T8627]  mac80211_hwsim_new_radio+0x3323/0x5150
[  437.266746][ T8627]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  437.266775][ T8627]  ? __asan_memcpy+0x3c/0x60
[  437.266794][ T8627]  hwsim_new_radio_nl+0xba2/0x1330
[  437.266813][ T8627]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  437.266834][ T8627]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  437.266851][ T8627]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  437.266868][ T8627]  genl_family_rcv_msg_doit+0x209/0x2f0
[  437.266884][ T8627]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  437.266903][ T8627]  ? bpf_lsm_capable+0x9/0x10
[  437.266914][ T8627]  ? security_capable+0x7e/0x260
[  437.266925][ T8627]  ? ns_capable+0xd7/0x110
[  437.266940][ T8627]  genl_rcv_msg+0x55c/0x800
[  437.266956][ T8627]  ? __pfx_genl_rcv_msg+0x10/0x10
[  437.266970][ T8627]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  437.266987][ T8627]  ? __lock_acquire+0x436/0x2890
[  437.267001][ T8627]  netlink_rcv_skb+0x158/0x420
[  437.267014][ T8627]  ? __pfx_genl_rcv_msg+0x10/0x10
[  437.267028][ T8627]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  437.267047][ T8627]  ? netlink_deliver_tap+0x1ae/0xd30
[  437.267061][ T8627]  genl_rcv+0x28/0x40
[  437.267073][ T8627]  netlink_unicast+0x5aa/0x870
[  437.267088][ T8627]  ? __pfx_netlink_unicast+0x10/0x10
[  437.267106][ T8627]  netlink_sendmsg+0x8c8/0xdd0
[  437.267120][ T8627]  ? __pfx_netlink_sendmsg+0x10/0x10
[  437.267153][ T8627]  ____sys_sendmsg+0xa5d/0xc30
[  437.267168][ T8627]  ? copy_msghdr_from_user+0x10a/0x160
[  437.267180][ T8627]  ? __pfx_____sys_sendmsg+0x10/0x10
[  437.267198][ T8627]  ? __pfx_futex_wake_mark+0x10/0x10
[  437.267211][ T8627]  ___sys_sendmsg+0x134/0x1d0
[  437.267224][ T8627]  ? __pfx____sys_sendmsg+0x10/0x10
[  437.267236][ T8627]  ? futex_private_hash_put+0x160/0x1b0
[  437.267266][ T8627]  __sys_sendmsg+0x16d/0x220
[  437.267277][ T8627]  ? __pfx___sys_sendmsg+0x10/0x10
[  437.267287][ T8627]  ? __x64_sys_futex+0x1e0/0x4c0
[  437.267310][ T8627]  do_syscall_64+0xcd/0xf80
[  437.267325][ T8627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.267335][ T8627] RIP: 0033:0x7f587878f7c9
[  437.267344][ T8627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.267354][ T8627] RSP: 002b:00007f5879602038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  437.267364][ T8627] RAX: ffffffffffffffda RBX: 00007f58789e5fa0 RCX: 00007f587878f7c9
[  437.267370][ T8627] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  437.267376][ T8627] RBP: 00007f5878813f91 R08: 0000000000000000 R09: 0000000000000000
[  437.267382][ T8627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  437.267387][ T8627] R13: 00007f58789e6038 R14: 00007f58789e5fa0 R15: 00007ffdd53147c8
[  437.267402][ T8627]  </TASK>
[  437.446952][   T40] audit: type=1400 audit(2000000028.189:760): avc:  denied  { map } for  pid=8631 comm="syz.1.686" path="socket:[31756]" dev="sockfs" ino=31756 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  437.455915][   T40] audit: type=1400 audit(2000000028.199:761): avc:  denied  { accept } for  pid=8631 comm="syz.1.686" path="socket:[31756]" dev="sockfs" ino=31756 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  437.665690][ T8648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.690'.
[  437.669237][ T8648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.690'.
[  437.731172][ T8655] netlink: 4 bytes leftover after parsing attributes in process `syz.4.693'.
[  437.773524][ T8659] netlink: 20 bytes leftover after parsing attributes in process `syz.4.694'.
[  437.843116][   T40] audit: type=1400 audit(2000000028.579:762): avc:  denied  { ioctl } for  pid=8649 comm="syz.5.691" path="socket:[30465]" dev="sockfs" ino=30465 ioctlcmd=0x5351 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  438.383468][ T5921] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  438.543391][ T5921] usb 5-1: Using ep0 maxpacket: 8
[  438.546483][ T5921] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  438.549631][ T5921] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  438.552331][ T5921] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  438.556251][ T5921] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  438.556639][ T8682] loop5: detected capacity change from 0 to 7
[  438.559581][ T5921] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  438.559596][ T5921] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  438.562096][ T5921] hub 5-1:1.0: bad descriptor, ignoring hub
[  438.566110][ T8682] Dev loop5: unable to read RDB block 7
[  438.567274][ T5921] hub 5-1:1.0: probe with driver hub failed with error -5
[  438.568908][ T8682]  loop5: AHDI p1 p2
[  438.570863][ T5921] cdc_wdm 5-1:1.0: skipping garbage
[  438.573203][ T8682] loop5: partition table partially beyond EOD, 
[  438.574807][ T5921] cdc_wdm 5-1:1.0: skipping garbage
[  438.577493][ T8682] truncated
[  438.580201][ T5921] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  438.582095][ T8682] loop5: p1 start 1818582900 is beyond EOD, 
[  438.582943][ T5921] cdc_wdm 5-1:1.0: Unknown control protocol
[  438.585772][ T8682] truncated
[  438.687298][   T40] audit: type=1400 audit(2000000029.419:763): avc:  denied  { getopt } for  pid=8688 comm="syz.4.704" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  438.738794][ T8693] binder: BINDER_SET_CONTEXT_MGR already set
[  438.741321][ T8693] binder: 8691:8693 ioctl 4018620d 2000000000c0 returned -16
[  438.745610][   T40] audit: type=1400 audit(2000000029.489:764): avc:  denied  { append } for  pid=8691 comm="syz.4.705" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  438.757587][ T8692] binder: 8691:8692 ioctl c0306201 200000000b00 returned -11
[  438.764074][   T40] audit: type=1400 audit(2000000029.499:765): avc:  denied  { read write } for  pid=8669 comm="syz.0.697" name="cdc-wdm0" dev="devtmpfs" ino=2959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  438.783488][   T40] audit: type=1400 audit(2000000029.509:766): avc:  denied  { open } for  pid=8669 comm="syz.0.697" path="/dev/cdc-wdm0" dev="devtmpfs" ino=2959 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  438.850422][   T40] audit: type=1400 audit(2000000029.589:767): avc:  denied  { append } for  pid=8699 comm="syz.4.707" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  438.865546][   T40] audit: type=1400 audit(2000000029.609:768): avc:  denied  { getopt } for  pid=8694 comm="syz.1.706" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  438.865626][ T8701] IPv6: NLM_F_CREATE should be specified when creating new route
[  438.918459][ T8705] netlink: 4 bytes leftover after parsing attributes in process `syz.1.708'.
[  438.970636][ T5921] usb 5-1: USB disconnect, device number 14
[  439.062492][ T8714] binder: 8713:8714 ioctl c0306201 2000000001c0 returned -14
[  439.062803][ T8715] 9pnet_fd: Insufficient options for proto=fd
[  439.104335][ T8721] tmpfs: Bad value for 'huge'
[  439.122089][ T8723] batadv_slave_1: entered promiscuous mode
[  439.136656][ T8722] batadv_slave_1: left promiscuous mode
[  439.136837][ T8728] netlink: 'syz.1.715': attribute type 11 has an invalid length.
[  439.142478][ T8728] netlink: 244 bytes leftover after parsing attributes in process `syz.1.715'.
[  439.172371][ T8730] netlink: 212368 bytes leftover after parsing attributes in process `syz.4.717'.
[  439.225162][ T8736] kernel profiling enabled (shift: 5)
[  439.443414][ T5921] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  439.593479][ T5921] usb 10-1: Using ep0 maxpacket: 32
[  439.596991][ T5921] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  439.605348][ T5921] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  439.608241][ T5921] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  439.610795][ T5921] usb 10-1: Product: syz
[  439.612157][ T5921] usb 10-1: Manufacturer: syz
[  439.614356][ T5921] usb 10-1: SerialNumber: syz
[  439.617037][ T5921] usb 10-1: config 0 descriptor??
[  439.619099][ T8733] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  439.879082][    T9] usb 10-1: USB disconnect, device number 3
[  440.215936][ T8775] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  440.225051][ T8775] vlan2: entered allmulticast mode
[  440.226925][ T8775] bond0: entered allmulticast mode
[  440.228565][ T8775] bond_slave_0: entered allmulticast mode
[  440.230696][ T8775] bond_slave_1: entered allmulticast mode
[  440.455688][ T8789] program syz.1.734 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  440.470063][ T8790] ptrace attach of "/syz-executor exec"[8146] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                b\x0a��\x0c  !��      \x07
  �����     �      �   �   �       �       ?�j}6ٱ����Ğ� ����Dl����\x0a���9:���$�V�Q���\x09<Y�k^Ο6�\x0d
\x0cPwڀ��,� �l�HJA[v�a�Ou$\x1b\x07.�  -uY:(  �>d�'�Z���bW�zr‘�Q������``V�\x5c4fL\x0a�6\x0az^k`q0ȟ�
[  440.483860][ T8794] netlink: 'syz.1.735': attribute type 3 has an invalid length.
[  440.555525][ T8798] overlayfs: invalid redirect ((null))
[  440.562375][ T8799] overlayfs: invalid redirect ((null))
[  440.683803][   T53] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  440.851555][   T53] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  440.862342][   T53] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.866789][   T53] usb 5-1: Product: syz
[  440.868573][   T53] usb 5-1: Manufacturer: syz
[  440.870531][   T53] usb 5-1: SerialNumber: syz
[  441.209801][ T8848] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8848 comm=syz.1.752
[  441.326485][ T8856] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=8856 comm=syz.1.755
[  441.396693][ T8863] cgroup: name respecified
[  441.492882][ T8869] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  441.498023][ T8869] CPU: 3 UID: 0 PID: 8869 Comm: syz.1.760 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  441.498051][ T8869] Tainted: [L]=SOFTLOCKUP
[  441.498059][ T8869] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  441.498070][ T8869] Call Trace:
[  441.498078][ T8869]  <TASK>
[  441.498086][ T8869]  dump_stack_lvl+0x16c/0x1f0
[  441.498114][ T8869]  sysfs_warn_dup+0x7f/0xa0
[  441.498133][ T8869]  sysfs_do_create_link_sd+0x124/0x140
[  441.498155][ T8869]  sysfs_create_link+0x61/0xc0
[  441.498177][ T8869]  device_add+0x652/0x1980
[  441.498202][ T8869]  ? __pfx_device_add+0x10/0x10
[  441.498221][ T8869]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.498244][ T8869]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  441.498272][ T8869]  wiphy_register+0x1ea1/0x2cc0
[  441.498297][ T8869]  ? __rtnl_unlock+0x68/0xf0
[  441.498321][ T8869]  ? __dev_change_flags+0x570/0x6f0
[  441.498347][ T8869]  ? __pfx_wiphy_register+0x10/0x10
[  441.498372][ T8869]  ? __asan_memset+0x23/0x50
[  441.498414][ T8869]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  441.498448][ T8869]  ieee80211_register_hw+0x2bb2/0x4160
[  441.498485][ T8869]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  441.498510][ T8869]  ? __pfx___debug_object_init+0x10/0x10
[  441.498537][ T8869]  ? find_held_lock+0x2b/0x80
[  441.498580][ T8869]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  441.498603][ T8869]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  441.498626][ T8869]  ? __hrtimer_setup+0x176/0x280
[  441.498653][ T8869]  mac80211_hwsim_new_radio+0x3323/0x5150
[  441.498697][ T8869]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  441.498727][ T8869]  ? __asan_memcpy+0x3c/0x60
[  441.498749][ T8869]  hwsim_new_radio_nl+0xba2/0x1330
[  441.498778][ T8869]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  441.498821][ T8869]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  441.498850][ T8869]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  441.498885][ T8869]  genl_family_rcv_msg_doit+0x209/0x2f0
[  441.498911][ T8869]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  441.498945][ T8869]  ? bpf_lsm_capable+0x9/0x10
[  441.498964][ T8869]  ? security_capable+0x7e/0x260
[  441.498984][ T8869]  ? ns_capable+0xd7/0x110
[  441.499010][ T8869]  genl_rcv_msg+0x55c/0x800
[  441.499040][ T8869]  ? __pfx_genl_rcv_msg+0x10/0x10
[  441.499065][ T8869]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  441.499094][ T8869]  ? __lock_acquire+0x436/0x2890
[  441.499118][ T8869]  netlink_rcv_skb+0x158/0x420
[  441.499140][ T8869]  ? __pfx_genl_rcv_msg+0x10/0x10
[  441.499167][ T8869]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  441.499202][ T8869]  ? netlink_deliver_tap+0x1ae/0xd30
[  441.499228][ T8869]  genl_rcv+0x28/0x40
[  441.499250][ T8869]  netlink_unicast+0x5aa/0x870
[  441.499275][ T8869]  ? __pfx_netlink_unicast+0x10/0x10
[  441.499307][ T8869]  netlink_sendmsg+0x8c8/0xdd0
[  441.499335][ T8869]  ? __pfx_netlink_sendmsg+0x10/0x10
[  441.499368][ T8869]  ____sys_sendmsg+0xa5d/0xc30
[  441.499408][ T8869]  ? copy_msghdr_from_user+0x10a/0x160
[  441.499427][ T8869]  ? __pfx_____sys_sendmsg+0x10/0x10
[  441.499459][ T8869]  ? __pfx_futex_wake_mark+0x10/0x10
[  441.499482][ T8869]  ___sys_sendmsg+0x134/0x1d0
[  441.499504][ T8869]  ? __pfx____sys_sendmsg+0x10/0x10
[  441.499526][ T8869]  ? futex_private_hash_put+0x160/0x1b0
[  441.499579][ T8869]  __sys_sendmsg+0x16d/0x220
[  441.499600][ T8869]  ? __pfx___sys_sendmsg+0x10/0x10
[  441.499617][ T8869]  ? __x64_sys_futex+0x1e0/0x4c0
[  441.499658][ T8869]  do_syscall_64+0xcd/0xf80
[  441.499686][ T8869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.499704][ T8869] RIP: 0033:0x7f587878f7c9
[  441.499722][ T8869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.499738][ T8869] RSP: 002b:00007f5879602038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  441.499754][ T8869] RAX: ffffffffffffffda RBX: 00007f58789e5fa0 RCX: 00007f587878f7c9
[  441.499765][ T8869] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  441.499775][ T8869] RBP: 00007f5878813f91 R08: 0000000000000000 R09: 0000000000000000
[  441.499790][ T8869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  441.499800][ T8869] R13: 00007f58789e6038 R14: 00007f58789e5fa0 R15: 00007ffdd53147c8
[  441.499826][ T8869]  </TASK>
[  441.629876][   T40] kauditd_printk_skb: 18 callbacks suppressed
[  441.629890][   T40] audit: type=1400 audit(2000000032.369:787): avc:  denied  { read write } for  pid=8871 comm="syz.1.761" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  441.660989][ T8873] bond1: invalid ARP target 0.0.0.0 specified for addition
[  441.661936][   T40] audit: type=1400 audit(2000000032.369:788): avc:  denied  { open } for  pid=8871 comm="syz.1.761" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  441.664520][ T8873] bond1: option arp_ip_target: invalid value (0)
[  441.700253][ T8873] bond1 (unregistering): Released all slaves
[  442.018304][   T40] audit: type=1400 audit(2000000032.759:789): avc:  denied  { create } for  pid=8880 comm="syz.1.764" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  442.027325][   T40] audit: type=1400 audit(2000000032.769:790): avc:  denied  { sys_admin } for  pid=8880 comm="syz.1.764" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  442.172959][   T40] audit: type=1400 audit(2000000032.909:791): avc:  denied  { read } for  pid=8890 comm="syz.5.768" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  442.190671][   T53] rtl8150 5-1:1.0: couldn't reset the device
[  442.192836][   T53] rtl8150 5-1:1.0: probe with driver rtl8150 failed with error -5
[  442.220746][ T8893] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  442.224662][ T8893] CPU: 3 UID: 0 PID: 8893 Comm: syz.1.769 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  442.224680][ T8893] Tainted: [L]=SOFTLOCKUP
[  442.224684][ T8893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  442.224691][ T8893] Call Trace:
[  442.224696][ T8893]  <TASK>
[  442.224700][ T8893]  dump_stack_lvl+0x16c/0x1f0
[  442.224718][ T8893]  sysfs_warn_dup+0x7f/0xa0
[  442.224732][ T8893]  sysfs_do_create_link_sd+0x124/0x140
[  442.224747][ T8893]  sysfs_create_link+0x61/0xc0
[  442.224760][ T8893]  device_add+0x652/0x1980
[  442.224774][ T8893]  ? __pfx_device_add+0x10/0x10
[  442.224786][ T8893]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  442.224799][ T8893]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  442.224815][ T8893]  wiphy_register+0x1ea1/0x2cc0
[  442.224830][ T8893]  ? __rtnl_unlock+0x68/0xf0
[  442.224843][ T8893]  ? __dev_change_flags+0x570/0x6f0
[  442.224857][ T8893]  ? __pfx_wiphy_register+0x10/0x10
[  442.224871][ T8893]  ? __asan_memset+0x23/0x50
[  442.224886][ T8893]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  442.224902][ T8893]  ieee80211_register_hw+0x2bb2/0x4160
[  442.224922][ T8893]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  442.224937][ T8893]  ? __pfx___debug_object_init+0x10/0x10
[  442.224954][ T8893]  ? find_held_lock+0x2b/0x80
[  442.224969][ T8893]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  442.224981][ T8893]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  442.224994][ T8893]  ? __hrtimer_setup+0x176/0x280
[  442.225009][ T8893]  mac80211_hwsim_new_radio+0x3323/0x5150
[  442.225032][ T8893]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  442.225049][ T8893]  ? __asan_memcpy+0x3c/0x60
[  442.225061][ T8893]  hwsim_new_radio_nl+0xba2/0x1330
[  442.225078][ T8893]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  442.225097][ T8893]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  442.225113][ T8893]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  442.225131][ T8893]  genl_family_rcv_msg_doit+0x209/0x2f0
[  442.225146][ T8893]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  442.225165][ T8893]  ? bpf_lsm_capable+0x9/0x10
[  442.225176][ T8893]  ? security_capable+0x7e/0x260
[  442.225187][ T8893]  ? ns_capable+0xd7/0x110
[  442.225202][ T8893]  genl_rcv_msg+0x55c/0x800
[  442.225218][ T8893]  ? __pfx_genl_rcv_msg+0x10/0x10
[  442.225233][ T8893]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  442.225249][ T8893]  ? __lock_acquire+0x436/0x2890
[  442.225263][ T8893]  netlink_rcv_skb+0x158/0x420
[  442.225275][ T8893]  ? __pfx_genl_rcv_msg+0x10/0x10
[  442.225290][ T8893]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  442.225309][ T8893]  ? netlink_deliver_tap+0x1ae/0xd30
[  442.225323][ T8893]  genl_rcv+0x28/0x40
[  442.225336][ T8893]  netlink_unicast+0x5aa/0x870
[  442.225350][ T8893]  ? __pfx_netlink_unicast+0x10/0x10
[  442.225368][ T8893]  netlink_sendmsg+0x8c8/0xdd0
[  442.225383][ T8893]  ? __pfx_netlink_sendmsg+0x10/0x10
[  442.225401][ T8893]  ____sys_sendmsg+0xa5d/0xc30
[  442.225416][ T8893]  ? copy_msghdr_from_user+0x10a/0x160
[  442.225427][ T8893]  ? __pfx_____sys_sendmsg+0x10/0x10
[  442.225469][ T8893]  ? __pfx_futex_wake_mark+0x10/0x10
[  442.225485][ T8893]  ___sys_sendmsg+0x134/0x1d0
[  442.225498][ T8893]  ? __pfx____sys_sendmsg+0x10/0x10
[  442.225510][ T8893]  ? futex_private_hash_put+0x160/0x1b0
[  442.225541][ T8893]  __sys_sendmsg+0x16d/0x220
[  442.225552][ T8893]  ? __pfx___sys_sendmsg+0x10/0x10
[  442.225564][ T8893]  ? __x64_sys_futex+0x1e0/0x4c0
[  442.225587][ T8893]  do_syscall_64+0xcd/0xf80
[  442.225603][ T8893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.225621][ T8893] RIP: 0033:0x7f587878f7c9
[  442.225632][ T8893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.225642][ T8893] RSP: 002b:00007f5879602038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  442.225653][ T8893] RAX: ffffffffffffffda RBX: 00007f58789e5fa0 RCX: 00007f587878f7c9
[  442.225660][ T8893] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  442.225666][ T8893] RBP: 00007f5878813f91 R08: 0000000000000000 R09: 0000000000000000
[  442.225672][ T8893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  442.225678][ T8893] R13: 00007f58789e6038 R14: 00007f58789e5fa0 R15: 00007ffdd53147c8
[  442.225693][ T8893]  </TASK>
[  442.386410][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  442.468846][   T40] audit: type=1400 audit(2000000033.209:792): avc:  denied  { read } for  pid=8897 comm="syz.1.772" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  442.499878][ T8903] netdevsim netdevsim4: Direct firmware load for . failed with error -2
[  442.504893][   T40] audit: type=1400 audit(2000000033.239:793): avc:  denied  { firmware_load } for  pid=8902 comm="syz.4.773" scontext=system_u:system_r:kernel_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  442.511490][ T8903] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  442.654421][ T8909] vcan0: tx address claim with different name
[  442.655293][   T40] audit: type=1400 audit(2000000033.399:794): avc:  denied  { write } for  pid=8908 comm="syz.1.775" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  442.665060][ T8909] __nla_validate_parse: 21 callbacks suppressed
[  442.665076][ T8909] netlink: 4 bytes leftover after parsing attributes in process `syz.1.775'.
[  442.822405][   T40] audit: type=1400 audit(2000000033.559:795): avc:  denied  { block_suspend } for  pid=8917 comm="syz.1.778" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  442.999494][ T8935] netlink: 8 bytes leftover after parsing attributes in process `syz.5.783'.
[  443.042945][   T40] audit: type=1400 audit(2000000033.779:796): avc:  denied  { name_bind } for  pid=8932 comm="syz.1.782" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  443.210716][ T8951] trusted_key: encrypted_key: master key parameter '' is invalid
[  443.392932][ T6084] usb 5-1: USB disconnect, device number 15
[  443.468526][ T8969] binder: 8966:8969 ioctl c0306201 2000000004c0 returned -14
[  443.594362][ T7365] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  443.717710][ T8982] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) !
[  443.733885][ T8982] ref_ctr_offset mismatch. inode: 0x4c9 offset: 0x7 ref_ctr_offset(old): 0x200000000ac0 ref_ctr_offset(new): 0x553c
[  443.753447][ T7365] usb 9-1: Using ep0 maxpacket: 16
[  443.757228][ T7365] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  443.760489][ T7365] usb 9-1: config 0 interface 0 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  443.764261][ T7365] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  443.767661][ T7365] usb 9-1: config 0 interface 0 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0
[  443.770859][ T7365] usb 9-1: config 0 interface 0 has no altsetting 0
[  443.784128][ T7365] usb 9-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  443.787187][ T7365] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.790523][ T7365] usb 9-1: Product: syz
[  443.791951][ T7365] usb 9-1: Manufacturer: syz
[  443.793690][ T7365] usb 9-1: SerialNumber: syz
[  443.796751][ T7365] usb 9-1: config 0 descriptor??
[  443.828197][ T8982] binder: Binderfs stats mode cannot be changed during a remount
[  444.062979][ T7365] input: syz syz as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input18
[  444.067852][ T5329] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  444.259628][ T8986] netlink: 16 bytes leftover after parsing attributes in process `syz.4.791'.
[  444.263449][ T8986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.791'.
[  444.273510][ T8986] input: syz0 as /devices/virtual/input/input19
[  444.535947][ T5997] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  444.572538][ T8992] nfs: Unknown parameter '/proc/asound/seq/timer'
[  444.643606][ T5329] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  444.657699][ T5329] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  444.660731][ T5329] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  444.672419][ T5329] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  444.676477][ T5329] synaptics_usb 9-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  444.883373][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  444.887382][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  444.996597][ T9033] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  445.055631][ T9040] bond1: option arp_validate: invalid value (2048)
[  445.075128][ T9040] bond1 (unregistering): Released all slaves
[  445.133756][ T9047] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  445.328714][ T9062] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  445.332471][ T9062] CPU: 1 UID: 0 PID: 9062 Comm: syz.5.810 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  445.332490][ T9062] Tainted: [L]=SOFTLOCKUP
[  445.332494][ T9062] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  445.332500][ T9062] Call Trace:
[  445.332504][ T9062]  <TASK>
[  445.332509][ T9062]  dump_stack_lvl+0x16c/0x1f0
[  445.332528][ T9062]  sysfs_warn_dup+0x7f/0xa0
[  445.332543][ T9062]  sysfs_do_create_link_sd+0x124/0x140
[  445.332557][ T9062]  sysfs_create_link+0x61/0xc0
[  445.332570][ T9062]  device_add+0x652/0x1980
[  445.332584][ T9062]  ? __pfx_device_add+0x10/0x10
[  445.332595][ T9062]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.332608][ T9062]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  445.332624][ T9062]  wiphy_register+0x1ea1/0x2cc0
[  445.332638][ T9062]  ? __rtnl_unlock+0x68/0xf0
[  445.332652][ T9062]  ? __dev_change_flags+0x570/0x6f0
[  445.332665][ T9062]  ? __pfx_wiphy_register+0x10/0x10
[  445.332680][ T9062]  ? __asan_memset+0x23/0x50
[  445.332695][ T9062]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  445.332712][ T9062]  ieee80211_register_hw+0x2bb2/0x4160
[  445.332735][ T9062]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  445.332753][ T9062]  ? __pfx___debug_object_init+0x10/0x10
[  445.332768][ T9062]  ? find_held_lock+0x2b/0x80
[  445.332784][ T9062]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  445.332795][ T9062]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  445.332808][ T9062]  ? __hrtimer_setup+0x176/0x280
[  445.332823][ T9062]  mac80211_hwsim_new_radio+0x3323/0x5150
[  445.332846][ T9062]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  445.332862][ T9062]  ? __asan_memcpy+0x3c/0x60
[  445.332874][ T9062]  hwsim_new_radio_nl+0xba2/0x1330
[  445.332891][ T9062]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  445.332910][ T9062]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  445.332926][ T9062]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  445.332944][ T9062]  genl_family_rcv_msg_doit+0x209/0x2f0
[  445.332959][ T9062]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  445.332979][ T9062]  ? bpf_lsm_capable+0x9/0x10
[  445.332990][ T9062]  ? security_capable+0x7e/0x260
[  445.333002][ T9062]  ? ns_capable+0xd7/0x110
[  445.333016][ T9062]  genl_rcv_msg+0x55c/0x800
[  445.333032][ T9062]  ? __pfx_genl_rcv_msg+0x10/0x10
[  445.333047][ T9062]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  445.333063][ T9062]  ? __lock_acquire+0x436/0x2890
[  445.333077][ T9062]  netlink_rcv_skb+0x158/0x420
[  445.333089][ T9062]  ? __pfx_genl_rcv_msg+0x10/0x10
[  445.333104][ T9062]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  445.333122][ T9062]  ? netlink_deliver_tap+0x1ae/0xd30
[  445.333136][ T9062]  genl_rcv+0x28/0x40
[  445.333148][ T9062]  netlink_unicast+0x5aa/0x870
[  445.333163][ T9062]  ? __pfx_netlink_unicast+0x10/0x10
[  445.333181][ T9062]  netlink_sendmsg+0x8c8/0xdd0
[  445.333196][ T9062]  ? __pfx_netlink_sendmsg+0x10/0x10
[  445.333213][ T9062]  ____sys_sendmsg+0xa5d/0xc30
[  445.333228][ T9062]  ? copy_msghdr_from_user+0x10a/0x160
[  445.333238][ T9062]  ? __pfx_____sys_sendmsg+0x10/0x10
[  445.333254][ T9062]  ? __pfx_futex_wake_mark+0x10/0x10
[  445.333267][ T9062]  ___sys_sendmsg+0x134/0x1d0
[  445.333279][ T9062]  ? __pfx____sys_sendmsg+0x10/0x10
[  445.333289][ T9062]  ? futex_private_hash_put+0x160/0x1b0
[  445.333335][ T9062]  __sys_sendmsg+0x16d/0x220
[  445.333350][ T9062]  ? __pfx___sys_sendmsg+0x10/0x10
[  445.333362][ T9062]  ? __x64_sys_futex+0x1e0/0x4c0
[  445.333386][ T9062]  do_syscall_64+0xcd/0xf80
[  445.333402][ T9062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.333436][ T9062] RIP: 0033:0x7f04ce38f7c9
[  445.333454][ T9062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.333465][ T9062] RSP: 002b:00007f04cf2e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  445.333476][ T9062] RAX: ffffffffffffffda RBX: 00007f04ce5e5fa0 RCX: 00007f04ce38f7c9
[  445.333483][ T9062] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  445.333490][ T9062] RBP: 00007f04ce413f91 R08: 0000000000000000 R09: 0000000000000000
[  445.333496][ T9062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  445.333503][ T9062] R13: 00007f04ce5e6038 R14: 00007f04ce5e5fa0 R15: 00007ffe13365d38
[  445.333518][ T9062]  </TASK>
[  445.673472][ T6009] Bluetooth: hci4: command 0x0405 tx timeout
[  445.766211][ T9089] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  445.768769][ T9090] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  445.931561][ T9103] Mount JFS Failure: -5
[  445.935992][ T9103] jfs_mount failed w/return code = -5
[  446.002267][ T9107] geneve2: entered promiscuous mode
[  446.004011][ T9107] geneve2: entered allmulticast mode
[  446.165948][ T9117] IPv6: NLM_F_CREATE should be specified when creating new route
[  446.169736][ T9117] netlink: 20 bytes leftover after parsing attributes in process `syz.0.825'.
[  446.249497][ T9123] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  446.253283][ T9123] CPU: 2 UID: 0 PID: 9123 Comm: syz.1.827 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  446.253300][ T9123] Tainted: [L]=SOFTLOCKUP
[  446.253304][ T9123] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  446.253311][ T9123] Call Trace:
[  446.253315][ T9123]  <TASK>
[  446.253332][ T9123]  dump_stack_lvl+0x16c/0x1f0
[  446.253351][ T9123]  sysfs_warn_dup+0x7f/0xa0
[  446.253365][ T9123]  sysfs_do_create_link_sd+0x124/0x140
[  446.253379][ T9123]  sysfs_create_link+0x61/0xc0
[  446.253392][ T9123]  device_add+0x652/0x1980
[  446.253423][ T9123]  ? __pfx_device_add+0x10/0x10
[  446.253436][ T9123]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  446.253450][ T9123]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  446.253468][ T9123]  wiphy_register+0x1ea1/0x2cc0
[  446.253487][ T9123]  ? __rtnl_unlock+0x68/0xf0
[  446.253501][ T9123]  ? __dev_change_flags+0x570/0x6f0
[  446.253515][ T9123]  ? __pfx_wiphy_register+0x10/0x10
[  446.253529][ T9123]  ? __asan_memset+0x23/0x50
[  446.253544][ T9123]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  446.253562][ T9123]  ieee80211_register_hw+0x2bb2/0x4160
[  446.253585][ T9123]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  446.253601][ T9123]  ? __pfx___debug_object_init+0x10/0x10
[  446.253618][ T9123]  ? find_held_lock+0x2b/0x80
[  446.253633][ T9123]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  446.253645][ T9123]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  446.253658][ T9123]  ? __hrtimer_setup+0x176/0x280
[  446.253674][ T9123]  mac80211_hwsim_new_radio+0x3323/0x5150
[  446.253697][ T9123]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  446.253714][ T9123]  ? __asan_memcpy+0x3c/0x60
[  446.253726][ T9123]  hwsim_new_radio_nl+0xba2/0x1330
[  446.253743][ T9123]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  446.253763][ T9123]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  446.253779][ T9123]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  446.253797][ T9123]  genl_family_rcv_msg_doit+0x209/0x2f0
[  446.253812][ T9123]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  446.253831][ T9123]  ? bpf_lsm_capable+0x9/0x10
[  446.253842][ T9123]  ? security_capable+0x7e/0x260
[  446.253854][ T9123]  ? ns_capable+0xd7/0x110
[  446.253869][ T9123]  genl_rcv_msg+0x55c/0x800
[  446.253885][ T9123]  ? __pfx_genl_rcv_msg+0x10/0x10
[  446.253899][ T9123]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  446.253916][ T9123]  ? __lock_acquire+0x436/0x2890
[  446.253930][ T9123]  netlink_rcv_skb+0x158/0x420
[  446.253943][ T9123]  ? __pfx_genl_rcv_msg+0x10/0x10
[  446.253957][ T9123]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  446.253976][ T9123]  ? netlink_deliver_tap+0x1ae/0xd30
[  446.253990][ T9123]  genl_rcv+0x28/0x40
[  446.254003][ T9123]  netlink_unicast+0x5aa/0x870
[  446.254017][ T9123]  ? __pfx_netlink_unicast+0x10/0x10
[  446.254035][ T9123]  netlink_sendmsg+0x8c8/0xdd0
[  446.254050][ T9123]  ? __pfx_netlink_sendmsg+0x10/0x10
[  446.254068][ T9123]  ____sys_sendmsg+0xa5d/0xc30
[  446.254083][ T9123]  ? copy_msghdr_from_user+0x10a/0x160
[  446.254094][ T9123]  ? __pfx_____sys_sendmsg+0x10/0x10
[  446.254110][ T9123]  ? __pfx_futex_wake_mark+0x10/0x10
[  446.254123][ T9123]  ___sys_sendmsg+0x134/0x1d0
[  446.254134][ T9123]  ? __pfx____sys_sendmsg+0x10/0x10
[  446.254145][ T9123]  ? futex_private_hash_put+0x160/0x1b0
[  446.254174][ T9123]  __sys_sendmsg+0x16d/0x220
[  446.254185][ T9123]  ? __pfx___sys_sendmsg+0x10/0x10
[  446.254195][ T9123]  ? __x64_sys_futex+0x1e0/0x4c0
[  446.254217][ T9123]  do_syscall_64+0xcd/0xf80
[  446.254232][ T9123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.254243][ T9123] RIP: 0033:0x7f587878f7c9
[  446.254253][ T9123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.254262][ T9123] RSP: 002b:00007f5879602038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  446.254273][ T9123] RAX: ffffffffffffffda RBX: 00007f58789e5fa0 RCX: 00007f587878f7c9
[  446.254279][ T9123] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  446.254285][ T9123] RBP: 00007f5878813f91 R08: 0000000000000000 R09: 0000000000000000
[  446.254290][ T9123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  446.254296][ T9123] R13: 00007f58789e6038 R14: 00007f58789e5fa0 R15: 00007ffdd53147c8
[  446.254311][ T9123]  </TASK>
[  446.456285][   T60] usb 9-1: USB disconnect, device number 5
[  446.710126][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  446.710136][   T40] audit: type=1400 audit(2000000037.449:814): avc:  denied  { map } for  pid=9150 comm="syz.1.836" path="socket:[32501]" dev="sockfs" ino=32501 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  446.721640][   T40] audit: type=1400 audit(2000000037.459:815): avc:  denied  { create } for  pid=9148 comm="syz.4.835" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  446.731067][   T40] audit: type=1400 audit(2000000037.469:816): avc:  denied  { setattr } for  pid=9148 comm="syz.4.835" name="file1" dev="overlay" ino=413 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  446.738777][   T40] audit: type=1400 audit(2000000037.469:817): avc:  denied  { rename } for  pid=9148 comm="syz.4.835" name="#2c" dev="tmpfs" ino=421 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  446.748349][   T40] audit: type=1400 audit(2000000037.469:818): avc:  denied  { link } for  pid=9148 comm="syz.4.835" name="00fb21000138c087ebcab547f6a246426da9756027f8129d6d9d01000000000000" dev="tmpfs" ino=421 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  446.810357][   T40] audit: type=1400 audit(2000000037.549:819): avc:  denied  { write } for  pid=9150 comm="syz.1.836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  446.924475][ T9163] serio: Serial port ptm0
[  447.052250][ T9172] netlink: 8 bytes leftover after parsing attributes in process `syz.5.842'.
[  447.058508][ T9172] netlink: 8 bytes leftover after parsing attributes in process `syz.5.842'.
[  447.062469][ T9172] netlink: 8 bytes leftover after parsing attributes in process `syz.5.842'.
[  447.067138][ T9172] netlink: 8 bytes leftover after parsing attributes in process `syz.5.842'.
[  447.072154][ T9172] netlink: 8 bytes leftover after parsing attributes in process `syz.5.842'.
[  447.076015][ T9172] netlink: 'syz.5.842': attribute type 7 has an invalid length.
[  447.086798][ T9163] serio: Serial port ptm0
[  447.350994][ T9185] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.356473][ T9185] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.433294][ T9186] nbd: nbd64 already in use
[  447.470024][ T9185] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.474757][ T9185] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.552652][ T6543] udevd[6543]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  447.588713][ T9185] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.592931][ T9185] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.654750][ T9185] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  447.658110][ T9185] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.735324][ T7372] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  447.738787][ T7372] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  447.753789][ T7372] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  447.756498][ T7372] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  447.767684][ T7372] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  447.770535][ T7372] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  447.782134][ T7372] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  447.784885][ T7372] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  447.811571][ T9193] __nla_validate_parse: 3 callbacks suppressed
[  447.811581][ T9193] netlink: 8 bytes leftover after parsing attributes in process `syz.4.849'.
[  447.818563][ T9193] netlink: 'syz.4.849': attribute type 29 has an invalid length.
[  447.824812][ T9193] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  447.827051][ T9193] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  447.829884][ T9193] vhci_hcd vhci_hcd.0: Device attached
[  447.939216][ T9194] vhci_hcd: connection closed
[  447.942035][ T7463] vhci_hcd vhci_hcd.4: stop threads
[  447.946053][ T7463] vhci_hcd vhci_hcd.4: release socket
[  447.948556][ T7463] vhci_hcd vhci_hcd.4: disconnect device
[  447.979996][ T9206] syzkaller0: entered promiscuous mode
[  447.982196][ T9206] syzkaller0: entered allmulticast mode
[  448.107330][   T40] audit: type=1400 audit(2000000038.849:820): avc:  denied  { map } for  pid=9210 comm="syz.5.853" path="/78/file0/blkio.bfq.io_service_bytes_recursive" dev="9p" ino=76021907 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  448.212337][ T9213] xt_time: invalid argument - start or stop time greater than 23:59:59
[  448.475490][ T9225] netlink: 'syz.4.857': attribute type 2 has an invalid length.
[  448.478669][ T9225] netlink: 'syz.4.857': attribute type 1 has an invalid length.
[  448.482124][ T9225] netlink: 'syz.4.857': attribute type 1 has an invalid length.
[  448.565035][ T9229] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  448.570316][ T9229] CPU: 1 UID: 0 PID: 9229 Comm: syz.4.859 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  448.570339][ T9229] Tainted: [L]=SOFTLOCKUP
[  448.570344][ T9229] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  448.570350][ T9229] Call Trace:
[  448.570355][ T9229]  <TASK>
[  448.570360][ T9229]  dump_stack_lvl+0x16c/0x1f0
[  448.570377][ T9229]  sysfs_warn_dup+0x7f/0xa0
[  448.570392][ T9229]  sysfs_do_create_link_sd+0x124/0x140
[  448.570409][ T9229]  sysfs_create_link+0x61/0xc0
[  448.570421][ T9229]  device_add+0x652/0x1980
[  448.570436][ T9229]  ? __pfx_device_add+0x10/0x10
[  448.570448][ T9229]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  448.570462][ T9229]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  448.570479][ T9229]  wiphy_register+0x1ea1/0x2cc0
[  448.570493][ T9229]  ? __rtnl_unlock+0x68/0xf0
[  448.570506][ T9229]  ? __dev_change_flags+0x570/0x6f0
[  448.570519][ T9229]  ? __pfx_wiphy_register+0x10/0x10
[  448.570534][ T9229]  ? __asan_memset+0x23/0x50
[  448.570549][ T9229]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  448.570565][ T9229]  ieee80211_register_hw+0x2bb2/0x4160
[  448.570585][ T9229]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  448.570600][ T9229]  ? __pfx___debug_object_init+0x10/0x10
[  448.570616][ T9229]  ? find_held_lock+0x2b/0x80
[  448.570631][ T9229]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  448.570642][ T9229]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  448.570662][ T9229]  ? __hrtimer_setup+0x176/0x280
[  448.570680][ T9229]  mac80211_hwsim_new_radio+0x3323/0x5150
[  448.570705][ T9229]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  448.570724][ T9229]  ? __asan_memcpy+0x3c/0x60
[  448.570737][ T9229]  hwsim_new_radio_nl+0xba2/0x1330
[  448.570756][ T9229]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  448.570777][ T9229]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  448.570793][ T9229]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  448.570811][ T9229]  genl_family_rcv_msg_doit+0x209/0x2f0
[  448.570826][ T9229]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  448.570845][ T9229]  ? bpf_lsm_capable+0x9/0x10
[  448.570856][ T9229]  ? security_capable+0x7e/0x260
[  448.570868][ T9229]  ? ns_capable+0xd7/0x110
[  448.570883][ T9229]  genl_rcv_msg+0x55c/0x800
[  448.570899][ T9229]  ? __pfx_genl_rcv_msg+0x10/0x10
[  448.570912][ T9229]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  448.570929][ T9229]  ? __lock_acquire+0x436/0x2890
[  448.570943][ T9229]  netlink_rcv_skb+0x158/0x420
[  448.570956][ T9229]  ? __pfx_genl_rcv_msg+0x10/0x10
[  448.570971][ T9229]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  448.570989][ T9229]  ? netlink_deliver_tap+0x1ae/0xd30
[  448.571003][ T9229]  genl_rcv+0x28/0x40
[  448.571015][ T9229]  netlink_unicast+0x5aa/0x870
[  448.571030][ T9229]  ? __pfx_netlink_unicast+0x10/0x10
[  448.571051][ T9229]  netlink_sendmsg+0x8c8/0xdd0
[  448.571072][ T9229]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.571099][ T9229]  ____sys_sendmsg+0xa5d/0xc30
[  448.571122][ T9229]  ? copy_msghdr_from_user+0x10a/0x160
[  448.571141][ T9229]  ? __pfx_____sys_sendmsg+0x10/0x10
[  448.571160][ T9229]  ? __pfx_futex_wake_mark+0x10/0x10
[  448.571172][ T9229]  ___sys_sendmsg+0x134/0x1d0
[  448.571184][ T9229]  ? __pfx____sys_sendmsg+0x10/0x10
[  448.571194][ T9229]  ? futex_private_hash_put+0x160/0x1b0
[  448.571222][ T9229]  __sys_sendmsg+0x16d/0x220
[  448.571233][ T9229]  ? __pfx___sys_sendmsg+0x10/0x10
[  448.571243][ T9229]  ? __x64_sys_futex+0x1e0/0x4c0
[  448.571264][ T9229]  do_syscall_64+0xcd/0xf80
[  448.571279][ T9229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.571290][ T9229] RIP: 0033:0x7ff24e58f7c9
[  448.571299][ T9229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.571309][ T9229] RSP: 002b:00007ff24f3dc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  448.571319][ T9229] RAX: ffffffffffffffda RBX: 00007ff24e7e5fa0 RCX: 00007ff24e58f7c9
[  448.571343][ T9229] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  448.571350][ T9229] RBP: 00007ff24e613f91 R08: 0000000000000000 R09: 0000000000000000
[  448.571356][ T9229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  448.571362][ T9229] R13: 00007ff24e7e6038 R14: 00007ff24e7e5fa0 R15: 00007ffeda59dfe8
[  448.571377][ T9229]  </TASK>
[  448.749773][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.4.860'.
[  448.757166][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.4.860'.
[  448.760315][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.4.860'.
[  448.765420][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.4.860'.
[  448.768525][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.4.860'.
[  448.773710][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.4.860'.
[  448.776466][ T9231] netlink: 12 bytes leftover after parsing attributes in process `syz.4.860'.
[  448.779414][ T9231] netlink: 'syz.4.860': attribute type 7 has an invalid length.
[  448.899350][ T9234] netlink: 72 bytes leftover after parsing attributes in process `syz.4.861'.
[  448.917161][ T9233] bridge_slave_0: left allmulticast mode
[  448.919665][ T9233] bridge_slave_0: left promiscuous mode
[  448.922185][ T9233] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.930230][ T9233] bridge_slave_1: left allmulticast mode
[  448.932674][ T9233] bridge_slave_1: left promiscuous mode
[  448.935860][ T9233] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.940642][ T9233] bond0: (slave bond_slave_0): Releasing backup interface
[  448.945132][ T9233] bond0: (slave bond_slave_1): Releasing backup interface
[  448.956921][ T9233] team0: Port device team_slave_0 removed
[  448.961582][ T9238] netlink: 8 bytes leftover after parsing attributes in process `syz.5.862'.
[  448.962782][ T9233] team0: Port device team_slave_1 removed
[  448.965444][ T9238] netlink: 'syz.5.862': attribute type 7 has an invalid length.
[  448.970671][ T9233] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  448.973175][ T9233] batman_adv: batadv0: Removing interface: batadv_slave_0
[  448.977128][ T9233] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  448.979805][ T9233] batman_adv: batadv0: Removing interface: batadv_slave_1
[  448.983113][ T9233] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  448.997203][ T9237] vlan0: entered promiscuous mode
[  449.002994][ T9237] team0: Port device vlan0 added
[  449.009669][ T9233] tipc: Started in network mode
[  449.011277][ T9233] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  449.014621][ T9233] tipc: Enabled bearer <eth:team0>, priority 0
[  449.035208][ T9240] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  449.045297][ T9240] CIFS mount error: No usable UNC path provided in device string!
[  449.045297][ T9240] 
[  449.049248][ T9240] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  449.227457][   T40] audit: type=1400 audit(2000000039.969:821): avc:  denied  { ioctl } for  pid=9243 comm="syz.4.865" path="socket:[34411]" dev="sockfs" ino=34411 ioctlcmd=0x5408 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  449.239009][ T9246] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  449.266726][ T9246] cramfs: wrong magic
[  449.321476][ T9254] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  449.332068][ T9254] CPU: 3 UID: 0 PID: 9254 Comm: syz.0.868 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  449.332087][ T9254] Tainted: [L]=SOFTLOCKUP
[  449.332092][ T9254] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  449.332099][ T9254] Call Trace:
[  449.332103][ T9254]  <TASK>
[  449.332107][ T9254]  dump_stack_lvl+0x16c/0x1f0
[  449.332126][ T9254]  sysfs_warn_dup+0x7f/0xa0
[  449.332139][ T9254]  sysfs_do_create_link_sd+0x124/0x140
[  449.332156][ T9254]  sysfs_create_link+0x61/0xc0
[  449.332172][ T9254]  device_add+0x652/0x1980
[  449.332192][ T9254]  ? __pfx_device_add+0x10/0x10
[  449.332212][ T9254]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  449.332233][ T9254]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  449.332263][ T9254]  wiphy_register+0x1ea1/0x2cc0
[  449.332284][ T9254]  ? __rtnl_unlock+0x68/0xf0
[  449.332298][ T9254]  ? __dev_change_flags+0x570/0x6f0
[  449.332312][ T9254]  ? __pfx_wiphy_register+0x10/0x10
[  449.332327][ T9254]  ? __asan_memset+0x23/0x50
[  449.332342][ T9254]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  449.332358][ T9254]  ieee80211_register_hw+0x2bb2/0x4160
[  449.332384][ T9254]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  449.332405][ T9254]  ? __pfx___debug_object_init+0x10/0x10
[  449.332425][ T9254]  ? find_held_lock+0x2b/0x80
[  449.332444][ T9254]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  449.332459][ T9254]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  449.332476][ T9254]  ? __hrtimer_setup+0x176/0x280
[  449.332501][ T9254]  mac80211_hwsim_new_radio+0x3323/0x5150
[  449.332551][ T9254]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  449.332571][ T9254]  ? __asan_memcpy+0x3c/0x60
[  449.332584][ T9254]  hwsim_new_radio_nl+0xba2/0x1330
[  449.332603][ T9254]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  449.332624][ T9254]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  449.332641][ T9254]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  449.332659][ T9254]  genl_family_rcv_msg_doit+0x209/0x2f0
[  449.332677][ T9254]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  449.332696][ T9254]  ? bpf_lsm_capable+0x9/0x10
[  449.332707][ T9254]  ? security_capable+0x7e/0x260
[  449.332724][ T9254]  ? ns_capable+0xd7/0x110
[  449.332754][ T9254]  genl_rcv_msg+0x55c/0x800
[  449.332770][ T9254]  ? __pfx_genl_rcv_msg+0x10/0x10
[  449.332785][ T9254]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  449.332801][ T9254]  ? __lock_acquire+0x436/0x2890
[  449.332816][ T9254]  netlink_rcv_skb+0x158/0x420
[  449.332829][ T9254]  ? __pfx_genl_rcv_msg+0x10/0x10
[  449.332844][ T9254]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  449.332864][ T9254]  ? netlink_deliver_tap+0x1ae/0xd30
[  449.332880][ T9254]  genl_rcv+0x28/0x40
[  449.332894][ T9254]  netlink_unicast+0x5aa/0x870
[  449.332909][ T9254]  ? __pfx_netlink_unicast+0x10/0x10
[  449.332928][ T9254]  netlink_sendmsg+0x8c8/0xdd0
[  449.332943][ T9254]  ? __pfx_netlink_sendmsg+0x10/0x10
[  449.332961][ T9254]  ____sys_sendmsg+0xa5d/0xc30
[  449.332976][ T9254]  ? copy_msghdr_from_user+0x10a/0x160
[  449.332987][ T9254]  ? __pfx_____sys_sendmsg+0x10/0x10
[  449.332999][ T9254]  ? preempt_schedule_thunk+0x16/0x30
[  449.333012][ T9254]  ? try_to_wake_up+0xa67/0x1860
[  449.333030][ T9254]  ___sys_sendmsg+0x134/0x1d0
[  449.333041][ T9254]  ? __pfx____sys_sendmsg+0x10/0x10
[  449.333051][ T9254]  ? futex_private_hash_put+0x160/0x1b0
[  449.333093][ T9254]  __sys_sendmsg+0x16d/0x220
[  449.333108][ T9254]  ? __pfx___sys_sendmsg+0x10/0x10
[  449.333118][ T9254]  ? __x64_sys_futex+0x1e0/0x4c0
[  449.333140][ T9254]  do_syscall_64+0xcd/0xf80
[  449.333155][ T9254]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  449.333165][ T9254] RIP: 0033:0x7fdb8ef8f7c9
[  449.333175][ T9254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  449.333184][ T9254] RSP: 002b:00007fdb8feeb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  449.333195][ T9254] RAX: ffffffffffffffda RBX: 00007fdb8f1e5fa0 RCX: 00007fdb8ef8f7c9
[  449.333201][ T9254] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  449.333207][ T9254] RBP: 00007fdb8f013f91 R08: 0000000000000000 R09: 0000000000000000
[  449.333213][ T9254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  449.333218][ T9254] R13: 00007fdb8f1e6038 R14: 00007fdb8f1e5fa0 R15: 00007ffda6157fe8
[  449.333232][ T9254]  </TASK>
[  449.605869][   T40] audit: type=1400 audit(2000000040.349:822): avc:  denied  { read } for  pid=9266 comm="syz.0.872" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  449.659701][   T40] audit: type=1400 audit(2000000040.399:823): avc:  denied  { ioctl } for  pid=9260 comm="syz.4.870" path="socket:[34949]" dev="sockfs" ino=34949 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  449.829133][ T9275] overlayfs: failed to get inode (-116)
[  449.831613][ T9275] overlayfs: failed to get inode (-116)
[  450.069096][ T9281] netlink: 'syz.4.876': attribute type 1 has an invalid length.
[  450.087083][ T9281] 8021q: adding VLAN 0 to HW filter on device bond1
[  450.123976][ T9281] bond1: (slave veth5): Enslaving as an active interface with a down link
[  450.135299][ T9281] 8021q: adding VLAN 0 to HW filter on device batadv1
[  450.137626][ T9281] bond1: (slave batadv1): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  450.154940][   T54] tipc: Node number set to 11578026
[  450.248187][ T9288] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  450.253445][ T9288] CPU: 3 UID: 0 PID: 9288 Comm: syz.0.879 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.253464][ T9288] Tainted: [L]=SOFTLOCKUP
[  450.253468][ T9288] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  450.253475][ T9288] Call Trace:
[  450.253479][ T9288]  <TASK>
[  450.253484][ T9288]  dump_stack_lvl+0x16c/0x1f0
[  450.253502][ T9288]  sysfs_warn_dup+0x7f/0xa0
[  450.253516][ T9288]  sysfs_do_create_link_sd+0x124/0x140
[  450.253531][ T9288]  sysfs_create_link+0x61/0xc0
[  450.253544][ T9288]  device_add+0x652/0x1980
[  450.253558][ T9288]  ? __pfx_device_add+0x10/0x10
[  450.253569][ T9288]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  450.253583][ T9288]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  450.253600][ T9288]  wiphy_register+0x1ea1/0x2cc0
[  450.253621][ T9288]  ? __rtnl_unlock+0x68/0xf0
[  450.253636][ T9288]  ? __dev_change_flags+0x570/0x6f0
[  450.253651][ T9288]  ? __pfx_wiphy_register+0x10/0x10
[  450.253667][ T9288]  ? __asan_memset+0x23/0x50
[  450.253683][ T9288]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  450.253700][ T9288]  ieee80211_register_hw+0x2bb2/0x4160
[  450.253720][ T9288]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  450.253736][ T9288]  ? __pfx___debug_object_init+0x10/0x10
[  450.253752][ T9288]  ? find_held_lock+0x2b/0x80
[  450.253768][ T9288]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  450.253779][ T9288]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  450.253791][ T9288]  ? __hrtimer_setup+0x176/0x280
[  450.253807][ T9288]  mac80211_hwsim_new_radio+0x3323/0x5150
[  450.253830][ T9288]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  450.253847][ T9288]  ? __asan_memcpy+0x3c/0x60
[  450.253859][ T9288]  hwsim_new_radio_nl+0xba2/0x1330
[  450.253876][ T9288]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  450.253896][ T9288]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  450.253912][ T9288]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  450.253930][ T9288]  genl_family_rcv_msg_doit+0x209/0x2f0
[  450.253946][ T9288]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  450.253965][ T9288]  ? bpf_lsm_capable+0x9/0x10
[  450.253977][ T9288]  ? security_capable+0x7e/0x260
[  450.253988][ T9288]  ? ns_capable+0xd7/0x110
[  450.254003][ T9288]  genl_rcv_msg+0x55c/0x800
[  450.254020][ T9288]  ? __pfx_genl_rcv_msg+0x10/0x10
[  450.254034][ T9288]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  450.254051][ T9288]  ? __lock_acquire+0x436/0x2890
[  450.254065][ T9288]  netlink_rcv_skb+0x158/0x420
[  450.254077][ T9288]  ? __pfx_genl_rcv_msg+0x10/0x10
[  450.254093][ T9288]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  450.254111][ T9288]  ? netlink_deliver_tap+0x1ae/0xd30
[  450.254141][ T9288]  genl_rcv+0x28/0x40
[  450.254156][ T9288]  netlink_unicast+0x5aa/0x870
[  450.254172][ T9288]  ? __pfx_netlink_unicast+0x10/0x10
[  450.254191][ T9288]  netlink_sendmsg+0x8c8/0xdd0
[  450.254208][ T9288]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.254228][ T9288]  ____sys_sendmsg+0xa5d/0xc30
[  450.254243][ T9288]  ? copy_msghdr_from_user+0x10a/0x160
[  450.254255][ T9288]  ? __pfx_____sys_sendmsg+0x10/0x10
[  450.254272][ T9288]  ? __pfx_futex_wake_mark+0x10/0x10
[  450.254285][ T9288]  ___sys_sendmsg+0x134/0x1d0
[  450.254297][ T9288]  ? __pfx____sys_sendmsg+0x10/0x10
[  450.254308][ T9288]  ? futex_private_hash_put+0x160/0x1b0
[  450.254337][ T9288]  __sys_sendmsg+0x16d/0x220
[  450.254347][ T9288]  ? __pfx___sys_sendmsg+0x10/0x10
[  450.254358][ T9288]  ? __x64_sys_futex+0x1e0/0x4c0
[  450.254380][ T9288]  do_syscall_64+0xcd/0xf80
[  450.254396][ T9288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.254406][ T9288] RIP: 0033:0x7fdb8ef8f7c9
[  450.254415][ T9288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  450.254425][ T9288] RSP: 002b:00007fdb8feeb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  450.254435][ T9288] RAX: ffffffffffffffda RBX: 00007fdb8f1e5fa0 RCX: 00007fdb8ef8f7c9
[  450.254441][ T9288] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  450.254447][ T9288] RBP: 00007fdb8f013f91 R08: 0000000000000000 R09: 0000000000000000
[  450.254453][ T9288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  450.254458][ T9288] R13: 00007fdb8f1e6038 R14: 00007fdb8f1e5fa0 R15: 00007ffda6157fe8
[  450.254472][ T9288]  </TASK>
[  450.555043][ T1124] sr 2:0:0:0: [sr0] tag#19 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  450.558139][ T1124] sr 2:0:0:0: [sr0] tag#19 Sense Key : Illegal Request [current] 
[  450.560567][ T1124] sr 2:0:0:0: [sr0] tag#19 Add. Sense: Invalid command operation code
[  450.563852][ T1124] sr 2:0:0:0: [sr0] tag#19 CDB: ATA command pass through(16) 85 07 42 65 13 cb
[  450.595558][ T9299] chnl_net:caif_netlink_parms(): no params data found
[  451.280275][ T9320] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  451.285138][ T9320] CPU: 3 UID: 0 PID: 9320 Comm: syz.0.889 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  451.285156][ T9320] Tainted: [L]=SOFTLOCKUP
[  451.285160][ T9320] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  451.285166][ T9320] Call Trace:
[  451.285170][ T9320]  <TASK>
[  451.285175][ T9320]  dump_stack_lvl+0x16c/0x1f0
[  451.285193][ T9320]  sysfs_warn_dup+0x7f/0xa0
[  451.285206][ T9320]  sysfs_do_create_link_sd+0x124/0x140
[  451.285220][ T9320]  sysfs_create_link+0x61/0xc0
[  451.285232][ T9320]  device_add+0x652/0x1980
[  451.285248][ T9320]  ? __pfx_device_add+0x10/0x10
[  451.285259][ T9320]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.285273][ T9320]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  451.285289][ T9320]  wiphy_register+0x1ea1/0x2cc0
[  451.285304][ T9320]  ? __rtnl_unlock+0x68/0xf0
[  451.285318][ T9320]  ? __dev_change_flags+0x570/0x6f0
[  451.285332][ T9320]  ? __pfx_wiphy_register+0x10/0x10
[  451.285347][ T9320]  ? __asan_memset+0x23/0x50
[  451.285389][ T9320]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  451.285411][ T9320]  ieee80211_register_hw+0x2bb2/0x4160
[  451.285433][ T9320]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  451.285449][ T9320]  ? __pfx___debug_object_init+0x10/0x10
[  451.285471][ T9320]  ? find_held_lock+0x2b/0x80
[  451.285489][ T9320]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.285507][ T9320]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  451.285527][ T9320]  ? __hrtimer_setup+0x176/0x280
[  451.285553][ T9320]  mac80211_hwsim_new_radio+0x3323/0x5150
[  451.285594][ T9320]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  451.285621][ T9320]  ? __asan_memcpy+0x3c/0x60
[  451.285636][ T9320]  hwsim_new_radio_nl+0xba2/0x1330
[  451.285653][ T9320]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  451.285673][ T9320]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  451.285704][ T9320]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  451.285726][ T9320]  genl_family_rcv_msg_doit+0x209/0x2f0
[  451.285743][ T9320]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  451.285764][ T9320]  ? bpf_lsm_capable+0x9/0x10
[  451.285776][ T9320]  ? security_capable+0x7e/0x260
[  451.285801][ T9320]  ? ns_capable+0xd7/0x110
[  451.285817][ T9320]  genl_rcv_msg+0x55c/0x800
[  451.285833][ T9320]  ? __pfx_genl_rcv_msg+0x10/0x10
[  451.285847][ T9320]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  451.285864][ T9320]  ? __lock_acquire+0x436/0x2890
[  451.285877][ T9320]  netlink_rcv_skb+0x158/0x420
[  451.285889][ T9320]  ? __pfx_genl_rcv_msg+0x10/0x10
[  451.285904][ T9320]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  451.285924][ T9320]  ? netlink_deliver_tap+0x1ae/0xd30
[  451.285940][ T9320]  genl_rcv+0x28/0x40
[  451.285952][ T9320]  netlink_unicast+0x5aa/0x870
[  451.285967][ T9320]  ? __pfx_netlink_unicast+0x10/0x10
[  451.285984][ T9320]  netlink_sendmsg+0x8c8/0xdd0
[  451.285999][ T9320]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.286017][ T9320]  ____sys_sendmsg+0xa5d/0xc30
[  451.286031][ T9320]  ? copy_msghdr_from_user+0x10a/0x160
[  451.286042][ T9320]  ? __pfx_____sys_sendmsg+0x10/0x10
[  451.286058][ T9320]  ? __pfx_futex_wake_mark+0x10/0x10
[  451.286070][ T9320]  ___sys_sendmsg+0x134/0x1d0
[  451.286082][ T9320]  ? __pfx____sys_sendmsg+0x10/0x10
[  451.286092][ T9320]  ? futex_private_hash_put+0x160/0x1b0
[  451.286127][ T9320]  __sys_sendmsg+0x16d/0x220
[  451.286143][ T9320]  ? __pfx___sys_sendmsg+0x10/0x10
[  451.286160][ T9320]  ? __x64_sys_futex+0x1e0/0x4c0
[  451.286198][ T9320]  do_syscall_64+0xcd/0xf80
[  451.286224][ T9320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.286239][ T9320] RIP: 0033:0x7fdb8ef8f7c9
[  451.286249][ T9320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.286259][ T9320] RSP: 002b:00007fdb8feeb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  451.286271][ T9320] RAX: ffffffffffffffda RBX: 00007fdb8f1e5fa0 RCX: 00007fdb8ef8f7c9
[  451.286278][ T9320] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  451.286286][ T9320] RBP: 00007fdb8f013f91 R08: 0000000000000000 R09: 0000000000000000
[  451.286293][ T9320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  451.286300][ T9320] R13: 00007fdb8f1e6038 R14: 00007fdb8f1e5fa0 R15: 00007ffda6157fe8
[  451.286315][ T9320]  </TASK>
[  451.647302][ T9327] futex_wake_op: syz.4.892 tries to shift op by -1; fix this program
[  451.682891][ T9335] openvswitch: netlink: Flow actions attr not present in new flow.
[  451.737478][ T9346] autofs: Unknown parameter './file1'
[  451.840231][ T9357] af_packet: tpacket_rcv: packet too big, clamped from 2 to 4294967272. macoff=96
[  451.843172][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  451.843183][   T40] audit: type=1326 audit(2000000042.579:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9356 comm="syz.5.900" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04ce38f7c9 code=0x7ffc0000
[  451.843211][   T40] audit: type=1326 audit(2000000042.579:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9356 comm="syz.5.900" exe="/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f04ce38f7c9 code=0x7ffc0000
[  451.991445][   T40] audit: type=1400 audit(2000000042.729:836): avc:  denied  { read } for  pid=9362 comm="syz.0.902" name="msr" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  451.998797][   T40] audit: type=1400 audit(2000000042.739:837): avc:  denied  { open } for  pid=9362 comm="syz.0.902" path="/dev/cpu/3/msr" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  452.081061][   T40] audit: type=1400 audit(2000000042.819:838): avc:  denied  { write } for  pid=9366 comm="syz.0.903" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  452.324791][   T40] audit: type=1400 audit(2000000043.069:839): avc:  denied  { accept } for  pid=9378 comm="syz.0.907" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  452.660424][ T9385] fuse: Bad value for 'fd'
[  452.693797][ T9386] netlink: 'syz.4.909': attribute type 7 has an invalid length.
[  452.752926][ T9389] netlink: 'syz.1.908': attribute type 5 has an invalid length.
[  452.777460][ T9391] xt_ecn: cannot match TCP bits for non-tcp packets
[  452.879820][ T9393] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9393 comm=syz.5.911
[  452.889150][ T9393] __nla_validate_parse: 23 callbacks suppressed
[  452.889167][ T9393] netlink: 4 bytes leftover after parsing attributes in process `syz.5.911'.
[  452.896625][ T9393] bridge_slave_1: left allmulticast mode
[  452.899050][ T9393] bridge_slave_1: left promiscuous mode
[  452.901733][ T9393] bridge0: port 2(bridge_slave_1) entered disabled state
[  452.910894][ T9393] bridge_slave_0: left allmulticast mode
[  452.913489][ T9393] bridge_slave_0: left promiscuous mode
[  452.916155][ T9393] bridge0: port 1(bridge_slave_0) entered disabled state
[  453.101562][ T9379] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  453.105917][ T9379] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  453.117151][ T9379] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  453.217705][ T9403] netlink: 36 bytes leftover after parsing attributes in process `syz.4.914'.
[  453.417494][   T40] audit: type=1400 audit(2000000044.159:840): avc:  denied  { getopt } for  pid=9419 comm="syz.5.920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  453.473312][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.923'.
[  453.476676][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.923'.
[  453.479838][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.923'.
[  453.482827][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.923'.
[  453.486686][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.923'.
[  453.494807][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.4.923'.
[  453.497858][ T9426] netlink: 12 bytes leftover after parsing attributes in process `syz.4.923'.
[  453.500928][ T9426] netlink: 'syz.4.923': attribute type 7 has an invalid length.
[  453.512583][ T9428] pimreg: entered allmulticast mode
[  453.535501][   T40] audit: type=1400 audit(2000000044.279:841): avc:  denied  { ioctl } for  pid=9429 comm="syz.4.925" path="net:[4026532993]" dev="nsfs" ino=4026532993 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  453.564999][   T40] audit: type=1400 audit(2000000044.309:842): avc:  denied  { write } for  pid=9431 comm="syz.1.926" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  453.626649][   T40] audit: type=1400 audit(2000000044.369:843): avc:  denied  { remount } for  pid=9435 comm="syz.5.927" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  453.775229][ T9455] netlink: 8 bytes leftover after parsing attributes in process `syz.5.933'.
[  453.779639][ T9455] netlink: 'syz.5.933': attribute type 7 has an invalid length.
[  453.815211][ T9459] syz_tun: entered allmulticast mode
[  453.817754][ T9459] syz_tun: left allmulticast mode
[  453.821793][ T9459] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pid=9459 comm=syz.4.934
[  453.946040][   T60] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  453.965859][ T9477] syzkaller0: entered promiscuous mode
[  453.968274][ T9477] syzkaller0: entered allmulticast mode
[  454.117515][ T9488] vivid-000: =================  START STATUS  =================
[  454.120295][ T9488] vivid-000: Test Pattern: 75% Colorbar
[  454.123463][ T9488] vivid-000: Fill Percentage of Frame: 100
[  454.125448][ T9488] vivid-000: Horizontal Movement: No Movement
[  454.128802][ T9488] vivid-000: Vertical Movement: No Movement
[  454.130867][ T9488] vivid-000: OSD Text Mode: All
[  454.132791][ T9488] vivid-000: Show Border: false
[  454.134748][ T9488] vivid-000: Show Square: false
[  454.136489][ T9488] vivid-000: Sensor Flipped Horizontally: false
[  454.138651][ T9488] vivid-000: Sensor Flipped Vertically: true
[  454.141852][ T9488] vivid-000: Insert SAV Code in Image: false
[  454.147669][ T9488] vivid-000: Insert EAV Code in Image: false
[  454.150094][ T9488] vivid-000: Insert Video Guard Band: false
[  454.152403][ T9488] vivid-000: Reduced Framerate: false
[  454.156215][ T9488] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  454.162062][ T9488] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  454.166325][ T9488] vivid-000: Enable Capture Cropping: false
[  454.170527][ T9488] vivid-000: Enable Capture Composing: false
[  454.173610][ T9488] vivid-000: Enable Capture Scaler: true
[  454.175672][ T9488] vivid-000: Timestamp Source: End of Frame
[  454.177704][ T9488] vivid-000: Colorspace: Rec. 709
[  454.179349][ T9488] vivid-000: Transfer Function: Default
[  454.181081][ T9488] vivid-000: Y'CbCr Encoding: Default
[  454.182780][ T9488] vivid-000: HSV Encoding: Hue 0-179
[  454.184984][ T9488] vivid-000: Quantization: Default
[  454.188410][ T9488] vivid-000: Apply Alpha To Red Only: false
[  454.190583][ T9488] vivid-000: Standard Aspect Ratio: 4x3
[  454.192719][ T9488] vivid-000: DV Timings Signal Mode: Current DV Timings
[  454.196148][ T9488] vivid-000: DV Timings: 640x480p59 inactive
[  454.198719][ T9488] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  454.202048][ T9488] vivid-000: Maximum EDID Blocks: 2
[  454.205474][ T9488] vivid-000: Limited RGB Range (16-235): true
[  454.207955][ T9488] vivid-000: Rx RGB Quantization Range: Automatic
[  454.209996][ T9488] vivid-000: Power Present: 0x00000001
[  454.211611][ T9492] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  454.211709][ T9488] tpg source WxH: 1280x720 (R'G'B)
[  454.216332][ T9492] Error validating options; rc = [-22]
[  454.218771][ T9488] tpg field: 1
[  454.221689][ T9488] tpg crop: (0,0)/1280x720
[  454.230211][ T9488] tpg compose: (0,0)/1280x720
[  454.232260][ T9488] tpg colorspace: 3
[  454.234200][ T9488] tpg transfer function: 0/2
[  454.235960][ T9488] tpg quantization: 0/1
[  454.237447][ T9488] tpg RGB range: 0/1
[  454.239155][ T9488] vivid-000: ==================  END STATUS  ==================
[  454.254588][ T9494] netlink: 'syz.5.944': attribute type 7 has an invalid length.
[  454.395488][   T64] Bluetooth: hci4: command 0x0405 tx timeout
[  454.395583][ T9509] CIFS: Unable to determine destination address
[  454.401725][   T64] Bluetooth: hci4: unexpected event for opcode 0x1004
[  454.516263][ T9521] netlink: 'syz.1.954': attribute type 7 has an invalid length.
[  454.760399][ T9540] veth1_to_bond: entered allmulticast mode
[  454.804187][ T9546] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=9546 comm=syz.0.963
[  454.885636][ T1114] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  454.888479][ T1114] ata1: failed to read log page 10h (errno=-5)
[  454.890398][ T1114] ata1.00: exception Emask 0x1 SAct 0x10000 SErr 0x0 action 0x0
[  454.892796][ T1114] ata1.00: irq_stat 0x40000000
[  454.896159][ T1114] ata1.00: failed command: READ FPDMA QUEUED
[  454.898498][ T1114] ata1.00: cmd 60/90:80:b6:71:04/00:00:00:00:00/40 tag 16 ncq dma 73728 in
[  454.898498][ T1114]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  454.908843][ T1114] ata1.00: status: { DRDY }
[  454.910753][ T1114] ata1.00: error: { ABRT }
[  454.918893][ T1114] ata1.00: configured for UDMA/100
[  454.921531][ T1114] sd 0:0:0:0: [sda] tag#16 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  454.926598][ T1114] sd 0:0:0:0: [sda] tag#16 Sense Key : Aborted Command [current] 
[  454.930170][ T1114] sd 0:0:0:0: [sda] tag#16 Add. Sense: No additional sense information
[  454.936425][ T1114] sd 0:0:0:0: [sda] tag#16 CDB: Read(10) 28 00 00 04 71 b6 00 00 90 00
[  454.940127][ T1114] I/O error, dev sda, sector 291254 op 0x0:(READ) flags 0x80700 phys_seg 2 prio class 2
[  454.946457][ T1114] ata1: EH complete
[  455.199429][ T9539] veth1_to_bond: left allmulticast mode
[  455.335027][ T9584] EXT4-fs (nbd1): unable to read superblock
[  455.448605][ T9591] process 'memfd:��n�dRi5��ም[@8�� 9I�=��\'L�Ҏ�)JtTDq�ρ��1� �>�\�L�ϑ�M�^T*' started with executable stack
[  455.470713][ T9595] bad cache= option: nonw
[  455.470713][ T9595] 
[  455.473687][ T9596] bad cache= option: nonw
[  455.473687][ T9596] 
[  455.473719][ T9595] CIFS: VFS: bad cache= option: nonw
[  455.476373][ T9596] CIFS: VFS: bad cache= option: nonw
[  455.478600][ T9595] CIFS mount error: No usable UNC path provided in device string!
[  455.478600][ T9595] 
[  455.480391][ T9596] CIFS mount error: No usable UNC path provided in device string!
[  455.480391][ T9596] 
[  455.485375][ T9595] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  455.488638][ T9596] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  455.642275][ T9618] VFS: Mount too revealing
[  455.654255][ T9620] netlink: 'syz.1.976': attribute type 21 has an invalid length.
[  455.919145][ T9640] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  455.942756][   T64] Bluetooth: hci4: unexpected event for opcode 0x1004
[  455.974333][ T9642] netlink: 'syz.0.986': attribute type 1 has an invalid length.
[  456.218478][ T9660] SELinux:  Context /sbin/dhclient is not valid (left unmapped).
[  456.227812][ T9662] binder: 9661:9662 ioctl c0306201 200000000300 returned -11
[  456.312343][ T9666] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  456.315220][ T9666] overlayfs: failed to set xattr on upper
[  456.317034][ T9666] overlayfs: ...falling back to redirect_dir=nofollow.
[  456.319358][ T9666] overlayfs: ...falling back to index=off.
[  456.321224][ T9666] overlayfs: ...falling back to uuid=null.
[  456.332492][ T9666] overlayfs: cleanup of 'bus/work' failed (-13)
[  456.335288][ T9666] overlayfs: failed to create directory ./bus/work (errno: 17); mounting read-only
[  456.338726][ T9666] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  456.342283][ T9666] overlayfs: failed to get uuid (/file1, err=-95); falling back to uuid=null.
[  456.520598][   T64] Bluetooth: hci4: unexpected event for opcode 0x1004
[  456.673204][ T9683] IPv6: syztnl0: Disabled Multicast RS
[  456.739446][ T9689] 8021q: adding VLAN 0 to HW filter on device bond1
[  456.764533][ T9689] bond1: (slave ip6gretap1): making interface the new active one
[  456.767388][ T9689] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  456.771663][ T9694] netlink: 'syz.0.1004': attribute type 1 has an invalid length.
[  456.810972][ T9694] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[  456.841798][ T9704] IPVS: set_ctl: invalid protocol: 44 172.20.20.12:21
[  457.089821][   T40] kauditd_printk_skb: 20 callbacks suppressed
[  457.089837][   T40] audit: type=1400 audit(2000000047.829:864): avc:  denied  { setopt } for  pid=9719 comm="syz.4.1014" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  457.160157][   T40] audit: type=1400 audit(2000000047.899:865): avc:  denied  { bind } for  pid=9728 comm="syz.0.1017" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  457.229120][ T9733] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9733 comm=syz.0.1019
[  457.291813][ T9739] 9pnet_virtio: no channels available for device /dev/fb0
[  457.423481][    T9] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  457.573512][    T9] usb 9-1: Using ep0 maxpacket: 8
[  457.576911][    T9] usb 9-1: config 1 interface 0 altsetting 164 endpoint 0x81 has an invalid bInterval 127, changing to 10
[  457.580494][    T9] usb 9-1: config 1 interface 0 altsetting 164 endpoint 0x81 has invalid maxpacket 1544, setting to 1024
[  457.584032][    T9] usb 9-1: config 1 interface 0 has no altsetting 0
[  457.587713][    T9] usb 9-1: New USB device found, idVendor=056a, idProduct=0307, bcdDevice= 0.40
[  457.590615][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.593173][    T9] usb 9-1: Product: syz
[  457.595332][    T9] usb 9-1: Manufacturer: syz
[  457.597681][    T9] usb 9-1: SerialNumber: syz
[  457.602623][ T9731] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  458.149542][ T9743] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  458.154335][ T9731] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  458.157553][ T9731] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  458.164446][    T9] usbhid 9-1:1.0: can't add hid device: -71
[  458.166914][    T9] usbhid 9-1:1.0: probe with driver usbhid failed with error -71
[  458.171179][    T9] usb 9-1: USB disconnect, device number 6
[  458.259287][   T40] audit: type=1400 audit(2000000048.999:866): avc:  denied  { nlmsg_read } for  pid=9750 comm="syz.5.1025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  458.384738][   T40] audit: type=1400 audit(2000000049.129:867): avc:  denied  { setattr } for  pid=9757 comm="syz.5.1028" name="file0" dev="tmpfs" ino=607 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  458.393926][   T40] audit: type=1400 audit(2000000049.129:868): avc:  denied  { read write } for  pid=9757 comm="syz.5.1028" name="file0" dev="tmpfs" ino=607 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  458.401212][   T40] audit: type=1400 audit(2000000049.129:869): avc:  denied  { open } for  pid=9757 comm="syz.5.1028" path="/111/file0" dev="tmpfs" ino=607 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  458.454234][ T9760] vlan2: entered allmulticast mode
[  458.455975][ T9760] veth0_to_bond: entered allmulticast mode
[  458.701963][ T9786] lo speed is unknown, defaulting to 1000
[  458.707823][ T9786] lo speed is unknown, defaulting to 1000
[  458.714664][ T9786] lo speed is unknown, defaulting to 1000
[  458.773517][ T9794] ������: renamed from lo (while UP)
[  458.795846][ T9796] __nla_validate_parse: 33 callbacks suppressed
[  458.795865][ T9796] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1039'.
[  458.834963][ T9786] infiniband s
z1: set active
[  458.838019][   T60] ������ speed is unknown, defaulting to 1000
[  458.840450][ T9786] infiniband s
z1: added ������
[  458.863896][ T6084] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  458.869071][ T9786] RDS/IB: s
z1: added
[  458.870794][ T9786] smc: adding ib device s
z1 with port count 1
[  458.872939][ T9786] smc:    ib device s
z1 port 1 has no pnetid
[  458.876575][   T60] ������ speed is unknown, defaulting to 1000
[  458.880174][ T9786] ������ speed is unknown, defaulting to 1000
[  458.977399][ T9786] ������ speed is unknown, defaulting to 1000
[  459.023598][ T6084] usb 6-1: Using ep0 maxpacket: 8
[  459.025471][   T54] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  459.029886][ T6084] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  459.032692][ T6084] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  459.036030][ T6084] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  459.039201][ T6084] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  459.042389][ T6084] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  459.046611][ T6084] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  459.049645][ T6084] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.128069][ T9786] ������ speed is unknown, defaulting to 1000
[  459.194982][   T54] usb 9-1: config 4 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  459.198263][   T54] usb 9-1: config 4 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  459.201331][   T54] usb 9-1: config 4 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  459.208689][   T54] usb 9-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  459.213511][   T54] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  459.216967][   T54] usb 9-1: Product: syz
[  459.219496][   T54] usb 9-1: Manufacturer: syz
[  459.221863][   T54] usb 9-1: SerialNumber: syz
[  459.235833][   T40] audit: type=1400 audit(2000000049.979:870): avc:  denied  { bind } for  pid=9801 comm="syz.0.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  459.236714][ T9786] ������ speed is unknown, defaulting to 1000
[  459.241942][   T54] usblp0: Disabling reads from problematic bidirectional printer
[  459.255886][ T6084] usb 6-1: GET_CAPABILITIES returned 0
[  459.258183][ T6084] usbtmc 6-1:16.0: can't read capabilities
[  459.337058][ T9786] ������ speed is unknown, defaulting to 1000
[  459.433475][   T64] Bluetooth: hci4: command 0x0405 tx timeout
[  459.449215][   T54] usblp 9-1:4.0: usblp1: USB Unidirectional printer dev 7 if 0 alt 0 proto 1 vid 0x03F0 pid 0x0004
[  459.461960][   T60] usb 6-1: USB disconnect, device number 10
[  459.654138][   T54] usb 9-1: USB disconnect, device number 7
[  459.657251][   T54] usblp1: removed
[  459.665144][   T40] audit: type=1804 audit(2000000050.409:871): pid=9782 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1034" name="/newroot/281/file0" dev="tmpfs" ino=1566 res=1 errno=0
[  459.712289][   T40] audit: type=1400 audit(2000000050.449:872): avc:  denied  { mounton } for  pid=9809 comm="syz.5.1043" path="/120/bus" dev="tmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  459.714695][ T9811] FAT-fs (nullb0): bogus number of reserved sectors
[  459.724638][ T9811] FAT-fs (nullb0): Can't find a valid FAT filesystem
[  459.728377][ T9814] FAT-fs (nullb0): bogus number of reserved sectors
[  459.731039][ T9814] FAT-fs (nullb0): Can't find a valid FAT filesystem
[  459.734376][   T40] audit: type=1400 audit(2000000050.479:873): avc:  denied  { getopt } for  pid=9809 comm="syz.5.1043" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  459.815948][ T9782] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  460.040443][ T9839] bond2: option arp_interval: mode dependency failed, not supported in mode balance-alb(6)
[  460.044909][ T9839] bond2 (unregistering): Released all slaves
[  460.239110][ T6117] Bluetooth: hci3: Frame reassembly failed (-84)
[  460.242117][ T1146] Bluetooth: hci3: Frame reassembly failed (-84)
[  460.323053][ T9838] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  460.339127][ T9862] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1059'.
[  460.462070][ T9862] SELinux:  Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped).
[  460.512149][ T9862] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1059'.
[  460.574963][ T9883] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1066'.
[  460.584096][ T9885] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1067'.
[  460.607426][ T9885] syz.1.1067 (9885): /proc/9884/oom_adj is deprecated, please use /proc/9884/oom_score_adj instead.
[  460.622840][ T9887] netlink: 'syz.0.1068': attribute type 14 has an invalid length.
[  460.651449][ T9885] tipc: Enabled bearer <ib:wg1>, priority 0
[  460.701970][ T9885] netlink: 'syz.1.1067': attribute type 11 has an invalid length.
[  460.865046][ T9910] netlink: 207952 bytes leftover after parsing attributes in process `syz.0.1077'.
[  461.059288][ T9933] netlink: 172 bytes leftover after parsing attributes in process `syz.5.1086'.
[  461.215040][ T9956] sysfs: cannot create duplicate filename '/class/ieee80211/4π!F���Vl�uc'f`�ކ�;��1�x%�M�F�-����I'
[  461.219929][ T9956] CPU: 1 UID: 0 PID: 9956 Comm: syz.5.1092 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  461.219959][ T9956] Tainted: [L]=SOFTLOCKUP
[  461.219966][ T9956] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  461.219979][ T9956] Call Trace:
[  461.219988][ T9956]  <TASK>
[  461.219994][ T9956]  dump_stack_lvl+0x16c/0x1f0
[  461.220048][ T9956]  sysfs_warn_dup+0x7f/0xa0
[  461.220073][ T9956]  sysfs_do_create_link_sd+0x124/0x140
[  461.220099][ T9956]  sysfs_create_link+0x61/0xc0
[  461.220122][ T9956]  device_add+0x652/0x1980
[  461.220147][ T9956]  ? __pfx_device_add+0x10/0x10
[  461.220167][ T9956]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  461.220190][ T9956]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  461.220220][ T9956]  wiphy_register+0x1ea1/0x2cc0
[  461.220246][ T9956]  ? __rtnl_unlock+0x68/0xf0
[  461.220269][ T9956]  ? __dev_change_flags+0x570/0x6f0
[  461.220295][ T9956]  ? __pfx_wiphy_register+0x10/0x10
[  461.220323][ T9956]  ? __asan_memset+0x23/0x50
[  461.220352][ T9956]  ? ieee80211_init_rate_ctrl_alg+0x125/0x680
[  461.220389][ T9956]  ieee80211_register_hw+0x2bb2/0x4160
[  461.220426][ T9956]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  461.220455][ T9956]  ? __pfx___debug_object_init+0x10/0x10
[  461.220486][ T9956]  ? find_held_lock+0x2b/0x80
[  461.220515][ T9956]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  461.220537][ T9956]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  461.220562][ T9956]  ? __hrtimer_setup+0x176/0x280
[  461.220591][ T9956]  mac80211_hwsim_new_radio+0x3323/0x5150
[  461.220633][ T9956]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  461.220664][ T9956]  ? __asan_memcpy+0x3c/0x60
[  461.220688][ T9956]  hwsim_new_radio_nl+0xba2/0x1330
[  461.220718][ T9956]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  461.220754][ T9956]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  461.220781][ T9956]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  461.220807][ T9956]  genl_family_rcv_msg_doit+0x209/0x2f0
[  461.220836][ T9956]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  461.220867][ T9956]  ? bpf_lsm_capable+0x9/0x10
[  461.220889][ T9956]  ? security_capable+0x7e/0x260
[  461.220912][ T9956]  ? ns_capable+0xd7/0x110
[  461.220940][ T9956]  genl_rcv_msg+0x55c/0x800
[  461.220968][ T9956]  ? __pfx_genl_rcv_msg+0x10/0x10
[  461.220995][ T9956]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  461.221025][ T9956]  ? __lock_acquire+0x436/0x2890
[  461.221053][ T9956]  netlink_rcv_skb+0x158/0x420
[  461.221076][ T9956]  ? __pfx_genl_rcv_msg+0x10/0x10
[  461.221101][ T9956]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  461.221137][ T9956]  ? netlink_deliver_tap+0x1ae/0xd30
[  461.221165][ T9956]  genl_rcv+0x28/0x40
[  461.221189][ T9956]  netlink_unicast+0x5aa/0x870
[  461.221216][ T9956]  ? __pfx_netlink_unicast+0x10/0x10
[  461.221248][ T9956]  netlink_sendmsg+0x8c8/0xdd0
[  461.221298][ T9956]  ? __pfx_netlink_sendmsg+0x10/0x10
[  461.221337][ T9956]  ____sys_sendmsg+0xa5d/0xc30
[  461.221365][ T9956]  ? copy_msghdr_from_user+0x10a/0x160
[  461.221392][ T9956]  ? __pfx_____sys_sendmsg+0x10/0x10
[  461.221413][ T9956]  ? preempt_schedule_thunk+0x16/0x30
[  461.221442][ T9956]  ? try_to_wake_up+0xa67/0x1860
[  461.221477][ T9956]  ___sys_sendmsg+0x134/0x1d0
[  461.221501][ T9956]  ? __pfx____sys_sendmsg+0x10/0x10
[  461.221522][ T9956]  ? futex_private_hash_put+0x160/0x1b0
[  461.221576][ T9956]  __sys_sendmsg+0x16d/0x220
[  461.221598][ T9956]  ? __pfx___sys_sendmsg+0x10/0x10
[  461.221617][ T9956]  ? __x64_sys_futex+0x1e0/0x4c0
[  461.221660][ T9956]  do_syscall_64+0xcd/0xf80
[  461.221687][ T9956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.221705][ T9956] RIP: 0033:0x7f04ce38f7c9
[  461.221723][ T9956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  461.221742][ T9956] RSP: 002b:00007f04cf2e1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  461.221760][ T9956] RAX: ffffffffffffffda RBX: 00007f04ce5e5fa0 RCX: 00007f04ce38f7c9
[  461.221772][ T9956] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  461.221782][ T9956] RBP: 00007f04ce413f91 R08: 0000000000000000 R09: 0000000000000000
[  461.221793][ T9956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  461.221803][ T9956] R13: 00007f04ce5e6038 R14: 00007f04ce5e5fa0 R15: 00007ffe13365d38
[  461.221828][ T9956]  </TASK>
[  461.470523][ T9954] FAULT_INJECTION: forcing a failure.
[  461.470523][ T9954] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  461.483474][ T9954] CPU: 0 UID: 0 PID: 9954 Comm: syz.4.1091 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  461.483503][ T9954] Tainted: [L]=SOFTLOCKUP
[  461.483509][ T9954] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  461.483518][ T9954] Call Trace:
[  461.483528][ T9954]  <TASK>
[  461.483535][ T9954]  dump_stack_lvl+0x16c/0x1f0
[  461.483564][ T9954]  should_fail_ex+0x512/0x640
[  461.483591][ T9954]  _copy_to_user+0x32/0xd0
[  461.483615][ T9954]  simple_read_from_buffer+0xcb/0x170
[  461.483638][ T9954]  proc_fail_nth_read+0x197/0x240
[  461.483655][ T9954]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  461.483673][ T9954]  ? rw_verify_area+0xcf/0x6c0
[  461.483690][ T9954]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  461.483706][ T9954]  vfs_read+0x1e4/0xcf0
[  461.483725][ T9954]  ? __pfx___mutex_lock+0x10/0x10
[  461.483755][ T9954]  ? __pfx_vfs_read+0x10/0x10
[  461.483781][ T9954]  ? __fget_files+0x20e/0x3c0
[  461.483809][ T9954]  ksys_read+0x12a/0x250
[  461.483828][ T9954]  ? __pfx_ksys_read+0x10/0x10
[  461.483853][ T9954]  do_syscall_64+0xcd/0xf80
[  461.483875][ T9954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  461.483890][ T9954] RIP: 0033:0x7ff24e58e1dc
[  461.483902][ T9954] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  461.483917][ T9954] RSP: 002b:00007ff24f3dc030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  461.483933][ T9954] RAX: ffffffffffffffda RBX: 00007ff24e7e5fa0 RCX: 00007ff24e58e1dc
[  461.483947][ T9954] RDX: 000000000000000f RSI: 00007ff24f3dc0a0 RDI: 0000000000000004
[  461.483960][ T9954] RBP: 00007ff24f3dc090 R08: 0000000000000000 R09: 0000000000000000
[  461.483969][ T9954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  461.483978][ T9954] R13: 00007ff24e7e6038 R14: 00007ff24e7e5fa0 R15: 00007ffeda59dfe8
[  461.484002][ T9954]  </TASK>
[  461.532666][ T9965] program syz.0.1095 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  461.533695][ T6009] Bluetooth: hci4: command 0x0405 tx timeout
[  461.598503][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.604154][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.607811][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.611275][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.615030][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.618548][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.622104][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.626473][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.635600][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.641208][ T9969] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[  461.778910][ T9980] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  461.780421][ T9982] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1100'.
[  461.930624][ T9993] netlink: 564 bytes leftover after parsing attributes in process `syz.0.1102'.
[  461.958375][ T9993] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1102'.
[  461.995877][ T9998] Invalid ELF header type: 0 != 1
[  462.084155][T10004] sctp: [Deprecated]: syz.0.1109 (pid 10004) Use of int in max_burst socket option.
[  462.084155][T10004] Use struct sctp_assoc_value instead
[  462.119587][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  462.119604][   T40] audit: type=1400 audit(2000000052.859:888): avc:  denied  { read } for  pid=10006 comm="syz.0.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  462.214256][T10013] program syz.0.1113 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  462.218500][T10012] 0xfffffffffffffffd-0x000000020000 : ""
[  462.222403][T10012] mtd: partition "" is out of reach -- disabled
[  462.233442][   T64] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  462.239853][T10012] ftl_cs: FTL header not found.
[  462.462100][T10027] syz.1.1119 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  462.492808][T10031] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  462.565958][   T40] audit: type=1400 audit(2000000053.309:889): avc:  denied  { connect } for  pid=10039 comm="syz.1.1124" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  462.642001][   T40] audit: type=1400 audit(2000000053.379:890): avc:  denied  { mount } for  pid=10053 comm="syz.5.1128" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  462.662820][   T40] audit: type=1400 audit(2000000053.399:891): avc:  denied  { read } for  pid=10051 comm="syz.0.1127" path="socket:[41358]" dev="sockfs" ino=41358 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  462.805758][T10069] netlink: 'syz.0.1132': attribute type 1 has an invalid length.
[  462.820433][T10069] bond3: entered promiscuous mode
[  462.822097][T10069] bond3: entered allmulticast mode
[  462.824028][T10069] 8021q: adding VLAN 0 to HW filter on device bond3
[  462.833094][T10069] erspan1: entered allmulticast mode
[  462.837902][T10069] bond3: (slave erspan1): making interface the new active one
[  462.840418][T10069] erspan1: entered promiscuous mode
[  462.844017][T10069] bond3: (slave erspan1): Enslaving as an active interface with an up link
[  462.919221][ T6062] IPVS: starting estimator thread 0...
[  462.941665][T10069] bond3 (unregistering): (slave erspan1): Releasing active interface
[  462.944396][T10069] erspan1: left promiscuous mode
[  462.947943][T10069] bond3 (unregistering): Released all slaves
[  463.026205][T10076] IPVS: using max 27 ests per chain, 64800 per kthread
[  463.078885][   T40] audit: type=1400 audit(2000000053.819:892): avc:  denied  { unmount } for  pid=8163 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  463.129206][T10086] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=37 sclass=netlink_tcpdiag_socket pid=10086 comm=syz.5.1136
[  463.134892][T10086] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10086 comm=syz.5.1136
[  463.144299][T10080] XFS (nbd0): SB validate failed with error -5.
[  463.161011][   T25] block nbd0: Dead connection, failed to find a fallback
[  463.164244][   T25] block nbd0: shutting down sockets
[  463.166673][   T25] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  463.214131][T10078] syzkaller1: entered promiscuous mode
[  463.216497][T10078] syzkaller1: entered allmulticast mode
[  463.341031][   T40] audit: type=1400 audit(2000000054.079:893): avc:  denied  { ioctl } for  pid=10094 comm="syz.5.1140" path="/135/file0/file0" dev="fuse" ino=0 ioctlcmd=0x70cb scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[  463.445833][T10104] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  463.449141][T10104] syzkaller0: entered promiscuous mode
[  463.451357][T10104] syzkaller0: entered allmulticast mode
[  463.477080][T10104] tipc: Resetting bearer <eth:syzkaller0>
[  463.522306][T10107] netlink: 'syz.1.1144': attribute type 13 has an invalid length.
[  463.525849][T10103] loop3: detected capacity change from 0 to 7
[  463.539768][ T6543]  loop3: [CUMANA/ADFS] p1 [ADFS] p1
[  463.541613][ T6543] loop3: partition table partially beyond EOD, truncated
[  463.544215][ T6543] loop3: p1 size 2989602745 extends beyond EOD, truncated
[  463.562292][T10103]  loop3: [CUMANA/ADFS] p1 [ADFS] p1
[  463.564516][T10103] loop3: partition table partially beyond EOD, truncated
[  463.568661][T10103] loop3: p1 size 2989602745 extends beyond EOD, truncated
[  463.591959][T10102] tipc: Resetting bearer <eth:syzkaller0>
[  463.604009][T10102] tipc: Disabling bearer <eth:syzkaller0>
[  463.641538][ T6543] udevd[6543]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  463.823979][ T6117] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  463.829594][ T6117] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.945324][   T40] audit: type=1400 audit(2000000054.679:894): avc:  denied  { append } for  pid=10115 comm="syz.4.1149" name="event1" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  463.953410][   T40] audit: type=1400 audit(2000000054.679:895): avc:  denied  { append } for  pid=10115 comm="syz.4.1149" name="event1" dev="devtmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  463.970409][ T6117] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  463.975500][ T6117] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.986952][ T6009] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  463.989339][   T40] audit: type=1400 audit(2000000054.729:896): avc:  denied  { call } for  pid=10119 comm="syz.4.1150" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  463.990956][ T6009] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  464.004082][ T6009] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  464.010502][ T6009] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  464.014400][ T6009] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  464.035883][T10120] ������ speed is unknown, defaulting to 1000
[  464.123167][ T6117] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  464.129127][ T6117] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.209180][ T6117] bond0: (slave netdevsim0): Releasing backup interface
[  464.213441][ T6117] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 2816 - 0
[  464.216884][ T6117] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.284599][T10120] chnl_net:caif_netlink_parms(): no params data found
[  464.333437][   T40] audit: type=1400 audit(2000000055.069:897): avc:  denied  { getopt } for  pid=10144 comm="syz.5.1158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  464.352700][   T64] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  464.356360][   T64] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  464.358829][T10145] bridge0: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  464.361456][   T64] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  464.365506][   T64] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  464.368300][   T64] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  464.386093][T10120] bridge0: port 1(bridge_slave_0) entered blocking state
[  464.393431][T10120] bridge0: port 1(bridge_slave_0) entered disabled state
[  464.395810][T10120] bridge_slave_0: entered allmulticast mode
[  464.398544][T10120] bridge_slave_0: entered promiscuous mode
[  464.403073][T10120] bridge0: port 2(bridge_slave_1) entered blocking state
[  464.405494][T10120] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.407914][T10120] bridge_slave_1: entered allmulticast mode
[  464.410615][T10120] bridge_slave_1: entered promiscuous mode
[  464.457122][T10120] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  464.461672][T10120] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  464.471585][ T6117] bridge_slave_1: left allmulticast mode
[  464.473508][ T6117] bridge_slave_1: left promiscuous mode
[  464.475395][ T6117] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.480396][ T6117] bridge_slave_0: left allmulticast mode
[  464.482257][ T6117] bridge_slave_0: left promiscuous mode
[  464.484454][ T6117] bridge0: port 1(bridge_slave_0) entered disabled state
[  464.826410][ T6117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  464.831199][ T6117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  464.835185][ T6117] bond0 (unregistering): Released all slaves
[  464.840559][ T6117] bond1 (unregistering): Released all slaves
[  464.847014][ T6117] bond2 (unregistering): Released all slaves
[  464.878453][T10120] team0: Port device team_slave_0 added
[  464.880386][T10146] ������ speed is unknown, defaulting to 1000
[  464.881874][T10120] team0: Port device team_slave_1 added
[  464.899011][T10120] batman_adv: batadv0: Adding interface: batadv_slave_0
[  464.901302][T10120] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  464.909585][T10120] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  464.913960][ T6117] tipc: Left network mode
[  464.916387][T10120] batman_adv: batadv0: Adding interface: batadv_slave_1
[  464.918655][T10120] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  464.928508][T10120] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  464.975204][T10120] hsr_slave_0: entered promiscuous mode
[  464.978459][T10120] hsr_slave_1: entered promiscuous mode
[  465.059586][T10166] tmpfs: Bad value for 'mpol'
[  465.197402][T10146] chnl_net:caif_netlink_parms(): no params data found
[  465.383073][T10157] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  465.392951][ T6117] hsr_slave_0: left promiscuous mode
[  465.404805][ T6117] hsr_slave_1: left promiscuous mode
[  465.407532][ T6117] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  465.410397][ T6117] batman_adv: batadv0: Removing interface: batadv_slave_0
[  465.429336][ T6117] veth0_macvtap: left promiscuous mode
[  465.431682][ T6117] veth1_vlan: left promiscuous mode
[  465.433906][ T6117] veth0_vlan: left promiscuous mode
[  465.745276][ T6117] team0 (unregistering): Port device team_slave_1 removed
[  465.767226][ T6117] team0 (unregistering): Port device team_slave_0 removed
[  466.062618][T10120] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  466.119945][T10146] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.123076][T10146] bridge0: port 1(bridge_slave_0) entered disabled state
[  466.127140][T10146] bridge_slave_0: entered allmulticast mode
[  466.131480][T10146] bridge_slave_0: entered promiscuous mode
[  466.136692][T10120] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  466.151263][T10146] bridge0: port 2(bridge_slave_1) entered blocking state
[  466.157084][T10146] bridge0: port 2(bridge_slave_1) entered disabled state
[  466.160409][T10146] bridge_slave_1: entered allmulticast mode
[  466.164740][T10146] bridge_slave_1: entered promiscuous mode
[  466.185453][T10120] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  466.192269][T10191] ������ speed is unknown, defaulting to 1000
[  466.204775][T10120] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  466.215087][T10146] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  466.223392][T10146] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  466.259561][T10146] team0: Port device team_slave_0 added
[  466.265686][T10146] team0: Port device team_slave_1 added
[  466.302507][T10146] batman_adv: batadv0: Adding interface: batadv_slave_0
[  466.305750][T10146] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  466.316434][T10146] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  466.334691][T10146] batman_adv: batadv0: Adding interface: batadv_slave_1
[  466.337748][T10146] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  466.353693][T10146] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  466.393665][ T6009] Bluetooth: hci1: command tx timeout
[  466.464292][T10146] hsr_slave_0: entered promiscuous mode
[  466.467649][T10146] hsr_slave_1: entered promiscuous mode
[  466.471080][T10146] debugfs: 'hsr0' already exists in 'hsr'
[  466.473842][T10146] Cannot create hsr debugfs directory
[  466.507087][T10213] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27920 sclass=netlink_route_socket pid=10213 comm=syz.4.1174
[  466.634076][T10120] 8021q: adding VLAN 0 to HW filter on device bond0
[  466.646227][T10120] 8021q: adding VLAN 0 to HW filter on device team0
[  466.661646][ T7142] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.664573][ T7142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  466.685839][ T6216] bridge0: port 2(bridge_slave_1) entered blocking state
[  466.688152][ T6216] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.697716][T10146] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  466.707080][T10146] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  466.711668][T10146] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  466.716658][T10146] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  466.725657][ T6117] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  466.729258][ T6117] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  466.790806][T10224] __nla_validate_parse: 5 callbacks suppressed
[  466.790818][T10224] netlink: 7064 bytes leftover after parsing attributes in process `syz.5.1175'.
[  466.796195][T10224] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  466.799246][ T6117] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  466.802470][ T6117] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  466.804439][T10224] netlink: 69 bytes leftover after parsing attributes in process `syz.5.1175'.
[  466.810453][T10224] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1175'.
[  466.819721][T10224] ������ speed is unknown, defaulting to 1000
[  466.837024][T10146] 8021q: adding VLAN 0 to HW filter on device bond0
[  466.849718][T10146] 8021q: adding VLAN 0 to HW filter on device team0
[  466.854912][ T1155] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.857141][ T1155] bridge0: port 1(bridge_slave_0) entered forwarding state
[  466.865725][ T1146] bridge0: port 2(bridge_slave_1) entered blocking state
[  466.867974][ T1146] bridge0: port 2(bridge_slave_1) entered forwarding state
[  466.874631][ T6117] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  466.878446][ T6117] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  466.897650][   T46] ------------[ cut here ]------------
[  466.899722][   T46] wlan1: Dropped data frame as no usable bitrate found while scanning and associated. Target station: 08:02:11:00:00:00 on 5 GHz band
[  466.903872][   T46] WARNING: net/mac80211/tx.c:751 at ieee80211_tx_h_rate_ctrl+0x139c/0x1ad0, CPU#0: kworker/u32:2/46
[  466.905532][T10146] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  466.907249][   T46] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  466.910776][T10146] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  466.912065][   T46] 
[  466.916313][   T46] CPU: 0 UID: 0 PID: 46 Comm: kworker/u32:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  466.919706][   T46] Tainted: [L]=SOFTLOCKUP
[  466.921095][   T46] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  466.924346][   T46] Workqueue: events_unbound cfg80211_wiphy_work
[  466.926233][   T46] RIP: 0010:ieee80211_tx_h_rate_ctrl+0x13ac/0x1ad0
[  466.928281][   T46] Code: 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 60 06 00 00 48 8d 3d 44 c0 a3 05 49 8b 77 68 89 d9 48 89 ea 48 81 c6 48 0a 00 00 <67> 48 0f b9 3a bb 01 00 00 00 e9 94 f8 ff ff e8 c0 2d ca f6 e8 ab
[  466.934980][   T46] RSP: 0018:ffffc900007ef588 EFLAGS: 00010282
[  466.936839][   T46] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: 0000000000000005
[  466.939345][   T46] RDX: ffff888054163104 RSI: ffff88803d6b97c8 RDI: ffffffff90988e30
[  466.941804][   T46] RBP: ffff888054163104 R08: 0000000000000005 R09: 0000000000000000
[  466.944391][   T46] R10: 0000000000000000 R11: ffff88801c3ed4b0 R12: ffff888055b60000
[  466.947054][   T46] R13: 0000000000000000 R14: ffff888035caaf3d R15: ffffc900007ef7e8
[  466.949850][   T46] FS:  0000000000000000(0000) GS:ffff8880d68f4000(0000) knlGS:0000000000000000
[  466.953197][   T46] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  466.956247][   T46] CR2: 00007f967f144e9c CR3: 000000004e5a4000 CR4: 0000000000352ef0
[  466.959433][   T46] Call Trace:
[  466.960756][   T46]  <TASK>
[  466.961681][   T46]  ? __pfx_ieee80211_tx_h_rate_ctrl+0x10/0x10
[  466.963570][   T46]  ? find_held_lock+0x2b/0x80
[  466.965377][   T46]  invoke_tx_handlers_late+0x1172/0x27d0
[  466.967745][   T46]  ? invoke_tx_handlers_early+0x669/0x28a0
[  466.970180][   T46]  ieee80211_tx+0x304/0x460
[  466.971673][   T46]  ? __pfx_ieee80211_tx+0x10/0x10
[  466.973263][   T46]  ? ieee80211_skb_resize+0x22a/0x630
[  466.975275][   T46]  ? ieee80211_set_qos_hdr+0xba/0x3f0
[  466.977352][   T46]  ieee80211_xmit+0x30f/0x3e0
[  466.979022][   T46]  __ieee80211_tx_skb_tid_band+0x2c2/0x720
[  466.981278][   T46]  ieee80211_scan_state_send_probe+0x34c/0xad0
[  466.983241][   T46]  ieee80211_scan_work+0x772/0x2080
[  466.985097][   T46]  ? do_raw_spin_lock+0x12c/0x2b0
[  466.987361][   T46]  ? __pfx_ieee80211_scan_work+0x10/0x10
[  466.989580][   T46]  cfg80211_wiphy_work+0x3fb/0x560
[  466.991742][   T46]  process_one_work+0x9ba/0x1b20
[  466.993604][   T46]  ? __pfx_process_one_work+0x10/0x10
[  466.995389][   T46]  ? assign_work+0x1a0/0x250
[  466.996881][   T46]  worker_thread+0x6c8/0xf10
[  466.998325][   T46]  ? __pfx_worker_thread+0x10/0x10
[  466.999957][   T46]  kthread+0x3c5/0x780
[  467.001415][   T46]  ? __pfx_kthread+0x10/0x10
[  467.003095][   T46]  ? rcu_is_watching+0x12/0xc0
[  467.004929][   T46]  ? __pfx_kthread+0x10/0x10
[  467.006452][   T46]  ret_from_fork+0x983/0xb10
[  467.007939][   T46]  ? __pfx_ret_from_fork+0x10/0x10
[  467.009852][   T46]  ? __switch_to+0x7af/0x10d0
[  467.011389][   T46]  ? __pfx_kthread+0x10/0x10
[  467.012898][   T46]  ret_from_fork_asm+0x1a/0x30
[  467.014528][   T46]  </TASK>
[  467.015584][   T46] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  467.017864][   T46] CPU: 0 UID: 0 PID: 46 Comm: kworker/u32:2 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  467.021319][   T46] Tainted: [L]=SOFTLOCKUP
[  467.022659][   T46] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  467.026039][   T46] Workqueue: events_unbound cfg80211_wiphy_work
[  467.027981][   T46] Call Trace:
[  467.029066][   T46]  <TASK>
[  467.030048][   T46]  dump_stack_lvl+0x3d/0x1f0
[  467.031473][   T46]  vpanic+0x640/0x6f0
[  467.032680][   T46]  ? ieee80211_tx_h_rate_ctrl+0x139c/0x1ad0
[  467.034536][   T46]  panic+0xca/0xd0
[  467.035734][   T46]  ? __pfx_panic+0x10/0x10
[  467.037160][   T46]  ? check_panic_on_warn+0x1f/0xb0
[  467.038857][   T46]  check_panic_on_warn+0xab/0xb0
[  467.040437][   T46]  __warn+0x108/0x3c0
[  467.041677][   T46]  __report_bug+0x2a0/0x520
[  467.043170][   T46]  ? ieee80211_tx_h_rate_ctrl+0x139c/0x1ad0
[  467.045065][   T46]  ? __pfx___report_bug+0x10/0x10
[  467.046734][   T46]  ? ieee80211_probereq_get+0x6a/0x290
[  467.048416][   T46]  ? ieee80211_build_probe_req+0x1eb/0x430
[  467.050775][   T46]  ? ieee80211_scan_state_send_probe+0x49e/0xad0
[  467.053425][   T46]  report_bug_entry+0xe1/0x290
[  467.054942][   T46]  ? ieee80211_tx_h_rate_ctrl+0x13ac/0x1ad0
[  467.057281][   T46]  handle_bug+0x18a/0x260
[  467.059158][   T46]  exc_invalid_op+0x17/0x50
[  467.060624][   T46]  asm_exc_invalid_op+0x1a/0x20
[  467.062172][   T46] RIP: 0010:ieee80211_tx_h_rate_ctrl+0x13ac/0x1ad0
[  467.064463][   T46] Code: 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 60 06 00 00 48 8d 3d 44 c0 a3 05 49 8b 77 68 89 d9 48 89 ea 48 81 c6 48 0a 00 00 <67> 48 0f b9 3a bb 01 00 00 00 e9 94 f8 ff ff e8 c0 2d ca f6 e8 ab
[  467.071601][   T46] RSP: 0018:ffffc900007ef588 EFLAGS: 00010282
[  467.073509][   T46] RAX: dffffc0000000000 RBX: 0000000000000005 RCX: 0000000000000005
[  467.076034][   T46] RDX: ffff888054163104 RSI: ffff88803d6b97c8 RDI: ffffffff90988e30
[  467.079328][   T46] RBP: ffff888054163104 R08: 0000000000000005 R09: 0000000000000000
[  467.082629][   T46] R10: 0000000000000000 R11: ffff88801c3ed4b0 R12: ffff888055b60000
[  467.085924][   T46] R13: 0000000000000000 R14: ffff888035caaf3d R15: ffffc900007ef7e8
[  467.089284][   T46]  ? ieee80211_tx_h_rate_ctrl+0x1378/0x1ad0
[  467.091850][   T46]  ? __pfx_ieee80211_tx_h_rate_ctrl+0x10/0x10
[  467.094424][   T46]  ? find_held_lock+0x2b/0x80
[  467.096475][   T46]  invoke_tx_handlers_late+0x1172/0x27d0
[  467.098165][   T46]  ? invoke_tx_handlers_early+0x669/0x28a0
[  467.100590][   T46]  ieee80211_tx+0x304/0x460
[  467.102561][   T46]  ? __pfx_ieee80211_tx+0x10/0x10
[  467.104727][   T46]  ? ieee80211_skb_resize+0x22a/0x630
[  467.106868][   T46]  ? ieee80211_set_qos_hdr+0xba/0x3f0
[  467.108558][   T46]  ieee80211_xmit+0x30f/0x3e0
[  467.110391][   T46]  __ieee80211_tx_skb_tid_band+0x2c2/0x720
[  467.112191][   T46]  ieee80211_scan_state_send_probe+0x34c/0xad0
[  467.114094][   T46]  ieee80211_scan_work+0x772/0x2080
[  467.115807][   T46]  ? do_raw_spin_lock+0x12c/0x2b0
[  467.117754][   T46]  ? __pfx_ieee80211_scan_work+0x10/0x10
[  467.120133][   T46]  cfg80211_wiphy_work+0x3fb/0x560
[  467.122343][   T46]  process_one_work+0x9ba/0x1b20
[  467.124431][   T46]  ? __pfx_process_one_work+0x10/0x10
[  467.126680][   T46]  ? assign_work+0x1a0/0x250
[  467.128103][   T46]  worker_thread+0x6c8/0xf10
[  467.129608][   T46]  ? __pfx_worker_thread+0x10/0x10
[  467.131213][   T46]  kthread+0x3c5/0x780
[  467.132495][   T46]  ? __pfx_kthread+0x10/0x10
[  467.133957][   T46]  ? rcu_is_watching+0x12/0xc0
[  467.135454][   T46]  ? __pfx_kthread+0x10/0x10
[  467.136975][   T46]  ret_from_fork+0x983/0xb10
[  467.138452][   T46]  ? __pfx_ret_from_fork+0x10/0x10
[  467.140097][   T46]  ? __switch_to+0x7af/0x10d0
[  467.141593][   T46]  ? __pfx_kthread+0x10/0x10
[  467.143040][   T46]  ret_from_fork_asm+0x1a/0x30
[  467.144555][   T46]  </TASK>
[  467.146309][   T46] Kernel Offset: disabled
[  467.147654][   T46] Rebooting in 86400 seconds..