last executing test programs:

57.826937637s ago: executing program 1 (id=744):
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97000788"], 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)={0x1b, 0x0, 0x0, 0x3, 0x0, 0x1, 0x8001, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0xff}, 0x50)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000200)={'ip6gre0\x00', <r2=>0x0, 0x29, 0x19, 0x6, 0x7f, 0x1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @loopback, 0x10, 0x1, 0x2, 0x5}})
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@bloom_filter={0x1e, 0x0, 0x3, 0x0, 0x6aa0, r1, 0x0, '\x00', r2, r3, 0x2, 0x4, 0x5, 0xe}, 0x50)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0e00000004000000040000000200000000"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r5, &(0x7f0000000100), &(0x7f0000000000), 0x2}, 0x20)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
r7 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(r7, 0x804c4700, 0xfffffffffffffffe)
ioctl$USBDEVFS_FREE_STREAMS(r6, 0xc0105500, &(0x7f0000000000)=ANY=[@ANYBLOB="a1"])
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/sockstat6\x00')
pread64(r8, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

57.579675807s ago: executing program 1 (id=752):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2)
io_setup(0x239f, &(0x7f0000000380)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000900)=[&(0x7f0000000080)={0x200000000000000, 0x0, 0x0, 0x0, 0x8, r1, 0x0, 0x0, 0x1}])
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x40, 0x8000}, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r3, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000000)="fd", 0x1}], 0x1, 0x0, 0x0, 0x804c044}, 0x881)

56.585973492s ago: executing program 1 (id=769):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001880)={{0x14}, [@NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x8000}]}}}]}]}], {0x14}}, 0xb0}}, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r1, 0x8983, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b7000000ff000000bfa300000000000007030000f0ffffff620af0fff8ffffff71a4f0ff000000002d040200000000001d010000000000004704000001ed000062030000000000001d440000000000007a0a00fe00ffffffc3030000e1000000b5000000000000009500000000000000023bc065b58111c6dfa041b63af4d58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00c37dfca3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda8cc658d42ecbf28bf7076c15b463bebba2c598b4fc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ad539d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c3bfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed93517a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c97888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5a444a41bac326ddea7d7b9c90d44f62e96753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c25000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2a4d39b43878b6ef26ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee92ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93b71db0a2366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c7bc46dd12305a1ae9dd19e8d525206c0a728cfd42193abe8130b51d6c9b94c5513df2d85e8c01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ad1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef670000000000000000ba470bfe62fe2933082149d42e8a00000000000000000000009a8329eb97567787ff28dd96c8e0f9e3c84394afc8f83dc6c6c813fafed61cdd6117092562837a3fa3fc388ab57429a9ecc4fddb0f0a7e4a1415d82d8bac999696d9130e36fc86df796a72559c523fae90d0b742d09cd2edf652c67aa62742e9ce0ff5283f627b622a83576f57d0899e0da8483f9dc296"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd64}, 0x48)

56.519689263s ago: executing program 1 (id=771):
socket$netlink(0x10, 0x3, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0)
syz_clone(0x8021000, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000001c00357428bd7000fcdbdf2502000000", @ANYRES32=r1, @ANYBLOB="1000a206080001000000000008000f0005"], 0x2c}, 0x1, 0x0, 0x0, 0x20040001}, 0x200080c0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0) (async)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r2 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[0x0], 0x1}) (async)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0) (async)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x44, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
creat(&(0x7f0000000080)='./file0/file1\x00', 0x90)
mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x100)
rename(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000800)='./file0\x00')
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000140)={0x12})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r3], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0), 0x0, 0x4})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="460a0000000000007910b8000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x90)

56.366648237s ago: executing program 1 (id=776):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0xe) (async)
open$dir(&(0x7f00000003c0)='./file0\x00', 0x400, 0x113)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f0000000280)=ANY=[@ANYBLOB="200617"], 0x0, 0x0, 0x0, 0x0}, 0x0) (async, rerun: 32)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x28c81, 0x0) (rerun: 32)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

56.029593917s ago: executing program 1 (id=779):
r0 = syz_open_dev$media(&(0x7f0000000040), 0x7fdffffe, 0x0)
r1 = socket(0x80000000000000a, 0x2, 0x0)
close(r1) (async)
close(r1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0f0000000400000004000000a2"], 0x50) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0f0000000400000004000000a2"], 0x50)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000140), 0x4)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r3, &(0x7f00000047c0), &(0x7f0000000100)=@udp=r1}, 0x20)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000080)=<r4=>0xffffffffffffffff)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) (async)
r5 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0205648, &(0x7f0000000000)={0xf010000, 0x0, 0x0, r4, 0x0, 0x0}) (async)
ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0205648, &(0x7f0000000000)={0xf010000, 0x0, 0x0, r4, 0x0, 0x0})

56.002984338s ago: executing program 32 (id=779):
r0 = syz_open_dev$media(&(0x7f0000000040), 0x7fdffffe, 0x0)
r1 = socket(0x80000000000000a, 0x2, 0x0)
close(r1) (async)
close(r1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0f0000000400000004000000a2"], 0x50) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0f0000000400000004000000a2"], 0x50)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000140), 0x4)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r3, &(0x7f00000047c0), &(0x7f0000000100)=@udp=r1}, 0x20)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000080)=<r4=>0xffffffffffffffff)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) (async)
r5 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0205648, &(0x7f0000000000)={0xf010000, 0x0, 0x0, r4, 0x0, 0x0}) (async)
ioctl$VIDIOC_G_EXT_CTRLS(r5, 0xc0205648, &(0x7f0000000000)={0xf010000, 0x0, 0x0, r4, 0x0, 0x0})

15.493206212s ago: executing program 2 (id=1254):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000001c0)={0x79, 0x0, 0xc53})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40080}, 0x8000)
sendmsg$NFT_BATCH(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000002000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000007"], 0x64}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000000040)=0x3)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r3, 0x0)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000000240)=0x4)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000000c0)={[0x8, 0x100000b, 0x9, 0x0, 0x3, 0x3, 0x2, 0x0, 0x2, 0x0, 0x7fff, 0x0, 0x3, 0x6, 0x1, 0x3], 0x0, 0x8340})
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, 0x40, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0x10, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}, @typed={0x4, 0x1c}]}, @nested={0x4, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
sendmsg$nl_route(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c0000002100010000000000fcdbdf2502000000000000000000000006001d"], 0x2c}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

15.356558153s ago: executing program 2 (id=1257):
mount(&(0x7f0000000300), &(0x7f0000000100)='.\x00', &(0x7f00000000c0)='hugetlbfs\x00', 0x82800, 0x0)

15.355760644s ago: executing program 2 (id=1258):
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000004000000000000000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r0, 0x107, 0x16, &(0x7f0000000000)=0x4, 0x4)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0)
timer_create(0x1, &(0x7f0000000180)={0x0, 0x21, 0x800000000004}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
write$selinux_load(r1, &(0x7f0000000000)=ANY=[], 0x1913c)

15.237416212s ago: executing program 2 (id=1259):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb1) (async)
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2}) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000db5000/0x2000)=nil, 0x2000}, 0x1})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f00000000c0)={0x1, 0x0, [{0x40000073, 0x0, 0xffffffffffffffff}]}) (async)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0xf0f01c, 0x2}) (async)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async)
r5 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r5, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
listen(r5, 0xfffffff8)
mount$overlay(0x0, &(0x7f0000000240)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000100)='./bus\x00') (async, rerun: 64)
r6 = syz_clone(0x2704c400, 0x0, 0x8, 0x0, 0x0, 0x0) (rerun: 64)
r7 = syz_pidfd_open(r6, 0x0)
pidfd_send_signal(r7, 0x4, 0x0, 0x2)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r8=>r5, {r5}}, './file0\x00'}) (async, rerun: 64)
r9 = geteuid() (rerun: 64)
getgroups(0x5, &(0x7f0000000280)=[<r10=>0xffffffffffffffff, 0xee01, 0xffffffffffffffff, 0x0, 0xee01])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r8, 0xc018937b, &(0x7f0000000200)={{0x1, 0x1, 0x18, r4, {r9, r10}}, './file1\x00'}) (async, rerun: 64)
r11 = socket$unix(0x1, 0x5, 0x0) (rerun: 64)
bind$unix(r11, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x6e) (async, rerun: 32)
bind$unix(r11, &(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e) (rerun: 32)

15.08764594s ago: executing program 2 (id=1265):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x4e23, 0xfffffffc, @mcast2={0xff, 0x3}}, 0x1c)
sendmmsg$sock(r2, &(0x7f00000005c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="897093c43576b742", 0x8}], 0x1}}], 0x1, 0x40)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000400003800800014000000000080002400000fbff2b0003801400010067656e6576653000000000000000000014000100776732000000000000000000c6e49c0f5c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a30"], 0x110}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000800030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc4}, 0x890)
sendmsg$NFT_BATCH(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="14000000100001e456b8aa00000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440080000000900010073797a3000000000080003400000000114000000110001"], 0x64}}, 0x4000010)
r5 = syz_open_procfs(0x0, &(0x7f0000000300)='net/dev_mcast\x00')
pread64(r5, &(0x7f0000000880)=""/4096, 0x1000, 0xa96)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x20, 0x13, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x200480c1}, 0x4004044)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r7, 0xc038943b, &(0x7f00000000c0)={0x7, 0x10, '\x00', 0x1, &(0x7f0000000040)=[0x0, 0x0]})
r8 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
getsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x6, &(0x7f0000000280), &(0x7f0000000400)=0x4)
r10 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r11, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x44, 0x2c, 0xd3f, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r11, {0x2, 0x4}, {0x0, 0x9}, {0xf, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8848}, @TCA_FLOWER_KEY_MPLS_OPTS={0x8, 0x63, 0x0, 0x1, @TCA_FLOWER_KEY_MPLS_OPTS_LSE={0x4}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x20040054)
getpeername(r8, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r12=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='mpol=local,mpol=local=stqtic:,\x00'])
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r12, {0x0, 0x5}, {0xffff, 0xffff}, {0xfff1, 0xfff6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_ALPHA={0x8, 0x5, 0xa}]}}]}, 0x3c}}, 0x480c4)

14.660301643s ago: executing program 2 (id=1279):
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x800bcbf, 0x80, 0x3, 0x1000}, &(0x7f0000000340)=<r0=>0x0, &(0x7f0000000300)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r0, r1, &(0x7f00000002c0)=@IORING_OP_SYMLINKAT={0x26, 0x10, 0x0, 0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x1})
r2 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r3, 0x0)
r4 = syz_io_uring_setup(0x3685, &(0x7f0000010400)={0x0, 0x2b2b, 0x400, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000640)=""/4096, 0x1000}], 0x1)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r6 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @initdev}, &(0x7f00000000c0)=0x10, 0x80000)
syz_io_uring_submit(0x0, r1, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x48, 0x0, @fd=r2, 0x0, 0x0, 0x7, 0xc, 0x1, {0x0, r5, r6}})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x20, 0x40, 0x9, 0xffffffff, 0x25dfdbfd, {0x2}, [@typed={0x4, 0x11f}, @nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x1f}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

14.584672926s ago: executing program 33 (id=1279):
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x800bcbf, 0x80, 0x3, 0x1000}, &(0x7f0000000340)=<r0=>0x0, &(0x7f0000000300)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r0, r1, &(0x7f00000002c0)=@IORING_OP_SYMLINKAT={0x26, 0x10, 0x0, 0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x1})
r2 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r3, 0x0)
r4 = syz_io_uring_setup(0x3685, &(0x7f0000010400)={0x0, 0x2b2b, 0x400, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000640)=""/4096, 0x1000}], 0x1)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r6 = accept4$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x0, @initdev}, &(0x7f00000000c0)=0x10, 0x80000)
syz_io_uring_submit(0x0, r1, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x48, 0x0, @fd=r2, 0x0, 0x0, 0x7, 0xc, 0x1, {0x0, r5, r6}})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x20, 0x40, 0x9, 0xffffffff, 0x25dfdbfd, {0x2}, [@typed={0x4, 0x11f}, @nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x1f}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

6.805584616s ago: executing program 4 (id=1422):
syz_usbip_server_init(0x0)
syz_usbip_server_init(0x1)
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x20102, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e22, @remote}, 0x10)

5.463398798s ago: executing program 4 (id=1442):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x0, 0x2})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000280)={0x1, 0x2, 0x2})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008200000018070000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a6000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008200000018070000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a6000000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
fsopen(&(0x7f00000003c0)='jfs\x00', 0x1) (async)
fsopen(&(0x7f00000003c0)='jfs\x00', 0x1)
socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
r4 = open(&(0x7f00000001c0)='./file0\x00', 0x244042, 0x86)
ioctl$SNAPSHOT_GET_IMAGE_SIZE(r4, 0x8008330e, &(0x7f0000000200))
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="0c000280060001"], 0x24}}, 0x570d4bed2a48566c)
ioctl$BLKGETDISKSEQ(r4, 0x80081280, &(0x7f0000000240))

4.24891807s ago: executing program 4 (id=1454):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1}, 0x6e) (async)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000000180)=@abs={0x1}, 0x6e) (async, rerun: 32)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 32)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x40440, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)={0x1, 0x0, [{0x1, 0x0, 0x7, 0x5, 0xe, 0x3fffd}]})
socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) (async, rerun: 64)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64)
sendmsg$TIPC_CMD_ENABLE_BEARER(r6, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r5, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {}, {0x1c, 0x17, {0x3, 0x7, @l2={'eth', 0x3a, 'ip6_vti0\x00'}}}}, ["", "", "", "", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x8092) (async, rerun: 32)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000600)={0x1, 0x0, [{0x48a, 0x0, 0x87fb}]}) (async, rerun: 32)
close(r3) (async)
socket$kcm(0x29, 0x2, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)

3.796450622s ago: executing program 4 (id=1461):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0x80000d6e, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) (async)
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000140)=0x2000)
ioctl$SNDCTL_DSP_GETISPACE(r0, 0x8010500d, &(0x7f00000001c0))
ppoll(&(0x7f0000000040)=[{r0, 0x20}], 0x1, 0x0, 0x0, 0x0) (async)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
write$dsp(r1, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) (async)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="58000000020601020000000000000000000000007744c56d0b2859b107ec88590d00020073797a31000000959e4901000700000000078008001240fffffffa11000300686173683a6e65742c6e6574"], 0x58}}, 0x0)
keyctl$restrict_keyring(0xa, r2, &(0x7f0000000380)='asymmetric\x00', &(0x7f0000000240)='\x00\x06\x00 \x00\x00\x00') (async)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="d80000001b00010000000000fdfffffffc000000000000000000000000000000200100000000000000000000000000004e240000000000010000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000ffffffffffffff7ffcffffffffffffff04000000000000000000000000000000fdffffffffffffff00000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000006fcffff00000000000003000000000000000000000000000c0008"], 0xd8}}, 0x20008004) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'bond0\x00', <r5=>0x0})
bind$alg(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'gretap0\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="400d0000000000003000128008000100687372002400028008000200", @ANYRES32=r6, @ANYBLOB="08000100", @ANYRES32=r5], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x8000) (async)
keyctl$negate(0xd, r2, 0xf, r2)

1.653843866s ago: executing program 0 (id=1492):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000002c00)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b0, 0x1f8, 0xc8, 0x8, 0x0, 0x5803, 0x2e0, 0x2e8, 0x2e8, 0x2e0, 0x2e8, 0x3, 0x0, {[{{@uncond, 0x0, 0x190, 0x1f8, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1, 0x3}}, @common=@mh={{0x28}, {"df07"}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x10, 0x3, 0x4, 0x2, 'snmp_trap\x00', 'syz1\x00', {0x450d74d1}}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0xb, 0x800, 0x4, 0x6, 0x9, 0xcb, 0xb1, 0xff]}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x410)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="fa95d6e1c00000000001010400000000000000000a0000003c0001802c0001801400030000000000000000000000000000000000140004000000000000000000000000000000000c00028005000100000000003c00de67fe49b9175c2c0300fe8000000000000000000000000000aa14000400fe8000000000000000000000000000aa0c00028004fa01000000000008000740000020002c000680140004002001000000000051d9d6847cbd9925e24c00000000000000000114000500200100000000000000de43f8"], 0xc0}}, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000040)={0x0, 0x0, {0x3, 0x0, 0x4, 0x0, 0x7}, 0x76e0})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01)
write$sndseq(r5, &(0x7f0000000000)=[{0x1e, 0x0, 0x8, 0xfd, @tick=0x8, {0x0, 0xfe}, {}, @result}], 0x1c)
close_range(r3, 0xffffffffffffffff, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r7=>0x0})
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r8, &(0x7f0000000080)={0x1d, r7, 0x0, {0x0, 0x0, 0x4}, 0xfd}, 0x18)
sendmsg$can_j1939(r8, &(0x7f00000001c0)={&(0x7f0000000300)={0x1d, r7, 0x0, {}, 0x1}, 0x18, &(0x7f0000000180)={&(0x7f00000002c0)="92557aac2cf961b6e1", 0x9}, 0x1, 0x0, 0x0, 0x8046}, 0x4000000)
sendmsg$can_j1939(r8, &(0x7f0000000200)={&(0x7f0000000000)={0x1d, r7, 0x0, {0x0, 0x0, 0x4}, 0xfd}, 0x18, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x10000000}, 0x40000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve1\x00', <r9=>0x0})
socket$netlink(0x10, 0x3, 0xc)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000140)=0x8, 0x4)
sendto$packet(r2, &(0x7f0000000100)="05030006e8fe091c6202a0ffffffff0060031200100888fb143488a87f43055762cb80948864113b022543424aa608", 0x2f, 0x0, &(0x7f0000000a80)={0x11, 0x88a8, r9, 0x1, 0x0, 0x6, @local}, 0x14)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000580)={&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000480)="7283a073e0211af4aa5e59ba415b5fc02cef13be61fd7f9d3a0cea380f8315700fd77e10c17b63459fb33fdfa99ff25fbd856d0324fb5727606bc67f55d75bd9bff18d416b1a126080e6a6f22d79739c93b0ce5ece683f2f704a6f6abea9a95bf59e03eb86a3b266dae06111ae03fc92d2ba36598bf20c60618437485015d867a945d347d691b6ea74a79fbeb7cb6dcf30f22a8f6069da55a294913eab2635141322b04dc5ff323b172a9fbbf973d4a164bb156c74a7bc00"/207, 0xcf, r6}, 0x68)

1.541648118s ago: executing program 0 (id=1493):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async, rerun: 32)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x0) (async, rerun: 64)
socket$nl_route(0x10, 0x3, 0x0) (rerun: 64)
socket$inet_udp(0x2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) (async)
close(0x3) (async)
creat(&(0x7f00000001c0)='./file1\x00', 0x0)
fsopen(&(0x7f00000001c0)='devpts\x00', 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0, <r4=>0x0}, &(0x7f0000000100)=0xc) (async)
r5 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r6, 0x0)
setresuid(r4, 0x0, r6)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
sendmsg$NL80211_CMD_DISASSOCIATE(r2, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x48, 0x0, 0x800, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3ff}, @NL80211_ATTR_IE={0x20, 0x2a, [@supported_rates={0x1, 0x1, [{0x2, 0x1}]}, @mesh_id={0x72, 0x6}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x0, 0x74, 0xd}}, @chsw_timing={0x68, 0x4, {0x8000, 0x81}}, @channel_switch={0x25, 0x3, {0x0, 0x88, 0x9}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x801}, 0x40)
memfd_create(&(0x7f0000000200)='\xb1Y\xf8$\x00\x00\x00\x00\x00\xb8\xc9\xf7\xd8V#\xb3\xcf\x1f\xbd\xef\xc8\xe6\x84*\xc0\xfeR\x01\x95', 0x1) (async)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000280)={0x29e9c934, 0x5, 0x0, 0x4}, 0x10) (async)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000980)={0x2c, r8, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x12]}]}]}]}, 0x2c}}, 0x4000)
sendmsg$NL80211_CMD_NEW_MPATH(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0x64, r1, 0xe00, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x81, 0x72}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xfffffffffffffdf7, 0x1a, @broadcast}]}, 0x64}, 0x1, 0x0, 0x0, 0x20010884}, 0x40005) (async, rerun: 64)
socket$inet_mptcp(0x2, 0x1, 0x106) (rerun: 64)

1.21535957s ago: executing program 0 (id=1495):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000084e27fa40000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000), 0x42200, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000080)={<r2=>0x0, @in={{0x2, 0x4e23, @multicast1}}, 0x6, 0x2000, 0x0, 0x0, 0x8e, 0x2, 0x6e}, &(0x7f0000000140)=0x9c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x1)
r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r3, 0xc0106442, 0x0)
lgetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='security.apparmor\x00', 0x0, 0x0)
r4 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000000080008d804dd0000000000000109022400010000a008090400fe01030001000921fffffd0122050009058103"], 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000fcdbdf2512000000180001801400020076657468300000000000000008000000080009"], 0x3c}, 0x1, 0x0, 0x0, 0x400c000}, 0x2004c0a0)
r5 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYRESDEC=r0], 0x2c}}, 0x0)
sendto$inet6(r5, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io(r4, &(0x7f0000000080)={0x2c, &(0x7f00000012c0)=ANY=[@ANYBLOB="001105"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r6 = syz_open_dev$I2C(&(0x7f0000000000), 0x2, 0x40402)
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x380, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af0302"}, {0x0, 0x1, "000000050000000026000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177304c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b03452dccf81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b104185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x1f, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "b8a3e100908f61640000006f00fec0ffff00000000000000ff0bc0fe000000000000000002000002d9a0274500040000000013eaf40000"}, {0x0, 0x14, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c"}, {0x0, 0x5, "d5170000dce9674a36da018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65f81ed"}]}}}}}}, 0x0)
ioctl$I2C_SMBUS(r6, 0x720, &(0x7f0000000100)={0x1, 0x0, 0x5, &(0x7f0000000140)={0x14, "d744626dd4f6a354eeb5f77c1d358e4bc9debbc9dc8bc94f6521267b177ec4d40f"}})
r7 = syz_open_dev$sg(&(0x7f00000001c0), 0x508d48d4, 0x40902)
ioctl$SCSI_IOCTL_SEND_COMMAND(r7, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="0000000005000000a30c038a"])
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000240)={0x3, 0x1, 0x10000000, 0x7, r2}, &(0x7f00000002c0)=0x10)

1.212604953s ago: executing program 4 (id=1496):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="85000000070000004d000000000000004500000000000000950000000000000009c9bc6631c1248c81933e3784a658d0c4baeecff9b457e5a861fd3aa4037a72ab04501be580e00b22e241ad7bea36e2e3dfad39cc7e9db6f4e02b56989ec86839d86bc24762455d4efd69399a1c0712eb2dde"], &(0x7f0000000140)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1e}, 0x64)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000003c0)={'tunl0\x00', &(0x7f00000002c0)={'erspan0\x00', <r2=>0x0, 0x1, 0x10, 0x2, 0x7, {{0xe, 0x4, 0x1, 0x25, 0x38, 0x65, 0x0, 0x9, 0x4, 0x0, @broadcast, @remote, {[@lsrr={0x83, 0x23, 0x95, [@initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010101, @loopback, @loopback, @dev={0xac, 0x14, 0x14, 0x3a}, @loopback, @private=0xa010101, @multicast1]}]}}}}})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r3, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r4, 0x20, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x13, 0x14, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@alu={0x7, 0x1, 0x4, 0x9, 0x0, 0xfffffffffffffff4, 0xfffffffffffffff0}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000580)='GPL\x00', 0x8000, 0x3d, &(0x7f00000005c0)=""/61, 0x41000, 0x62, '\x00', 0x0, @fallback=0xf, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000780)={0x1, 0xe, 0x1ae}, 0x10, 0xffffffffffffffff, r0, 0x5, &(0x7f00000007c0)=[0xffffffffffffffff], &(0x7f0000000800)=[{0x2, 0x1, 0xf, 0xc}, {0x1, 0x2, 0x9, 0xc}, {0x0, 0x3, 0x100, 0x2}, {0x5, 0x1, 0x7, 0x8}, {0x4, 0x2, 0x7, 0x2}], 0x10, 0x6}, 0x94)
sendmsg$nl_route_sched(r1, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=@newtfilter={0x2c, 0x2c, 0x800, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0xf, 0x10}, {0x4, 0x10}, {0xfff1, 0xffe0}}, [@TCA_CHAIN={0x8, 0xb, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8800}, 0x20000000)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r5, 0x0, 0xffffff4c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x31)
r6 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.pending_reads\x00', 0x100, 0xc0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0), 0x106, 0xa}}, 0x20)
syz_emit_ethernet(0x86, &(0x7f00000010c0)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @redirect={0x3, 0x4, 0x0, @broadcast=0x1000000, {0x17, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty, {[@timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@remote, 0x4e210000}]}, @timestamp_addr={0x44, 0x3c, 0x0, 0x1, 0x0, [{@local}, {}, {@dev}, {@private}, {@empty}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@dev}]}]}}}}}}}, 0x0)

687.508491ms ago: executing program 5 (id=1502):
socket(0x80000000000000a, 0x2, 0x0) (async)
r0 = socket(0x80000000000000a, 0x2, 0x0)
sysfs$1(0x1, &(0x7f0000000100)='/dev/hwrng\x00')
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x7, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x909}}, {{0xa, 0x4e24, 0x0, @loopback}}}, 0x108)

686.435806ms ago: executing program 3 (id=1504):
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
pipe(&(0x7f0000000500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f00000005c0)='fd', 0x0, r2)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x2)
symlinkat(&(0x7f0000000040)='./file1\x00', r4, &(0x7f00000002c0)='./file1\x00')
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r5, r5)
setpgid(0x0, r5)
fchdir(r4)
r6 = inotify_init1(0x800)
inotify_add_watch(r6, &(0x7f0000000000)='./file1\x00', 0x9)
ioctl$TIOCGPGRP(r0, 0x6801, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r4, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route_sched(r7, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=@gettaction={0x84, 0x32, 0x2, 0x70bd29, 0x25dfdbfd, {}, [@action_gd=@TCA_ACT_TAB={0xffffffffffffff8e, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}, {0x10, 0x1b, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0x10, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x10, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x4800}, 0x20044800)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$sock_int(r8, 0x1, 0x2f, 0x0, &(0x7f0000000040)=0x700)
r9 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r9, 0xc04064a0, &(0x7f0000000180)={0x0, &(0x7f00000000c0)=[<r10=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r9, 0xc06864a1, &(0x7f0000000580)={0x0, 0xffffff20, r10, <r11=>0x0})
r12 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r12, &(0x7f0000002380)={0x2020}, 0x2020)
write$FUSE_DIRENTPLUS(r12, &(0x7f00000000c0)=ANY=[@ANYBLOB="1000000900ffffff", @ANYRES64=0x3], 0x10)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r1, 0xc01864b0, &(0x7f0000000000)={r10, r11, 0x1, 0x0, 0x1000000000000})
socketpair$unix(0x1, 0x2, 0x0, 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x80010, r9, 0xa63c3000)
close(0x3)

614.122133ms ago: executing program 4 (id=1505):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x121403, 0x0)
r1 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040), 0x42142, 0x0)
write$FUSE_NOTIFY_INVAL_INODE(r1, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@newlink={0x58, 0x10, 0xffffff1f, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x8000}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_SPORT={0x6, 0x10, 0x4e20}, @IFLA_GRE_FLOWINFO={0x8, 0xc, 0xd}, @IFLA_GRE_IKEY={0x8, 0x4, 0x100}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4048800}, 0xc850)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f0000000140)={0x5, 0x80, 0x4, {0x7fffffff, 0x9c4}, 0x9, 0x1})
ioctl$FS_IOC_SETFLAGS(r0, 0x40081271, &(0x7f0000000980)=0x4000)
mount(&(0x7f0000000000)=@sr0, &(0x7f0000000080)='./cgroup\x00', &(0x7f0000000100)='bdev\x00', 0x14418, 0x0)
ioctl$F2FS_IOC_SEC_TRIM_FILE(r2, 0x4018f514, &(0x7f00000001c0)={0x6, 0x1, 0x1})

613.590657ms ago: executing program 3 (id=1506):
r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f0000000000)=<r1=>0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_void(r2, 0x1, 0x2d, 0x0, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$FUSE_NOTIFY_POLL(r3, &(0x7f0000000080)={0x18}, 0x18)
ioctl$sock_inet_SIOCGIFBRDADDR(r2, 0x8919, &(0x7f00000000c0)={'veth1_to_team\x00', {0x2, 0x0, @broadcast}})
ioctl$F2FS_IOC_COMPRESS_FILE(r2, 0xf518, 0x0)
r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000140), 0x140200, 0x0)
ppoll(&(0x7f0000000180)=[{r3, 0x33}, {r3, 0x4000}, {r3, 0x4}, {r0, 0x2008}, {r3, 0x1000}, {r3, 0x200}, {r4, 0x3040}, {r0, 0x1000}, {r5, 0x4000}], 0x9, &(0x7f0000000200)={0x0, 0x989680}, &(0x7f0000000240)={[0xdfd]}, 0x8)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r5)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r5, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)={0x140, r6, 0x20, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x25, 0x2a, [@prep={0x83, 0x1f, {{}, 0xff, 0xff, @device_b, 0x4, @void, 0x2b0, 0x1, @broadcast, 0x7}}]}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x9}, @NL80211_ATTR_MDID={0x6, 0xb1, 0xb92}, @NL80211_ATTR_IE={0xf1, 0x2a, [@gcr_ga={0xbd, 0x6, @broadcast}, @random_vendor={0xdd, 0x41, "0da4a3b1b3f3100f7b68f95c1db05f4a4659af08b8fd55c4c877c150b7fcd95bca8ce0181d8da4748dd5f273ae38ea9b0755ece508ee9132e930ac62443f75672c"}, @chsw_timing={0x68, 0x4, {0x5, 0x4}}, @rann={0x7e, 0x15, {{0x0, 0x37}, 0x5, 0x7, @broadcast, 0x4, 0x3, 0x2}}, @preq={0x82, 0x57, {{0x0, 0x1, 0x1, 0x0, 0x1}, 0xd8, 0xd, 0xffffffff, @device_a, 0x4, @value=@device_b, 0x10, 0xb, 0x5, [{{0x1}, @device_a, 0x8962}, {{0x0, 0x0, 0x1}, @broadcast, 0xffff}, {{0x1, 0x0, 0x1}, @device_a, 0x8}, {{0x1, 0x0, 0x1}, @broadcast, 0x4ef3}, {{}, @device_a, 0xcf5}]}}, @ht={0x2d, 0x1a, {0x400, 0x0, 0x5, 0x0, {0xfffffffffffff8d3, 0x4, 0x0, 0x2, 0x0, 0x1, 0x1, 0x2}, 0x300, 0x3, 0xb}}, @ssid={0x0, 0xe, @random="355df3328dae5d8bc1689b5cdad3"}]}]}, 0x140}, 0x1, 0x0, 0x0, 0x1}, 0x40)
setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000500)={@in6={{0xa, 0x4e21, 0x76, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x27}}, 0x8}}, 0x0, 0x0, 0x2e, 0x0, "a5bb9d9248a1b3e044a47de4bedea6220cff1abfbf56ec5c75be3a8543849b11c78b3925595dea409f2a6249000df85995f12c2606b59860181c59ecd53810b63a1570546235af332961d4f45ce4276e"}, 0xd8)
write$UHID_SET_REPORT_REPLY(r5, &(0x7f0000000600)={0xe, {0x6, 0x1, 0xc, 0x56, "f989d16f6145e8b4785c3ff6d1bdc98723a31ad46502cfb8c4f2b2cc5d3f74e8e9a4b7b6b5c8f2ef1ac8c47c521dabbf11fcf22c76388d51f4d79e396c82ed0895f6d7d34d436556c66bd1207e11379b003dba35946a"}}, 0x62)
getsockopt$SO_COOKIE(r2, 0x1, 0x39, &(0x7f0000000680), &(0x7f00000006c0)=0x8)
read$FUSE(0xffffffffffffffff, &(0x7f0000000700)={0x2020, 0x0, <r7=>0x0}, 0x2020)
statx(r5, &(0x7f0000002740)='./file0\x00', 0x400, 0x100, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000002880)={0x150, 0x0, r7, [{{0x1, 0x1, 0x3, 0x10000000000000, 0x6, 0x40, {0x2, 0x2, 0x152, 0x9000, 0x80000000, 0x101, 0x9, 0x7, 0x4, 0x6000, 0x8, r1, r8, 0x5}}, {0x3, 0x3, 0x1, 0x2, '%'}}, {{0x4, 0x0, 0x3, 0x5, 0x1, 0x5, {0x0, 0x800, 0x8, 0x9, 0x9, 0x9, 0x7129, 0x3, 0x8, 0x1000, 0x27, r1, 0xee01, 0x4, 0x7}}, {0x1, 0xfff, 0x6, 0x8, ']]:+}\xe5'}}]}, 0x150)
bind$isdn(r5, &(0x7f0000002a00)={0x22, 0x40, 0xc, 0x5, 0x17}, 0x6)
syz_clone(0x100, &(0x7f0000002a40)="5c989fa88d5b825496493539aae517059f090d49309a73e9791445ce5191acb28a12e09bc461ac9bcabd49949e9fd5d6c40a059abef6b09124d74471b044d91d4bb0dd43d63d83c84faeaba39d9dac4f628f5e282a0d964408fcfee7826eec8ae18791d2d3ff67de830ca6e7bd00adb61833b54e3bdbcd505e18283792fc1cbbe50167d5d6ac6a", 0x87, &(0x7f0000002b00), &(0x7f0000002b40), &(0x7f0000002b80)="3f22723c3010b7e2287708af4a1fa2a3f78528ca96c1f824f6ef8fdd0d258547bfca94fe14276be6ced887d1e26eacac85322c455f57ca513cdac9d172f751e5621170978ab19235e2eb9bc5a49c7814fe13ac3c0c5c28fb5a56c5b03e4726fb783c915bf6dca41dd98d5539455718fca704b31938393cd98baf7b67260927b6c2b073f3012ecb0c8445fe244767972e46621a0f8495bc490932f3a9f21633f8dbeacb81ad39f421227351fee4b72c4b4b7045a5b689ce58cdabe94eca92e55ed4a558d00913f894484615ed57674c92a0e47d5e6f4e4a3a618e4325eec58704590f9ea0")
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r9, &(0x7f0000002d40)={&(0x7f0000002c80)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002d00)={&(0x7f0000002cc0)={0x34, r6, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1ff, 0x78}}}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x803}]}, 0x34}, 0x1, 0x0, 0x0, 0x240000c0}, 0x1)
getsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000002d80)=0x10001, &(0x7f0000002dc0)=0x4)
ioctl$KVM_GET_SREGS2(r5, 0x8140aecc, &(0x7f0000002e00))
write$selinux_validatetrans(r5, &(0x7f0000002f40)={'system_u:object_r:syslog_conf_t:s0', 0x20, 'system_u:object_r:hald_keymap_exec_t:s0', 0x20, 0x7, 0x20, 'unconfined_u:system_r:insmod_t:s0-s0:c0.c1023\x00'}, 0x8e)
epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, r3, &(0x7f0000003000)={0x2})
r10 = syz_open_dev$vcsa(&(0x7f0000003040), 0x3, 0x10000)
ioctl$KVM_SET_LAPIC(r10, 0x4400ae8f, &(0x7f0000003080)={"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"})
ioctl$XFS_IOC_EXCHANGE_RANGE(r0, 0x40285881, &(0x7f0000003480)={r3, 0x0, 0x4, 0x80000001, 0x7fffffffffffffff, 0x1})

610.095215ms ago: executing program 5 (id=1507):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$FE_DISHNETWORK_SEND_LEGACY_CMD(r0, 0x6f50, 0x8) (async)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x8, @remote, 0xb}, 0x1c)
syz_emit_ethernet(0xfef3, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6001010000641100fe8000000000000000000000000000bbfe8000000000000000000000000000aa4e200e22"], 0x0)
syz_emit_ethernet(0xfef3, &(0x7f0000000200)=ANY=[], 0x0)

539.048982ms ago: executing program 3 (id=1508):
sendmsg$sock(0xffffffffffffffff, 0x0, 0x4880)
r0 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
ioctl$SIOCGETLINKNAME(r0, 0x89e0, &(0x7f0000000140)={0x0, 0x2})
r1 = socket$kcm(0x10, 0x2, 0x4)
close(r1)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000700)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8}, [@generic={0x6b, 0x1, 0x1, 0x9a}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0xffffffffffffffa6, &(0x7f00000001c0)=[{&(0x7f0000000100)="1c00000021006bcd210000006e04000081000000000000007aa60864", 0x1c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

535.96016ms ago: executing program 3 (id=1509):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40) (async)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) (async)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) (async, rerun: 32)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000580)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/59, 0x0}) (async, rerun: 32)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f00000007c0)=""/231, &(0x7f00000000c0)=""/73, &(0x7f0000000480)=""/67, 0xa000}) (async, rerun: 64)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) (async, rerun: 64)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1}) (async, rerun: 64)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) (async, rerun: 64)
sendmsg$IEEE802154_LLSEC_ADD_KEY(0xffffffffffffffff, 0x0, 0x400c080) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r4 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, 0x3}, 0x1c) (async)
ioctl$sock_ifreq(r3, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7}) (async)
ioctl$sock_netdev_private(r3, 0x8949, &(0x7f0000000000)) (async, rerun: 64)
r5 = socket$alg(0x26, 0x5, 0x0) (rerun: 64)
bind$alg(r5, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'essiv(cbc(aes),sha256)\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r6 = accept4(r5, 0x0, 0x0, 0x800)
sendmmsg$alg(r6, &(0x7f0000004bc0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000046c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x10}], 0x1, 0x40800) (async, rerun: 64)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0) (async, rerun: 64)
bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a1c000000000a050000000000000000000500000008000240000000022c11a600030a01010000000000000000050000000900010073797a30000000000900030073797a300000000060000000060a010400000000000000000500000008000b400000000138000480140001800b00010074756e6e656c00000400028020000180080001006677640014000280080003400000000a08000140000000090900010073797a3000000000140000001100010000000000000000000000e0f041000a"], 0xd0}}, 0x0)

535.663943ms ago: executing program 5 (id=1510):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0xc00)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x48}, 0x1, 0x0, 0x0, 0x4040}, 0x40000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="d2bc509ae8a0cfa64e737d41f442a9f189fa95a18a6cb62df14c977b2f96", @ANYRES16=r1, @ANYBLOB="010028bd7000000000003900000008000300", @ANYRES32=r4, @ANYBLOB="0c009900090000003b00000010005a800c0003800500060001000000"], 0x38}, 0x1, 0x0, 0x0, 0x4004}, 0x4000)

431.430084ms ago: executing program 3 (id=1511):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280), 0x17)
bpf$BPF_MAP_FREEZE(0x16, &(0x7f0000000040)=r0, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="0c000280060001"], 0x24}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=@framed={{}, [@map_fd={0x18, 0x0, 0x2, 0x0, r0}, @ldst={0x1, 0x0, 0x4}]}, &(0x7f0000000000)='syzkaller\x00'}, 0x94)

336.745843ms ago: executing program 3 (id=1512):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="008400000000040014000c80100004800c"], 0x34}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}, @NFTA_CT_SREG={0x8, 0x4, 0x1, 0x0, 0x12}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x78}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, &(0x7f0000000040)=0xfffffffffffffff7, 0x7, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x2, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000180)='./file1\x00')
mknod$loop(&(0x7f0000001b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x64c7b000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
read$FUSE(r6, &(0x7f0000000080)={0x2020}, 0x2020)
quotactl_fd$Q_SETQUOTA(r5, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x4, 0x2, 0x10000, 0x7, 0x2, 0x7e73, 0x7fffffffffffffff, 0x4bd, 0x95})
bind$rds(r4, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r7 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r7, &(0x7f0000000000)={0x2, 0x6e24, @empty}, 0x10)
r8 = socket$inet(0x2, 0x2, 0x1)
socket(0x2, 0x2, 0x1)
bind$inet(r8, &(0x7f0000000000)={0x2, 0x6e24, @empty}, 0x10)
sendmsg$rds(r4, &(0x7f0000000000)={&(0x7f0000000200)={0x2, 0x4e21, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000600)=[@fadd={0x58, 0x114, 0x6, {{0x2, 0x1}, &(0x7f0000000580)=0x2, 0x0, 0xc03c, 0x2, 0x2, 0x8, 0x7b, 0x5}}], 0x58}, 0x0)

336.359235ms ago: executing program 5 (id=1513):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000001400)={{0x80}, 'port1\x00', 0xe3, 0x191c07, 0xfffffffe, 0xa, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000000)={0x80, 0x20000005, 0x2, 0xe05, 0x5fffd, 0x28e7})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8417f, 0x0)
r1 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x40, 0x0, 0x7, 0xffeffffe}, {0x16, 0x0, 0x0, 0x40000000}]}, 0x10)
sendto$inet6(r1, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x408d6, 0x0, 0x0)

273.000893ms ago: executing program 5 (id=1514):
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x20a00, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, r0, 0x0)
r1 = openat$drirender128(0xffffffffffffff9c, &(0x7f00000002c0), 0x484100, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000000)={0x0, &(0x7f0000000080)=[0x0], &(0x7f0000000080), 0x0, 0x0, 0x1, 0x0, 0x12})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

187.824372ms ago: executing program 0 (id=1515):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r0)
sendmsg$TIPC_CMD_SHOW_PORTS(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x2, 0x70bd27, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4881}, 0x804)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newlink={0x38, 0x10, 0x1, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x421a2}, [@IFLA_IFNAME={0x14, 0x3, 'wlan0\x00'}, @IFLA_VFINFO_LIST={0x4}]}, 0x38}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x2e, 0x9, 0x70bd27, 0x0, {0x4}, [@typed={0x8, 0x18, 0x0, 0x0, @binary="05ac0f00"}]}, 0x1c}, 0x1, 0x0, 0x0, 0x42804}, 0x0)

187.441314ms ago: executing program 0 (id=1516):
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
syz_usbip_server_init(0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x5c9e83, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x5c9e83, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_open_dev$loop(&(0x7f0000000240), 0x40, 0x1c0862)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x82802, 0xf)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000003c0)={r6, 0x1000, {0x0, 0x0, 0x0, 0x0, 0x617, 0x0, 0x3, 0x1c, 0xc, "faf98317e5a1149989fc8dbe53ea6abad0099cebdc25f5ab60c9e6d680f985881a8a0f3500000000000000000e0000000000000000000000000000000000ffff", "32d8cc26f7061a74df2cfc06c89f3d9a234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "675237601a8ca5b07dcc141802c4dae4162e43ac61b7ad3300", [0xfffffffffffffce6, 0xa]}})
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000003c0)={0x2, 0x0, [{0x40000000, 0x0, 0x6}, {0x40000001, 0x0, 0x7}]})
syz_usbip_server_init(0x5)
write$binfmt_script(r1, 0x0, 0x0)
ioctl$DRM_IOCTL_PANTHOR_DEV_QUERY_CSIF_INFO(r1, 0xc0106440, &(0x7f0000000140)={0x1, 0x4, &(0x7f00000000c0)}) (async)
ioctl$DRM_IOCTL_PANTHOR_DEV_QUERY_CSIF_INFO(r1, 0xc0106440, &(0x7f0000000140)={0x1, 0x4, &(0x7f00000000c0)})
r7 = socket$l2tp(0x2, 0x2, 0x73)
socket$inet(0x2, 0x4000000000000001, 0x0) (async)
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r8, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r8, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) (async)
sendto$inet(r8, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000600)=0x8001, 0x4)
sendto$inet(r8, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0)
recvmsg(r8, &(0x7f0000000100)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f0000000780)=""/4108, 0x437aba5}], 0x1, 0x0, 0xfffffe1a, 0x407006}, 0x104)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r7, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10) (async)
connect$inet(r7, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.kill\x00', 0x275a, 0x0) (async)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.kill\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28010, r9, 0x200000) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28010, r9, 0x200000)
ftruncate(r9, 0xc17a) (async)
ftruncate(r9, 0xc17a)
setresuid(0x0, 0xee01, 0x0)

567.059µs ago: executing program 5 (id=1517):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
ioctl$SIOCAX25CTLCON(r1, 0x89e8, &(0x7f0000000180)={@null, @null, @default, 0x3, 0xd, 0x4, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @null, @null, @bcast, @bcast]})
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x58}}, 0x10)
io_uring_setup(0x2368, &(0x7f00000000c0)={0x0, 0xb5b9, 0x0, 0x0, 0x2f1})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r2, 0x4, 0x40800)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r3, 0x2000009)
sendfile(r2, r3, 0x0, 0x7ffff004)
recvmmsg(r0, &(0x7f00000021c0)=[{{0x0, 0x0, 0x0}, 0x8}], 0x1, 0x102, 0x0)

0s ago: executing program 0 (id=1518):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2102, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
r1 = semget$private(0x0, 0x7, 0x0)
semctl$SETVAL(r1, 0x3, 0x10, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x8400, @empty}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x158)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0xc8)
capset(&(0x7f00000006c0)={0x20080522}, &(0x7f0000000080)={0x200000, 0x41200003, 0x2, 0x6, 0x2040007, 0x9})
mount$overlay(0x0, &(0x7f0000000480)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
sendmmsg$inet(r0, &(0x7f0000000140)=[{{&(0x7f0000000040)={0x2, 0x4e23, @private=0xa010100}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000280)="d3b6f885b4bf3e38de51150a5d7de0b6dbd36edfdca58b873d70963b574fd432d64e3159987e7de1835b71f1c9f983848dcef00cf256cfac7833517400b5e0110fa64dbcb7a6957fc59b5d377deed09fee31d1e06215c779085a169b7d22b1ccc92858730f2c54215839c33c1497c5697e7c5487a93a0e7d115af44dd0d6cef067006a8386d581a589c415677d262b3b023008ab6c6772e88028d60b9eca24dfaa5be35818a4e34e70a958af4cd84083278b9fc47e1a923780fb86837d7d4ffefd493faef6b0684a2012ac500a1edeaa40c8e1663554136c", 0xd8}], 0x1}}], 0x1, 0x5)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="2309fefffffffcffffff0100000005000700000000000800090000000000060002000100000008000a000400010008001700", @ANYRES32], 0x3c}}, 0x0)

kernel console output (not intermixed with test programs):

T9332]  usbdux
[  111.122751][ T9332] comedi: valid board names for ni6501 driver are:
[  111.125426][ T9332]  ni6501
[  111.126445][ T9332] comedi: valid board names for dt9812 driver are:
[  111.128925][ T9332]  dt9812
[  111.129887][ T9332] comedi: valid board names for ni_labpc_cs driver are:
[  111.132077][ T9332]  ni_labpc_cs
[  111.133176][ T9332] comedi: valid board names for ni_daq_700 driver are:
[  111.135749][ T9332]  ni_daq_700
[  111.136836][ T9332] comedi: valid board names for labpc_pci driver are:
[  111.139165][ T9332]  labpc_pci
[  111.140285][ T9332] comedi: valid board names for adl_pci9118 driver are:
[  111.142596][ T9332]  pci9118dg
[  111.143746][ T9332]  pci9118hg
[  111.144815][ T9332]  pci9118hr
[  111.145876][ T9332] comedi: valid board names for 8255_pci driver are:
[  111.148034][ T9332]  8255_pci
[  111.149835][ T9332] comedi: valid board names for s526 driver are:
[  111.152414][ T9332]  s526
[  111.153334][ T9332] comedi: valid board names for multiq3 driver are:
[  111.155428][ T9332]  multiq3
[  111.156436][ T9332] comedi: valid board names for pcmuio driver are:
[  111.158556][ T9332]  pcmuio48
[  111.159733][ T9332]  pcmuio96
[  111.160906][ T9332] comedi: valid board names for pcmmio driver are:
[  111.163086][ T9332]  pcmmio
[  111.164122][ T9332] comedi: valid board names for pcmda12 driver are:
[  111.166738][ T9332]  pcmda12
[  111.167743][ T9332] comedi: valid board names for pcmad driver are:
[  111.169835][ T9332]  pcmad12
[  111.171037][ T9332]  pcmad16
[  111.172139][ T9332] comedi: valid board names for ni_labpc driver are:
[  111.174352][ T9332]  lab-pc-1200
[  111.175550][ T9332]  lab-pc-1200ai
[  111.176748][ T9332]  lab-pc+
[  111.177757][ T9332] comedi: valid board names for atmio16 driver are:
[  111.180078][ T9332]  atmio16
[  111.181157][ T9332]  atmio16d
[  111.182703][ T9332] comedi: valid board names for ni_at_ao driver are:
[  111.184884][ T9332]  at-ao-6
[  111.185890][ T9332]  at-ao-10
[  111.187036][ T9332] comedi: valid board names for ni_at_a2150 driver are:
[  111.189650][ T9332]  ni_at_a2150
[  111.190828][ T9332] comedi: valid board names for adq12b driver are:
[  111.193005][ T9332]  adq12b
[  111.193993][ T9332] comedi: valid board names for mpc624 driver are:
[  111.196122][ T9332]  mpc624
[  111.197096][ T9332] comedi: valid board names for c6xdigio driver are:
[  111.199831][ T9332]  c6xdigio
[  111.200935][ T9332] comedi: valid board names for aio_iiro_16 driver are:
[  111.203402][ T9332]  aio_iiro_16
[  111.204607][ T9332] comedi: valid board names for aio_aio12_8 driver are:
[  111.206930][ T9332]  aio_aio12_8
[  111.208108][ T9332]  aio_ai12_8
[  111.209685][ T9332]  aio_ao12_4
[  111.210864][ T9332] comedi: valid board names for fl512 driver are:
[  111.213415][ T9332]  fl512
[  111.214375][ T9332] comedi: valid board names for dmm32at driver are:
[  111.216519][ T9332]  dmm32at
[  111.217518][ T9332] comedi: valid board names for dt282x driver are:
[  111.219665][ T9332]  dt2821
[  111.220624][ T9332]  dt2821-f
[  111.221803][ T9332]  dt2821-g
[  111.223077][ T9332]  dt2823
[  111.224542][ T9332]  dt2824-pgh
[  111.225921][ T9332]  dt2824-pgl
[  111.227349][ T9332]  dt2825
[  111.228984][ T9332]  dt2827
[  111.229950][ T9332]  dt2828
[  111.231052][ T9332]  dt2829
[  111.232019][ T9332]  dt21-ez
[  111.233970][ T9332]  dt23-ez
[  111.234995][ T9332]  dt24-ez
[  111.236078][ T9332]  dt24-ez-pgl
[  111.237259][ T9332] comedi: valid board names for dt2817 driver are:
[  111.239400][ T9332]  dt2817
[  111.240363][ T9332] comedi: valid board names for dt2815 driver are:
[  111.242494][ T9332]  dt2815
[  111.243467][ T9332] comedi: valid board names for dt2814 driver are:
[  111.246156][ T9332]  dt2814
[  111.247156][ T9332] comedi: valid board names for dt2811 driver are:
[  111.249303][ T9332]  dt2811-pgh
[  111.250460][ T9332]  dt2811-pgl
[  111.251606][ T9332] comedi: valid board names for dt2801 driver are:
[  111.253711][ T9332]  dt2801
[  111.254672][ T9332] comedi: valid board names for das6402 driver are:
[  111.256890][ T9332]  das6402-12
[  111.258061][ T9332]  das6402-16
[  111.259288][ T9332] comedi: valid board names for das1800 driver are:
[  111.261855][ T9332]  das-1701st
[  111.263005][ T9332]  das-1701st-da
[  111.264226][ T9332]  das-1702st
[  111.265414][ T9332]  das-1702st-da
[  111.266815][ T9332]  das-1702hr
[  111.268367][ T9332]  das-1702hr-da
[  111.269996][ T9332]  das-1701ao
[  111.271482][ T9332]  das-1702ao
[  111.272632][ T9332]  das-1801st
[  111.273774][ T9332]  das-1801st-da
[  111.275017][ T9332]  das-1802st
[  111.276638][ T9332]  das-1802st-da
[  111.277872][ T9332]  das-1802hr
[  111.279081][ T9332]  das-1802hr-da
[  111.280338][ T9332]  das-1801hc
[  111.281471][ T9332]  das-1802hc
[  111.282619][ T9332]  das-1801ao
[  111.283761][ T9332]  das-1802ao
[  111.284901][ T9332] comedi: valid board names for das800 driver are:
[  111.287028][ T9332]  das-800
[  111.288376][ T9332]  cio-das800
[  111.289530][ T9332]  das-801
[  111.290560][ T9332]  cio-das801
[  111.292118][ T9332]  das-802
[  111.293121][ T9332]  cio-das802
[  111.294203][ T9332]  cio-das802/16
[  111.295376][ T9332] comedi: valid board names for isa-das08 driver are:
[  111.297564][ T9332]  isa-das08
[  111.298730][ T9332]  das08-pgm
[  111.299789][ T9332]  das08-pgh
[  111.300847][ T9332]  das08-pgl
[  111.301900][ T9332]  das08-aoh
[  111.302971][ T9332]  das08-aol
[  111.304023][ T9332]  das08-aom
[  111.305071][ T9332]  das08/jr-ao
[  111.306170][ T9332]  das08jr-16-ao
[  111.307772][ T9332]  pc104-das08
[  111.308923][ T9332]  das08jr/16
[  111.309994][ T9332] comedi: valid board names for das16m1 driver are:
[  111.312069][ T9332]  das16m1
[  111.313070][ T9332] comedi: valid board names for dac02 driver are:
[  111.315111][ T9332]  dac02
[  111.316051][ T9332] comedi: valid board names for rti802 driver are:
[  111.318096][ T9332]  rti802
[  111.319120][ T9332] comedi: valid board names for rti800 driver are:
[  111.321192][ T9332]  rti800
[  111.322150][ T9332]  rti815
[  111.323555][ T9332] comedi: valid board names for pcm3724 driver are:
[  111.325632][ T9332]  pcm3724
[  111.326679][ T9332] comedi: valid board names for pcl818 driver are:
[  111.328760][ T9332]  pcl818l
[  111.329857][ T9332]  pcl818h
[  111.331787][ T9332]  pcl818hd
[  111.332993][ T9332]  pcl818hg
[  111.334030][ T9332]  pcl818
[  111.335338][ T9332]  pcl718
[  111.336305][ T9332]  pcm3718
[  111.337470][ T9332] comedi: valid board names for pcl816 driver are:
[  111.339964][ T9332]  pcl816
[  111.340985][ T9332]  pcl814b
[  111.341989][ T9332] comedi: valid board names for pcl812 driver are:
[  111.344065][ T9332]  pcl812
[  111.345033][ T9332]  pcl812pg
[  111.346083][ T9332]  acl8112pg
[  111.347156][ T9332]  acl8112dg
[  111.348235][ T9332]  acl8112hg
[  111.349283][ T9332]  a821pgl
[  111.350297][ T9332]  a821pglnda
[  111.351467][ T9332]  a821pgh
[  111.352475][ T9332]  a822pgl
[  111.353449][ T9332]  a822pgh
[  111.354877][ T9332]  a823pgl
[  111.355886][ T9332]  a823pgh
[  111.356899][ T9332]  pcl813
[  111.357864][ T9332]  pcl813b
[  111.358909][ T9332]  acl8113
[  111.359912][ T9332]  iso813
[  111.360879][ T9332]  acl8216
[  111.361999][ T9332]  a826pg
[  111.362976][ T9332] comedi: valid board names for pcl730 driver are:
[  111.365031][ T9332]  pcl730
[  111.365993][ T9332]  iso730
[  111.366988][ T9332]  acl7130
[  111.367991][ T9332]  pcm3730
[  111.369008][ T9332]  pcl725
[  111.370380][ T9332]  p8r8dio
[  111.371386][ T9332]  acl7225b
[  111.372501][ T9332]  p16r16dio
[  111.373557][ T9332]  pcl733
[  111.374536][ T9332]  pcl734
[  111.375495][ T9332]  opmm-1616-xt
[  111.376629][ T9332]  pearl-mm-p
[  111.377705][ T9332]  ir104-pbf
[  111.378791][ T9332] comedi: valid board names for pcl726 driver are:
[  111.380841][ T9332]  pcl726
[  111.381802][ T9332]  pcl727
[  111.382812][ T9332]  pcl728
[  111.383889][ T9332]  acl6126
[  111.384802][   T40] kauditd_printk_skb: 153 callbacks suppressed
[  111.384815][   T40] audit: type=1400 audit(2000524333.396:723): avc:  denied  { mount } for  pid=9356 comm="syz.0.952" name="/" dev="ramfs" ino=23434 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  111.386131][ T9332]  acl6128
[  111.389294][   T40] audit: type=1400 audit(2000524333.405:724): avc:  denied  { mounton } for  pid=9356 comm="syz.0.952" path="/bus" dev="ramfs" ino=25710 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[  111.389535][ T9358] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  111.394791][ T9332] comedi: valid board names for pcl724 driver are:
[  111.408149][ T9332]  pcl724
[  111.409106][ T9332]  pcl722
[  111.410077][ T9332]  pcl731
[  111.411046][ T9332]  acl7122
[  111.412057][ T9332]  acl7124
[  111.413051][ T9332]  pet48dio
[  111.414074][ T9332]  pcmio48
[  111.415177][ T9332]  onyx-mm-dio
[  111.416697][ T9332] comedi: valid board names for pcl711 driver are:
[  111.418760][ T9332]  pcl711
[  111.419702][ T9332]  pcl711b
[  111.420688][ T9332]  acl8112hg
[  111.421727][ T9332]  acl8112dg
[  111.422783][ T9332] comedi: valid board names for amplc_pc263 driver are:
[  111.424935][ T9332]  pc263
[  111.426194][ T9332] comedi: valid board names for amplc_pc236 driver are:
[  111.428429][ T9332]  pc36at
[  111.429478][ T9332] comedi: valid board names for amplc_dio200 driver are:
[  111.432525][ T9332]  pc212e
[  111.433488][ T9332]  pc214e
[  111.434454][ T9332]  pc215e
[  111.435403][ T9332]  pc218e
[  111.436487][ T9332]  pc272e
[  111.437440][ T9332] comedi: valid board names for comedi_parport driver are:
[  111.439719][ T9332]  comedi_parport
[  111.440891][ T9332] comedi: valid board names for comedi_test driver are:
[  111.444226][   T40] audit: type=1400 audit(2000524333.452:725): avc:  denied  { create } for  pid=9361 comm="syz.4.954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  111.444323][ T9332]  comedi_test
[  111.452779][   T40] audit: type=1400 audit(2000524333.461:726): avc:  denied  { setopt } for  pid=9361 comm="syz.4.954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  111.453065][ T9332] comedi: valid board names for comedi_bond driver are:
[  111.462685][ T9332]  comedi_bond
[  111.468777][   T40] audit: type=1400 audit(2000524333.471:727): avc:  denied  { write } for  pid=9361 comm="syz.4.954" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  111.490348][ T5938] Bluetooth: hci1: unexpected event for opcode 0x080f
[  111.498343][   T40] audit: type=1400 audit(2000524333.499:728): avc:  denied  { watch watch_reads } for  pid=9365 comm="syz.3.956" path=2F6D656D66643A2D42D54E34A64579DBD1A7B153F13A29202864656C6574656429 dev="tmpfs" ino=2062 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  111.507578][   T40] audit: type=1400 audit(2000524333.499:729): avc:  denied  { execute } for  pid=9365 comm="syz.3.956" dev="tmpfs" ino=2062 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  111.514962][   T40] audit: type=1400 audit(2000524333.499:730): avc:  denied  { execute_no_trans } for  pid=9365 comm="syz.3.956" path=2F6D656D66643A2D42D54E34A64579DBD1A7B153F13A29202864656C6574656429 dev="tmpfs" ino=2062 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  111.517751][ T9370] sch_fq: defrate 4294967295 ignored.
[  111.525167][   T40] audit: type=1400 audit(2000524333.508:731): avc:  denied  { read } for  pid=9367 comm="syz.2.958" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  111.559494][   T40] audit: type=1400 audit(2000524333.564:732): avc:  denied  { ioctl } for  pid=9372 comm="syz.0.959" path="socket:[25740]" dev="sockfs" ino=25740 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  111.634366][ T9380] block nbd2: not configured, cannot reconfigure
[  111.637764][ T9380] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9380 comm=syz.2.962
[  111.642434][ T9380] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=9380 comm=syz.2.962
[  111.647883][ T9380] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9380 comm=syz.2.962
[  111.708671][ T9391] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  111.713209][ T9391] netlink: 'syz.2.964': attribute type 1 has an invalid length.
[  111.721342][ T9391] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5130 sclass=netlink_audit_socket pid=9391 comm=syz.2.964
[  111.735046][   T29] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  111.756621][ T9408] netlink: 'syz.3.969': attribute type 30 has an invalid length.
[  111.765160][ T1209] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  111.768804][ T9409] netlink: 'syz.3.969': attribute type 30 has an invalid length.
[  111.772421][ T1209] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  111.779789][ T8801] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  111.781290][ T9408] netlink: 'syz.3.969': attribute type 30 has an invalid length.
[  111.783559][ T8801] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  111.916672][   T29] usb 9-1: Using ep0 maxpacket: 8
[  111.925777][   T29] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  111.930346][   T29] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  111.934950][   T29] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  111.939448][   T29] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  111.946782][   T29] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  111.951629][   T29] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.178865][   T29] usb 9-1: GET_CAPABILITIES returned 0
[  112.181391][   T29] usbtmc 9-1:16.0: can't read capabilities
[  112.410573][    T9] usb 9-1: USB disconnect, device number 3
[  112.941302][ T9450] (syz.2.984,9450,3):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[  113.124662][ T9472] netlink: 'syz.2.992': attribute type 3 has an invalid length.
[  113.143083][ T9474] netlink: 'syz.3.994': attribute type 1 has an invalid length.
[  113.417918][ T9493] fuse: Bad value for 'group_id'
[  113.418856][   T29] libceph: connect (1)[c::]:6789 error -101
[  113.419964][ T9493] fuse: Bad value for 'group_id'
[  113.424032][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  113.698148][   T29] libceph: connect (1)[c::]:6789 error -101
[  113.701004][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  113.860728][ T9515] netlink: 'syz.0.1007': attribute type 1 has an invalid length.
[  113.867995][ T9515] Cannot find set identified by id 65534 to match
[  113.999261][ T9522] tc_dump_action: action bad kind
[  114.251411][   T29] libceph: connect (1)[c::]:6789 error -101
[  114.255124][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  114.257530][ T9496] ceph: No mds server is up or the cluster is laggy
[  114.333081][ T5938] Bluetooth: hci1: unexpected event 0x2f length: 509 > 260
[  114.489889][ T9566] __nla_validate_parse: 15 callbacks suppressed
[  114.489906][ T9566] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1019'.
[  114.650873][ T9582] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9582 comm=syz.2.1023
[  114.792069][ T9596] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1025'.
[  114.836759][ T9601] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1027'.
[  114.882331][ T5938] Bluetooth: hci1: unexpected subevent 0x19 length: 24 < 28
[  114.979633][ T9621] netlink: 'syz.2.1034': attribute type 1 has an invalid length.
[  114.995679][ T9621] bond2: entered promiscuous mode
[  114.998850][ T9621] 8021q: adding VLAN 0 to HW filter on device bond2
[  115.038240][ T9627] 9pnet_virtio: no channels available for device syz
[  115.047048][ T9621] bond2: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  115.056395][ T9621] bond2: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  115.060632][ T9621] bond2: (slave ipvlan2): Setting fail_over_mac to active for active-backup mode
[  115.261038][ T9639] bond2: (slave bond_slave_1): Device is not our slave
[  115.264218][ T9639] bond2: option active_slave: invalid value (bond_slave_1)
[  115.268805][ T9639] bond2 (unregistering): Released all slaves
[  115.413250][ T9654] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1043'.
[  115.711209][ T9685] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1052'.
[  115.715017][ T9685] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1052'.
[  115.730334][ T9685] Sensor A: =================  START STATUS  =================
[  115.745020][ T9685] Sensor A: Test Pattern: 75% Colorbar
[  115.747738][ T9685] Sensor A: Show Information: All
[  115.751651][ T9685] Sensor A: Vertical Flip: false
[  115.754866][ T9685] Sensor A: Horizontal Flip: false
[  115.757277][ T9685] Sensor A: Brightness: 128
[  115.759454][ T9685] Sensor A: Contrast: 128
[  115.761402][ T9685] Sensor A: Hue: 0
[  115.763104][ T9685] Sensor A: Saturation: 128
[  115.773986][ T9685] Sensor A: ==================  END STATUS  ==================
[  115.900203][ T9701] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  115.945398][ T9619] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  116.041849][ T9715] sctp: [Deprecated]: syz.4.1063 (pid 9715) Use of struct sctp_assoc_value in delayed_ack socket option.
[  116.041849][ T9715] Use struct sctp_sack_info instead
[  116.190275][ T9732] xt_time: unknown flags 0xf4
[  116.195737][ T9731] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  116.199172][ T9731] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  116.296554][ T9740] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9740 comm=syz.2.1071
[  116.688760][ T9755] netlink: 'syz.2.1075': attribute type 1 has an invalid length.
[  116.887771][   T40] kauditd_printk_skb: 334 callbacks suppressed
[  116.887788][   T40] audit: type=1400 audit(2000524338.566:1067): avc:  denied  { create } for  pid=9758 comm="syz.2.1076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  116.901828][   T40] audit: type=1400 audit(2000524338.575:1068): avc:  denied  { write } for  pid=9758 comm="syz.2.1076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  116.910459][   T40] audit: type=1400 audit(2000524338.584:1069): avc:  denied  { mounton } for  pid=9760 comm="syz.0.1077" path="/340/bus" dev="tmpfs" ino=1821 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  116.911723][ T9761] overlayfs: failed to clone upperpath
[  116.915260][ T9759] ceph: Path missing in source
[  116.918875][   T40] audit: type=1400 audit(2000524338.584:1070): avc:  denied  { read } for  pid=9758 comm="syz.2.1076" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  116.918910][   T40] audit: type=1400 audit(2000524338.584:1071): avc:  denied  { open } for  pid=9758 comm="syz.2.1076" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  116.918944][   T40] audit: type=1400 audit(2000524338.584:1072): avc:  denied  { ioctl } for  pid=9758 comm="syz.2.1076" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x4605 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  116.918974][   T40] audit: type=1400 audit(2000524338.594:1073): avc:  denied  { create } for  pid=9758 comm="syz.2.1076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  116.919004][   T40] audit: type=1400 audit(2000524338.594:1074): avc:  denied  { write } for  pid=9758 comm="syz.2.1076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  117.019469][   T40] audit: type=1400 audit(2000524338.678:1075): avc:  denied  { write } for  pid=9763 comm="syz.2.1079" name="igmp" dev="proc" ino=4026533323 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  117.028968][   T40] audit: type=1400 audit(2000524338.688:1076): avc:  denied  { watch } for  pid=9763 comm="syz.2.1079" path="/276/file0" dev="tmpfs" ino=1480 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  117.047411][ T9766] macsec0: entered promiscuous mode
[  117.049986][ T9766] macsec0: entered allmulticast mode
[  117.053727][ T9764] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  117.073964][ T9766] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1078'.
[  117.079093][ T9769] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1080'.
[  117.079307][ T9766] veth1_macvtap: entered allmulticast mode
[  117.087644][ T9766] macsec0: left promiscuous mode
[  117.090038][ T9766] macsec0: left allmulticast mode
[  117.092335][ T9766] veth1_macvtap: left allmulticast mode
[  117.108276][ T9769] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1080'.
[  117.239575][ T9788] netlink: 4320 bytes leftover after parsing attributes in process `syz.0.1087'.
[  117.243031][ T9788] openvswitch: netlink: Flow key attr not present in new flow.
[  117.669980][ T9833] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  118.136028][ T9869] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  118.143315][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  118.310503][ T5334]  pmem0: [POWERTEC]
[  118.670400][ T9900] bridge0: port 1(ipvlan3) entered blocking state
[  118.673551][ T9900] bridge0: port 1(ipvlan3) entered disabled state
[  118.676415][ T9900] ipvlan3: entered allmulticast mode
[  118.678689][ T9900] bridge0: entered allmulticast mode
[  118.682803][ T9900] ipvlan3: left allmulticast mode
[  118.685100][ T9900] bridge0: left allmulticast mode
[  118.846376][ T5925] Bluetooth: hci0: unexpected event 0x2f length: 509 > 260
[  118.866942][ T9906] tipc: Failed to obtain node identity
[  118.872898][ T9906] tipc: Enabling of bearer <ib:wg1> rejected, failed to enable media
[  119.099188][ T9924] overlayfs: missing 'lowerdir'
[  120.133413][T10031] __nla_validate_parse: 8 callbacks suppressed
[  120.133424][T10031] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1148'.
[  120.141029][ T5925] Bluetooth: hci2: unexpected event 0x2f length: 509 > 260
[  120.325161][ T5938] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  120.326183][ T5925] Bluetooth: hci4: command 0x1003 tx timeout
[  120.735210][T10075] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1162'.
[  120.775571][T10083] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  121.030944][T10102] vxlan0: entered promiscuous mode
[  121.033377][T10102] vxlan0: entered allmulticast mode
[  121.036243][ T7688] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  121.040663][ T7688] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  121.044283][ T7688] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  121.045648][T10102] overlayfs: missing 'lowerdir'
[  121.047829][ T7688] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  121.171289][T10111] loop5: detected capacity change from 0 to 7
[  121.243986][ T5357] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.247561][ T5357] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.250505][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.255315][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.258909][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.263409][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.267033][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.271567][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.276578][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.280842][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.284551][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.288744][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.292341][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.296782][    T9] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[  121.301157][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.304668][T10111] ldm_validate_partition_table(): Disk read failed.
[  121.308374][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.312479][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.316101][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.320088][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.323459][T10111] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  121.328694][T10111] Buffer I/O error on dev loop5, logical block 0, async page read
[  121.332152][T10111] Dev loop5: unable to read RDB block 0
[  121.334695][T10111]  loop5: unable to read partition table
[  121.337666][T10111] loop5: partition table beyond EOD, truncated
[  121.340427][T10111] loop_reread_partitions: partition scan of loop5 (úùƒWå¡™‰ü�¾Ã½¸*‹ºÐ	œëÜ%õ«µ4FLQkÝŠ5) failed (rc=-5)
[  121.400743][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.405808][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.409146][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.412744][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.415214][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.419177][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.421757][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.425080][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.427858][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.430304][ T6010] hid-generic 0103:0004:0000.0005: unknown main item tag 0x0
[  121.433148][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  121.447417][ T6010] hid-generic 0103:0004:0000.0005: hidraw1: <UNKNOWN> HID v0.02 Device [syz0] on syz1
[  121.467338][    T9] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  121.470570][    T9] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  121.475648][    T9] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  121.481075][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.515497][T10119] fido_id[10119]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  121.704647][    T9] usb 9-1: usb_control_msg returned -32
[  121.707182][    T9] usbtmc 9-1:16.0: can't read capabilities
[  121.959892][ T5938] Bluetooth: hci0: unexpected event for opcode 0x2027
[  121.965296][T10129] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  122.066330][ T5938] Bluetooth: hci0: unexpected event for opcode 0x0428
[  122.090410][T10135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.097318][T10135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.118372][T10135] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.122738][T10135] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  122.127761][T10135] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  122.133447][T10135] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[  122.138663][T10135] overlayfs: fs on '.' does not support file handles, falling back to xino=off.
[  122.194220][T10137] vxlan0: entered promiscuous mode
[  122.196256][T10137] vxlan0: entered allmulticast mode
[  122.198562][ T8799] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  122.201886][ T8799] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  122.205647][ T8799] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  122.209454][ T8799] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  122.283712][   T40] kauditd_printk_skb: 242 callbacks suppressed
[  122.283728][   T40] audit: type=1400 audit(2000524343.623:1319): avc:  denied  { map_create } for  pid=10138 comm="syz.3.1183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  122.296385][   T40] audit: type=1400 audit(2000524343.623:1320): avc:  denied  { map_read } for  pid=10138 comm="syz.3.1183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  122.304216][   T40] audit: type=1400 audit(2000524343.633:1321): avc:  denied  { perfmon } for  pid=10138 comm="syz.3.1183" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  122.313038][ T6557] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  122.314797][   T40] audit: type=1400 audit(2000524343.633:1322): avc:  denied  { prog_run } for  pid=10138 comm="syz.3.1183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  122.329018][ T3246] usb 9-1: USB disconnect, device number 4
[  122.429811][   T40] audit: type=1400 audit(2000524343.764:1323): avc:  denied  { mount } for  pid=10145 comm="syz.3.1186" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  122.439447][   T40] audit: type=1400 audit(2000524343.773:1324): avc:  denied  { create } for  pid=10145 comm="syz.3.1186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  122.446742][   T40] audit: type=1400 audit(2000524343.773:1325): avc:  denied  { write } for  pid=10145 comm="syz.3.1186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  122.454482][   T40] audit: type=1400 audit(2000524343.773:1326): avc:  denied  { nlmsg_write } for  pid=10145 comm="syz.3.1186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  122.471249][   T40] audit: type=1400 audit(2000524343.802:1327): avc:  denied  { execute_no_trans } for  pid=10147 comm="syz.3.1187" path="/275/file1" dev="tmpfs" ino=1485 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  122.488281][ T6557] usb 7-1: Using ep0 maxpacket: 8
[  122.493093][ T6557] usb 7-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  122.497047][ T6557] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.504863][ T6557] pvrusb2: Hardware description: Terratec Grabster AV400
[  122.507397][ T6557] pvrusb2: **********
[  122.508695][ T6557] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  122.511523][   T40] audit: type=1400 audit(2000524343.839:1328): avc:  denied  { sqpoll } for  pid=10149 comm="syz.3.1188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  122.512901][ T6557] pvrusb2: Important functionality might not be entirely working.
[  122.520874][ T6557] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  122.524297][ T6557] pvrusb2: **********
[  122.738861][ T2487] pvrusb2: Invalid write control endpoint
[  122.762934][T10164] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  122.766850][T10164] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  122.781183][ T2487] pvrusb2: Invalid write control endpoint
[  122.785370][ T2487] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  122.793308][ T2487] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  122.796012][ T2487] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  122.802536][ T2487] pvrusb2: Device being rendered inoperable
[  122.808421][ T2487] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  122.811634][ T2487] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  122.821540][ T2487] pvrusb2: Attached sub-driver cx25840
[  122.823563][ T2487] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  122.826810][ T2487] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  122.953739][ T3246] usb 7-1: USB disconnect, device number 11
[  122.966849][T10185] Mount JFS Failure: -5
[  122.971499][T10185] jfs_mount failed w/return code = -5
[  123.000039][T10185] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1201'.
[  123.006011][T10186] Mount JFS Failure: -5
[  123.007525][T10186] jfs_mount failed w/return code = -5
[  123.015827][T10192] No such timeout policy "syz1"
[  123.174401][T10204] fuse: Unknown parameter 'fT"ÅÑtbsOq/dS0x0000000000000007'
[  123.313756][T10211] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1207'.
[  123.639733][T10223] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1211'.
[  123.675083][ T5938] Bluetooth: hci2: unexpected event 0x2f length: 509 > 260
[  123.842449][T10233] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  124.031378][T10249] bond1: option xmit_hash_policy: invalid value (6)
[  124.035749][T10249] bond1 (unregistering): Released all slaves
[  124.188716][T10262] bridge_slave_1: left allmulticast mode
[  124.191146][T10262] bridge_slave_1: left promiscuous mode
[  124.194056][T10262] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.209147][T10262] team0: Port device team_slave_0 removed
[  124.219666][T10262] team0: Port device team_slave_1 removed
[  124.560975][T10273] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  124.702484][T10277] 9pnet_virtio: no channels available for device syz
[  124.896392][T10287] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.1229'.
[  124.904836][ T5938] Bluetooth: hci0: unexpected event for opcode 0x2010
[  124.937891][ T5938] Bluetooth: hci1: unexpected event 0x2f length: 509 > 260
[  124.980704][T10302] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1233'.
[  124.993002][T10302] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  124.997567][T10302] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  125.006080][T10302] bond0 (unregistering): Released all slaves
[  125.445098][T10272] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.534573][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  140.537062][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  140.764601][   T40] kauditd_printk_skb: 112 callbacks suppressed
[  140.764612][   T40] audit: type=1326 audit(2000524360.963:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10306 comm="syz.2.1237" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa590f9bf79 code=0x0
[  140.784979][   T40] audit: type=1400 audit(2000524360.963:1442): avc:  denied  { setopt } for  pid=10306 comm="syz.2.1237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  140.797475][   T40] audit: type=1400 audit(2000524360.963:1443): avc:  denied  { connect } for  pid=10306 comm="syz.2.1237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  140.804857][   T40] audit: type=1400 audit(2000524360.963:1444): avc:  denied  { name_connect } for  pid=10306 comm="syz.2.1237" dest=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  140.813849][T10325] overlayfs: failed to clone lowerpath
[  140.818095][   T40] audit: type=1400 audit(2000524360.982:1445): avc:  denied  { accept } for  pid=10317 comm="syz.3.1238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  140.824584][   T40] audit: type=1400 audit(2000524360.982:1446): avc:  denied  { setopt } for  pid=10317 comm="syz.3.1238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  140.831742][   T40] audit: type=1400 audit(2000524360.982:1447): avc:  denied  { read } for  pid=10317 comm="syz.3.1238" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  140.832293][T10329] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  140.837804][   T40] audit: type=1400 audit(2000524360.992:1448): avc:  denied  { read } for  pid=10320 comm="syz.2.1239" dev="nsfs" ino=4026533302 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  140.847758][   T40] audit: type=1400 audit(2000524360.992:1449): avc:  denied  { open } for  pid=10320 comm="syz.2.1239" path="net:[4026533302]" dev="nsfs" ino=4026533302 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  140.855426][   T40] audit: type=1400 audit(2000524360.992:1450): avc:  denied  { create } for  pid=10320 comm="syz.2.1239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  140.966124][T10345] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1243'.
[  140.975627][T10345] ip6gre1: entered allmulticast mode
[  140.982648][T10345] team0: Device ip6gre1 is of different type
[  141.102982][T10355] random: crng reseeded on system resumption
[  141.114687][T10355] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  141.126424][T10355] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  141.238325][T10365] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  141.332555][T10379] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1254'.
[  141.345774][T10379] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1254'.
[  141.548633][T10390] SELinux: failed to load policy
[  141.687442][T10398] binder: 10397:10398 ioctl c0306201 200000000040 returned -11
[  141.695142][T10398] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1261'.
[  141.699108][T10398] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1261'.
[  141.701907][T10398] netlink: 'syz.4.1261': attribute type 20 has an invalid length.
[  141.710207][ T1209] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  141.713096][ T1209] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  141.714311][T10398] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1261'.
[  141.715943][ T1209] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  141.719496][T10398] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1261'.
[  141.719524][T10398] netlink: 'syz.4.1261': attribute type 20 has an invalid length.
[  141.722317][ T1209] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  141.786468][T10410] Invalid logical block size (3)
[  141.790520][T10410] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=872 sclass=netlink_route_socket pid=10410 comm=syz.4.1266
[  141.863984][T10409] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  141.869805][T10416] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1268'.
[  141.897027][T10419] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  141.915522][T10421] xt_hashlimit: max too large, truncated to 1048576
[  142.101394][ T8801] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.101429][ T8801] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.153031][T10444] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1277'.
[  142.153356][T10444] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1277'.
[  142.189626][   T29] libceph: connect (1)[c::]:6789 error -101
[  142.189755][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  142.214286][ T8801] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.214321][ T8801] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.241895][ T3246] libceph: connect (1)[b::]:6789 error -101
[  142.242032][ T3246] libceph: mon0 (1)[b::]:6789 connect error
[  142.326091][ T8801] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.334952][ T8801] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.341096][T10461] netlink: 'syz.3.1283': attribute type 30 has an invalid length.
[  142.345263][T10460] netlink: 'syz.3.1283': attribute type 30 has an invalid length.
[  142.354613][T10464] netlink: 'syz.4.1284': attribute type 1 has an invalid length.
[  142.366705][ T5933] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  142.370756][ T5933] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  142.374249][ T5933] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  142.379783][ T5933] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  142.383483][ T5933] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  142.389987][T10464] 8021q: adding VLAN 0 to HW filter on device bond2
[  142.418152][ T8801] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  142.421397][ T8801] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.480895][   T29] libceph: connect (1)[c::]:6789 error -101
[  142.484214][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  142.525547][   T50] libceph: connect (1)[b::]:6789 error -101
[  142.528278][   T50] libceph: mon0 (1)[b::]:6789 connect error
[  143.025024][   T29] libceph: connect (1)[c::]:6789 error -101
[  143.028086][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  143.070177][T10449] ceph: No mds server is up or the cluster is laggy
[  143.070224][T10452] ceph: No mds server is up or the cluster is laggy
[  143.080954][ T8801] bond0 (unregistering): Released all slaves
[  143.083299][   T50] libceph: connect (1)[b::]:6789 error -101
[  143.085602][   T50] libceph: mon0 (1)[b::]:6789 connect error
[  143.100186][T10500] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  143.106296][ T8801] bond1 (unregistering): Released all slaves
[  143.116347][ T8801] bond2 (unregistering): Released all slaves
[  143.218761][ T8801] tipc: Disabling bearer <udp:syz1>
[  143.230589][ T8801] tipc: Left network mode
[  143.257109][T10519] netlink: 'syz.0.1298': attribute type 1 has an invalid length.
[  143.269700][T10519] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  143.339779][T10465] chnl_net:caif_netlink_parms(): no params data found
[  143.442630][ T8801] IPVS: stopping master sync thread 6308 ...
[  143.526468][ T8803] tipc: Subscription rejected, illegal request
[  143.536504][T10544] tipc: Started in network mode
[  143.538513][T10544] tipc: Node identity 4, cluster identity 4711
[  143.541775][T10544] tipc: Node number set to 4
[  143.580438][T10465] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.599783][T10465] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.603527][T10465] bridge_slave_0: entered allmulticast mode
[  143.607558][T10465] bridge_slave_0: entered promiscuous mode
[  143.609729][ T5933] Bluetooth: hci3: command 0x0406 tx timeout
[  143.612732][T10465] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.615839][T10465] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.618745][T10465] bridge_slave_1: entered allmulticast mode
[  143.621769][T10465] bridge_slave_1: entered promiscuous mode
[  143.646780][T10553] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  143.693512][T10465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  143.701033][T10465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  143.744794][T10465] team0: Port device team_slave_0 added
[  143.753000][T10465] team0: Port device team_slave_1 added
[  143.804591][T10574] netlink: 'syz.0.1310': attribute type 11 has an invalid length.
[  143.808815][T10465] batman_adv: batadv0: Adding interface: batadv_slave_0
[  143.811048][T10465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  143.820277][T10465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  143.829568][T10465] batman_adv: batadv0: Adding interface: batadv_slave_1
[  143.831756][T10465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  143.832197][T10572] fuse: Bad value for 'group_id'
[  143.843591][T10572] fuse: Bad value for 'group_id'
[  143.845078][T10465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.869585][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  143.873412][T10584] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3600 sclass=netlink_route_socket pid=10584 comm=syz.3.1312
[  143.913226][T10465] hsr_slave_0: entered promiscuous mode
[  143.920371][T10465] hsr_slave_1: entered promiscuous mode
[  143.922548][T10465] debugfs: 'hsr0' already exists in 'hsr'
[  143.924369][T10465] Cannot create hsr debugfs directory
[  143.942853][ T8801] veth1_macvtap: left promiscuous mode
[  143.944775][ T8801] veth0_macvtap: left allmulticast mode
[  143.946558][ T8801] veth0_macvtap: left promiscuous mode
[  143.948578][ T8801] veth1_vlan: left promiscuous mode
[  143.950328][ T8801] veth0_vlan: left promiscuous mode
[  143.997597][ T8801] pim6reg99999999 (unregistering): left allmulticast mode
[  144.162819][T10602] syzkaller0: entered promiscuous mode
[  144.165159][T10602] syzkaller0: entered allmulticast mode
[  144.383299][T10629] /dev/nullb0: Can't lookup blockdev
[  144.401221][T10465] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  144.408324][T10465] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  144.414902][T10465] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  144.427196][T10465] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  144.500850][T10465] 8021q: adding VLAN 0 to HW filter on device bond0
[  144.513574][T10465] 8021q: adding VLAN 0 to HW filter on device team0
[  144.524567][ T7688] bridge0: port 1(bridge_slave_0) entered blocking state
[  144.526974][ T7688] bridge0: port 1(bridge_slave_0) entered forwarding state
[  144.535810][ T7688] bridge0: port 2(bridge_slave_1) entered blocking state
[  144.538724][ T7688] bridge0: port 2(bridge_slave_1) entered forwarding state
[  144.553219][ T5938] Bluetooth: hci2: command tx timeout
[  144.556893][T10644] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  144.605777][ T8801] IPVS: stop unused estimator thread 0...
[  144.610922][T10654] kAFS: unable to lookup cell '(,c¾Ì'
[  144.707123][T10465] 8021q: adding VLAN 0 to HW filter on device batadv0
[  144.732834][T10668] QAT: failed to copy from user.
[  144.776116][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.781059][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.785212][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.789177][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.793301][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.801896][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.807354][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.811535][T10675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10675 comm=syz.4.1331
[  144.893881][T10465] veth0_vlan: entered promiscuous mode
[  144.899081][T10465] veth1_vlan: entered promiscuous mode
[  144.914825][T10465] veth0_macvtap: entered promiscuous mode
[  144.919735][T10465] veth1_macvtap: entered promiscuous mode
[  144.934394][T10465] batman_adv: batadv0: Interface activated: batadv_slave_0
[  144.944920][T10465] batman_adv: batadv0: Interface activated: batadv_slave_1
[  144.952405][ T1209] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  144.956193][ T1209] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  144.960061][ T1209] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  144.963693][ T1209] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.033847][ T8803] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.037159][ T8803] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.069360][ T7688] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.073781][ T7688] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.320151][T10705] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  145.992935][ T5938] Bluetooth: hci2: Received unexpected HCI Event 0x00
[  146.008707][T10734] netlink: 'syz.5.1348': attribute type 1 has an invalid length.
[  146.017026][T10734] bridge0: port 3(veth0_to_bond) entered blocking state
[  146.022187][T10734] bridge0: port 3(veth0_to_bond) entered disabled state
[  146.027592][T10734] veth0_to_bond: entered allmulticast mode
[  146.032102][T10734] veth0_to_bond: entered promiscuous mode
[  146.103451][   T40] kauditd_printk_skb: 406 callbacks suppressed
[  146.103467][   T40] audit: type=1400 audit(2000524365.969:1856): avc:  denied  { name_bind } for  pid=10728 comm="syz.4.1346" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  146.115979][   T40] audit: type=1400 audit(2000524365.978:1857): avc:  denied  { node_bind } for  pid=10728 comm="syz.4.1346" saddr=224.0.0.1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  146.135282][   T40] audit: type=1400 audit(2000524365.997:1858): avc:  denied  { create } for  pid=10742 comm="syz.0.1350" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  146.147137][   T40] audit: type=1400 audit(2000524365.997:1859): avc:  denied  { module_request } for  pid=10742 comm="syz.0.1350" kmod="net-pf-2-proto-47-type-0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  146.165262][T10751] bond2: Removing last ns target with arp_interval on
[  146.180167][   T40] audit: type=1400 audit(2000524366.044:1860): avc:  denied  { module_request } for  pid=10742 comm="syz.0.1350" kmod="net-pf-2-proto-47" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  146.192288][T10751] bond3: Removing last ns target with arp_interval on
[  146.239753][T10760] netlink: 'syz.4.1346': attribute type 28 has an invalid length.
[  146.241625][   T40] audit: type=1400 audit(2000524366.100:1861): avc:  denied  { prog_load } for  pid=10758 comm="syz.3.1353" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  146.243121][T10760] netlink: 'syz.4.1346': attribute type 3 has an invalid length.
[  146.252151][   T40] audit: type=1400 audit(2000524366.110:1862): avc:  denied  { mounton } for  pid=10758 comm="syz.3.1353" path="/331/bus" dev="tmpfs" ino=1776 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  146.257653][T10759] bond0: entered promiscuous mode
[  146.262250][T10759] bond_slave_0: entered promiscuous mode
[  146.263756][   T40] audit: type=1400 audit(2000524366.110:1863): avc:  denied  { create } for  pid=10758 comm="syz.3.1353" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  146.264973][T10759] bond_slave_1: entered promiscuous mode
[  146.272396][   T40] audit: type=1400 audit(2000524366.110:1864): avc:  denied  { map_create } for  pid=10758 comm="syz.3.1353" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  146.275172][T10759] gretap0: entered promiscuous mode
[  146.282583][   T40] audit: type=1400 audit(2000524366.119:1865): avc:  denied  { read write } for  pid=10465 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  146.283459][T10759] hsr1: entered promiscuous mode
[  146.755146][ T5938] Bluetooth: hci2: command tx timeout
[  147.035192][T10781] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  147.120499][T10781] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  147.254199][ T6010] IPVS: starting estimator thread 0...
[  147.294236][T10789] could not allocate digest TFM handle cryptd(blake2b-160)
[  147.334461][T10806] __nla_validate_parse: 10 callbacks suppressed
[  147.334478][T10806] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1364'.
[  147.342407][T10806] IPVS: set_ctl: invalid protocol: 51 10.1.1.1:20265
[  147.345078][T10806] IPVS: wlc: FWM 3 0x00000003 - no destination available
[  147.374602][T10796] IPVS: using max 47 ests per chain, 112800 per kthread
[  147.389632][T10815] selinux_netlink_send: 25 callbacks suppressed
[  147.389644][T10815] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=22 sclass=netlink_tcpdiag_socket pid=10815 comm=syz.4.1370
[  147.427832][T10810] overlayfs: failed to clone upperpath
[  147.634520][T10839] netlink: 'syz.4.1376': attribute type 4 has an invalid length.
[  147.638337][T10841] netlink: 'syz.4.1376': attribute type 4 has an invalid length.
[  148.104289][T10858] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1383'.
[  148.107337][T10858] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1383'.
[  148.183678][T10868] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1386'.
[  148.224012][T10871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  148.350711][T10875] netlink: 'syz.5.1390': attribute type 4 has an invalid length.
[  148.885096][T10900] [syz.0.] <== rxrpc_preparse_xdr_yfs_rxgk() = -EKEYREJECTED [d9c19884!=bc, 2c,d9c19820]
[  148.928214][T10907] overlayfs: failed to clone upperpath
[  148.931449][T10905] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1398'.
[  148.982750][ T5933] Bluetooth: hci2: command tx timeout
[  149.028096][T10919] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1402'.
[  149.034208][T10919] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.055753][T10924] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1403'.
[  149.148517][T10931] io-wq is not configured for unbound workers
[  149.219993][T10941] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1407'.
[  149.276030][T10945] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10945 comm=syz.0.1408
[  149.281360][T10945] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=10945 comm=syz.0.1408
[  149.477446][T10955] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1410'.
[  150.059987][T11002] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  150.062195][T11002] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  150.064881][T11002] vhci_hcd vhci_hcd.0: Device attached
[  150.091407][T11002] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(7)
[  150.093414][T11002] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  150.095762][T11002] vhci_hcd vhci_hcd.0: Device attached
[  150.116419][T11005] vhci_hcd: connection closed
[  150.116572][T11003] vhci_hcd: connection closed
[  150.118407][ T8802] vhci_hcd vhci_hcd.5: stop threads
[  150.118429][ T8802] vhci_hcd vhci_hcd.5: release socket
[  150.129221][ T8802] vhci_hcd vhci_hcd.5: disconnect device
[  150.132733][ T8802] vhci_hcd vhci_hcd.5: stop threads
[  150.135006][ T8802] vhci_hcd vhci_hcd.5: release socket
[  150.136756][ T8802] vhci_hcd vhci_hcd.5: disconnect device
[  150.446414][T11010] overlayfs: failed to clone upperpath
[  150.461313][T11011] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  150.504845][T11013] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1424'.
[  150.567761][T11011] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(5)
[  150.569833][T11011] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  150.592659][T11011] vhci_hcd vhci_hcd.0: Device attached
[  150.656909][T11022] bond0: option downdelay: invalid value (18446744073709551615)
[  150.666790][T11022] bond0: option downdelay: allowed values 0 - 2147483647
[  150.682076][T11019] vhci_hcd: connection closed
[  150.683181][T11000] vhci_hcd vhci_hcd.4: stop threads
[  150.686895][T11000] vhci_hcd vhci_hcd.4: release socket
[  150.688787][T11000] vhci_hcd vhci_hcd.4: disconnect device
[  150.709155][T11022] bond0 (unregistering): Released all slaves
[  150.966119][   T24] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  151.141490][   T24] usb 10-1: Invalid ep0 maxpacket: 9
[  151.189429][ T5933] Bluetooth: hci2: command 0x0419 tx timeout
[  151.306297][   T24] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  151.352581][T11000] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0
[  151.355612][T11000] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0
[  151.358616][T11000] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0
[  151.362277][T11000] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0
[  151.406855][T10980] syz.4.1396 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  151.411305][T10980] CPU: 0 UID: 0 PID: 10980 Comm: syz.4.1396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  151.411334][T10980] Tainted: [L]=SOFTLOCKUP
[  151.411341][T10980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  151.411351][T10980] Call Trace:
[  151.411358][T10980]  <TASK>
[  151.411365][T10980]  dump_stack_lvl+0x100/0x190
[  151.411415][T10980]  dump_header+0xfb/0x606
[  151.411436][T10980]  oom_kill_process.cold+0xd/0x330
[  151.411457][T10980]  out_of_memory+0x340/0x14f0
[  151.411485][T10980]  ? __pfx_out_of_memory+0x10/0x10
[  151.411513][T10980]  mem_cgroup_out_of_memory+0xc6/0x130
[  151.411533][T10980]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  151.411551][T10980]  ? find_held_lock+0x2b/0x80
[  151.411578][T10980]  ? do_raw_spin_unlock+0x145/0x1e0
[  151.411598][T10980]  ? _raw_spin_unlock+0x28/0x50
[  151.411636][T10980]  try_charge_memcg+0x652/0xc90
[  151.411668][T10980]  ? __pfx_try_charge_memcg+0x10/0x10
[  151.411693][T10980]  ? find_held_lock+0x2b/0x80
[  151.411713][T10980]  ? rcu_read_unlock+0x17/0x60
[  151.411738][T10980]  ? rcu_read_unlock+0x17/0x60
[  151.411773][T10980]  charge_memcg+0xa6/0x280
[  151.411798][T10980]  __mem_cgroup_charge+0x2b/0x1e0
[  151.411828][T10980]  shmem_alloc_and_add_folio+0x451/0xd40
[  151.411864][T10980]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  151.411889][T10980]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  151.411917][T10980]  shmem_get_folio_gfp+0x6ab/0x1900
[  151.411946][T10980]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  151.411976][T10980]  shmem_write_begin+0x1a4/0x420
[  151.412002][T10980]  ? __pfx_shmem_write_begin+0x10/0x10
[  151.412025][T10980]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  151.412052][T10980]  ? lockdep_hardirqs_on+0x78/0x100
[  151.412077][T10980]  generic_perform_write+0x292/0xa40
[  151.412105][T10980]  ? __pfx_generic_perform_write+0x10/0x10
[  151.412127][T10980]  ? file_update_time_flags+0x373/0x500
[  151.412145][T10980]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  151.412168][T10980]  shmem_file_write_iter+0x10e/0x140
[  151.412195][T10980]  __kernel_write_iter+0x2ac/0x920
[  151.412222][T10980]  ? __pfx___kernel_write_iter+0x10/0x10
[  151.412244][T10980]  ? __up_read+0x2c5/0x700
[  151.412265][T10980]  ? dump_user_range+0x73b/0xb50
[  151.412284][T10980]  ? copy_mc_enhanced_fast_string+0x6/0xf
[  151.412308][T10980]  dump_user_range+0x3f9/0xb50
[  151.412349][T10980]  ? __pfx_dump_user_range+0x10/0x10
[  151.412378][T10980]  ? __pfx_writenote+0x10/0x10
[  151.412406][T10980]  elf_core_dump+0x2d16/0x3c60
[  151.412442][T10980]  ? __pfx_elf_core_dump+0x10/0x10
[  151.412464][T10980]  ? kasan_save_stack+0x3f/0x50
[  151.412484][T10980]  ? kasan_save_track+0x14/0x30
[  151.412503][T10980]  ? __kasan_kmalloc+0xaa/0xb0
[  151.412522][T10980]  ? __kvmalloc_node_noprof+0x360/0xa00
[  151.412545][T10980]  ? irqentry_exit+0x1f8/0x670
[  151.412565][T10980]  ? asm_exc_page_fault+0x26/0x30
[  151.412584][T10980]  ? 0xffffffffff600000
[  151.412644][T10980]  ? vfs_coredump+0x27b4/0x5570
[  151.412661][T10980]  vfs_coredump+0x27b4/0x5570
[  151.412690][T10980]  ? __pfx_vfs_coredump+0x10/0x10
[  151.412710][T10980]  ? __lock_acquire+0x4a5/0x2630
[  151.412745][T10980]  ? lock_acquire+0x1cf/0x380
[  151.412782][T10980]  ? is_bpf_text_address+0x8a/0x1a0
[  151.412804][T10980]  ? bpf_ksym_find+0x128/0x1c0
[  151.412841][T10980]  ? __kernel_text_address+0xd/0x30
[  151.412859][T10980]  ? unwind_get_return_address+0x59/0xa0
[  151.412881][T10980]  ? arch_stack_walk+0xa6/0xf0
[  151.412906][T10980]  ? __sigqueue_free+0xbe/0x2a0
[  151.412932][T10980]  ? stack_trace_save+0x8e/0xc0
[  151.412953][T10980]  ? __pfx_stack_trace_save+0x10/0x10
[  151.412975][T10980]  ? stack_depot_save_flags+0x27/0x9d0
[  151.413014][T10980]  ? __lock_acquire+0x4a5/0x2630
[  151.413084][T10980]  ? proc_coredump_connector+0x2d3/0x4f0
[  151.413110][T10980]  ? __pfx_proc_coredump_connector+0x10/0x10
[  151.413141][T10980]  ? rcu_is_watching+0x12/0xc0
[  151.413166][T10980]  get_signal+0x1f2a/0x21e0
[  151.413198][T10980]  ? __pfx_get_signal+0x10/0x10
[  151.413218][T10980]  ? __pfx_force_sig_fault+0x10/0x10
[  151.413246][T10980]  arch_do_signal_or_restart+0x91/0x7a0
[  151.413270][T10980]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  151.413302][T10980]  ? do_user_addr_fault+0x8d6/0x12f0
[  151.413328][T10980]  irqentry_exit+0x1f8/0x670
[  151.413353][T10980]  asm_exc_page_fault+0x26/0x30
[  151.413370][T10980] RIP: 0033:0x0
[  151.413383][T10980] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  151.413392][T10980] RSP: 002b:00002000000002be EFLAGS: 00010217
[  151.413406][T10980] RAX: 0000000000000000 RBX: 0000000000000058 RCX: 00007fa9b6b9bf79
[  151.413417][T10980] RDX: 00007fa9b7a02f10 RSI: 0000000000000058 RDI: 00007fa9b7a02f10
[  151.413428][T10980] RBP: 00007fa9b6c327e0 R08: 0000000000000000 R09: 0000000000000058
[  151.413438][T10980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  151.413448][T10980] R13: 00007fa9b6e16128 R14: 00007fa9b6e16090 R15: 00007ffe4b07ca18
[  151.413474][T10980]  </TASK>
[  151.440858][   T40] kauditd_printk_skb: 201 callbacks suppressed
[  151.440876][   T40] audit: type=1400 audit(2000524370.979:2067): avc:  denied  { getopt } for  pid=11070 comm="syz.0.1444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  151.469447][   T24] usb 10-1: Invalid ep0 maxpacket: 9
[  151.532499][T10980] memory: usage 307200kB, limit 307200kB, failcnt 15541
[  151.542264][   T24] usb usb10-port1: attempt power cycle
[  151.562726][T10980] memory+swap: usage 431208kB, limit 9007199254740988kB, failcnt 0
[  151.605576][   T40] audit: type=1400 audit(2000524371.129:2068): avc:  denied  { bpf } for  pid=11062 comm="syz.3.1440" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  151.612737][   T40] audit: type=1400 audit(2000524371.138:2069): avc:  denied  { perfmon } for  pid=11062 comm="syz.3.1440" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  151.621453][   T40] audit: type=1400 audit(2000524371.138:2070): avc:  denied  { prog_run } for  pid=11062 comm="syz.3.1440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  151.636175][T10980] kmem: usage 6876kB, limit 9007199254740988kB, failcnt 0
[  151.640072][T10980] Memory cgroup stats for /syz4:
[  151.640256][T10980] cache 307408896
[  151.643252][T10980] rss 69632
[  151.644322][T10980] rss_huge 0
[  151.645470][T10980] shmem 307269632
[  151.646749][T10980] mapped_file 0
[  151.648332][T10980] dirty 0
[  151.649438][T10980] writeback 0
[  151.650730][T10980] workingset_refault_anon 0
[  151.652288][T10980] workingset_refault_file 439
[  151.653880][T10980] swap 126984192
[  151.655071][T10980] swapcached 127033344
[  151.656401][T10980] pgpgin 146853
[  151.657562][T10980] pgpgout 71803
[  151.662331][T10980] pgfault 44037
[  151.663529][T10980] pgmajfault 27
[  151.664873][T10980] inactive_anon 292917248
[  151.666385][T10980] active_anon 14471168
[  151.667748][T10980] inactive_file 139264
[  151.672353][T10980] active_file 0
[  151.673573][T10980] unevictable 0
[  151.674750][T10980] hierarchical_memory_limit 314572800
[  151.676505][T10980] hierarchical_memsw_limit 9223372036854771712
[  151.678478][T10980] total_cache 307408896
[  151.680246][T10980] total_rss 69632
[  151.681550][T10980] total_rss_huge 0
[  151.682831][T10980] total_shmem 307269632
[  151.684234][T10980] total_mapped_file 0
[  151.685534][T10980] total_dirty 0
[  151.686879][T10980] total_writeback 0
[  151.688183][T10980] total_workingset_refault_anon 0
[  151.689880][T10980] total_workingset_refault_file 439
[  151.692313][T10980] total_swap 126984192
[  151.694069][T10980] total_swapcached 127033344
[  151.696192][T10980] total_pgpgin 146853
[  151.698785][T10980] total_pgpgout 71803
[  151.701051][T10980] total_pgfault 44037
[  151.702866][T10980] total_pgmajfault 27
[  151.704690][T10980] total_inactive_anon 292917248
[  151.706948][T10980] total_active_anon 14471168
[  151.709034][T10980] total_inactive_file 139264
[  151.711145][T10980] total_active_file 0
[  151.715315][T10980] total_unevictable 0
[  151.717915][T10980] anon_cost 0
[  151.719470][T10980] file_cost 0
[  151.785937][T10980] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1396,pid=10901,uid=0
[  151.790898][T10980] Memory cgroup out of memory: Killed process 10901 (syz.4.1396) total-vm:98512kB, anon-rss:1244kB, file-rss:57664kB, shmem-rss:0kB, UID:0 pgtables:216kB oom_score_adj:1000
[  151.947240][   T24] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  151.959190][T11098] overlayfs: failed to clone upperpath
[  151.999412][   T24] usb 10-1: Invalid ep0 maxpacket: 9
[  152.002280][   T40] audit: type=1400 audit(2000524371.514:2071): avc:  denied  { ioctl } for  pid=11095 comm="syz.0.1452" path="socket:[33873]" dev="sockfs" ino=33873 ioctlcmd=0xf510 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  152.010195][ T8715] syz-executor invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=0
[  152.017717][   T40] audit: type=1400 audit(2000524371.523:2072): avc:  denied  { create } for  pid=11097 comm="syz.3.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  152.018258][T11101] syz.3.1451: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  152.024576][   T40] audit: type=1400 audit(2000524371.523:2073): avc:  denied  { setopt } for  pid=11097 comm="syz.3.1451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  152.031744][T11101] CPU: 1 UID: 0 PID: 11101 Comm: syz.3.1451 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  152.031773][T11101] Tainted: [L]=SOFTLOCKUP
[  152.031780][T11101] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  152.031790][T11101] Call Trace:
[  152.031797][T11101]  <TASK>
[  152.031803][T11101]  dump_stack_lvl+0x100/0x190
[  152.031834][T11101]  warn_alloc.cold+0x95/0x1c1
[  152.031866][T11101]  ? __pfx_warn_alloc+0x10/0x10
[  152.031898][T11101]  ? kasan_save_stack+0x3f/0x50
[  152.031918][T11101]  ? kasan_save_stack+0x30/0x50
[  152.031938][T11101]  ? kasan_save_track+0x14/0x30
[  152.031961][T11101]  ? xskq_create+0xfb/0x1d0
[  152.031981][T11101]  __vmalloc_node_range_noprof+0x1252/0x1530
[  152.032005][T11101]  ? xskq_create+0xfb/0x1d0
[  152.032031][T11101]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  152.032059][T11101]  ? xskq_create+0xfb/0x1d0
[  152.032083][T11101]  vmalloc_user_noprof+0x9e/0xe0
[  152.032100][T11101]  ? xskq_create+0xfb/0x1d0
[  152.032120][T11101]  xskq_create+0xfb/0x1d0
[  152.032143][T11101]  xsk_setsockopt+0x743/0xab0
[  152.032164][T11101]  ? __pfx_xsk_setsockopt+0x10/0x10
[  152.032184][T11101]  ? find_held_lock+0x2b/0x80
[  152.032206][T11101]  ? __fget_files+0x215/0x3d0
[  152.032237][T11101]  ? selinux_socket_setsockopt+0x6a/0x80
[  152.032262][T11101]  ? __pfx_xsk_setsockopt+0x10/0x10
[  152.032283][T11101]  do_sock_setsockopt+0xf3/0x1d0
[  152.032311][T11101]  __sys_setsockopt+0x195/0x220
[  152.032337][T11101]  __x64_sys_setsockopt+0xbd/0x160
[  152.032357][T11101]  ? do_syscall_64+0x95/0xf80
[  152.032379][T11101]  ? lockdep_hardirqs_on+0x78/0x100
[  152.032402][T11101]  do_syscall_64+0x106/0xf80
[  152.032424][T11101]  ? clear_bhb_loop+0x40/0x90
[  152.032447][T11101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.032464][T11101] RIP: 0033:0x7f912479bf79
[  152.032479][T11101] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  152.032495][T11101] RSP: 002b:00007f9125620028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  152.032512][T11101] RAX: ffffffffffffffda RBX: 00007f9124a16090 RCX: 00007f912479bf79
[  152.032524][T11101] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000005
[  152.032534][T11101] RBP: 00007f91248327e0 R08: 0000000000000004 R09: 0000000000000000
[  152.032544][T11101] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.032554][T11101] R13: 00007f9124a16128 R14: 00007f9124a16090 R15: 00007ffe47e7c7b8
[  152.032578][T11101]  </TASK>
[  152.032584][T11101] Mem-Info:
[  152.032591][ T8715] CPU: 0 UID: 0 PID: 8715 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  152.032617][ T8715] Tainted: [L]=SOFTLOCKUP
[  152.032624][ T8715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  152.032633][ T8715] Call Trace:
[  152.032639][ T8715]  <TASK>
[  152.032646][ T8715]  dump_stack_lvl+0x100/0x190
[  152.032677][ T8715]  dump_header+0xfb/0x606
[  152.032697][ T8715]  oom_kill_process.cold+0xd/0x330
[  152.032719][ T8715]  out_of_memory+0x340/0x14f0
[  152.032746][ T8715]  ? __pfx_out_of_memory+0x10/0x10
[  152.032774][ T8715]  mem_cgroup_out_of_memory+0xc6/0x130
[  152.032795][ T8715]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  152.032812][ T8715]  ? find_held_lock+0x2b/0x80
[  152.032838][ T8715]  ? do_raw_spin_unlock+0x145/0x1e0
[  152.032863][ T8715]  ? _raw_spin_unlock+0x28/0x50
[  152.032888][ T8715]  try_charge_memcg+0x652/0xc90
[  152.032919][ T8715]  ? __pfx_try_charge_memcg+0x10/0x10
[  152.032943][ T8715]  ? rcu_read_unlock+0x17/0x60
[  152.032968][ T8715]  ? rcu_read_unlock+0x17/0x60
[  152.032998][ T8715]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  152.033021][ T8715]  obj_cgroup_charge_account+0x33d/0x640
[  152.033051][ T8715]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  152.033085][ T8715]  __kvmalloc_node_noprof+0x78f/0xa00
[  152.033107][ T8715]  ? xt_alloc_table_info+0x44/0xa0
[  152.033131][ T8715]  xt_alloc_table_info+0x44/0xa0
[  152.033149][ T8715]  do_ipt_set_ctl+0x504/0xb90
[  152.033168][ T8715]  ? nf_sockopt_find.isra.0+0x222/0x290
[  152.033202][ T8715]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  152.033220][ T8715]  ? sockopt_release_sock+0x57/0x70
[  152.033242][ T8715]  ? __local_bh_enable_ip+0x9e/0x120
[  152.033264][ T8715]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  152.033297][ T8715]  ? nf_sockopt_find.isra.0+0x222/0x290
[  152.033321][ T8715]  nf_setsockopt+0x8d/0xf0
[  152.033336][ T8715]  ip_setsockopt+0xcb/0xf0
[  152.033353][ T8715]  tcp_setsockopt+0xa7/0x100
[  152.033371][ T8715]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  152.033394][ T8715]  do_sock_setsockopt+0xf3/0x1d0
[  152.033421][ T8715]  __sys_setsockopt+0x195/0x220
[  152.033448][ T8715]  __x64_sys_setsockopt+0xbd/0x160
[  152.033470][ T8715]  ? do_syscall_64+0x95/0xf80
[  152.033493][ T8715]  ? lockdep_hardirqs_on+0x78/0x100
[  152.033516][ T8715]  do_syscall_64+0x106/0xf80
[  152.033538][ T8715]  ? clear_bhb_loop+0x40/0x90
[  152.033560][ T8715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.033576][ T8715] RIP: 0033:0x7fa9b6b9d7da
[  152.033589][ T8715] Code: 48 83 ec 10 48 63 c9 48 63 ff 45 89 c9 6a 2c e8 ec 99 fb ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 49 89 ca b8 36 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 e8 ff ff ff f7
[  152.033602][ T8715] RSP: 002b:00007ffe4b07c688 EFLAGS: 00000202 ORIG_RAX: 0000000000000036
[  152.033616][ T8715] RAX: ffffffffffffffda RBX: 00007ffe4b07c710 RCX: 00007fa9b6b9d7da
[  152.033624][ T8715] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003
[  152.033632][ T8715] RBP: 0000000000000003 R08: 00000000000002d8 R09: 0000000000000000
[  152.033640][ T8715] R10: 00007fa9b6de7ec0 R11: 0000000000000202 R12: 00007fa9b6de7e60
[  152.033648][ T8715] R13: 00007ffe4b07c6ac R14: 0000000000000000 R15: 00007fa9b6dea020
[  152.033668][ T8715]  </TASK>
[  152.033673][ T8715] memory: usage 307200kB, limit 307200kB, failcnt 16002
[  152.033683][ T8715] memory+swap: usage 431196kB, limit 9007199254740988kB, failcnt 0
[  152.033693][ T8715] kmem: usage 6840kB, limit 9007199254740988kB, failcnt 0
[  152.033702][ T8715] Memory cgroup stats for /syz4:
[  152.033951][ T8715] cache 307421184
[  152.033961][ T8715] rss 69632
[  152.033967][ T8715] rss_huge 0
[  152.033973][ T8715] shmem 307290112
[  152.033979][ T8715] mapped_file 0
[  152.033984][ T8715] dirty 0
[  152.033990][ T8715] writeback 0
[  152.033995][ T8715] workingset_refault_anon 0
[  152.034001][ T8715] workingset_refault_file 449
[  152.034008][ T8715] swap 126971904
[  152.034015][ T8715] swapcached 127033344
[  152.034022][ T8715] pgpgin 146879
[  152.034029][ T8715] pgpgout 71824
[  152.034036][ T8715] pgfault 44043
[  152.034043][ T8715] pgmajfault 31
[  152.034051][ T8715] inactive_anon 123273216
[  152.034059][ T8715] active_anon 182431744
[  152.034067][ T8715] inactive_file 0
[  152.034074][ T8715] active_file 0
[  152.034082][ T8715] unevictable 0
[  152.034090][ T8715] hierarchical_memory_limit 314572800
[  152.034099][ T8715] hierarchical_memsw_limit 9223372036854771712
[  152.034107][ T8715] total_cache 307421184
[  152.034115][ T8715] total_rss 69632
[  152.034123][ T8715] total_rss_huge 0
[  152.034130][ T8715] total_shmem 307290112
[  152.034138][ T8715] total_mapped_file 0
[  152.034145][ T8715] total_dirty 0
[  152.034152][ T8715] total_writeback 0
[  152.034159][ T8715] total_workingset_refault_anon 0
[  152.034167][ T8715] total_workingset_refault_file 449
[  152.034175][ T8715] total_swap 126971904
[  152.034183][ T8715] total_swapcached 127033344
[  152.034190][ T8715] total_pgpgin 146879
[  152.034197][ T8715] total_pgpgout 71824
[  152.034205][ T8715] total_pgfault 44043
[  152.034212][ T8715] total_pgmajfault 31
[  152.034218][ T8715] total_inactive_anon 123273216
[  152.034226][ T8715] total_active_anon 182431744
[  152.034233][ T8715] total_inactive_file 0
[  152.034240][ T8715] total_active_file 0
[  152.034248][ T8715] total_unevictable 0
[  152.034255][ T8715] anon_cost 0
[  152.034262][ T8715] file_cost 0
[  152.034270][ T8715] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1396,pid=10896,uid=0
[  152.034583][ T8715] Memory cgroup out of memory: Killed process 10896 (syz.4.1396) total-vm:98512kB, anon-rss:1240kB, file-rss:57664kB, shmem-rss:0kB, UID:0 pgtables:216kB oom_score_adj:1000
[  152.159019][   T24] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  152.164329][T11101] active_anon:95490 inactive_anon:25636 isolated_anon:0
[  152.164329][T11101]  active_file:6519 inactive_file:11917 isolated_file:0
[  152.164329][T11101]  unevictable:1768 dirty:14 writeback:0
[  152.164329][T11101]  slab_reclaimable:9581 slab_unreclaimable:72138
[  152.164329][T11101]  mapped:31458 shmem:115356 pagetables:4680
[  152.164329][T11101]  sec_pagetables:308 bounce:0
[  152.164329][T11101]  kernel_misc_reclaimable:0
[  152.164329][T11101]  free:269125 free_pcp:24820 free_cma:0
[  152.192634][   T24] usb 10-1: Invalid ep0 maxpacket: 9
[  152.194851][T11101] Node 0 active_anon:182324kB inactive_anon:105372kB active_file:16756kB inactive_file:47364kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:109204kB dirty:52kB writeback:0kB shmem:261996kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:14848kB pagetables:8560kB sec_pagetables:1232kB all_unreclaimable? no Balloon:0kB
[  152.199872][   T24] usb usb10-port1: unable to enumerate USB device
[  152.201669][T11101] Node 1 active_anon:49440kB inactive_anon:146168kB active_file:9328kB inactive_file:316kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16628kB dirty:4kB writeback:0kB shmem:198808kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:256kB pagetables:10036kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  152.201715][T11101] Node 0 
[  152.343285][   T40] audit: type=1400 audit(2000524371.823:2074): avc:  denied  { read write } for  pid=11102 comm="syz.4.1442" name="video0" dev="devtmpfs" ino=955 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  152.344180][T11101] DMA free:6628kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1884kB inactive_anon:6408kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:228kB local_pcp:96kB free_cma:0kB
[  152.349736][   T40] audit: type=1400 audit(2000524371.833:2075): avc:  denied  { open } for  pid=11102 comm="syz.4.1442" path="/dev/video0" dev="devtmpfs" ino=955 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  152.355739][T11101] lowmem_reserve[]:
[  152.365401][   T40] audit: type=1400 audit(2000524371.842:2076): avc:  denied  { ioctl } for  pid=11102 comm="syz.4.1442" path="/dev/video0" dev="devtmpfs" ino=955 ioctlcmd=0x5608 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  152.366894][T11101]  0 1231 1231 1231 1231
[  152.402933][T11101] Node 0 DMA32 free:58004kB boost:0kB min:27476kB low:34344kB high:41212kB reserved_highatomic:0KB free_highatomic:0KB active_anon:91780kB inactive_anon:185960kB active_file:16964kB inactive_file:47208kB unevictable:3536kB writepending:52kB zspages:224kB present:2080628kB managed:1261052kB mlocked:0kB bounce:0kB free_pcp:20396kB local_pcp:1568kB free_cma:0kB
[  152.413206][T11101] lowmem_reserve[]: 0 0 0 0 0
[  152.414889][T11101] Node 1 Normal free:1119676kB boost:0kB min:39760kB low:49700kB high:59640kB reserved_highatomic:0KB free_highatomic:0KB active_anon:57384kB inactive_anon:138204kB active_file:9328kB inactive_file:316kB unevictable:3536kB writepending:4kB zspages:4588kB present:2097152kB managed:1781884kB mlocked:0kB bounce:0kB free_pcp:78852kB local_pcp:2928kB free_cma:0kB
[  152.425803][T11101] lowmem_reserve[]: 0 0 0 0 0
[  152.427376][T11101] Node 0 DMA: 11*4kB (UM) 11*8kB (UM) 10*16kB (UM) 10*32kB (UM) 8*64kB (UM) 11*128kB (UM) 6*256kB (UM) 3*512kB (UM) 1*1024kB (U) 0*2048kB 0*4096kB = 6628kB
[  152.433173][T11101] Node 0 DMA32: 1496*4kB (UE) 624*8kB (UME) 499*16kB (UME) 133*32kB (UME) 68*64kB (UME) 55*128kB (UME) 38*256kB (UME) 24*512kB (UM) 2*1024kB (M) 0*2048kB 0*4096kB = 58672kB
[  152.440128][T11101] Node 1 Normal: 208*4kB (UME) 119*8kB (UM) 319*16kB (UME) 314*32kB (UME) 281*64kB (UME) 218*128kB (UM) 206*256kB (UME) 149*512kB (U) 54*1024kB (UME) 2*2048kB (UM) 214*4096kB (U) = 1127784kB
[  152.448165][T11101] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  152.451912][T11101] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  152.455564][T11101] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  152.459525][T11101] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  152.463734][T11101] 133142 total pagecache pages
[  152.465680][T11101] 15 pages in swap cache
[  152.467410][T11101] Free swap  = 5640kB
[  152.469139][T11101] Total swap = 124996kB
[  152.470809][T11101] 1048443 pages RAM
[  152.472351][T11101] 0 pages HighMem/MovableOnly
[  152.474250][T11101] 283869 pages reserved
[  152.475926][T11101] 0 pages cma reserved
[  152.590079][ T5938] Bluetooth: hci1: unexpected event for opcode 0x0804
[  152.810258][T11126] __nla_validate_parse: 4 callbacks suppressed
[  152.810277][T11126] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1458'.
[  153.050484][T11130] xt_hashlimit: size too large, truncated to 1048576
[  153.153526][T10896] syz.4.1396 (10896) used greatest stack depth: 18600 bytes left
[  153.165828][T11137] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1538 sclass=netlink_route_socket pid=11137 comm=syz.0.1462
[  153.257523][T11146] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1461'.
[  153.261042][T11144] netlink: 'syz.4.1461': attribute type 8 has an invalid length.
[  153.263496][T11144] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1461'.
[  153.297822][T11153] netlink: 'syz.3.1467': attribute type 15 has an invalid length.
[  153.300713][T11153] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1467'.
[  153.303198][T11144] bond0: entered promiscuous mode
[  153.326054][T11144] bond_slave_0: entered promiscuous mode
[  153.343760][T11144] bond_slave_1: entered promiscuous mode
[  153.369260][T11144] gretap0: entered promiscuous mode
[  153.382985][T11144] debugfs: 'hsr0' already exists in 'hsr'
[  153.398943][T11144] Cannot create hsr debugfs directory
[  153.406313][ T5938] Bluetooth: hci2: command 0x0419 tx timeout
[  153.406602][T11144] hsr0: entered promiscuous mode
[  153.502498][T10939] syz.4.1396 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  153.505918][T10939] CPU: 0 UID: 0 PID: 10939 Comm: syz.4.1396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  153.505937][T10939] Tainted: [L]=SOFTLOCKUP
[  153.505941][T10939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  153.505947][T10939] Call Trace:
[  153.505951][T10939]  <TASK>
[  153.505956][T10939]  dump_stack_lvl+0x100/0x190
[  153.505976][T10939]  dump_header+0xfb/0x606
[  153.505989][T10939]  oom_kill_process.cold+0xd/0x330
[  153.506002][T10939]  out_of_memory+0x340/0x14f0
[  153.506019][T10939]  ? __pfx_out_of_memory+0x10/0x10
[  153.506036][T10939]  mem_cgroup_out_of_memory+0xc6/0x130
[  153.506048][T10939]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  153.506059][T10939]  ? find_held_lock+0x2b/0x80
[  153.506079][T10939]  ? do_raw_spin_unlock+0x145/0x1e0
[  153.506091][T10939]  ? _raw_spin_unlock+0x28/0x50
[  153.506107][T10939]  try_charge_memcg+0x652/0xc90
[  153.506125][T10939]  ? __pfx_try_charge_memcg+0x10/0x10
[  153.506141][T10939]  ? find_held_lock+0x2b/0x80
[  153.506153][T10939]  ? rcu_read_unlock+0x17/0x60
[  153.506168][T10939]  ? rcu_read_unlock+0x17/0x60
[  153.506189][T10939]  charge_memcg+0xa6/0x280
[  153.506204][T10939]  __mem_cgroup_charge+0x2b/0x1e0
[  153.506222][T10939]  shmem_alloc_and_add_folio+0x451/0xd40
[  153.506239][T10939]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  153.506254][T10939]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  153.506271][T10939]  shmem_get_folio_gfp+0x6ab/0x1900
[  153.506287][T10939]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  153.506305][T10939]  shmem_write_begin+0x1a4/0x420
[  153.506320][T10939]  ? __pfx_shmem_write_begin+0x10/0x10
[  153.506334][T10939]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  153.506365][T10939]  ? lockdep_hardirqs_on+0x78/0x100
[  153.506382][T10939]  generic_perform_write+0x292/0xa40
[  153.506399][T10939]  ? __pfx_generic_perform_write+0x10/0x10
[  153.506414][T10939]  ? file_update_time_flags+0x373/0x500
[  153.506428][T10939]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  153.506443][T10939]  shmem_file_write_iter+0x10e/0x140
[  153.506461][T10939]  __kernel_write_iter+0x2ac/0x920
[  153.506476][T10939]  ? __pfx___kernel_write_iter+0x10/0x10
[  153.506491][T10939]  ? __up_read+0x2c5/0x700
[  153.506503][T10939]  ? dump_user_range+0x73b/0xb50
[  153.506517][T10939]  dump_user_range+0x3f9/0xb50
[  153.506531][T10939]  ? __pfx_dump_user_range+0x10/0x10
[  153.506548][T10939]  ? __pfx_writenote+0x10/0x10
[  153.506564][T10939]  elf_core_dump+0x2d16/0x3c60
[  153.506584][T10939]  ? __pfx_elf_core_dump+0x10/0x10
[  153.506597][T10939]  ? kasan_save_stack+0x3f/0x50
[  153.506610][T10939]  ? kasan_save_track+0x14/0x30
[  153.506623][T10939]  ? __kasan_kmalloc+0xaa/0xb0
[  153.506635][T10939]  ? __kvmalloc_node_noprof+0x360/0xa00
[  153.506649][T10939]  ? irqentry_exit+0x1f8/0x670
[  153.506663][T10939]  ? asm_exc_page_fault+0x26/0x30
[  153.506675][T10939]  ? 0xffffffffff600000
[  153.506708][T10939]  ? vfs_coredump+0x27b4/0x5570
[  153.506719][T10939]  vfs_coredump+0x27b4/0x5570
[  153.506736][T10939]  ? __pfx_vfs_coredump+0x10/0x10
[  153.506747][T10939]  ? __lock_acquire+0x4a5/0x2630
[  153.506770][T10939]  ? lock_acquire+0x1cf/0x380
[  153.506792][T10939]  ? is_bpf_text_address+0x8a/0x1a0
[  153.506806][T10939]  ? bpf_ksym_find+0x128/0x1c0
[  153.506825][T10939]  ? __kernel_text_address+0xd/0x30
[  153.506836][T10939]  ? unwind_get_return_address+0x59/0xa0
[  153.506850][T10939]  ? arch_stack_walk+0xa6/0xf0
[  153.506866][T10939]  ? __sigqueue_free+0xbe/0x2a0
[  153.506882][T10939]  ? stack_trace_save+0x8e/0xc0
[  153.506895][T10939]  ? __pfx_stack_trace_save+0x10/0x10
[  153.506908][T10939]  ? stack_depot_save_flags+0x27/0x9d0
[  153.506923][T10939]  ? __lock_acquire+0x4a5/0x2630
[  153.506963][T10939]  ? proc_coredump_connector+0x2d3/0x4f0
[  153.506979][T10939]  ? __pfx_proc_coredump_connector+0x10/0x10
[  153.506998][T10939]  ? rcu_is_watching+0x12/0xc0
[  153.507012][T10939]  get_signal+0x1f2a/0x21e0
[  153.507030][T10939]  ? __pfx_get_signal+0x10/0x10
[  153.507042][T10939]  ? __pfx_force_sig_fault+0x10/0x10
[  153.507058][T10939]  arch_do_signal_or_restart+0x91/0x7a0
[  153.507077][T10939]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  153.507095][T10939]  ? do_user_addr_fault+0x8d6/0x12f0
[  153.507111][T10939]  irqentry_exit+0x1f8/0x670
[  153.507127][T10939]  asm_exc_page_fault+0x26/0x30
[  153.507137][T10939] RIP: 0033:0x0
[  153.507145][T10939] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  153.507150][T10939] RSP: 002b:00002000000002be EFLAGS: 00010217
[  153.507158][T10939] RAX: 0000000000000000 RBX: 0000000000000058 RCX: 00007fa9b6b9bf79
[  153.507165][T10939] RDX: 00007fa9b7a02f10 RSI: 0000000000000058 RDI: 00007fa9b7a02f10
[  153.507171][T10939] RBP: 00007fa9b6c327e0 R08: 0000000000000000 R09: 0000000000000058
[  153.507177][T10939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  153.507183][T10939] R13: 00007fa9b6e16128 R14: 00007fa9b6e16090 R15: 00007ffe4b07ca18
[  153.507197][T10939]  </TASK>
[  153.507213][T10939] memory: usage 307200kB, limit 307200kB, failcnt 18265
[  153.702311][T10939] memory+swap: usage 431228kB, limit 9007199254740988kB, failcnt 0
[  153.706708][T10939] kmem: usage 6936kB, limit 9007199254740988kB, failcnt 0
[  153.709149][T10939] Memory cgroup stats for /syz4:
[  153.709254][T10939] cache 307298304
[  153.713003][T10939] rss 159744
[  153.714397][T10939] rss_huge 0
[  153.715838][T10939] shmem 307298304
[  153.717348][T10939] mapped_file 0
[  153.718808][T10939] dirty 0
[  153.720041][T10939] writeback 0
[  153.721311][T10939] workingset_refault_anon 6
[  153.722776][T10939] workingset_refault_file 2460
[  153.724540][T10939] swap 127004672
[  153.726872][T10939] swapcached 180232192
[  153.729086][T10939] pgpgin 170755
[  153.730236][T10939] pgpgout 96295
[  153.731405][T10939] pgfault 45562
[  153.732844][T10939] pgmajfault 61
[  153.734299][T10939] inactive_anon 136933376
[  153.736102][T10939] active_anon 170536960
[  153.737941][T10939] inactive_file 0
[  153.739123][T10939] active_file 0
[  153.740247][T10939] unevictable 0
[  153.742000][T10939] hierarchical_memory_limit 314572800
[  153.744490][T10939] hierarchical_memsw_limit 9223372036854771712
[  153.746674][T10939] total_cache 307298304
[  153.749109][T10939] total_rss 159744
[  153.750666][T10939] total_rss_huge 0
[  153.752196][T10939] total_shmem 307298304
[  153.753543][T10939] total_mapped_file 0
[  153.754832][T10939] total_dirty 0
[  153.756277][T10939] total_writeback 0
[  153.757973][T10939] total_workingset_refault_anon 6
[  153.760315][T10939] total_workingset_refault_file 2460
[  153.762217][T10939] total_swap 127004672
[  153.763955][T10939] total_swapcached 180232192
[  153.765864][T10939] total_pgpgin 170755
[  153.767203][T10939] total_pgpgout 96295
[  153.768655][T10939] total_pgfault 45562
[  153.770174][T10939] total_pgmajfault 61
[  153.771799][T10939] total_inactive_anon 136933376
[  153.774435][T10939] total_active_anon 170536960
[  153.776760][T10939] total_inactive_file 0
[  153.778512][T10939] total_active_file 0
[  153.780265][T10939] total_unevictable 0
[  153.781909][T10939] anon_cost 0
[  153.783276][T10939] file_cost 0
[  153.784646][T10939] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1396,pid=10940,uid=0
[  153.792325][T10939] Memory cgroup out of memory: Killed process 10940 (syz.4.1396) total-vm:98512kB, anon-rss:1236kB, file-rss:57664kB, shmem-rss:0kB, UID:0 pgtables:208kB oom_score_adj:1000
[  153.945408][T10912] syz.4.1396 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  153.948813][T10912] CPU: 3 UID: 0 PID: 10912 Comm: syz.4.1396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  153.948834][T10912] Tainted: [L]=SOFTLOCKUP
[  153.948838][T10912] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  153.948845][T10912] Call Trace:
[  153.948850][T10912]  <TASK>
[  153.948855][T10912]  dump_stack_lvl+0x100/0x190
[  153.948877][T10912]  dump_header+0xfb/0x606
[  153.948891][T10912]  oom_kill_process.cold+0xd/0x330
[  153.948904][T10912]  out_of_memory+0x340/0x14f0
[  153.948922][T10912]  ? __pfx_out_of_memory+0x10/0x10
[  153.948940][T10912]  mem_cgroup_out_of_memory+0xc6/0x130
[  153.948953][T10912]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  153.948965][T10912]  ? find_held_lock+0x2b/0x80
[  153.948982][T10912]  ? do_raw_spin_unlock+0x145/0x1e0
[  153.948994][T10912]  ? _raw_spin_unlock+0x28/0x50
[  153.949010][T10912]  try_charge_memcg+0x652/0xc90
[  153.949029][T10912]  ? __pfx_try_charge_memcg+0x10/0x10
[  153.949046][T10912]  ? find_held_lock+0x2b/0x80
[  153.949059][T10912]  ? rcu_read_unlock+0x17/0x60
[  153.949080][T10912]  ? rcu_read_unlock+0x17/0x60
[  153.949102][T10912]  charge_memcg+0xa6/0x280
[  153.949118][T10912]  __mem_cgroup_charge+0x2b/0x1e0
[  153.949137][T10912]  shmem_alloc_and_add_folio+0x451/0xd40
[  153.949156][T10912]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  153.949171][T10912]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  153.949189][T10912]  shmem_get_folio_gfp+0x6ab/0x1900
[  153.949207][T10912]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  153.949239][T10912]  shmem_write_begin+0x1a4/0x420
[  153.949258][T10912]  ? __pfx_shmem_write_begin+0x10/0x10
[  153.949273][T10912]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  153.949291][T10912]  ? lockdep_hardirqs_on+0x78/0x100
[  153.949308][T10912]  generic_perform_write+0x292/0xa40
[  153.949327][T10912]  ? __pfx_generic_perform_write+0x10/0x10
[  153.949343][T10912]  ? file_update_time_flags+0x373/0x500
[  153.949358][T10912]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  153.949375][T10912]  shmem_file_write_iter+0x10e/0x140
[  153.949392][T10912]  __kernel_write_iter+0x2ac/0x920
[  153.949409][T10912]  ? __pfx___kernel_write_iter+0x10/0x10
[  153.949424][T10912]  ? __up_read+0x2c5/0x700
[  153.949437][T10912]  ? dump_user_range+0x73b/0xb50
[  153.949453][T10912]  dump_user_range+0x3f9/0xb50
[  153.949468][T10912]  ? __pfx_dump_user_range+0x10/0x10
[  153.949486][T10912]  ? __pfx_writenote+0x10/0x10
[  153.949503][T10912]  elf_core_dump+0x2d16/0x3c60
[  153.949525][T10912]  ? __pfx_elf_core_dump+0x10/0x10
[  153.949539][T10912]  ? kasan_save_stack+0x3f/0x50
[  153.949553][T10912]  ? kasan_save_track+0x14/0x30
[  153.949566][T10912]  ? __kasan_kmalloc+0xaa/0xb0
[  153.949579][T10912]  ? __kvmalloc_node_noprof+0x360/0xa00
[  153.949594][T10912]  ? irqentry_exit+0x1f8/0x670
[  153.949609][T10912]  ? asm_exc_page_fault+0x26/0x30
[  153.949622][T10912]  ? 0xffffffffff600000
[  153.949656][T10912]  ? vfs_coredump+0x27b4/0x5570
[  153.949668][T10912]  vfs_coredump+0x27b4/0x5570
[  153.949685][T10912]  ? __pfx_vfs_coredump+0x10/0x10
[  153.949698][T10912]  ? __lock_acquire+0x4a5/0x2630
[  153.949722][T10912]  ? lock_acquire+0x1cf/0x380
[  153.949745][T10912]  ? is_bpf_text_address+0x8a/0x1a0
[  153.949761][T10912]  ? bpf_ksym_find+0x128/0x1c0
[  153.949781][T10912]  ? __kernel_text_address+0xd/0x30
[  153.949793][T10912]  ? unwind_get_return_address+0x59/0xa0
[  153.949807][T10912]  ? arch_stack_walk+0xa6/0xf0
[  153.949850][T10912]  ? __sigqueue_free+0xbe/0x2a0
[  153.949869][T10912]  ? stack_trace_save+0x8e/0xc0
[  153.949883][T10912]  ? __pfx_stack_trace_save+0x10/0x10
[  153.949896][T10912]  ? xas_find+0x32c/0x8e0
[  153.949912][T10912]  ? stack_depot_save_flags+0x27/0x9d0
[  153.949928][T10912]  ? __lock_acquire+0x4a5/0x2630
[  153.949971][T10912]  ? proc_coredump_connector+0x2d3/0x4f0
[  153.949988][T10912]  ? __pfx_proc_coredump_connector+0x10/0x10
[  153.950007][T10912]  ? rcu_is_watching+0x12/0xc0
[  153.950023][T10912]  get_signal+0x1f2a/0x21e0
[  153.950042][T10912]  ? __pfx_get_signal+0x10/0x10
[  153.950055][T10912]  ? __pfx_force_sig_fault+0x10/0x10
[  153.950072][T10912]  arch_do_signal_or_restart+0x91/0x7a0
[  153.950094][T10912]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  153.950114][T10912]  ? do_user_addr_fault+0x8d6/0x12f0
[  153.950130][T10912]  irqentry_exit+0x1f8/0x670
[  153.950148][T10912]  asm_exc_page_fault+0x26/0x30
[  153.950158][T10912] RIP: 0033:0x0
[  153.950167][T10912] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  153.950172][T10912] RSP: 002b:00002000000002be EFLAGS: 00010217
[  153.950181][T10912] RAX: 0000000000000000 RBX: 0000000000000058 RCX: 00007fa9b6b9bf79
[  153.950188][T10912] RDX: 00007fa9b7a02f10 RSI: 0000000000000058 RDI: 00007fa9b7a02f10
[  153.950195][T10912] RBP: 00007fa9b6c327e0 R08: 0000000000000000 R09: 0000000000000058
[  153.950201][T10912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  153.950207][T10912] R13: 00007fa9b6e16128 R14: 00007fa9b6e16090 R15: 00007ffe4b07ca18
[  153.950222][T10912]  </TASK>
[  154.145559][T10912] memory: usage 277400kB, limit 307200kB, failcnt 19737
[  154.148744][T10912] memory+swap: usage 395172kB, limit 9007199254740988kB, failcnt 0
[  154.152447][T10912] kmem: usage 6904kB, limit 9007199254740988kB, failcnt 0
[  154.155430][T10912] Memory cgroup stats for /syz4:
[  154.155570][T10912] cache 275644416
[  154.165567][T10912] rss 155648
[  154.167163][T10912] rss_huge 0
[  154.168575][T10912] shmem 275648512
[  154.170208][T10912] mapped_file 0
[  154.171864][T10912] dirty 0
[  154.173187][T10912] writeback 0
[  154.173921][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  154.178944][T10912] workingset_refault_anon 6
[  154.180947][T10912] workingset_refault_file 2460
[  154.183045][T10912] swap 121704448
[  154.187456][T10912] swapcached 185171968
[  154.189347][T10912] pgpgin 172548
[  154.191324][T10912] pgpgout 105816
[  154.193104][T10912] pgfault 45674
[  154.193541][T11180] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  154.194631][T10912] pgmajfault 61
[  154.201013][T10912] inactive_anon 235655168
[  154.202821][T10912] active_anon 39755776
[  154.204518][T10912] inactive_file 0
[  154.206611][T10912] active_file 0
[  154.208151][T10912] unevictable 0
[  154.209693][T10912] hierarchical_memory_limit 314572800
[  154.212014][T10912] hierarchical_memsw_limit 9223372036854771712
[  154.214743][T10912] total_cache 275644416
[  154.216991][T10912] total_rss 155648
[  154.218781][T10912] total_rss_huge 0
[  154.220353][T10912] total_shmem 275648512
[  154.222094][T10912] total_mapped_file 0
[  154.223935][T10912] total_dirty 0
[  154.225567][T10912] total_writeback 0
[  154.228247][T10912] total_workingset_refault_anon 6
[  154.230391][T10912] total_workingset_refault_file 2460
[  154.232583][T10912] total_swap 121704448
[  154.234151][T10912] total_swapcached 185171968
[  154.235920][T10912] total_pgpgin 172548
[  154.240580][T10912] total_pgpgout 105816
[  154.242116][T10912] total_pgfault 45674
[  154.243517][T10912] total_pgmajfault 61
[  154.245081][T10912] total_inactive_anon 235655168
[  154.247028][T10912] total_active_anon 39755776
[  154.249654][T10912] total_inactive_file 0
[  154.251046][T10912] total_active_file 0
[  154.252639][T10912] total_unevictable 0
[  154.254195][T10912] anon_cost 0
[  154.255344][T10912] file_cost 0
[  154.256401][T10912] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1396,pid=10915,uid=0
[  154.263308][T10912] Memory cgroup out of memory: Killed process 10915 (syz.4.1396) total-vm:98512kB, anon-rss:1248kB, file-rss:57664kB, shmem-rss:0kB, UID:0 pgtables:220kB oom_score_adj:1000
[  154.281675][T11180] Invalid logical block size (3)
[  154.388338][T10909] syz.4.1396 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  154.391680][T10909] CPU: 2 UID: 0 PID: 10909 Comm: syz.4.1396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  154.391708][T10909] Tainted: [L]=SOFTLOCKUP
[  154.391712][T10909] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  154.391719][T10909] Call Trace:
[  154.391730][T10909]  <TASK>
[  154.391734][T10909]  dump_stack_lvl+0x100/0x190
[  154.391772][T10909]  dump_header+0xfb/0x606
[  154.391787][T10909]  oom_kill_process.cold+0xd/0x330
[  154.391800][T10909]  out_of_memory+0x340/0x14f0
[  154.391820][T10909]  ? __pfx_out_of_memory+0x10/0x10
[  154.391847][T10909]  mem_cgroup_out_of_memory+0xc6/0x130
[  154.391860][T10909]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  154.391871][T10909]  ? find_held_lock+0x2b/0x80
[  154.391887][T10909]  ? do_raw_spin_unlock+0x145/0x1e0
[  154.391899][T10909]  ? _raw_spin_unlock+0x28/0x50
[  154.391914][T10909]  try_charge_memcg+0x652/0xc90
[  154.391933][T10909]  ? __pfx_try_charge_memcg+0x10/0x10
[  154.391948][T10909]  ? find_held_lock+0x2b/0x80
[  154.391961][T10909]  ? rcu_read_unlock+0x17/0x60
[  154.391976][T10909]  ? rcu_read_unlock+0x17/0x60
[  154.391996][T10909]  charge_memcg+0xa6/0x280
[  154.392011][T10909]  __mem_cgroup_charge+0x2b/0x1e0
[  154.392030][T10909]  shmem_alloc_and_add_folio+0x451/0xd40
[  154.392047][T10909]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  154.392061][T10909]  ? shmem_allowable_huge_orders+0x2bd/0x400
[  154.392078][T10909]  shmem_get_folio_gfp+0x6ab/0x1900
[  154.392095][T10909]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  154.392112][T10909]  shmem_write_begin+0x1a4/0x420
[  154.392127][T10909]  ? __pfx_shmem_write_begin+0x10/0x10
[  154.392148][T10909]  ? balance_dirty_pages_ratelimited_flags+0x91/0x1170
[  154.392165][T10909]  ? lockdep_hardirqs_on+0x78/0x100
[  154.392182][T10909]  generic_perform_write+0x292/0xa40
[  154.392199][T10909]  ? __pfx_generic_perform_write+0x10/0x10
[  154.392218][T10909]  ? file_update_time_flags+0x373/0x500
[  154.392237][T10909]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  154.392258][T10909]  shmem_file_write_iter+0x10e/0x140
[  154.392275][T10909]  __kernel_write_iter+0x2ac/0x920
[  154.392291][T10909]  ? __pfx___kernel_write_iter+0x10/0x10
[  154.392305][T10909]  ? __up_read+0x2c5/0x700
[  154.392317][T10909]  ? dump_user_range+0x73b/0xb50
[  154.392336][T10909]  dump_user_range+0x3f9/0xb50
[  154.392358][T10909]  ? __pfx_dump_user_range+0x10/0x10
[  154.392378][T10909]  ? __pfx_writenote+0x10/0x10
[  154.392394][T10909]  elf_core_dump+0x2d16/0x3c60
[  154.392414][T10909]  ? __pfx_elf_core_dump+0x10/0x10
[  154.392427][T10909]  ? kasan_save_stack+0x3f/0x50
[  154.392440][T10909]  ? kasan_save_track+0x14/0x30
[  154.392453][T10909]  ? __kasan_kmalloc+0xaa/0xb0
[  154.392466][T10909]  ? __kvmalloc_node_noprof+0x360/0xa00
[  154.392480][T10909]  ? irqentry_exit+0x1f8/0x670
[  154.392493][T10909]  ? asm_exc_page_fault+0x26/0x30
[  154.392505][T10909]  ? 0xffffffffff600000
[  154.392536][T10909]  ? vfs_coredump+0x27b4/0x5570
[  154.392547][T10909]  vfs_coredump+0x27b4/0x5570
[  154.392563][T10909]  ? __pfx_vfs_coredump+0x10/0x10
[  154.392575][T10909]  ? __lock_acquire+0x4a5/0x2630
[  154.392597][T10909]  ? lock_acquire+0x1cf/0x380
[  154.392619][T10909]  ? is_bpf_text_address+0x8a/0x1a0
[  154.392633][T10909]  ? bpf_ksym_find+0x128/0x1c0
[  154.392653][T10909]  ? __kernel_text_address+0xd/0x30
[  154.392663][T10909]  ? unwind_get_return_address+0x59/0xa0
[  154.392677][T10909]  ? arch_stack_walk+0xa6/0xf0
[  154.392693][T10909]  ? __sigqueue_free+0xbe/0x2a0
[  154.392708][T10909]  ? stack_trace_save+0x8e/0xc0
[  154.392722][T10909]  ? __pfx_stack_trace_save+0x10/0x10
[  154.392735][T10909]  ? stack_depot_save_flags+0x27/0x9d0
[  154.392750][T10909]  ? __lock_acquire+0x4a5/0x2630
[  154.392788][T10909]  ? proc_coredump_connector+0x2d3/0x4f0
[  154.392804][T10909]  ? __pfx_proc_coredump_connector+0x10/0x10
[  154.392823][T10909]  ? rcu_is_watching+0x12/0xc0
[  154.392836][T10909]  get_signal+0x1f2a/0x21e0
[  154.392855][T10909]  ? __pfx_get_signal+0x10/0x10
[  154.392866][T10909]  ? __pfx_force_sig_fault+0x10/0x10
[  154.392883][T10909]  arch_do_signal_or_restart+0x91/0x7a0
[  154.392899][T10909]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  154.392917][T10909]  ? do_user_addr_fault+0x8d6/0x12f0
[  154.392932][T10909]  irqentry_exit+0x1f8/0x670
[  154.392947][T10909]  asm_exc_page_fault+0x26/0x30
[  154.392958][T10909] RIP: 0033:0x0
[  154.392965][T10909] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  154.392970][T10909] RSP: 002b:00002000000002be EFLAGS: 00010217
[  154.392978][T10909] RAX: 0000000000000000 RBX: 0000000000000058 RCX: 00007fa9b6b9bf79
[  154.392985][T10909] RDX: 00007fa9b7a02f10 RSI: 0000000000000058 RDI: 00007fa9b7a02f10
[  154.392991][T10909] RBP: 00007fa9b6c327e0 R08: 0000000000000000 R09: 0000000000000058
[  154.392997][T10909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  154.393003][T10909] R13: 00007fa9b6e16128 R14: 00007fa9b6e16090 R15: 00007ffe4b07ca18
[  154.393017][T10909]  </TASK>
[  154.393021][T10909] memory: usage 307200kB, limit 307200kB, failcnt 19805
[  154.417998][T11189] gretap2: entered promiscuous mode
[  154.424155][T10909] memory+swap: usage 431228kB, limit 9007199254740988kB, failcnt 0
[  154.591580][T10909] kmem: usage 6704kB, limit 9007199254740988kB, failcnt 0
[  154.594656][T10909] Memory cgroup stats for /syz4:
[  154.594851][T10909] cache 307499008
[  154.598512][T10909] rss 155648
[  154.600035][T10909] rss_huge 0
[  154.601455][T10909] shmem 307314688
[  154.603020][T10909] mapped_file 28672
[  154.604695][T10909] dirty 0
[  154.606008][T10909] writeback 0
[  154.607412][T10909] workingset_refault_anon 6
[  154.609328][T10909] workingset_refault_file 3540
[  154.621490][T10909] swap 126779392
[  154.623100][T10909] swapcached 190480384
[  154.643369][T10909] pgpgin 181817
[  154.644939][T10909] pgpgout 107330
[  154.646513][T10909] pgfault 46181
[  154.671234][T11200] netdevsim netdevsim3: Direct firmware load for ./file0 failed with error -2
[  154.674523][T10909] pgmajfault 64
[  154.676396][T10909] inactive_anon 213520384
[  154.678013][T10909] active_anon 93982720
[  154.678911][T11200] netdevsim netdevsim3: Falling back to sysfs fallback for: ./file0
[  154.679440][T10909] inactive_file 0
[  154.694169][T10909] active_file 0
[  154.695372][T10909] unevictable 0
[  154.706026][T10909] hierarchical_memory_limit 314572800
[  154.708583][T10909] hierarchical_memsw_limit 9223372036854771712
[  154.710624][T10909] total_cache 307499008
[  154.711965][T10909] total_rss 155648
[  154.713261][T10909] total_rss_huge 0
[  154.714492][T10909] total_shmem 307314688
[  154.715847][T10909] total_mapped_file 28672
[  154.726130][T11205] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1485'.
[  154.731892][T11205] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1485'.
[  154.736568][T10909] total_dirty 0
[  154.737862][T10909] total_writeback 0
[  154.745904][T10909] total_workingset_refault_anon 6
[  154.747548][T10909] total_workingset_refault_file 3540
[  154.759714][T10909] total_swap 126779392
[  154.761041][T10909] total_swapcached 190480384
[  154.762642][T10909] total_pgpgin 181817
[  154.763913][T10909] total_pgpgout 107330
[  154.765279][T10909] total_pgfault 46181
[  154.766604][T10909] total_pgmajfault 64
[  154.767919][T10909] total_inactive_anon 213520384
[  154.769478][T10909] total_active_anon 93982720
[  154.780942][T10909] total_inactive_file 0
[  154.782513][T10909] total_active_file 0
[  154.783802][T10909] total_unevictable 0
[  154.785078][T10909] anon_cost 0
[  154.786224][T10909] file_cost 0
[  154.787299][T10909] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1396,pid=10929,uid=0
[  154.797338][T11207] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1486'.
[  154.800200][T11207] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1486'.
[  154.815249][T10909] Memory cgroup out of memory: Killed process 10929 (syz.4.1396) total-vm:98512kB, anon-rss:1236kB, file-rss:57664kB, shmem-rss:0kB, UID:0 pgtables:216kB oom_score_adj:1000
[  154.925560][T11211] team0: Device gtp0 is up. Set it down before adding it as a team port
[  155.177159][T11179] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  155.207724][T11223] x_tables: ip6_tables: mh match: only valid for protocol 135
[  155.476388][T10912] syz.4.1396 invoked oom-killer: gfp_mask=0x100cc0(GFP_USER), order=0, oom_score_adj=1000
[  155.481748][T10912] CPU: 1 UID: 0 PID: 10912 Comm: syz.4.1396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  155.481774][T10912] Tainted: [L]=SOFTLOCKUP
[  155.481778][T10912] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  155.481787][T10912] Call Trace:
[  155.481795][T10912]  <TASK>
[  155.481802][T10912]  dump_stack_lvl+0x100/0x190
[  155.481856][T10912]  dump_header+0xfb/0x606
[  155.481873][T10912]  oom_kill_process.cold+0xd/0x330
[  155.481896][T10912]  out_of_memory+0x340/0x14f0
[  155.481923][T10912]  ? __pfx_out_of_memory+0x10/0x10
[  155.481953][T10912]  mem_cgroup_out_of_memory+0xc6/0x130
[  155.481976][T10912]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  155.481993][T10912]  ? find_held_lock+0x2b/0x80
[  155.482019][T10912]  ? do_raw_spin_unlock+0x145/0x1e0
[  155.482036][T10912]  ? _raw_spin_unlock+0x28/0x50
[  155.482058][T10912]  try_charge_memcg+0x652/0xc90
[  155.482087][T10912]  ? __pfx_try_charge_memcg+0x10/0x10
[  155.482112][T10912]  ? find_held_lock+0x2b/0x80
[  155.482132][T10912]  ? rcu_read_unlock+0x17/0x60
[  155.482166][T10912]  ? rcu_read_unlock+0x17/0x60
[  155.482194][T10912]  charge_memcg+0xa6/0x280
[  155.482214][T10912]  __mem_cgroup_charge+0x2b/0x1e0
[  155.482238][T10912]  filemap_add_folio+0xe7/0x690
[  155.482263][T10912]  ? __pfx_filemap_add_folio+0x10/0x10
[  155.482291][T10912]  __filemap_get_folio_mpol+0x5d5/0xe70
[  155.482321][T10912]  filemap_fault+0x8a2/0x2eb0
[  155.482347][T10912]  ? __pfx_filemap_fault+0x10/0x10
[  155.482374][T10912]  ? __pfx_filemap_map_pages+0x10/0x10
[  155.482402][T10912]  __do_fault+0x10d/0x550
[  155.482429][T10912]  do_fault+0xaf9/0x1a00
[  155.482454][T10912]  __handle_mm_fault+0x180f/0x2b60
[  155.482482][T10912]  ? __pfx___handle_mm_fault+0x10/0x10
[  155.482503][T10912]  ? pte_offset_map_lock+0x174/0x320
[  155.482527][T10912]  ? find_held_lock+0x2b/0x80
[  155.482553][T10912]  ? follow_page_pte+0x5b3/0x1400
[  155.482585][T10912]  handle_mm_fault+0x36d/0xa20
[  155.482610][T10912]  __get_user_pages+0xf9c/0x34d0
[  155.482646][T10912]  ? __pfx___get_user_pages+0x10/0x10
[  155.482679][T10912]  get_dump_page+0x27e/0x3d0
[  155.482697][T10912]  ? __pfx_get_dump_page+0x10/0x10
[  155.482712][T10912]  ? dump_user_range+0x73b/0xb50
[  155.482739][T10912]  dump_user_range+0x18d/0xb50
[  155.482762][T10912]  ? __pfx_dump_user_range+0x10/0x10
[  155.482790][T10912]  ? __pfx_writenote+0x10/0x10
[  155.482812][T10912]  elf_core_dump+0x2d16/0x3c60
[  155.482846][T10912]  ? __pfx_elf_core_dump+0x10/0x10
[  155.482868][T10912]  ? kasan_save_stack+0x3f/0x50
[  155.482890][T10912]  ? kasan_save_track+0x14/0x30
[  155.482910][T10912]  ? __kasan_kmalloc+0xaa/0xb0
[  155.482930][T10912]  ? __kvmalloc_node_noprof+0x360/0xa00
[  155.482954][T10912]  ? irqentry_exit+0x1f8/0x670
[  155.482977][T10912]  ? asm_exc_page_fault+0x26/0x30
[  155.482998][T10912]  ? 0xffffffffff600000
[  155.483055][T10912]  ? vfs_coredump+0x27b4/0x5570
[  155.483074][T10912]  vfs_coredump+0x27b4/0x5570
[  155.483103][T10912]  ? __pfx_vfs_coredump+0x10/0x10
[  155.483123][T10912]  ? __lock_acquire+0x4a5/0x2630
[  155.483161][T10912]  ? lock_acquire+0x1cf/0x380
[  155.483198][T10912]  ? is_bpf_text_address+0x8a/0x1a0
[  155.483222][T10912]  ? bpf_ksym_find+0x128/0x1c0
[  155.483253][T10912]  ? __kernel_text_address+0xd/0x30
[  155.483272][T10912]  ? unwind_get_return_address+0x59/0xa0
[  155.483294][T10912]  ? arch_stack_walk+0xa6/0xf0
[  155.483321][T10912]  ? __sigqueue_free+0xbe/0x2a0
[  155.483344][T10912]  ? stack_trace_save+0x8e/0xc0
[  155.483366][T10912]  ? __pfx_stack_trace_save+0x10/0x10
[  155.483385][T10912]  ? xas_find+0x32c/0x8e0
[  155.483409][T10912]  ? stack_depot_save_flags+0x27/0x9d0
[  155.483432][T10912]  ? __lock_acquire+0x4a5/0x2630
[  155.483501][T10912]  ? proc_coredump_connector+0x2d3/0x4f0
[  155.483523][T10912]  ? __pfx_proc_coredump_connector+0x10/0x10
[  155.483554][T10912]  ? rcu_is_watching+0x12/0xc0
[  155.483577][T10912]  get_signal+0x1f2a/0x21e0
[  155.483624][T10912]  ? __pfx_get_signal+0x10/0x10
[  155.483646][T10912]  ? __pfx_force_sig_fault+0x10/0x10
[  155.483676][T10912]  arch_do_signal_or_restart+0x91/0x7a0
[  155.483699][T10912]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  155.483728][T10912]  ? do_user_addr_fault+0x8d6/0x12f0
[  155.483754][T10912]  irqentry_exit+0x1f8/0x670
[  155.483796][T10912]  asm_exc_page_fault+0x26/0x30
[  155.483815][T10912] RIP: 0033:0x0
[  155.483828][T10912] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  155.483836][T10912] RSP: 002b:00002000000002be EFLAGS: 00010217
[  155.483852][T10912] RAX: 0000000000000000 RBX: 0000000000000058 RCX: 00007fa9b6b9bf79
[  155.483863][T10912] RDX: 00007fa9b7a02f10 RSI: 0000000000000058 RDI: 00007fa9b7a02f10
[  155.483875][T10912] RBP: 00007fa9b6c327e0 R08: 0000000000000000 R09: 0000000000000058
[  155.483884][T10912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  155.483892][T10912] R13: 00007fa9b6e16128 R14: 00007fa9b6e16090 R15: 00007ffe4b07ca18
[  155.483915][T10912]  </TASK>
[  155.640227][ T5938] Bluetooth: hci2: command 0x0419 tx timeout
[  155.654237][T10912] memory: usage 307200kB, limit 307200kB, failcnt 23873
[  155.656711][T10912] memory+swap: usage 431228kB, limit 9007199254740988kB, failcnt 0
[  155.659618][T10912] kmem: usage 6232kB, limit 9007199254740988kB, failcnt 0
[  155.661847][T10912] Memory cgroup stats for /syz4:
[  155.662031][T10912] cache 308133888
[  155.664779][T10912] rss 53248
[  155.666425][T10912] rss_huge 0
[  155.667483][T10912] shmem 308117504
[  155.668675][T10912] mapped_file 0
[  155.669802][T10912] dirty 0
[  155.670809][T10912] writeback 0
[  155.671890][T10912] workingset_refault_anon 7
[  155.673417][T10912] workingset_refault_file 6981
[  155.675009][T10912] swap 127004672
[  155.676462][T10912] swapcached 234561536
[  155.677874][T10912] pgpgin 206962
[  155.679073][T10912] pgpgout 132326
[  155.680291][T10912] pgfault 47571
[  155.681922][T10912] pgmajfault 117
[  155.683161][T10912] inactive_anon 104873984
[  155.684530][T10912] active_anon 203300864
[  155.685907][T10912] inactive_file 12288
[  155.687510][T10912] active_file 0
[  155.687544][T11234] netlink: 'syz.3.1497': attribute type 1 has an invalid length.
[  155.688705][T10912] unevictable 0
[  155.692719][T10912] hierarchical_memory_limit 314572800
[  155.694441][T10912] hierarchical_memsw_limit 9223372036854771712
[  155.696430][T10912] total_cache 308133888
[  155.698120][T10912] total_rss 53248
[  155.699318][T10912] total_rss_huge 0
[  155.700526][T10912] total_shmem 308117504
[  155.701879][T10912] total_mapped_file 0
[  155.703170][T10912] total_dirty 0
[  155.704307][T10912] total_writeback 0
[  155.705550][T10912] total_workingset_refault_anon 7
[  155.707202][T10912] total_workingset_refault_file 6981
[  155.708954][T10912] total_swap 127004672
[  155.710287][T10912] total_swapcached 234561536
[  155.711776][T10912] total_pgpgin 206962
[  155.713107][T10912] total_pgpgout 132326
[  155.714424][T10912] total_pgfault 47571
[  155.715706][T10912] total_pgmajfault 117
[  155.717018][T10912] total_inactive_anon 104873984
[  155.718644][T10912] total_active_anon 203300864
[  155.720298][T10912] total_inactive_file 12288
[  155.721899][T10912] total_active_file 0
[  155.723312][T10912] total_unevictable 0
[  155.724639][T10912] anon_cost 0
[  155.725733][T10912] file_cost 0
[  155.726846][T10912] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1396,pid=10906,uid=0
[  155.732914][T10912] Memory cgroup out of memory: Killed process 10906 (syz.4.1396) total-vm:98512kB, anon-rss:1236kB, file-rss:57664kB, shmem-rss:0kB, UID:0 pgtables:220kB oom_score_adj:1000
[  155.742945][T11234] 8021q: adding VLAN 0 to HW filter on device bond4
[  155.781096][T11238] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  155.804699][T11238] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1494'.
[  155.807716][T11238] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1494'.
[  155.842925][ T8715] syz-executor invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  155.846118][ T8715] CPU: 1 UID: 0 PID: 8715 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  155.846136][ T8715] Tainted: [L]=SOFTLOCKUP
[  155.846140][ T8715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  155.846146][ T8715] Call Trace:
[  155.846151][ T8715]  <TASK>
[  155.846167][ T8715]  dump_stack_lvl+0x100/0x190
[  155.846189][ T8715]  dump_header+0xfb/0x606
[  155.846202][ T8715]  oom_kill_process.cold+0xd/0x330
[  155.846215][ T8715]  out_of_memory+0x340/0x14f0
[  155.846232][ T8715]  ? __pfx_out_of_memory+0x10/0x10
[  155.846249][ T8715]  mem_cgroup_out_of_memory+0xc6/0x130
[  155.846262][ T8715]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  155.846273][ T8715]  ? find_held_lock+0x2b/0x80
[  155.846290][ T8715]  ? do_raw_spin_unlock+0x145/0x1e0
[  155.846302][ T8715]  ? _raw_spin_unlock+0x28/0x50
[  155.846317][ T8715]  try_charge_memcg+0x652/0xc90
[  155.846336][ T8715]  ? __pfx_try_charge_memcg+0x10/0x10
[  155.846351][ T8715]  ? rcu_read_unlock+0x17/0x60
[  155.846366][ T8715]  ? rcu_read_unlock+0x17/0x60
[  155.846384][ T8715]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  155.846399][ T8715]  obj_cgroup_charge_account+0x33d/0x640
[  155.846417][ T8715]  __memcg_slab_post_alloc_hook+0x2e3/0x9a0
[  155.846437][ T8715]  ? kasan_save_track+0x14/0x30
[  155.846452][ T8715]  kmem_cache_alloc_noprof+0x58a/0x6e0
[  155.846465][ T8715]  ? copy_process+0x7365/0x7a10
[  155.846482][ T8715]  copy_process+0x7365/0x7a10
[  155.846503][ T8715]  ? __pfx_copy_process+0x10/0x10
[  155.846518][ T8715]  ? do_raw_spin_lock+0x128/0x260
[  155.846535][ T8715]  kernel_clone+0xfc/0x9a0
[  155.846550][ T8715]  ? __pfx_kernel_clone+0x10/0x10
[  155.846563][ T8715]  ? __lock_acquire+0x4a5/0x2630
[  155.846583][ T8715]  ? find_held_lock+0x2b/0x80
[  155.846595][ T8715]  ? __might_fault+0xc5/0x140
[  155.846609][ T8715]  __do_sys_clone+0xd9/0x120
[  155.846624][ T8715]  ? __pfx___do_sys_clone+0x10/0x10
[  155.846650][ T8715]  do_syscall_64+0x106/0xf80
[  155.846665][ T8715]  ? clear_bhb_loop+0x40/0x90
[  155.846678][ T8715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.846689][ T8715] RIP: 0033:0x7fa9b6bc4a12
[  155.846699][ T8715] Code: 89 e7 e8 f1 8b f7 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 89 c5 85 c0 75 3b 64 48 8b 04 25 10 00 00
[  155.846709][ T8715] RSP: 002b:00007ffe4b07cc30 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  155.846720][ T8715] RAX: ffffffffffffffda RBX: 00007ffe4b07cc30 RCX: 00007fa9b6bc4a12
[  155.846726][ T8715] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  155.846732][ T8715] RBP: 00007ffe4b07cdbc R08: 0000000000000000 R09: 0000000000000001
[  155.846738][ T8715] R10: 0000555567c237d0 R11: 0000000000000246 R12: 0000000000000001
[  155.846745][ T8715] R13: 00000000000927c0 R14: 0000000000024a31 R15: 00007ffe4b07ce10
[  155.846759][ T8715]  </TASK>
[  155.846786][ T8715] memory: usage 307200kB, limit 307200kB, failcnt 24315
[  155.960973][ T8715] memory+swap: usage 406188kB, limit 9007199254740988kB, failcnt 0
[  155.964115][ T8715] kmem: usage 6084kB, limit 9007199254740988kB, failcnt 0
[  155.966369][ T8715] Memory cgroup stats for /syz4:
[  155.966454][ T8715] cache 284114944
[  155.969273][ T8715] rss 53248
[  155.970318][ T8715] rss_huge 0
[  155.971365][ T8715] shmem 284106752
[  155.972651][ T8715] mapped_file 0
[  155.973937][ T8715] dirty 0
[  155.976511][ T8715] writeback 0
[  155.977695][ T8715] workingset_refault_anon 7
[  155.979730][ T8715] workingset_refault_file 7002
[  155.981221][ T8715] swap 125358080
[  155.982510][ T8715] swapcached 248832000
[  155.983961][ T8715] pgpgin 207009
[  155.985114][ T8715] pgpgout 138207
[  155.986358][ T8715] pgfault 47575
[  155.987459][ T8715] pgmajfault 119
[  155.988612][ T8715] inactive_anon 182263808
[  155.990101][ T8715] active_anon 100683776
[  155.991455][ T8715] inactive_file 0
[  155.992747][ T8715] active_file 8192
[  155.994552][ T8715] unevictable 0
[  155.995702][ T8715] hierarchical_memory_limit 314572800
[  155.997780][ T8715] hierarchical_memsw_limit 9223372036854771712
[  156.000098][ T8715] total_cache 284114944
[  156.001516][ T8715] total_rss 53248
[  156.002731][ T8715] total_rss_huge 0
[  156.003946][ T8715] total_shmem 284106752
[  156.005344][ T8715] total_mapped_file 0
[  156.006809][ T8715] total_dirty 0
[  156.007948][ T8715] total_writeback 0
[  156.009185][ T8715] total_workingset_refault_anon 7
[  156.011389][ T8715] total_workingset_refault_file 7002
[  156.013207][ T8715] total_swap 125358080
[  156.014608][ T8715] total_swapcached 248832000
[  156.016343][ T8715] total_pgpgin 207009
[  156.018134][ T8715] total_pgpgout 138207
[  156.019709][ T8715] total_pgfault 47575
[  156.021200][ T8715] total_pgmajfault 119
[  156.022526][ T8715] total_inactive_anon 182263808
[  156.024711][ T8715] total_active_anon 100683776
[  156.026673][ T8715] total_inactive_file 0
[  156.028060][ T8715] total_active_file 8192
[  156.029528][ T8715] total_unevictable 0
[  156.030962][ T8715] anon_cost 0
[  156.032249][ T8715] file_cost 0
[  156.033715][ T8715] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1396,pid=10978,uid=0
[  156.038792][ T8715] Memory cgroup out of memory: Killed process 10978 (syz.4.1396) total-vm:98512kB, anon-rss:1236kB, file-rss:57664kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:1000
[  156.450493][T11290] nvme_fabrics: missing parameter 'transport=%s'
[  156.452724][T11290] nvme_fabrics: missing parameter 'nqn=%s'
[  156.511019][T11299] netlink: 'syz.3.1512': attribute type 4 has an invalid length.
[  156.630041][T11306] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  156.790191][   T40] kauditd_printk_skb: 130 callbacks suppressed
[  156.790203][   T40] audit: type=1400 audit(2000524375.998:2206): avc:  denied  { read write } for  pid=10465 comm="syz-executor" name="loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  156.807422][T11299] atomic_op ffff88803d2d3998 conn xmit_atomic 0000000000000000
[  156.808579][   T40] audit: type=1400 audit(2000524375.998:2207): avc:  denied  { open } for  pid=10465 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  156.822203][   T40] audit: type=1400 audit(2000524375.998:2208): avc:  denied  { ioctl } for  pid=10465 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=663 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  156.833345][   T40] audit: type=1400 audit(2000524376.008:2209): avc:  denied  { bind } for  pid=11298 comm="syz.3.1512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  156.833467][T10909] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x3475 pfn:0x590fc
[  156.842358][   T40] audit: type=1400 audit(2000524376.008:2210): avc:  denied  { create } for  pid=11298 comm="syz.3.1512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  156.846563][T10950] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x346d pfn:0x57256
[  156.846586][T10950] memcg:ffff88801decdcc0
[  156.846596][T10950] flags: 0xfff00000000001(locked|node=0|zone=1|lastcpupid=0x7ff)
[  156.849183][T10939] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xecb pfn:0x1b6af
[  156.849197][T10939] memcg:ffff88801decdcc0
[  156.849202][T10939] flags: 0xfff00000000001(locked|node=0|zone=1|lastcpupid=0x7ff)
[  156.849217][T10939] raw: 00fff00000000001 0000000000000000 dead000000000122 0000000000000000
[  156.849227][T10939] raw: 0000000000000ecb 0000000000000000 00000001ffffffff ffff88801decdcc0
[  156.849233][T10939] page dumped because: VM_BUG_ON_FOLIO(folio_order(folio) < mapping_min_folio_order(mapping))
[  156.849240][T10939] page_owner tracks the page as allocated
[  156.849319][T10939] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 10939, tgid 10939 (syz.4.1396), ts 156849170257, free_ts 156832746894
[  156.849338][T10939]  post_alloc_hook+0x153/0x170
[  156.849353][T10939]  get_page_from_freelist+0x111d/0x3140
[  156.849366][T10939]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  156.849378][T10939]  alloc_pages_mpol+0x1fb/0x550
[  156.849393][T10939]  folio_alloc_noprof+0x22/0x330
[  156.849402][T10939]  filemap_alloc_folio_noprof.part.0+0x377/0x450
[  156.849420][T10939]  filemap_alloc_folio_noprof+0x5e/0x80
[  156.849439][T10939]  page_cache_ra_order+0x54b/0xf30
[  156.849451][T10939]  filemap_fault+0x191a/0x2eb0
[  156.849464][T10939]  __do_fault+0x10d/0x550
[  156.849478][T10939]  do_fault+0xaf9/0x1a00
[  156.849493][T10939]  __handle_mm_fault+0x180f/0x2b60
[  156.849504][T10939]  handle_mm_fault+0x36d/0xa20
[  156.849514][T10939]  __get_user_pages+0xf9c/0x34d0
[  156.849530][T10939]  get_dump_page+0x27e/0x3d0
[  156.849538][T10939]  dump_user_range+0x18d/0xb50
[  156.849552][T10939] page last free pid 11321 tgid 11310 stack trace:
[  156.849561][T10939]  __free_frozen_pages+0x7ca/0x10a0
[  156.849575][T10939]  tlb_remove_table_rcu+0x2b2/0x390
[  156.849589][T10939]  rcu_core+0x5a2/0x10d0
[  156.849602][T10939]  handle_softirqs+0x1eb/0x9e0
[  156.849623][T10939]  do_softirq+0xac/0xe0
[  156.849640][T10939]  __local_bh_enable_ip+0xf8/0x120
[  156.849658][T10939]  inet_unhash+0x262/0x9b0
[  156.849676][T10939]  tcp_set_state+0x281/0x740
[  156.849690][T10939]  __tcp_close+0x9ee/0x1110
[  156.849708][T10939]  tcp_close+0x28/0x110
[  156.849725][T10939]  inet_release+0xed/0x200
[  156.849743][T10939]  __sock_release+0xb3/0x260
[  156.849767][T10939]  sock_close+0x1c/0x30
[  156.849787][T10939]  __fput+0x3ff/0xb40
[  156.849825][T10939]  task_work_run+0x150/0x240
[  156.849843][T10939]  do_exit+0x829/0x2aa0
[  156.849988][T10939] ------------[ cut here ]------------
[  156.849996][T10939] kernel BUG at mm/filemap.c:858!
[  156.850035][T10939] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  156.850055][T10939] CPU: 2 UID: 0 PID: 10939 Comm: syz.4.1396 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  156.850078][T10939] Tainted: [L]=SOFTLOCKUP
[  156.850085][T10939] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  156.850095][T10939] RIP: 0010:__filemap_add_folio+0xfcf/0x1280
[  156.850119][T10939] Code: 5e c5 ff 48 c7 c6 c0 2f bd 8b 4c 89 ef e8 d9 3f 12 00 90 0f 0b e8 51 5e c5 ff 48 c7 c6 20 30 bd 8b 4c 89 ef e8 c2 3f 12 00 90 <0f> 0b e8 3a 5e c5 ff 90 0f 0b 90 e9 4b fe ff ff e8 2c 5e c5 ff 90
[  156.850135][T10939] RSP: 0018:ffffc900036ee890 EFLAGS: 00010293
[  156.850150][T10939] RAX: 0000000000000000 RBX: 0000000000112cc0 RCX: ffffc900036ee774
[  156.850160][T10939] RDX: ffff8880226a8000 RSI: ffffffff82557c28 RDI: ffff8880226a8484
[  156.850172][T10939] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  156.850182][T10939] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000002
[  156.850192][T10939] R13: ffffea00006dabc0 R14: 0000000000000000 R15: 1ffff920006ddd3c
[  156.850203][T10939] FS:  00007fa9b7a036c0(0000) GS:ffff8880d654d000(0000) knlGS:0000000000000000
[  156.850234][T10939] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  156.850246][T10939] CR2: 00007f123dd456b8 CR3: 0000000037678000 CR4: 0000000000352ef0
[  156.850256][T10939] Call Trace:
[  156.850261][T10939]  <TASK>
[  156.850270][T10939]  ? __pfx___filemap_add_folio+0x10/0x10
[  156.850293][T10939]  filemap_add_folio+0x1d8/0x690
[  156.850312][T10939]  ? __lock_acquire+0x4a5/0x2630
[  156.850333][T10939]  ? __pfx_filemap_add_folio+0x10/0x10
[  156.850349][T10939]  ? css_rstat_updated+0x1ce/0x5a0
[  156.850369][T10939]  page_cache_ra_order+0x614/0xf30
[  156.850387][T10939]  filemap_fault+0x191a/0x2eb0
[  156.850405][T10939]  ? __folio_batch_add_and_move+0x464/0xc60
[  156.850422][T10939]  ? __pfx_filemap_fault+0x10/0x10
[  156.850440][T10939]  ? __pfx_filemap_map_pages+0x10/0x10
[  156.850458][T10939]  __do_fault+0x10d/0x550
[  156.850477][T10939]  do_fault+0xaf9/0x1a00
[  156.850498][T10939]  __handle_mm_fault+0x180f/0x2b60
[  156.850514][T10939]  ? __pfx___handle_mm_fault+0x10/0x10
[  156.850529][T10939]  ? pte_offset_map_lock+0x174/0x320
[  156.850548][T10939]  ? find_held_lock+0x2b/0x80
[  156.850567][T10939]  ? follow_page_pte+0x5b3/0x1400
[  156.850588][T10939]  handle_mm_fault+0x36d/0xa20
[  156.850604][T10939]  __get_user_pages+0xf9c/0x34d0
[  156.850628][T10939]  ? __pfx___get_user_pages+0x10/0x10
[  156.850650][T10939]  get_dump_page+0x27e/0x3d0
[  156.850663][T10939]  ? __pfx_get_dump_page+0x10/0x10
[  156.850677][T10939]  ? dump_user_range+0x73b/0xb50
[  156.850694][T10939]  dump_user_range+0x18d/0xb50
[  156.850711][T10939]  ? __pfx_dump_user_range+0x10/0x10
[  156.850730][T10939]  ? __pfx_writenote+0x10/0x10
[  156.850749][T10939]  elf_core_dump+0x2d16/0x3c60
[  156.850771][T10939]  ? __pfx_elf_core_dump+0x10/0x10
[  156.850787][T10939]  ? kasan_save_stack+0x3f/0x50
[  156.850803][T10939]  ? kasan_save_track+0x14/0x30
[  156.850820][T10939]  ? __kasan_kmalloc+0xaa/0xb0
[  156.850836][T10939]  ? __kvmalloc_node_noprof+0x360/0xa00
[  156.850857][T10939]  ? irqentry_exit+0x1f8/0x670
[  156.850907][T10939]  ? asm_exc_page_fault+0x26/0x30
[  156.850924][T10939]  ? 0xffffffffff600000
[  156.850952][T10939]  ? vfs_coredump+0x27b4/0x5570
[  156.850968][T10939]  vfs_coredump+0x27b4/0x5570
[  156.850986][T10939]  ? __pfx_vfs_coredump+0x10/0x10
[  156.851003][T10939]  ? __lock_acquire+0x4a5/0x2630
[  156.851037][T10939]  ? lock_acquire+0x1cf/0x380
[  156.851064][T10939]  ? is_bpf_text_address+0x8a/0x1a0
[  156.851082][T10939]  ? bpf_ksym_find+0x128/0x1c0
[  156.851102][T10939]  ? __kernel_text_address+0xd/0x30
[  156.851116][T10939]  ? unwind_get_return_address+0x59/0xa0
[  156.851133][T10939]  ? arch_stack_walk+0xa6/0xf0
[  156.851151][T10939]  ? __sigqueue_free+0xbe/0x2a0
[  156.851170][T10939]  ? stack_trace_save+0x8e/0xc0
[  156.851188][T10939]  ? __pfx_stack_trace_save+0x10/0x10
[  156.851204][T10939]  ? stack_depot_save_flags+0x27/0x9d0
[  156.851225][T10939]  ? __lock_acquire+0x4a5/0x2630
[  156.851307][T10939]  ? proc_coredump_connector+0x2d3/0x4f0
[  156.851340][T10939]  ? __pfx_proc_coredump_connector+0x10/0x10
[  156.851365][T10939]  ? rcu_is_watching+0x12/0xc0
[  156.851387][T10939]  get_signal+0x1f2a/0x21e0
[  156.851411][T10939]  ? __pfx_get_signal+0x10/0x10
[  156.851430][T10939]  ? __pfx_force_sig_fault+0x10/0x10
[  156.851452][T10939]  arch_do_signal_or_restart+0x91/0x7a0
[  156.851475][T10939]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  156.851498][T10939]  ? do_user_addr_fault+0x8d6/0x12f0
[  156.851517][T10939]  irqentry_exit+0x1f8/0x670
[  156.851541][T10939]  asm_exc_page_fault+0x26/0x30
[  156.851558][T10939] RIP: 0033:0x0
[  156.851570][T10939] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  156.851579][T10939] RSP: 002b:00002000000002be EFLAGS: 00010217
[  156.851595][T10939] RAX: 0000000000000000 RBX: 0000000000000058 RCX: 00007fa9b6b9bf79
[  156.851606][T10939] RDX: 00007fa9b7a02f10 RSI: 0000000000000058 RDI: 00007fa9b7a02f10
[  156.851618][T10939] RBP: 00007fa9b6c327e0 R08: 0000000000000000 R09: 0000000000000058
[  156.851629][T10939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  156.851639][T10939] R13: 00007fa9b6e16128 R14: 00007fa9b6e16090 R15: 00007ffe4b07ca18
[  156.851657][T10939]  </TASK>
[  156.851663][T10939] Modules linked in:
[  156.851740][T10939] ---[ end trace 0000000000000000 ]---
[  156.859380][   T40] audit: type=1400 audit(2000524376.008:2211): avc:  denied  { bind } for  pid=11298 comm="syz.3.1512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  156.861035][T10959] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x3465 pfn:0x57254
[  156.863918][   T40] audit: type=1400 audit(2000524376.008:2212): avc:  denied  { name_bind } for  pid=11298 comm="syz.3.1512" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  156.866087][T10939] RIP: 0010:__filemap_add_folio+0xfcf/0x1280
[  156.866116][T10939] Code: 5e c5 ff 48 c7 c6 c0 2f bd 8b 4c 89 ef e8 d9 3f 12 00 90 0f 0b e8 51 5e c5 ff 48 c7 c6 20 30 bd 8b 4c 89 ef e8 c2 3f 12 00 90 <0f> 0b e8 3a 5e c5 ff 90 0f 0b 90 e9 4b fe ff ff e8 2c 5e c5 ff 90
[  156.866127][T10939] RSP: 0018:ffffc900036ee890 EFLAGS: 00010293
[  156.866137][T10939] RAX: 0000000000000000 RBX: 0000000000112cc0 RCX: ffffc900036ee774
[  156.866144][T10939] RDX: ffff8880226a8000 RSI: ffffffff82557c28 RDI: ffff8880226a8484
[  156.866151][T10939] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  156.866157][T10939] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000002
[  156.866163][T10939] R13: ffffea00006dabc0 R14: 0000000000000000 R15: 1ffff920006ddd3c
[  156.866169][T10939] FS:  00007fa9b7a036c0(0000) GS:ffff8880d654d000(0000) knlGS:0000000000000000
[  156.866195][T10939] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  156.866204][T10939] CR2: 0000001b2ef23ffc CR3: 0000000037678000 CR4: 0000000000352ef0
[  156.866212][T10939] Kernel panic - not syncing: Fatal exception
[  157.971852][T10939] Shutting down cpus with NMI
[  157.972455][T10939] Kernel Offset: disabled

VM DIAGNOSIS:
10:39:26  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81ad9f93 RDX=ffff888034a80000
RSI=ffffffff81ad9fdb RDI=ffffffff94125fa0 RBP=0000000000000000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff2824bf4 R10=ffffffff94125fa7 R11=ffffc90000007ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81ad9fdc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d634d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f184804e661 CR3=000000000e598000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000010001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a6b6361747320 6461657268747020
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe57e7d7d6
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe57e7d7d6 00007ffe57e7d7dc
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1848032e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1848032e86
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1848032fea
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1848032e78
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 657a6973203c2065 7a69736565726600 632e6b6361747365 7461636f6c6c6100
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 405f4c5605190540 5f4c564040574300 460b4e4644515640 5144464a49494400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f18481ea498 00007f18481ea468 00007f18481ea4a0 00007f18481ea480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000010001 RBX=0000000000000000 RCX=ffffffff81ad9f93 RDX=ffff888124488000
RSI=ffffffff81ad9fdb RDI=ffffffff94125fa0 RBP=0000000000000000 RSP=ffffc900006a0fd0
R8 =0000000000000001 R9 =fffffbfff2824bf4 R10=ffffffff94125fa7 R11=ffffc900006a0ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81ad9fdc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa9b7a036c0 ffffffff 00c00000
GS =0000 ffff8880d644d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f123d04e661 CR3=0000000039523000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000010001 Opmask01=0000000000000000 Opmask02=00000000fc02fefc Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a6b6361747320 6461657268747020
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe26713e46
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe26713e46 00007ffe26713e4c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f123d032e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f123d032e86
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f123d032fea
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f123d032e78
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 657a6973203c2065 7a69736565726600 632e6b6361747365 7461636f6c6c6100
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 405f4c5605190540 5f4c564040574300 460b4e4644515640 5144464a49494400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f123d1ea498 00007f123d1ea468 00007f123d1ea4a0 00007f123d1ea480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000035 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85789ee5 RDI=ffffffff9b498940 RBP=ffffffff9b498900 RSP=ffffc900036ee260
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2e7a7973203a5043
R12=0000000000000000 R13=0000000000000035 R14=0000000000000010 R15=ffffffff85789e80
RIP=ffffffff85789f0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa9b7a036c0 ffffffff 00c00000
GS =0000 ffff8880d654d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b2ef23ffc CR3=0000000037678000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000000000 Opmask02=00000000040000c0 Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe87d637ab 00007ffe87d637ab
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe87d63cb0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe87d63cb0 0000003000000018
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3152203634323030 3030303030303030 303030203a313152 2030303030303000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3152203634323030 3030303030303030 3030302030313152 2030303030303000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 22323135312e332e 7a7973223d6d6d6f 632038393231313d 6469702020726f66
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 313d657669737369 6d7265702074656b 636f735f706d6369 3d7373616c637420
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 745f74726f703a72 5f7463656a626f3a 755f6d6574737973 3d747865746e6f63
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7420745f6d646173 79733a725f6d6461 7379733a746f6f72 3d747865746e6f63
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 732036393138323d 6372732022323135 312e332e7a797322 3d6d6d6f63203839
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f723d747865746e 6f63732031306334 78303d646d636c74 636f69203336363d
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080110001 RBX=0000000000000000 RCX=ffffffff81ad9f93 RDX=ffff88801f6ac900
RSI=ffffffff81ad9fdb RDI=ffffffff94125fa0 RBP=0000000000000000 RSP=fffffe00000e6df8
R8 =0000000000000001 R9 =fffffbfff2824bf4 R10=ffffffff94125fa7 R11=0000000000000000
R12=0000000000000000 R13=00000024ca44ef37 R14=ffffffff8e624670 R15=ffffffff8e624660
RIP=ffffffff81ad9fdc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d664d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f123de6bff8 CR3=000000002e357000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000feffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000001000
Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003000000012 0004000000080024 0000000000280034 0012010000000018
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000001400000000 0000000000000000 0000000000000015 000000000003bf12
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b882080001080006 001f9a0a000000a1 0000000000000000 00000000000005f6
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffdd0804 800300100005b982 0800010000000806 06021f9800100005
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100040880 c5ba920800010000 020806060120b210 1000200300080018
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0318808880aa0800 1003000800080302 080000030a080002 10000a800406014e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a20004000a8c0310 04000a8803010000 0408060a80030010 0000100004800406
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0477d00023766564 6275732d6c34762f 7665642f01ffffff ffffffffffdd0804
ZMM25=8808241988082419 8808241988082419 8808241988082419 8808241988082419 8808241988082419 8808241988082419 8808241988082419 8808241988082419
ZMM26=c4cb3ae8c4cb3ae8 c4cb3ae8c4cb3ae8 c4cb3ae8c4cb3ae8 c4cb3ae8c4cb3ae8 c4cb3ae8c4cb3ae8 c4cb3ae8c4cb3ae8 c4cb3ae8c4cb3ae8 c4cb3ae8c4cb3ae8
ZMM27=fa92bd49fa92bd49 fa92bd49fa92bd49 fa92bd49fa92bd49 fa92bd49fa92bd49 fa92bd49fa92bd49 fa92bd49fa92bd49 fa92bd49fa92bd49 fa92bd49fa92bd49
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=4407000044070000 4407000044070000 4407000044070000 4407000044070000 4407000044070000 4407000044070000 4407000044070000 4407000044070000