last executing test programs:

3m49.403084069s ago: executing program 1 (id=908):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043)
r2 = dup(r0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r3, 0x11b, 0x7, &(0x7f00000003c0), &(0x7f0000000400)=0x2f)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e24, @empty}}, 0x8003, 0xbffc, 0xe652, 0x5, 0x134, 0x48, 0xff}, 0x9c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="2800000035000701feffffff00000000017400000c00018006000600800a00000800028004001080"], 0x28}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2d}}, 0x7, 0x1, 0xf06, 0x2, 0xac, 0x7f, 0x1}, 0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f00000004c0)={<r5=>0x0, @in6={{0xa, 0x4e21, 0x2, @mcast2, 0x8}}, 0x1, 0xfff8}, &(0x7f00000005c0)=0x90)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000600)={0x7, 0x8001, 0x4, 0xeee4, r5}, 0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xeffffff2, @empty, 0x5}}, 0x10001fc, 0x6, 0xffff1896, 0x3, 0x26, 0xffffffb9, 0x1a}, 0x9c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)

3m48.775677992s ago: executing program 1 (id=927):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x28, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4c045}, 0x4008000)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f0000000080)='nfs\x00', 0x0, &(0x7f00000001c0)='\x05\x00\x00\x00\x04\xb0\xfe\x98\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\xc77<r\xe9\x9cD\xb0\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3wA\xf6`>\x8b')
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x50, r1, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x38, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0xfffffffffffffdc8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}]}, @ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x0, 0x2, 0x0, 0x1, [{0x0, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x0, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x0, 0x1, 0x4}]}, {0x0, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x0, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x0, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x0, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x0, 0x1, 0x3}]}, {}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000080}, 0x2000)

3m48.695848523s ago: executing program 1 (id=929):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) (async, rerun: 32)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async, rerun: 32)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) (async, rerun: 32)
openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0) (rerun: 32)
r2 = socket$kcm(0x2, 0x5, 0x0) (async, rerun: 32)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000340)="a0a741373a", 0x7fffff}, 0x38) (async, rerun: 32)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x109800, 0x0) (async)
r4 = socket$alg(0x26, 0x5, 0x0)
fcntl$notify(r4, 0x402, 0x0)
ioctl$NBD_CLEAR_SOCK(r3, 0xab04) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="130000000700000002"], 0x48) (async, rerun: 32)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x890b, &(0x7f0000000100)) (async, rerun: 32)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020100000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a32000000001400000011001f"], 0x7c}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="2c000000070a010100000000000000000200000009000200faff7a32000000000900010073797a3000"], 0x2c}}, 0x0) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x3, 0xc, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80000001}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x45}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r7, 0x20000000, 0xe, 0x0, &(0x7f00000002c0)="e02742e86c0d85ff9782762f0800", 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

3m48.645194646s ago: executing program 1 (id=931):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
r0 = openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=@bridge_delneigh={0x1c, 0x1c, 0x1, 0x2000002, 0x25dfdbfd, {0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6}}, 0x1c}, 0x1, 0x0, 0x0, 0x20040051}, 0x40c0)
write$cgroup_subtree(r0, 0x0, 0x5)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCSIGNAL(r3, 0x8010550e, &(0x7f00000000c0)={0xe, 0x0})
sendmsg$NFT_BATCH(r2, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, 0x0, 0x24000000)
sendmsg$NFT_BATCH(r2, 0x0, 0x4001)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x40, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f0000000ac0)='./file0/../file0\x00', 0x0, 0x44000, 0x0)

3m48.565691273s ago: executing program 1 (id=932):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f0000002200)=[{&(0x7f0000000b80)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10, &(0x7f0000000c80)=[{&(0x7f0000000bc0)="3c6c0bf4", 0x4}], 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB="20000000000000008400000008000000fe80000000000d09d5a996ecafaee024153c000000000000000000bb7733aa0e311c028bde0977ce35a002d67cf98ecc69a105aa8459f5d407000efff8a4afc76e23286996f0f765c93dd27a09c28f09a6ad7faebaf2ec71e1b309e1c3858be685"], 0x20, 0x80}], 0x1, 0x8000) (async)
r1 = socket$kcm(0xa, 0x2, 0x0)
r2 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x64010101, 0x4e22, 0x3, 'lc\x00', 0x1, 0x9d3f, 0x6a}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e21, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@remote, 0x4e20, 0x10000, 0xcd}}, 0x44) (async)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4) (async)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=<r6=>0x0)
syz_io_uring_setup(0x1006a17, &(0x7f0000000100)={0x0, 0x15d2, 0x40, 0x2, 0x7f}, 0x0, 0x0, &(0x7f0000000000))
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x3, 0x0) (async)
r7 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$FE_SET_PROPERTY(r7, 0x40106f52, &(0x7f00000001c0)={0x18, &(0x7f0000000680)=[{0x2d, '\x00', @st={0x4, [{0x3, @svalue=0x6}, {0x3, @svalue=0xfffffffffffffffb}, {0x3}, {0x2, @uvalue=0x10001}]}, 0x3}]}) (async)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=<r8=>r5, @ANYBLOB="010026bd7000fcdbdf250200000008000100", @ANYRES32=r6], 0x1c}}, 0x840)
write$nci(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="400404"], 0x7)
r9 = syz_open_dev$vim2m(&(0x7f0000000040), 0x1000001, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r9, 0xc008561c, &(0x7f0000000000)={0x980912}) (async)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10, r2, 0x61c1f000) (async)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r10, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc0000001900010027bd70000000000020010000000000000000000000000001fc0200000000000000000000000000000000fffd000200000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffffffffff08000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000040000000000000000000000000000000000440005007f000001000000000000000000000000000000003300000000000000ac1e010100000000000000000000000007350000010007000000000000000000faffffff"], 0xfc}}, 0x0) (async)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r11)
socket$netlink(0x10, 0x3, 0x0) (async)
ioctl$SIOCSIFHWADDR(r11, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"}) (async)
r12 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bind$x25(r12, &(0x7f0000000080), 0x12) (async)
close(r12) (async)
write$nci(r3, &(0x7f0000000600)=ANY=[@ANYRESHEX=r10, @ANYRESOCT=r8, @ANYRESHEX=r2, @ANYRESDEC=r8, @ANYRES8=r8], 0xe4)
sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)

3m48.159234447s ago: executing program 1 (id=948):
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/keycreate\x00', 0x2, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_DISASSOCIATE(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x1c, r3, 0x1, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20001000)
write$selinux_attr(r0, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002980)=@dellink={0x34, 0x11, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x1400}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wg2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000100}, 0x40004)

3m48.102389965s ago: executing program 32 (id=948):
r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/keycreate\x00', 0x2, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_DISASSOCIATE(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x1c, r3, 0x1, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x20001000)
write$selinux_attr(r0, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002980)=@dellink={0x34, 0x11, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x1400}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wg2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000100}, 0x40004)

3m43.972407355s ago: executing program 4 (id=1037):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000003c0), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@verity_on}], [], 0x2c})
read$FUSE(0xffffffffffffffff, &(0x7f0000003480)={0x2020}, 0x2020)

3m43.885581776s ago: executing program 4 (id=1038):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a80)={0x84c, r1, 0x1, 0x0, 0xfffffffc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x16}, @NL80211_ATTR_FRAME={0x327, 0x33, @data_frame={@a_msdu=@type11={{0x0, 0x2, 0x3, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1}, {}, @device_a, @device_a, @random="540b14a9cd71", {0xe}, @broadcast}, @random="424a77f430df8a8a3087509617404b9e1527048d5993c5369740650ad1dde1e131e16c2aad594815acd1813c00c67978c2ae9fde16db6e8d20a971d756b7eaf3d034d2a9a69f2c78a515648cd6b9249b6af8fa7332c85ffdc06d8c9ed225474433891805bf4b9921cc507b3fe1ae5a019ca507776022147eca8e67094c62496c3a4a047d34bff64db30159ca12893285b212a6827e734171c5f5eba7be2a8f66f94cd19f6df229a94b8672d485d54cbc169b4915cc9b158b18b39f4ecc91e71310171b42a1215fb4f0e3dc433a3abc205638540f3fa98f5462011ae6f109964f8cfa79f16b663e7d53e6ba950f351247999f7c2ed27de4b08550c9d3644fa4818523bd3f5861c130a3e49c87aa04ed670813d4a15f29ff02343dfb67e1d17557d6934f77a603937a994feae41e5641b43b5a0d09e6ca800cceffdee924d6ee9e4655ef3daa68770b3bb747830b9e1bffc6dedba7c3dc0849ff86655ba2520dedbaf17aae6afdf0e701f232f625f0fe5df1bc3f9a3c88ff0560aabfc4a670668e33bfdda2153e761f5cd37cdbf89b55f59e75f1ad483615e9093b0d5575fb79e1faea59b8885ad8576967f0832eeb64a0196da6b581ecfd3f4e399702dcb1cd30bbfa906ef1290cc23e6428c02aac051d993ff84a02b6e1244327fd0827c81336c40c33f5c466f41c054188dde812d76d4a697a40b41fcf641a671259aba08a79f2fffaff2cc762d330802a28e687b822627d363827e3f0a5a6263c3c4cb8de2b12eb9d4abb14f4d3fdb8abc3e2afe74b7588adf3dc1c71a5d2d6e1af0429d8bd3e96a1293eca29d417e2a9ac5a9e6234d11dfbf421e043268bbd0ae40519685d4a3ed20b874d6738d14f1d7c9bedf02215be7fd3422f33872867fd04d307d1303e5de7edf4849eacd7e1e6c08b1fe9293dd39df47e83cb97c8cdabd293e38e2629701e984d75aebaff6ec7e30e9996e3daf55d8b80e85898c5f606c3a8752f9729327266011b0ec98fc97979b136b269d6c272f19106a7d650a56d742373183f689ebc2d09f80495269df110925a4dc6496a8fb16905d8b912f1e846077779d0b91c09e832"}}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x8917}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88f8}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FRAME={0x3ff, 0x33, @mgmt_frame=@probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x5}, @device_b, @device_b, @random="c58c8d6bf0e5", {0xe, 0x40}}, 0x8854, @default, 0xc1a3, @val={0x0, 0x7, @random="aacdd6134b1b5a"}, @void, @void, @void, @void, @val={0x2d, 0x1a, {0x1, 0x2, 0x5, 0x0, {0x2, 0xa, 0x0, 0x28, 0x0, 0x0, 0x1}, 0x1, 0xcd, 0x4}}, @void, @void, [{0xdd, 0x9f, "68b6b5594b05631fe20dd033f2670b0b3c48b0a323170c415d4121027416316c17933e5fd18ad5301d1754818e1749fc28189ca6ab06f0a70591dfaf90f9a3c0eb350833c7c28f3aabdb08868b923f8a409e42985cbe42e8676e975df587afa4e549ddc02f2e38297fb42c9ee617906f90637157b9f23b08f6ab30500a9c95b42182658fc683364688b70c4764926ec71e925c0e689a462a5a4d54218f99ae"}, {0xdd, 0xc7, "4f63581241487b7ca3b7c2504433d2faa32d75a598e14aa84f546124aaf9ae8f4d7a203228a01c1ac459f455d0d90c2e93d7119f2fdc8e90fd5fe26657263e9d0f5427e6f7bcf7f8c189fbbf3384d8117f3b56c1338dadf8505b0f1a3fd44102b9c6a8e40bfa9feed1569f154a9ea09227d4f2987b12dae17c98170101a2ef163d0d2ea3ff65da223728c51d8c610340c5b1c6d3a6e3f9ade1cefb3f4efb66fedb0f973c0c987e56374d23b46dbbff53d3c560d1bb93cfd278fa971eec8d508909d149c6c41ba2"}, {0xdd, 0xa6, "a4fdfe28749f66e6a9620d014469416836160eed11a5a0851e54348e837d7bff47c469317d5bff2567200ace26113a77bfda9b47fc82fa56ea5de5b0812f64f4bd5c12aea9a1aac97cb12ddc0d08090fa8a767b5a52fb468a21cc81390708905625c23cae1071da9ce7614398627420a0fdc48504a7d4c720946267f79045db45e30779dedf4014579febca18ace0b0da456d4ef91635ce6090e36c4f959ad1a66a694fc04c1"}, {0xdd, 0xc, "04da9a02eefe220d10c42ef3"}, {0xdd, 0xee, "b667ee3ac01c4746014d1d89f3c46ae2d4b813cfbf6519245579c55e8357a99260b5d5c7516efc6fede55714e18fb14096c644329c2822b9b3332dd672b4ac1fcac4f19da0a0066b62a22a28d6002c2ce85608215cc37cd497d56915bcb2ff38717e922b1899ebd08080123705ad4b4c8b0ffc3a1f632c0bf8eb845466858fc6e8f65ab6a92f97c609ff65dce53e1a56152d454c1f198c597b6c00f8f88662daf8b5dbac913aa6f0263817f71917866e5add25bebec0c093a1f810454c4696e42d05bc9df1926fa69c7da366e3a68bb50d507180ccce25ec4e0c66d3583d585a57bb46381e2d86ce5de98aa7e934"}, {0xdd, 0xa0, "a1ef816d48ad0f3f109f438b513c4ffc37a5f6b5c747f378deead05c867ca8dfe5447ccabe7c29ac59745b26021991c8cc750bc781ef15e489fd9d7002920053934383c0a1c90b8a2cb999169b555924a2c1e4206e7fc2cefed1ce6999889eb846d7cc7f1d381d6c63451a3f140e5bcfe8bbe24394ec42f223376c568163c50b18618cd8fa67e60fcf7b7835e1bce38898a77a9056b04fbf66a784a8394aef98"}]}}, @NL80211_ATTR_FRAME={0xca, 0x33, @mgmt_frame=@probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1}, {0x3}, @broadcast, @device_b, @from_mac=@broadcast, {0x9, 0x4}, @value=@ver_80211n={0x0, 0x22, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x4, @default, 0x4200, @val={0x0, 0x16, @random="e3ae2b0a2f8138c5a0e9ddfc7512f200f2af31c2e249"}, @val={0x1, 0x7, [{0x6c, 0x1}, {0x9}, {0x60, 0x1}, {0x76, 0x1}, {0x30}, {0x24, 0x1}, {0x6c}]}, @void, @val={0x4, 0x6, {0x7, 0x6, 0x2, 0x400}}, @val={0x6, 0x2, 0x8000}, @void, @val={0x72, 0x6}, @val={0x71, 0x7, {0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1, 0x2, 0xfd, 0x8}}, [{0xdd, 0x5e, "89402acb8e8d8bd20f1f63b6931bf9ba25faa5ab42543106bf9051289696de8ace30cfb901a2245d186c2cd7e90628b4c0c98b0b6745b9f3dd5f9013301354f35fed7c1346f2132ee614abdf033411a3583f200b3c8a3d4f4958b296d7dd"}]}}]}, 0x84c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

3m43.825343451s ago: executing program 4 (id=1040):
syz_io_uring_submit(0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000000))
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r4, &(0x7f0000000000), &(0x7f0000000080)=@tcp6=r6, 0x2}, 0x20)
readv(r6, &(0x7f00000029c0)=[{&(0x7f0000000480)=""/167, 0xa7}, {&(0x7f0000000540)=""/140, 0x8c}, {&(0x7f0000000600)=""/128, 0x80}, {&(0x7f0000000780)=""/170, 0xaa}, {&(0x7f0000000840)=""/200, 0xc8}, {&(0x7f0000000940)=""/192, 0xc0}, {&(0x7f0000001980)=""/4096, 0x1000}, {&(0x7f0000002980)=""/58, 0x3a}], 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r5, 0x0, 0x25, 0x0, @val=@tcx={@void, @value=r5}}, 0x1c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r4, &(0x7f00000001c0), &(0x7f0000000040)=@tcp=r2}, 0x20)
syz_emit_ethernet(0x2dc2d, &(0x7f0000000300)=ANY=[], 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
writev(r0, &(0x7f00000006c0)=[{&(0x7f0000000440)="2e9b3d0007e03dd65193dfb6c575963f8864", 0x12}, {&(0x7f0000000100)="31020002", 0x4}, {&(0x7f0000000a80)='h?', 0x2}], 0x3)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000200)=[@ioring_restriction_register_op={0x0, 0x1e}], 0x1)
r7 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r8 = socket$unix(0x1, 0x5, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(0xffffffffffffffff, 0xc0105303, &(0x7f0000000400)={0x0, 0x9, 0x4})
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x2c, r10, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x5, 0x2, [{0x7, 0x1}]}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x64000000}, 0x0)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$binfmt_misc(r12, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r7, 0x4c0a, &(0x7f00000002c0)={r12, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00db6072000001ea89de2b4410000e60080b8785d960000100000000000000000000000000000000000527000", "2809e8dbe108598948224ad44afac11d875397bdb22d0000b420a1a93c5240f45f819ef6167d3d458dd4992861ac00", "f4bd000000801900000000000000000000000000000000000000000100", [0x800, 0x7bfd1d39]}})
io_uring_setup(0x665c, &(0x7f0000000700)={0x0, 0x4aed, 0x2, 0x2, 0x285, 0x0, r12})

3m43.694554433s ago: executing program 4 (id=1045):
mount$9p_virtio(&(0x7f0000000040), &(0x7f00000000c0)='.\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000300)={'trans=virtio,', {[{@noxattr}]}})
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x8, 0x20132, 0xffffffffffffffff, 0xb2993000)
r4 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$poke(0x1, r4, &(0x7f00000011c0), 0xfffffffffffffffe)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r5=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005400e50100000000fdffffff07000000", @ANYRES32=r2, @ANYBLOB="20000100", @ANYRES64=r5, @ANYBLOB="01"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000280)={<r6=>0xffffffffffffffff})
getpeername$tipc(r6, 0x0, &(0x7f0000000300))
r7 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r7, &(0x7f0000003480)={0x2020}, 0x2020)
sendmsg$sock(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)="aebdb551a0045b080a5f7c3d258d19ba78500673c21fbb06b7021bb74854322bd4941b0d3fd15f7f6314df986fd1cb72956e66369b1f02743104b11fcc928f986c609a06738160389dbc322eceaaa1a4e315a159e6e80c275abeda2300e7fba6a2c9d9c479a23d76bc51e717eb5c29b29444", 0x72}], 0x1, &(0x7f0000000200)=[@timestamping={{0x14, 0x1, 0x25, 0xb464}}, @mark={{0x14, 0x1, 0x24, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x4}}], 0x48}, 0x8000)
sendto$inet_nvme_pdu(r7, 0x0, 0x0, 0x0, 0x0, 0x0)

3m43.584919258s ago: executing program 4 (id=1048):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r1, {0x8, 0x80000001}}, './file1\x00'})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14)
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000100)={@ipv4={'\x00', '\xff\xff', @local}, 0x37, r4})
r5 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x27, &(0x7f0000000200)={@multicast1, @local}, 0xc)
setsockopt$inet_mreqn(r5, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140))
mkdir(&(0x7f0000000380)='./file1\x00', 0xa)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x400000, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x100, 0x0)
r7 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0)
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r8, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r8, &(0x7f0000002140)={0x2020, 0x0, <r9=>0x0, <r10=>0x0, <r11=>0x0}, 0x2020)
syz_fuse_handle_req(r8, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x400000000, 0xb, 0xfffc, 0x0, 0x1, 0x0, 0xffffffff, 0x120, 0x2000, 0xa8, r10, r11, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0d000003005a"], 0x50)
write$FUSE_INIT(r8, &(0x7f0000000440)={0x50, 0x0, r9, {0x7, 0x29, 0x0, 0x1086cce0, 0x40, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
ioctl$BLKPG(r12, 0x1269, &(0x7f0000000640)={0x1, 0x0, 0x98, &(0x7f00000004c0)={0xfffffffffffffffd, 0x6000000000000, 0x11}})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000580)={{0x1, 0x1, 0x18, <r13=>r7}, './file0/file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r6, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, r13, {0x223}}, './file1\x00'})
r14 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r14, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000018000280080002001100000004000100080004"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x8090)

3m43.125637531s ago: executing program 4 (id=1052):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
socket$inet6_udplite(0xa, 0x2, 0x88)
listen(r0, 0xeb)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
sendmsg$inet(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000680)="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", 0xffffff52}, {0x0}], 0x2}, 0x404c0c4)

3m28.111524598s ago: executing program 33 (id=1052):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
socket$inet6_udplite(0xa, 0x2, 0x88)
listen(r0, 0xeb)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
sendmsg$inet(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000680)="d1d65d6c73513e590a50ec25303b1b5b6477ec6be713b24ed292a51f8d34c4b972327163e7a9ade8107ce8dc2f23b559e7b513b6e605d193f1c915412457db5678c73cd7b8af9d36c890f795dda56a87d17739938dd9146badf485ebd4545ec4213f5479ff09cd4d9b89491ea835df4e94428318fe5874eb0cf1b4eb51c8bd9e150eae3415885116b1b1a6b52575bdfea5c36437b20e290d1d422550c44312bd3d4d40760269b5de03628fc1c94954d80f4be2737476cb0db7c18bbc42acb20d5ede7e10584254a37c32e9895d1cd928179da8a66d22ee5dd678f1f7f8fd9a00cc17799c55e9df158cba4ae989abc352fe54311baac9ce86fb049ca662812ee7ebb5d8edcccee9a28bbf28bd0b40b1b51a528dc88e17f454cbf573d7146340a3cd333e395fe8593b65c42e7977df0a26adc556890d528d67edea276f3ea6ab892a7e7500bc48aa7e08639aae5ff0d93ab7cb6d024a7cae6ca768d7713a76aa37d228146fdfbc60d9f5603b6859f0184fd08fbb89", 0xffffff52}, {0x0}], 0x2}, 0x404c0c4)

2m6.129610018s ago: executing program 5 (id=2231):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRESHEX=0x0, @ANYRESHEX, @ANYRES8=0x0, @ANYRES32, @ANYBLOB="b88d171160bdbe0e094ceb"], 0x48)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360", 0x41}], 0x1}], 0x1, 0x40800)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$XFS_IOC_FD_TO_HANDLE(r0, 0xc038586a, &(0x7f0000000280)={<r2=>r1, &(0x7f00000000c0)='/dev/iommu\x00', 0x200, &(0x7f0000000100)={@_ha_fsid={[0x2, 0x5]}, {0x1, 0xfff9, 0x5, 0x9068}}, 0x9, &(0x7f0000000200)={@_ha_fsid}, &(0x7f0000000240)=0xfffffffb})
mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x7)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3b94, &(0x7f0000000180)={0x85, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRESHEX=0x0, @ANYRESHEX, @ANYRES8=0x0, @ANYRES32, @ANYBLOB="b88d171160bdbe0e094ceb"], 0x48) (async)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) (async)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360", 0x41}], 0x1}], 0x1, 0x40800) (async)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async)
ioctl$XFS_IOC_FD_TO_HANDLE(r0, 0xc038586a, &(0x7f0000000280)={r1, &(0x7f00000000c0)='/dev/iommu\x00', 0x200, &(0x7f0000000100)={@_ha_fsid={[0x2, 0x5]}, {0x1, 0xfff9, 0x5, 0x9068}}, 0x9, &(0x7f0000000200)={@_ha_fsid}, &(0x7f0000000240)=0xfffffffb}) (async)
mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x7) (async)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r1, 0x3b94, &(0x7f0000000180)={0x85, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}) (async)

2m6.065035057s ago: executing program 5 (id=2233):
r0 = openat$cdrom(0xffffffffffffff9c, 0x0, 0x800, 0x0)
ioctl$CDROMREADAUDIO(r0, 0x5392, &(0x7f0000000000)={@msf={0x1, 0x1c, 0x80}, 0x0, 0x0, 0x0})

2m6.005120152s ago: executing program 5 (id=2235):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f0000000000)=ANY=[@ANYBLOB='b 75:*\tw'], 0xa)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="020000000100000000000000040000000000000010000000000000002000000002000000"], 0x24, 0x0)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
read$dsp(r2, &(0x7f00000000c0)=""/53, 0x35)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080)=0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x186)
r3 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f00000004c0)={@rand_addr=' \x01\x00', @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @local, 0x3ff, 0x4, 0x0, 0x0, 0x80, 0x40000101})
mount$overlay(0x0, &(0x7f0000000540)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000580)={[{@upperdir={'upperdir', 0x3d, './cgroup'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './cgroup'}}]})
r4 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f0000000400)='./file1\x00', 0x8000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
rename(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000480)='./file0\x00')
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000380)={r4, r4, 0x13, 0x0, @void}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
mount(&(0x7f0000000100)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='ext3\x00', 0x3e5a24, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x0, 0x1)
setxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@md5={0x1, "6a9770ebe4ff5d35d82b3c01ffbd467e"}, 0x11, 0x0)
r5 = accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x80000)
accept(r5, &(0x7f00000001c0)=@phonet, &(0x7f0000000240)=0x80)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
socket$kcm(0x29, 0x7, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x4c, &(0x7f0000000440)={0xfffffffffffffd8d, 0x0}, 0x10)
lstat(&(0x7f0000000280)='./cgroup\x00', &(0x7f00000002c0))
llistxattr(&(0x7f00000004c0)='./file0\x00', 0x0, 0x0)

2m5.423565649s ago: executing program 5 (id=2238):
write$binfmt_elf32(0xffffffffffffffff, &(0x7f000001aa80)=ANY=[@ANYBLOB="7f454c464e0510fb470000000000000002000000d80a0000890200003800000035020000ff0100003903200076ff0200fcff060000000000040000000400000006000000030000000200000000000800010001000300000000000000ff0f00000800000006000000050000000600000099000000070000000300000000000000d0ef000005000000060000000f000000fdffffff070000009f4dda2cc55b27aeceda58448c5cd74132b1fc49c6b98806797eb0fb9a1a78134f9dd2f8680cb59c1eca3fb415e2c0a510fe4f1670781e6eeb3330d5b2dd9af8d2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000"/2521], 0x9d9)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x34, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x20049815}, 0x4000080)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000040)={0x2001}, 0x8)
close_range(r3, r3, 0x0) (async)
sendmsg$nl_xfrm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="fc0000001900010000000000fcdbdf2500000000000000000000000000000000fc01000000000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000040000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000300000000000000000000000020000000000000000000000000000000000000010000000000000044000500fa33646d599c39b20000000000000000000000022b0000000a000000fe8000000000000000000000000000aa0000000001"], 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x40000) (async)
r4 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
readv(r4, &(0x7f0000000400)=[{&(0x7f0000000140)=""/235, 0xeb}, {&(0x7f0000000280)=""/153, 0x99}, {&(0x7f0000000340)=""/179, 0xb3}], 0x3) (async)
r5 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r5, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) (async)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10) (async)
connect$inet(r5, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)

2m5.234554911s ago: executing program 5 (id=2240):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x7fa, 0x5, 0x1, 0x1, 0x81, 0x4, 0x5, 0x2, 0xf0, 0x1000, 0xff, 0x7, 0x6961, 0x80000000, 0x1, 0x8], 0xffffffff, 0x1a5400})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000100)="0f234bbaf80c66b8798fc58766efbafc0cb055ee66b9520b00000f320f214ead260f78e5baf80c66b801998b8366efbafc0cb000eebaf80c66b8d0a0b38166efbafc0c66b80900000066efba200066edbaf80c66b84100278866efbafc0cb0d4ee", 0x61}], 0x1, 0x14, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_LAPIC(r2, 0x8400ae8e, &(0x7f00000003c0))

2m5.053916523s ago: executing program 5 (id=2245):
r0 = fsopen(&(0x7f00000003c0)='proc\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\x9b\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000640)={0x0, @bt={0x1ff, 0x101, 0x1, 0x1, 0x5c40631e, 0x0, 0xf, 0x1, 0x2, 0x100, 0x2, 0x94a, 0x3, 0x5, 0x1, 0x4afcfdd799fba474, {0x3, 0xa}, 0x6a, 0x2}}) (async)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f00000005c0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYRES16=<r2=>0xffffffffffffffff], 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(r3, 0xffffffffffffffff, 0x2) (async)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
getsockopt$inet6_int(r4, 0x29, 0x31, 0x0, &(0x7f0000000080))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a34000000060a09040000000000000000020000000900020073797a32000000000900010073797a30000000000f000000d1000000140000001100010000000000000000000000000a"], 0x5c}}, 0x0) (async)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYRESDEC=r2], 0x58}}, 0x64040001) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
syz_io_uring_setup(0x4b7, &(0x7f00000000c0)={0x0, 0x6e83, 0x400, 0x1, 0x288}, &(0x7f0000000140)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0, &(0x7f0000000000)) (async)
r10 = socket(0x200000000000011, 0xa, 0x1)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000300)={'sit0\x00', <r11=>0x0})
bind$packet(r10, &(0x7f0000000080)={0x11, 0x17, r11, 0x1, 0x2, 0x6, @remote}, 0x14) (async)
syz_io_uring_submit(r8, r9, 0x0, &(0x7f0000000000)) (async)
readv(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000d00))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r12 = socket$inet_udp(0x2, 0x2, 0x0)
close(r12)

1m52.225420354s ago: executing program 2 (id=2359):
r0 = landlock_create_ruleset(&(0x7f0000000080)={0xc0d8, 0x1, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000080)={0x3172, 0x0, 0x2}, 0x18, 0x0)
r2 = socket$kcm(0x2, 0x200000000000001, 0x106)
getsockopt$sock_int(r2, 0x1, 0x27, 0x0, &(0x7f0000000240))
landlock_restrict_self(r1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)

1m52.224069253s ago: executing program 2 (id=2361):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0xc0980, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
pwritev(r4, &(0x7f0000000840)=[{&(0x7f0000000180)="8e37a6cc8f027f93260556bdf546aaa47852a3facc46ddd4623929bb9d3198ca44fc2f4fb0b08c29a2ffcec544f576a3d9e6bfefe6843625f1726befcbe263789351e0b95bcec8f9eba57a915352134faf49084ae19a0452c2b9a7bdae3bbcb5bfce4bce59ae5e01a2109f379bf34ab40fac3efd7534c3ea384837a76dc6102a5ac9e2558040fffe851f74d635027310b8e0f11b814c559a6ff0e529c553db243b6a54107b119564e9849e5bb0e271782cceafddb689b363c6e03f3bf8a6202c8ce37c935ace0aa73484070787c93d2adb2780eed7c84878fe31220064c840127e6fc9ad71f8", 0xe6}, {&(0x7f0000000280)="3211fd8e8ef67303cd64df97cc25400e2986d169e42a7bfc5b6d097513df287cc6e46c16b8407792917ac400cd02af0b31ce7ac06c6b81f63ab68f3f6c9bca4eb1233cc2f2fd66deffa96726bc28bf68a5482c033e6a75231cdcea2bbcb098026385ac2baf09fba713a736fa35ae5132be3d7d", 0x73}, {&(0x7f0000000300)="2070ee224a818911a29175438f6ecc285de995cfaa818d55c77daa2390734da825fc8d845257dcf73746277ed31d47ec4c02c35d7a892a67424b858b795f87b7f4dfd829e0875f95", 0x48}, {&(0x7f0000000440)="dce47ca78270ecd9a15a5bdece31229216ebe208cc090cc483c640676e5e311704dd9ad9bcab06b60929ba483a834a866ca6c7179a8e9e9cafd224784ce49ee767ce6b138ccaa330ecebcede91e7587f", 0x50}, {&(0x7f00000004c0)="717208eb17830562d422c490", 0xc}, {&(0x7f0000000500)="ac56a8cc522df2f39156de21bf13dff6", 0x10}, {&(0x7f0000000540)="d2ad99baa0a9a53e0e58376811a412a76e930b307ee4e6f20c7048984f83c36da64ef1134d062605dc163eea2208eef8628b397b84b252a4587ebe4cca67fb9697324edf373979c9d557887c33c3f4dfc17314e9ee915e5d73dcba30e0c006966d5a19e47f5a0eb6f8c74b6f6886e9f0820cbb7d6bd68e02e8aab1164ab681c0809de27db948512352e7c517dfcc72d7673ee7220b7a8cb1578ff00e8b1f395c423e37a8fa", 0xa5}, {&(0x7f00000006c0)="7141c1cab2df2cbcdcb64bc2f9fb0351a7a769bf71a3aa041674e80b8969ba47c0a3be5ca1a93a27526e90b8301f7912bbd484112d224637c834f84167fc64427b6bf6db60627de99fd79af4398e1637e9a4cfe7bab6cd8234b0cfc14dc19bfe13a6c61b67c09bc280fa2d879169f21d3d407b37cdd9e52425dd5cb9a276b089653e814626dd7a367073b2d1ab192c6714059c0f5306336af5bdf842f198927a201f622b6383a7732928ac12e0043c29d40625023ca02f76d6fb29a3285a2c29ab25fff6f3d3be6c756c04800b3b83cd1f9e107773a6f15f149ee8a6a82787", 0xdf}, {&(0x7f00000007c0)="2f5e42fabf7c6793441977eef7a355102543611a149247566032a4948b2e43ccd2807c58489646d70de229885e815d1b64523dff8852b86a3a9d1ad6f23b98ce263dddb990f606d9d16395b3", 0x4c}], 0x9, 0x1, 0x7)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x48081)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)=0xfffffffe)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0xc0980, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
pwritev(r4, &(0x7f0000000840)=[{&(0x7f0000000180)="8e37a6cc8f027f93260556bdf546aaa47852a3facc46ddd4623929bb9d3198ca44fc2f4fb0b08c29a2ffcec544f576a3d9e6bfefe6843625f1726befcbe263789351e0b95bcec8f9eba57a915352134faf49084ae19a0452c2b9a7bdae3bbcb5bfce4bce59ae5e01a2109f379bf34ab40fac3efd7534c3ea384837a76dc6102a5ac9e2558040fffe851f74d635027310b8e0f11b814c559a6ff0e529c553db243b6a54107b119564e9849e5bb0e271782cceafddb689b363c6e03f3bf8a6202c8ce37c935ace0aa73484070787c93d2adb2780eed7c84878fe31220064c840127e6fc9ad71f8", 0xe6}, {&(0x7f0000000280)="3211fd8e8ef67303cd64df97cc25400e2986d169e42a7bfc5b6d097513df287cc6e46c16b8407792917ac400cd02af0b31ce7ac06c6b81f63ab68f3f6c9bca4eb1233cc2f2fd66deffa96726bc28bf68a5482c033e6a75231cdcea2bbcb098026385ac2baf09fba713a736fa35ae5132be3d7d", 0x73}, {&(0x7f0000000300)="2070ee224a818911a29175438f6ecc285de995cfaa818d55c77daa2390734da825fc8d845257dcf73746277ed31d47ec4c02c35d7a892a67424b858b795f87b7f4dfd829e0875f95", 0x48}, {&(0x7f0000000440)="dce47ca78270ecd9a15a5bdece31229216ebe208cc090cc483c640676e5e311704dd9ad9bcab06b60929ba483a834a866ca6c7179a8e9e9cafd224784ce49ee767ce6b138ccaa330ecebcede91e7587f", 0x50}, {&(0x7f00000004c0)="717208eb17830562d422c490", 0xc}, {&(0x7f0000000500)="ac56a8cc522df2f39156de21bf13dff6", 0x10}, {&(0x7f0000000540)="d2ad99baa0a9a53e0e58376811a412a76e930b307ee4e6f20c7048984f83c36da64ef1134d062605dc163eea2208eef8628b397b84b252a4587ebe4cca67fb9697324edf373979c9d557887c33c3f4dfc17314e9ee915e5d73dcba30e0c006966d5a19e47f5a0eb6f8c74b6f6886e9f0820cbb7d6bd68e02e8aab1164ab681c0809de27db948512352e7c517dfcc72d7673ee7220b7a8cb1578ff00e8b1f395c423e37a8fa", 0xa5}, {&(0x7f00000006c0)="7141c1cab2df2cbcdcb64bc2f9fb0351a7a769bf71a3aa041674e80b8969ba47c0a3be5ca1a93a27526e90b8301f7912bbd484112d224637c834f84167fc64427b6bf6db60627de99fd79af4398e1637e9a4cfe7bab6cd8234b0cfc14dc19bfe13a6c61b67c09bc280fa2d879169f21d3d407b37cdd9e52425dd5cb9a276b089653e814626dd7a367073b2d1ab192c6714059c0f5306336af5bdf842f198927a201f622b6383a7732928ac12e0043c29d40625023ca02f76d6fb29a3285a2c29ab25fff6f3d3be6c756c04800b3b83cd1f9e107773a6f15f149ee8a6a82787", 0xdf}, {&(0x7f00000007c0)="2f5e42fabf7c6793441977eef7a355102543611a149247566032a4948b2e43ccd2807c58489646d70de229885e815d1b64523dff8852b86a3a9d1ad6f23b98ce263dddb990f606d9d16395b3", 0x4c}], 0x9, 0x1, 0x7) (async)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x48081) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)=0xfffffffe) (async)

1m51.874997593s ago: executing program 2 (id=2364):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x4}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003900)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWSETELEM={0x24, 0xc, 0xa, 0x301, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x4c}}, 0x0)

1m51.644751744s ago: executing program 2 (id=2365):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x7f9f, 0x0)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000100)={0x0, 0x1, 0x7, &(0x7f0000000080)={0x0, "e953e14fcab3efeb00000000000000000876060ec031fa7e00"}})
r2 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000600)={{0xa, 0x0, 0x8, @local, 0xb}, {0xa, 0x4e24, 0x1, @empty, 0x2}, 0x1, {[0x0, 0x0, 0x0, 0x7ff, 0x0, 0x80000000]}}, 0x5c)
setsockopt$MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd3, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @local}, {0xa, 0x0, 0x0, @empty}, 0x1, {[0x0, 0x0, 0x0, 0x0, 0x0, 0xe3]}}, 0x5c)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a70000000060a0b0400000000000000000200000044000480200001800e000100636f6e6e6c696d69740000000c000280080001400000000010000180090001006c61737400000000100001800a00010072656469720000000900010073797a30000000000900020073797a320000000014000000110001"], 0x98}}, 0x0)
close(r0)

1m51.644520894s ago: executing program 2 (id=2366):
mkdir(&(0x7f0000000380)='./file1\x00', 0xa)
mount$fuse(0x0, 0x0, 0x0, 0x280800, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000000c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x28800, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0xb8, r0}, './file0\x00'})
r2 = syz_open_dev$video4linux(&(0x7f0000000000), 0x401, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x8008000000010, &(0x7f0000005e40)="17000000020001000003d68c5ee17688a2003208020300ecff3f0200000300000a000000009afc5ad9485bbb6a880000d6c8db0000dba67e060180000a0000f10607bdff59100ac45761407a681f009cee4a5acb3da400001fb700674f19b44e09f9315033bf79ac2dff060115003901000000000000ea000000000000000009ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e000"/184, 0xb8)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
ioctl$VIDIOC_SUBDEV_S_FMT(r2, 0xc0585605, &(0x7f0000000040)={0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xdd2fcb245114ab72}})

1m51.524701334s ago: executing program 2 (id=2367):
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8917, &(0x7f0000000000)={'macsec0\x00', {0x2, 0xce20, @private=0xa010101}}) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0) (async)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRES8=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async, rerun: 64)
read$FUSE(r3, &(0x7f00000102c0)={0x2020, 0x0, <r4=>0x0}, 0x2020) (rerun: 64)
write$FUSE_INIT(r3, &(0x7f0000000380)={0x50, 0x0, r4, {0x7, 0x27, 0x0, 0x1001a}}, 0x50) (async)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0/file0\x00') (async)
syz_fuse_handle_req(r3, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)={0x90, 0x0, 0xfffffffffffffffd, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2000000000000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xa000, 0x0, 0x0, 0x0, 0x10}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
openat(0xffffffffffffff9c, &(0x7f0000000640)='./file0/file0\x00', 0x4a300, 0xcd) (async)
ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r0, 0x8949, &(0x7f0000000000)) (async, rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000061195000dd157da6ef42724be88d946934ffff17bd3c22102819049c8c721fcd898488bad15a68498fb47e8e72a9e4d3eac90790b3a1261e4c549f9ced5c894193e01377d66135bf6b09007cde32279bb191ed0c7a63628f000000000000000000000000000000ff8aa416e2615bc7f1c9a538c48b41f8e15adf85a5c10d123c0e2e8e81cb52e035045e1c5990347c713ece1e5bfdd5886566c8c40019557cada26ad776155085a1ce1ef8eaf994d8c23d37da3e95d499b1baa358870bce465ec82ed089f292b47bd6"], &(0x7f0000000080)='syzkaller\x00', 0x5}, 0x90) (rerun: 32)

1m49.733480914s ago: executing program 34 (id=2245):
r0 = fsopen(&(0x7f00000003c0)='proc\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000ac0)='gid', &(0x7f0000000440)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\x9b\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)
r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000640)={0x0, @bt={0x1ff, 0x101, 0x1, 0x1, 0x5c40631e, 0x0, 0xf, 0x1, 0x2, 0x100, 0x2, 0x94a, 0x3, 0x5, 0x1, 0x4afcfdd799fba474, {0x3, 0xa}, 0x6a, 0x2}}) (async)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f00000005c0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYRES16=<r2=>0xffffffffffffffff], 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(r3, 0xffffffffffffffff, 0x2) (async)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
getsockopt$inet6_int(r4, 0x29, 0x31, 0x0, &(0x7f0000000080))
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a34000000060a09040000000000000000020000000900020073797a32000000000900010073797a30000000000f000000d1000000140000001100010000000000000000000000000a"], 0x5c}}, 0x0) (async)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYRESDEC=r2], 0x58}}, 0x64040001) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10) (async)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
syz_io_uring_setup(0x4b7, &(0x7f00000000c0)={0x0, 0x6e83, 0x400, 0x1, 0x288}, &(0x7f0000000140)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0, &(0x7f0000000000)) (async)
r10 = socket(0x200000000000011, 0xa, 0x1)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000300)={'sit0\x00', <r11=>0x0})
bind$packet(r10, &(0x7f0000000080)={0x11, 0x17, r11, 0x1, 0x2, 0x6, @remote}, 0x14) (async)
syz_io_uring_submit(r8, r9, 0x0, &(0x7f0000000000)) (async)
readv(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000d00))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r12 = socket$inet_udp(0x2, 0x2, 0x0)
close(r12)

1m35.917505256s ago: executing program 35 (id=2367):
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8917, &(0x7f0000000000)={'macsec0\x00', {0x2, 0xce20, @private=0xa010101}}) (async)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0) (async)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRES8=r0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async, rerun: 64)
read$FUSE(r3, &(0x7f00000102c0)={0x2020, 0x0, <r4=>0x0}, 0x2020) (rerun: 64)
write$FUSE_INIT(r3, &(0x7f0000000380)={0x50, 0x0, r4, {0x7, 0x27, 0x0, 0x1001a}}, 0x50) (async)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0/file0\x00') (async)
syz_fuse_handle_req(r3, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)={0x90, 0x0, 0xfffffffffffffffd, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2000000000000005, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xa000, 0x0, 0x0, 0x0, 0x10}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
openat(0xffffffffffffff9c, &(0x7f0000000640)='./file0/file0\x00', 0x4a300, 0xcd) (async)
ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r0, 0x8949, &(0x7f0000000000)) (async, rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000061195000dd157da6ef42724be88d946934ffff17bd3c22102819049c8c721fcd898488bad15a68498fb47e8e72a9e4d3eac90790b3a1261e4c549f9ced5c894193e01377d66135bf6b09007cde32279bb191ed0c7a63628f000000000000000000000000000000ff8aa416e2615bc7f1c9a538c48b41f8e15adf85a5c10d123c0e2e8e81cb52e035045e1c5990347c713ece1e5bfdd5886566c8c40019557cada26ad776155085a1ce1ef8eaf994d8c23d37da3e95d499b1baa358870bce465ec82ed089f292b47bd6"], &(0x7f0000000080)='syzkaller\x00', 0x5}, 0x90) (rerun: 32)

4.859357595s ago: executing program 3 (id=3386):
socket$inet6(0xa, 0x2, 0x0)
close(0x3)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000700)={0x2, 0x4e20, @loopback}, 0x10)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440), 0x0, 0x81, r1}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000040), 0x9, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv2(r3, &(0x7f0000000200)=[{0x0}], 0x1, 0x0, 0x4, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=@ipv4_newroute={0x2c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x25dfdbfe, {0x2, 0x20, 0x10, 0x0, 0xfd, 0x4, 0xfe, 0x2, 0x20000000}, [@RTA_NH_ID={0x8, 0x1e, 0x1}, @RTA_PREFSRC={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x27}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4a044}, 0x20004090)

4.858913925s ago: executing program 3 (id=3387):
socket(0x10, 0x4, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="c60009"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001640)={0x24, 0x0, 0x0, &(0x7f0000001bc0)={0x0, 0x22, 0x1, {[@main=@item_012={0x0, 0x0, 0x9}]}}, 0x0}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
openat$kvm(0xffffffffffffff9c, 0x0, 0x20040, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000003c0)=""/124, 0x7c}], 0x1, 0x38, 0xc51a)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340"], 0x0)
syz_usb_disconnect(r1)

3.494200912s ago: executing program 7 (id=3403):
socket(0xa, 0x3, 0x3a)
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x5, 0x1, 0x40, 0x40, 0x41}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r1}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000b80)={r1, &(0x7f00000014c0), &(0x7f0000000b40)=""/31}, 0x20)

3.433040952s ago: executing program 7 (id=3404):
prlimit64(0x0, 0x0, &(0x7f0000000140)={0xff, 0xa522}, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

3.334606152s ago: executing program 7 (id=3405):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
listen(0xffffffffffffffff, 0x5)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x22, 0x12, {[@main=@item_4={0x3, 0x0, 0xb, '\t\x00'}, @local=@item_4={0x3, 0x2, 0x0, "112000"}, @local=@item_4={0x3, 0x2, 0x1, "233b5f1e"}]}}, 0x0}, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r2, 0xc018480b, &(0x7f0000000100)={0x1, 0x100, 0x5, 0x5, 0x1000, 0x2})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x42, 0x0, 0x0)
chdir(0x0)

1.853822822s ago: executing program 6 (id=3415):
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0x1a, 0xd99, 0x8, 0xfffffe01, 0x5caaefdf044e13f7, 0x1, 0x1000, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x2, 0x3}, 0x50)

1.853681164s ago: executing program 6 (id=3416):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket(0x11, 0x2, 0x0)
setsockopt(r0, 0x107, 0x1, &(0x7f00000001c0)="110000000200060000071a80010061cc", 0x10)

1.801521842s ago: executing program 3 (id=3417):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000004c00)=@newtaction={0x8c, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0x78, 0x1, [@m_police={0x74, 0x1, 0x0, 0x0, {{0xb}, {0x48, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x233b}]]}, {0x4}, {0xc}, {0xfffffffffffffebe, 0x8, {0x0, 0x2}}}}]}]}, 0x8c}}, 0x0)

1.801359911s ago: executing program 6 (id=3418):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socket$packet(0x11, 0x3, 0x300)
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), r0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000005c0)=0x56)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)=ANY=[], 0x54}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000100)={'ip6_vti0\x00', &(0x7f0000000300)={'syztnl2\x00', r1, 0x29, 0x9, 0xd, 0x6, 0x12, @dev={0xfe, 0x80, '\x00', 0x20}, @ipv4={'\x00', '\xff\xff', @empty}, 0x700, 0x7827, 0x1, 0x7fffffff}})
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)

1.714747066s ago: executing program 6 (id=3419):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00')
preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000280)=""/215, 0xd7}], 0x1, 0x1006c, 0x0)

873.694716ms ago: executing program 3 (id=3421):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
sendfile(r0, r1, 0x0, 0xfffffffffffffff8)

873.47833ms ago: executing program 3 (id=3422):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x79, 0x0, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000040)={0x1a, 0x1, 0xb})
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000140)={0xf600000000000000, 0x26000, 0xffbffffffffffffd, 0x2, 0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

758.002804ms ago: executing program 6 (id=3423):
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0xffffffffffffffff, 0x20b82)
ioctl$USBDEVFS_DROP_PRIVILEGES(r0, 0x4004551e, 0x0)

757.827057ms ago: executing program 6 (id=3424):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000001200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r1, @ANYRES64=r0], 0x0)

743.243318ms ago: executing program 3 (id=3425):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x80800)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

664.358887ms ago: executing program 7 (id=3426):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000a80)=0x1, 0x4)
r1 = socket$inet6(0xa, 0x3, 0x8b)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000980)={{{@in=@multicast1, @in6=@rand_addr=' \x01\x00', 0x4e1f, 0x0, 0x0, 0x3, 0x2}, {0x10000, 0x200000004, 0x40000000007, 0x6811221d, 0x100000000, 0x8000000000000001, 0x200000003, 0x9}, {0x5, 0xfffffffffffffffd, 0x7}, 0x401, 0x0, 0x1, 0x0, 0x6}, {{@in=@empty, 0x0, 0x6c}, 0x2, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x3502, 0x1, 0x0, 0x0, 0x9, 0x3}}, 0xe8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)

654.493851ms ago: executing program 7 (id=3427):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000013c0)={{r0}, &(0x7f0000001340), &(0x7f0000001380)='%pI4   \x00'}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000140)={r0, &(0x7f0000000140), &(0x7f00000002c0)=""/4095}, 0x20)

574.529227ms ago: executing program 7 (id=3428):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x24000884}, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCSMRU(r1, 0x40047452, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = gettid()
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

184.205807ms ago: executing program 0 (id=3432):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000040))

114.499065ms ago: executing program 0 (id=3433):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001b80)={0x0, 0x0, 0x0}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x9, 0x8, 0x80, 0x40, 0x42, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

54.562142ms ago: executing program 0 (id=3434):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fedbdf250700000008aaaaaa"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x800)

54.369452ms ago: executing program 0 (id=3435):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x60280, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'virt_wifi0\x00', 0xc1eb461a2917d087})
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
clock_nanosleep(0xb, 0x0, 0x0, 0xfffffffffffffffe)
preadv(r0, &(0x7f0000000040)=[{&(0x7f00000002c0)=""/148, 0x94}], 0x1, 0x2, 0xb8)

304.862µs ago: executing program 0 (id=3436):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x1})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f0000000040), 0x42fffffe)

0s ago: executing program 0 (id=3437):
r0 = syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x142ba3)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/fscaps', 0xb883, 0xb2)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000280)={r2, 0x0, {0x0, 0x0, 0x0, 0x7, 0x3, 0x0, 0x0, 0xf, 0x14, "faf98317e5a1149989fc8dbe43ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f9858c1a7bedabd69098c8b534464c516bdd8a0f35", "32d8cc26f7061a74df2cfc06c89f3d9e234b30d50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "67523760fd40f78d2cfc20d81a8ca55ba139c01802c4dae4162e43acff03ad02", [0x7fffffffffffffff, 0x7]}})
ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r1)

kernel console output (not intermixed with test programs):

=1
[  249.416739][T14687] netdevsim netdevsim6: Falling back to sysfs fallback for: .
[  250.092657][T14702] netlink: del zone limit has 4 unknown bytes
[  250.105517][ T5935] Bluetooth: hci0: command 0x0c1a tx timeout
[  250.105715][ T5973] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  250.109683][ T5973] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  252.185475][ T5935] Bluetooth: hci2: command 0x0c1a tx timeout
[  252.185690][ T5973] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  252.190473][ T5973] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  254.265532][ T5935] Bluetooth: hci3: command 0x0c1a tx timeout
[  254.265627][ T5973] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  254.271718][ T5973] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  254.308770][ T5289] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  254.321627][ T5289] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  254.326664][ T5289] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  254.331145][ T5289] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  254.343210][ T5289] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  254.362852][ T5935] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  254.368681][ T5935] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  254.371501][ T5935] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  254.375036][ T5935] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  254.379324][ T5935] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  254.422230][T13825] syz_tun (unregistering): left allmulticast mode
[  254.431163][T14719] netlink: 'syz.0.2512': attribute type 1 has an invalid length.
[  254.433993][T14719] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  254.449545][T14715] tipc: Enabled bearer <udp:syz2>, priority 10
[  254.518459][   T34] usb 10-1: USB disconnect, device number 10
[  254.569269][ T1254] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.660426][T14710] wg1 speed is unknown, defaulting to 1000
[  254.768942][   T40] audit: type=1400 audit(1775041254.920:867): avc:  denied  { append } for  pid=14738 comm="syz.0.2520" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  254.785481][ T1254] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.908078][T14745] sp0: Synchronizing with TNC
[  254.963282][ T1254] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.053461][ T1254] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.151222][T14710] chnl_net:caif_netlink_parms(): no params data found
[  255.397865][T14769] syzkaller0: entered promiscuous mode
[  255.416205][ T1254] bridge_slave_1: left allmulticast mode
[  255.418534][ T1254] bridge_slave_1: left promiscuous mode
[  255.423319][ T1254] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.428406][ T1254] bridge_slave_0: left allmulticast mode
[  255.430415][ T1254] bridge_slave_0: left promiscuous mode
[  255.432439][ T1254] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.660847][ T1254] bond0 (unregistering): Released all slaves
[  255.673082][ T1254] bond1 (unregistering): (slave veth3): Releasing active interface
[  255.677339][ T1254] bond1 (unregistering): Released all slaves
[  256.429617][ T5935] Bluetooth: hci5: command tx timeout
[  257.242891][T14710] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.246288][T14710] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.249614][T14710] bridge_slave_0: entered allmulticast mode
[  257.253814][T14710] bridge_slave_0: entered promiscuous mode
[  257.259260][T14784] pim6reg: left allmulticast mode
[  257.266039][ T5973] tipc: Node number set to 2556256400
[  257.280533][T14710] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.283674][T14710] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.286817][T14710] bridge_slave_1: entered allmulticast mode
[  257.291003][T14710] bridge_slave_1: entered promiscuous mode
[  257.328046][T14710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  257.335534][T14710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  257.393847][T14710] team0: Port device team_slave_0 added
[  257.402606][T14710] team0: Port device team_slave_1 added
[  257.483389][T14710] batman_adv: batadv0: Adding interface: batadv_slave_0
[  257.486615][T14710] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  257.499161][T14710] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  257.509633][T14710] batman_adv: batadv0: Adding interface: batadv_slave_1
[  257.513708][T14710] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  257.528587][T14710] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  257.599623][T14710] hsr_slave_0: entered promiscuous mode
[  257.616911][T14710] hsr_slave_1: entered promiscuous mode
[  257.620114][T14710] debugfs: 'hsr0' already exists in 'hsr'
[  257.622580][T14710] Cannot create hsr debugfs directory
[  257.628568][T14815] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.631610][T14815] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.695557][   T34] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  257.706147][T14818] input: syz0 as /devices/virtual/input/input20
[  257.906301][   T34] usb 11-1: config index 0 descriptor too short (expected 39, got 27)
[  257.910461][   T34] usb 11-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  257.915160][   T34] usb 11-1: config 0 interface 0 has no altsetting 0
[  257.926042][T14820] syzkaller0: entered promiscuous mode
[  257.943317][ T1254] hsr_slave_0: left promiscuous mode
[  257.946444][   T34] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  257.950250][   T34] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  257.953671][   T34] usb 11-1: Product: syz
[  257.958946][   T34] usb 11-1: Manufacturer: syz
[  257.958969][ T1254] hsr_slave_1: left promiscuous mode
[  257.961362][   T34] usb 11-1: SerialNumber: syz
[  257.964723][ T1254] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.968568][   T34] usb 11-1: config 0 descriptor??
[  257.970438][ T1254] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.973082][   T34] hub 11-1:0.0: bad descriptor, ignoring hub
[  257.977541][   T34] hub 11-1:0.0: probe with driver hub failed with error -5
[  257.978558][ T1254] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  257.982944][   T34] usb 11-1: selecting invalid altsetting 0
[  257.983466][ T1254] batman_adv: batadv0: Removing interface: batadv_slave_1
[  257.994626][ T1254] veth1_vlan: left allmulticast mode
[  257.997250][ T1254] veth1_macvtap: left promiscuous mode
[  257.999742][ T1254] veth0_macvtap: left promiscuous mode
[  258.002424][ T1254] veth1_vlan: left promiscuous mode
[  258.005112][ T1254] veth0_vlan: left promiscuous mode
[  258.505447][ T5935] Bluetooth: hci5: command tx timeout
[  258.941400][T14801] usb 11-1: reset high-speed USB device number 2 using dummy_hcd
[  258.960236][T14801] usb 11-1: device reset changed ep0 maxpacket size!
[  258.983690][   T50] usb 11-1: USB disconnect, device number 2
[  259.210849][   T50] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  259.355361][   T50] usb 11-1: Using ep0 maxpacket: 8
[  259.358973][   T50] usb 11-1: config 1 interface 0 altsetting 250 bulk endpoint 0x82 has invalid maxpacket 32
[  259.362697][   T50] usb 11-1: config 1 interface 0 altsetting 250 bulk endpoint 0x3 has invalid maxpacket 1024
[  259.366551][   T50] usb 11-1: config 1 interface 0 altsetting 250 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  259.371174][   T50] usb 11-1: config 1 interface 0 has no altsetting 0
[  259.390425][   T50] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  259.393674][   T50] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.396819][   T50] usb 11-1: Product: syz
[  259.398330][   T50] usb 11-1: Manufacturer: syz
[  259.399865][   T50] usb 11-1: SerialNumber: syz
[  259.409351][T14828] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  259.412791][T14828] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  259.982999][T14710] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  259.988891][T14848] fuse: Invalid rootmode
[  259.990735][   T40] audit: type=1400 audit(1775041260.140:868): avc:  denied  { mounton } for  pid=14847 comm="syz.3.2551" path="/148/file0" dev="9p" ino=79431321 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  260.001233][T14710] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  260.010610][T14710] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  260.029436][T14710] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  260.119117][T14710] 8021q: adding VLAN 0 to HW filter on device bond0
[  260.137957][T14710] 8021q: adding VLAN 0 to HW filter on device team0
[  260.146145][ T8829] bridge0: port 1(bridge_slave_0) entered blocking state
[  260.148936][ T8829] bridge0: port 1(bridge_slave_0) entered forwarding state
[  260.156585][ T8829] bridge0: port 2(bridge_slave_1) entered blocking state
[  260.159097][ T8829] bridge0: port 2(bridge_slave_1) entered forwarding state
[  260.190547][T14867] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2554'.
[  260.199426][T14710] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  260.386193][T14889] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2558'.
[  260.389168][T14889] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2558'.
[  260.404212][T14885] syzkaller0: entered promiscuous mode
[  260.589854][ T5935] Bluetooth: hci5: command tx timeout
[  260.706707][   T50] cdc_ether 11-1:1.0: probe with driver cdc_ether failed with error -71
[  260.725589][   T50] usb 11-1: USB disconnect, device number 3
[  260.751756][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  260.765382][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  262.097390][T14710] 8021q: adding VLAN 0 to HW filter on device batadv0
[  262.191195][T14907] input input22: cannot allocate more than FF_MAX_EFFECTS effects
[  262.301886][T14922] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2566'.
[  262.333537][T14710] veth0_vlan: entered promiscuous mode
[  262.357457][T14710] veth1_vlan: entered promiscuous mode
[  262.390961][T14929] PID 14929 killed due to inadequate hugepage pool
[  262.413326][T14931] syzkaller0: entered promiscuous mode
[  262.670406][ T5935] Bluetooth: hci5: command tx timeout
[  262.712440][T14942] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2572'.
[  262.724804][T14942] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2572'.
[  264.287721][T14969] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2578'.
[  264.308477][T14710] veth0_macvtap: entered promiscuous mode
[  264.311541][T14710] veth1_macvtap: entered promiscuous mode
[  264.330032][T14710] batman_adv: batadv0: Interface activated: batadv_slave_0
[  264.333075][T14969] netlink: 'syz.6.2578': attribute type 21 has an invalid length.
[  264.342431][T14710] batman_adv: batadv0: Interface activated: batadv_slave_1
[  264.352233][T14969] netlink: 'syz.6.2578': attribute type 6 has an invalid length.
[  264.354819][T14969] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2578'.
[  264.359192][  T161] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  264.363612][  T161] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  264.370691][  T161] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  264.374543][  T161] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  264.382567][T14976] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2580'.
[  264.491857][ T1254] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  264.496529][ T1254] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  264.523122][T14984] netlink: 'syz.0.2583': attribute type 29 has an invalid length.
[  264.526860][T14984] netlink: 'syz.0.2583': attribute type 29 has an invalid length.
[  264.530345][T14984] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=32279 sclass=netlink_xfrm_socket pid=14984 comm=syz.0.2583
[  264.544688][ T8826] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  264.549036][ T8826] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  264.694241][T15002] input: syz0 as /devices/virtual/input/input23
[  264.766399][T15004] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2590'.
[  264.799355][   T40] audit: type=1326 audit(1775041264.950:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15008 comm="syz.0.2591" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff04d39c819 code=0x0
[  264.807378][   T40] audit: type=1326 audit(1775041264.950:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15008 comm="syz.0.2591" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff04d39c819 code=0x0
[  264.810789][T15006] syzkaller0: entered promiscuous mode
[  264.830498][   T40] audit: type=1400 audit(1775041264.980:871): avc:  denied  { getopt } for  pid=15003 comm="syz.3.2590" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  265.125199][T15023] input: syz0 as /devices/virtual/input/input24
[  266.721472][T15043] SELinux:  truncated policydb string identifier
[  266.724483][T15043] SELinux: failed to load policy
[  267.048299][T15064] batman_adv: batadv0: Removing interface: batadv_slave_0
[  267.056946][T15064] batman_adv: batadv0: Removing interface: batadv_slave_1
[  267.113077][T15069] input: syz0 as /devices/virtual/input/input25
[  267.187074][T15076] IPv6: NLM_F_CREATE should be specified when creating new route
[  267.198159][T15076] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  267.203442][T15076] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2610'.
[  267.260545][T15077] tipc: Started in network mode
[  267.262567][T15077] tipc: Node identity 7, cluster identity 4711
[  267.265756][T15077] tipc: Node number set to 7
[  267.267777][T15077] tipc: Cannot configure node identity twice
[  267.484141][   T40] audit: type=1400 audit(1775041267.630:872): avc:  denied  { create } for  pid=15094 comm="syz.0.2616" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1
[  267.502748][T15093] trusted_key: encrypted_key: keylen parameter is missing
[  267.514707][T15093] kvm: kvm [15092]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  267.519948][T15093] kvm: kvm [15092]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  267.546570][   T40] audit: type=1400 audit(1775041267.700:873): avc:  denied  { accept } for  pid=15094 comm="syz.0.2616" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  267.547331][T15097] Invalid ELF header type: 0 != 1
[  267.559025][   T40] audit: type=1400 audit(1775041267.700:874): avc:  denied  { module_load } for  pid=15094 comm="syz.0.2616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  267.572320][   T40] audit: type=1400 audit(1775041267.720:875): avc:  denied  { watch_mount } for  pid=15098 comm="syz.7.2617" path="/5" dev="tmpfs" ino=40 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  267.593430][T15099] netlink: 'syz.7.2617': attribute type 1 has an invalid length.
[  267.745096][T15112] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  267.748887][T15112] batman_adv: batadv0: Removing interface: batadv_slave_0
[  267.755779][T15112] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  267.760338][T15112] batman_adv: batadv0: Removing interface: batadv_slave_1
[  267.817667][T15114] input: syz0 as /devices/virtual/input/input26
[  268.185995][T15124] netlink: 'syz.3.2626': attribute type 29 has an invalid length.
[  268.189334][T15124] netlink: 'syz.3.2626': attribute type 29 has an invalid length.
[  268.193412][T15124] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=32279 sclass=netlink_xfrm_socket pid=15124 comm=syz.3.2626
[  268.382690][T15126] netlink: 'syz.7.2627': attribute type 10 has an invalid length.
[  268.413321][T15140] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  268.417009][T15140] overlayfs: overlapping lowerdir path
[  268.417723][T15126] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  268.482380][T15145] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  268.486348][T15145] overlayfs: missing 'lowerdir'
[  268.571186][T15161] netlink: 'syz.0.2636': attribute type 1 has an invalid length.
[  268.596734][T15164] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2637'.
[  268.621512][T15161] 8021q: adding VLAN 0 to HW filter on device bond7
[  268.628615][T15161] bond6: (slave bond7): making interface the new active one
[  268.632647][T15161] bond6: (slave bond7): Enslaving as an active interface with an up link
[  268.647255][T15161] ip6gretap0: entered promiscuous mode
[  268.653925][T15161] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2636'.
[  268.658353][T15161] bond6: entered allmulticast mode
[  268.660819][T15161] bond7: entered allmulticast mode
[  268.686735][T15167] netlink: 'syz.3.2638': attribute type 29 has an invalid length.
[  269.184024][T15197] FAULT_INJECTION: forcing a failure.
[  269.184024][T15197] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  269.192319][T15197] CPU: 2 UID: 0 PID: 15197 Comm: syz.6.2649 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  269.192351][T15197] Tainted: [L]=SOFTLOCKUP
[  269.192356][T15197] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  269.192366][T15197] Call Trace:
[  269.192373][T15197]  <TASK>
[  269.192379][T15197]  dump_stack_lvl+0x100/0x190
[  269.192449][T15197]  should_fail_ex.cold+0x5/0xa
[  269.192504][T15197]  _copy_from_user+0x2e/0xd0
[  269.192551][T15197]  copy_msghdr_from_user+0x9f/0x4f0
[  269.192580][T15197]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  269.192612][T15197]  ___sys_sendmsg+0x106/0x1e0
[  269.192635][T15197]  ? __pfx____sys_sendmsg+0x10/0x10
[  269.192683][T15197]  __sys_sendmsg+0x170/0x220
[  269.192707][T15197]  ? __pfx___sys_sendmsg+0x10/0x10
[  269.192747][T15197]  do_syscall_64+0x106/0xf80
[  269.192774][T15197]  ? clear_bhb_loop+0x40/0x90
[  269.192796][T15197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.192813][T15197] RIP: 0033:0x7ff87519c819
[  269.192830][T15197] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  269.192966][T15197] RSP: 002b:00007ff875faa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  269.192984][T15197] RAX: ffffffffffffffda RBX: 00007ff875415fa0 RCX: 00007ff87519c819
[  269.192995][T15197] RDX: 0000000020000000 RSI: 0000200000001280 RDI: 0000000000000004
[  269.193006][T15197] RBP: 00007ff875faa090 R08: 0000000000000000 R09: 0000000000000000
[  269.193016][T15197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.193026][T15197] R13: 00007ff875416038 R14: 00007ff875415fa0 R15: 00007ffcc3c39f08
[  269.193052][T15197]  </TASK>
[  269.470136][T15216] syzkaller1: entered promiscuous mode
[  269.472511][T15216] syzkaller1: entered allmulticast mode
[  269.561200][T15224] tmpfs: Bad value for 'mpol'
[  269.693457][T15236] validate_nla: 1 callbacks suppressed
[  269.693478][T15236] netlink: 'syz.7.2662': attribute type 29 has an invalid length.
[  269.703279][T15236] netlink: 'syz.7.2662': attribute type 29 has an invalid length.
[  269.820203][T15246] syzkaller0: entered promiscuous mode
[  269.858918][T15250] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2668'.
[  269.875654][T15250] nbd: socks must be embedded in a SOCK_ITEM attr
[  269.992896][T15258] random: crng reseeded on system resumption
[  270.197146][   T40] audit: type=1400 audit(1775041270.350:876): avc:  denied  { open } for  pid=15264 comm="syz.0.2672" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=58794 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  270.207664][T15265] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2672'.
[  271.636991][T15254] syzkaller0: entered promiscuous mode
[  271.748827][T15279] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2676'.
[  271.846032][T15293] xt_hashlimit: size too large, truncated to 1048576
[  271.892294][   T40] audit: type=1400 audit(1775041272.030:877): avc:  denied  { setopt } for  pid=15294 comm="syz.6.2682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  271.925080][   T40] audit: type=1400 audit(1775041272.070:878): avc:  denied  { shutdown } for  pid=15298 comm="syz.7.2683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  272.076524][   T40] audit: type=1400 audit(1775041272.220:879): avc:  denied  { unlink } for  pid=15298 comm="syz.7.2683" name="file0" dev="fuse" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  272.099527][   T40] audit: type=1326 audit(1775041272.250:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15308 comm="syz.3.2686" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f35af79c819 code=0x0
[  272.159452][T15312] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2687'.
[  272.160295][T15311] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  272.163184][T15312] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2687'.
[  272.165181][T15311] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  272.165338][T15311] vhci_hcd vhci_hcd.0: Device attached
[  272.230522][T15319] FAULT_INJECTION: forcing a failure.
[  272.230522][T15319] name failslab, interval 1, probability 0, space 0, times 0
[  272.236737][T15319] CPU: 3 UID: 0 PID: 15319 Comm: syz.7.2688 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  272.236768][T15319] Tainted: [L]=SOFTLOCKUP
[  272.236774][T15319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  272.236786][T15319] Call Trace:
[  272.236792][T15319]  <TASK>
[  272.236799][T15319]  dump_stack_lvl+0x100/0x190
[  272.236835][T15319]  should_fail_ex.cold+0x5/0xa
[  272.236862][T15319]  ? genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  272.236884][T15319]  should_failslab+0xc2/0x120
[  272.236941][T15319]  __kmalloc_noprof+0xe0/0x850
[  272.237000][T15319]  genl_family_rcv_msg_attrs_parse.isra.0+0xc2/0x280
[  272.237021][T15319]  ? netlink_lookup+0x116/0x270
[  272.237052][T15319]  genl_start+0x18f/0x970
[  272.237088][T15319]  __netlink_dump_start+0x60e/0x990
[  272.237122][T15319]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  272.237144][T15319]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  272.237172][T15319]  ? __pfx_genl_get_cmd+0x10/0x10
[  272.237188][T15319]  ? __pfx_genl_start+0x10/0x10
[  272.237205][T15319]  ? __pfx_genl_dumpit+0x10/0x10
[  272.237223][T15319]  ? __pfx_genl_done+0x10/0x10
[  272.237251][T15319]  ? kasan_save_track+0x14/0x30
[  272.237279][T15319]  ? __kasan_slab_alloc+0x89/0x90
[  272.237295][T15319]  ? __radix_tree_lookup+0x217/0x2b0
[  272.237326][T15319]  genl_rcv_msg+0x471/0x800
[  272.237349][T15319]  ? __pfx_genl_rcv_msg+0x10/0x10
[  272.237369][T15319]  ? __pfx_ieee802154_llsec_dump_devs+0x10/0x10
[  272.237401][T15319]  ? __lock_acquire+0x4a5/0x2630
[  272.237449][T15319]  netlink_rcv_skb+0x159/0x420
[  272.237476][T15319]  ? __pfx_genl_rcv_msg+0x10/0x10
[  272.237496][T15319]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  272.237534][T15319]  ? netlink_deliver_tap+0x1ae/0xcc0
[  272.237565][T15319]  genl_rcv+0x28/0x40
[  272.237582][T15319]  netlink_unicast+0x5aa/0x870
[  272.237614][T15319]  ? __pfx_netlink_unicast+0x10/0x10
[  272.237652][T15319]  netlink_sendmsg+0x8b0/0xda0
[  272.237684][T15319]  ? __pfx_netlink_sendmsg+0x10/0x10
[  272.237711][T15319]  ? __might_fault+0x50/0x140
[  272.237768][T15319]  ____sys_sendmsg+0x9e1/0xb70
[  272.237787][T15319]  ? __pfx_netlink_sendmsg+0x10/0x10
[  272.237817][T15319]  ? __pfx_____sys_sendmsg+0x10/0x10
[  272.237848][T15319]  ___sys_sendmsg+0x190/0x1e0
[  272.237891][T15319]  ? __pfx____sys_sendmsg+0x10/0x10
[  272.237943][T15319]  __sys_sendmsg+0x170/0x220
[  272.237969][T15319]  ? __pfx___sys_sendmsg+0x10/0x10
[  272.238011][T15319]  do_syscall_64+0x106/0xf80
[  272.238038][T15319]  ? clear_bhb_loop+0x40/0x90
[  272.238060][T15319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.238079][T15319] RIP: 0033:0x7f4de119c819
[  272.238095][T15319] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  272.238112][T15319] RSP: 002b:00007f4de2034028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  272.238130][T15319] RAX: ffffffffffffffda RBX: 00007f4de1415fa0 RCX: 00007f4de119c819
[  272.238142][T15319] RDX: 0000000020000000 RSI: 0000200000001280 RDI: 0000000000000004
[  272.238153][T15319] RBP: 00007f4de2034090 R08: 0000000000000000 R09: 0000000000000000
[  272.238163][T15319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  272.238174][T15319] R13: 00007f4de1416038 R14: 00007f4de1415fa0 R15: 00007fff2cd9e6d8
[  272.238200][T15319]  </TASK>
[  272.429500][T15325] netlink: 32 bytes leftover after parsing attributes in process `syz.7.2690'.
[  272.435473][    T9] usb 43-1: new high-speed USB device number 2 using vhci_hcd
[  272.445347][   T40] audit: type=1400 audit(1775041272.590:881): avc:  denied  { shutdown } for  pid=15324 comm="syz.7.2690" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  272.447462][T15325] netlink: 'syz.7.2690': attribute type 21 has an invalid length.
[  272.458931][T15325] netlink: 128 bytes leftover after parsing attributes in process `syz.7.2690'.
[  272.462814][T15325] netlink: 'syz.7.2690': attribute type 4 has an invalid length.
[  272.467174][T15325] netlink: 'syz.7.2690': attribute type 5 has an invalid length.
[  272.470486][T15325] netlink: 3 bytes leftover after parsing attributes in process `syz.7.2690'.
[  272.479301][T15325] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2690'.
[  272.545373][ T5973] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  272.710415][ T5973] usb 11-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  272.716019][ T5973] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.720508][ T5973] usb 11-1: Product: syz
[  272.722985][ T5973] usb 11-1: Manufacturer: syz
[  272.726175][ T5973] usb 11-1: SerialNumber: syz
[  272.741971][ T5973] usb 11-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  272.747362][T15333] netlink: 'syz.0.2693': attribute type 29 has an invalid length.
[  272.769965][   T40] audit: type=1400 audit(1775041272.920:882): avc:  denied  { firmware_load } for  pid=5972 comm="kworker/0:3" path="/lib/firmware/ath9k_htc/htc_9271-1.4.0.fw" dev="sda1" ino=313 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  272.790774][ T5972] usb 11-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  272.986995][T15314] vhci_hcd: connection reset by peer
[  272.991435][   T96] vhci_hcd vhci_hcd.3: stop threads
[  272.994848][   T96] vhci_hcd vhci_hcd.3: release socket
[  273.001122][   T96] vhci_hcd vhci_hcd.3: disconnect device
[  273.011752][T15033] usb 11-1: USB disconnect, device number 4
[  273.042023][T15339] netlink: 'syz.0.2696': attribute type 9 has an invalid length.
[  273.045399][T15339] netlink: 'syz.0.2696': attribute type 11 has an invalid length.
[  273.049038][T15339] netlink: 'syz.0.2696': attribute type 12 has an invalid length.
[  273.053131][T15339] netlink: 210020 bytes leftover after parsing attributes in process `syz.0.2696'.
[  273.058728][T15339] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2696'.
[  273.505356][   T24] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[  273.651222][T15376] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  273.670551][   T24] usb 12-1: too many configurations: 9, using maximum allowed: 8
[  273.675618][T15378] sch_fq: defrate 0 ignored.
[  273.678130][   T24] usb 12-1: config 0 has no interfaces?
[  273.681607][   T24] usb 12-1: config 0 has no interfaces?
[  273.684253][   T24] usb 12-1: config 0 has no interfaces?
[  273.687424][   T24] usb 12-1: config 0 has no interfaces?
[  273.690202][   T24] usb 12-1: config 0 has no interfaces?
[  273.692957][   T24] usb 12-1: config 0 has no interfaces?
[  273.696483][   T24] usb 12-1: config 0 has no interfaces?
[  273.699515][   T24] usb 12-1: config 0 has no interfaces?
[  273.703107][   T24] usb 12-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  273.706522][   T24] usb 12-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  273.709624][   T24] usb 12-1: Product: syz
[  273.711750][   T24] usb 12-1: Manufacturer: syz
[  273.713967][   T24] usb 12-1: SerialNumber: syz
[  273.718949][   T24] usb 12-1: config 0 descriptor??
[  273.865630][ T5972] ath9k_htc 11-1:1.0: ath9k_htc: Target is unresponsive
[  273.872767][ T5972] ath9k_htc: Failed to initialize the device
[  273.878873][T15033] usb 11-1: ath9k_htc: USB layer deinitialized
[  273.931685][   T24] usb 12-1: USB disconnect, device number 2
[  273.936940][   T40] audit: type=1400 audit(1775041274.090:883): avc:  denied  { connect } for  pid=15395 comm="syz.6.2714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  273.961723][   T40] audit: type=1400 audit(1775041274.100:884): avc:  denied  { write } for  pid=15395 comm="syz.6.2714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  274.396267][T15440] syzkaller0: entered promiscuous mode
[  274.561916][T15446] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2727'.
[  274.613867][T15447] netlink: 'syz.7.2727': attribute type 1 has an invalid length.
[  275.907856][T15446] xfrm1: entered promiscuous mode
[  275.909960][T15446] xfrm1: entered allmulticast mode
[  275.936824][T15449] veth3: entered promiscuous mode
[  275.939355][T15452] FAULT_INJECTION: forcing a failure.
[  275.939355][T15452] name failslab, interval 1, probability 0, space 0, times 0
[  275.944598][T15452] CPU: 2 UID: 0 PID: 15452 Comm: syz.6.2728 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  275.944619][T15452] Tainted: [L]=SOFTLOCKUP
[  275.944623][T15452] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  275.944631][T15452] Call Trace:
[  275.944636][T15452]  <TASK>
[  275.944642][T15452]  dump_stack_lvl+0x100/0x190
[  275.944665][T15452]  should_fail_ex.cold+0x5/0xa
[  275.944682][T15452]  should_failslab+0xc2/0x120
[  275.944696][T15452]  __kmalloc_cache_noprof+0x7a/0x6f0
[  275.944711][T15452]  ? genl_start+0x1e8/0x970
[  275.944722][T15452]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  275.944734][T15452]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1aa/0x280
[  275.944749][T15452]  genl_start+0x1e8/0x970
[  275.944763][T15452]  __netlink_dump_start+0x60e/0x990
[  275.944783][T15452]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  275.944799][T15452]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  275.944815][T15452]  ? __pfx_genl_get_cmd+0x10/0x10
[  275.944825][T15452]  ? __pfx_genl_start+0x10/0x10
[  275.944835][T15452]  ? __pfx_genl_dumpit+0x10/0x10
[  275.944845][T15452]  ? __pfx_genl_done+0x10/0x10
[  275.944858][T15452]  ? kasan_save_track+0x14/0x30
[  275.944874][T15452]  ? __kasan_slab_alloc+0x89/0x90
[  275.944884][T15452]  ? __radix_tree_lookup+0x217/0x2b0
[  275.944902][T15452]  genl_rcv_msg+0x471/0x800
[  275.944915][T15452]  ? __pfx_genl_rcv_msg+0x10/0x10
[  275.944928][T15452]  ? __pfx_ieee802154_llsec_dump_devs+0x10/0x10
[  275.944947][T15452]  ? __lock_acquire+0x4a5/0x2630
[  275.944961][T15452]  netlink_rcv_skb+0x159/0x420
[  275.944979][T15452]  ? __pfx_genl_rcv_msg+0x10/0x10
[  275.944991][T15452]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  275.945015][T15452]  ? netlink_deliver_tap+0x1ae/0xcc0
[  275.945034][T15452]  genl_rcv+0x28/0x40
[  275.945044][T15452]  netlink_unicast+0x5aa/0x870
[  275.945063][T15452]  ? __pfx_netlink_unicast+0x10/0x10
[  275.945085][T15452]  netlink_sendmsg+0x8b0/0xda0
[  275.945105][T15452]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.945122][T15452]  ? __might_fault+0x50/0x140
[  275.945143][T15452]  ____sys_sendmsg+0x9e1/0xb70
[  275.945154][T15452]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.945172][T15452]  ? __pfx_____sys_sendmsg+0x10/0x10
[  275.945190][T15452]  ___sys_sendmsg+0x190/0x1e0
[  275.945203][T15452]  ? __pfx____sys_sendmsg+0x10/0x10
[  275.945263][T15452]  __sys_sendmsg+0x170/0x220
[  275.945287][T15452]  ? __pfx___sys_sendmsg+0x10/0x10
[  275.945325][T15452]  do_syscall_64+0x106/0xf80
[  275.945348][T15452]  ? clear_bhb_loop+0x40/0x90
[  275.945367][T15452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.945383][T15452] RIP: 0033:0x7ff87519c819
[  275.945399][T15452] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  275.945414][T15452] RSP: 002b:00007ff875faa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.945431][T15452] RAX: ffffffffffffffda RBX: 00007ff875415fa0 RCX: 00007ff87519c819
[  275.945441][T15452] RDX: 0000000020000000 RSI: 0000200000001280 RDI: 0000000000000004
[  275.945452][T15452] RBP: 00007ff875faa090 R08: 0000000000000000 R09: 0000000000000000
[  275.945462][T15452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.945472][T15452] R13: 00007ff875416038 R14: 00007ff875415fa0 R15: 00007ffcc3c39f08
[  275.945495][T15452]  </TASK>
[  276.208746][   T40] audit: type=1400 audit(1775041276.360:885): avc:  denied  { create } for  pid=15464 comm="syz.7.2732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  276.216549][   T40] audit: type=1400 audit(1775041276.370:886): avc:  denied  { write } for  pid=15464 comm="syz.7.2732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  276.223637][   T40] audit: type=1400 audit(1775041276.370:887): avc:  denied  { ioctl } for  pid=15464 comm="syz.7.2732" path="socket:[59027]" dev="sockfs" ino=59027 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  276.278164][ T5935] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci5/hci5:201'
[  276.282331][ T5935] CPU: 2 UID: 0 PID: 5935 Comm: kworker/u33:3 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  276.282353][ T5935] Tainted: [L]=SOFTLOCKUP
[  276.282357][ T5935] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  276.282366][ T5935] Workqueue: hci5 hci_rx_work
[  276.282385][ T5935] Call Trace:
[  276.282390][ T5935]  <TASK>
[  276.282394][ T5935]  dump_stack_lvl+0x100/0x190
[  276.282415][ T5935]  sysfs_warn_dup.cold+0x1c/0x28
[  276.282467][ T5935]  sysfs_create_dir_ns+0x24b/0x2b0
[  276.282505][ T5935]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  276.282523][ T5935]  ? find_held_lock+0x2b/0x80
[  276.282540][ T5935]  ? kobject_add_internal+0x25f/0x930
[  276.282553][ T5935]  ? kobject_add_internal+0x25f/0x930
[  276.282567][ T5935]  ? do_raw_spin_unlock+0x145/0x1e0
[  276.282582][ T5935]  kobject_add_internal+0x2c8/0x930
[  276.282598][ T5935]  kobject_add+0x16a/0x1e0
[  276.282609][ T5935]  ? __pfx_kobject_add+0x10/0x10
[  276.282620][ T5935]  ? class_to_subsys+0x10f/0x150
[  276.282636][ T5935]  ? kobject_put+0xb9/0x640
[  276.282646][ T5935]  ? _raw_spin_unlock+0x28/0x50
[  276.282665][ T5935]  device_add+0x294/0x1950
[  276.282678][ T5935]  ? __pfx_dev_set_name+0x10/0x10
[  276.282692][ T5935]  ? __pfx_device_add+0x10/0x10
[  276.282705][ T5935]  ? mgmt_send_event_skb+0x2fb/0x460
[  276.282724][ T5935]  hci_conn_add_sysfs+0x1a3/0x260
[  276.282741][ T5935]  le_conn_complete_evt+0x11cb/0x1f40
[  276.282759][ T5935]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  276.282777][ T5935]  hci_le_conn_complete_evt+0x23c/0x3a0
[  276.282792][ T5935]  ? skb_pull_data+0x15f/0x1e0
[  276.282805][ T5935]  hci_le_meta_evt+0x34a/0x5f0
[  276.282820][ T5935]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  276.282837][ T5935]  hci_event_packet+0x682/0x11c0
[  276.282851][ T5935]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  276.282867][ T5935]  ? __pfx_hci_event_packet+0x10/0x10
[  276.282882][ T5935]  ? kcov_remote_start+0x374/0x660
[  276.282920][ T5935]  ? lockdep_hardirqs_on+0x78/0x100
[  276.282941][ T5935]  hci_rx_work+0x451/0xfc0
[  276.282960][ T5935]  process_one_work+0xa23/0x19a0
[  276.283003][ T5935]  ? __pfx_process_one_work+0x10/0x10
[  276.283020][ T5935]  ? __pfx_hci_rx_work+0x10/0x10
[  276.283036][ T5935]  worker_thread+0x5ef/0xe50
[  276.283053][ T5935]  ? __pfx_worker_thread+0x10/0x10
[  276.283066][ T5935]  ? kthread+0x13a/0x450
[  276.283078][ T5935]  ? __pfx_worker_thread+0x10/0x10
[  276.283089][ T5935]  kthread+0x370/0x450
[  276.283100][ T5935]  ? __pfx_kthread+0x10/0x10
[  276.283114][ T5935]  ret_from_fork+0x754/0xd80
[  276.283146][ T5935]  ? __pfx_ret_from_fork+0x10/0x10
[  276.283159][ T5935]  ? __switch_to+0x7b4/0x1120
[  276.283192][ T5935]  ? __pfx_kthread+0x10/0x10
[  276.283210][ T5935]  ret_from_fork_asm+0x1a/0x30
[  276.283231][ T5935]  </TASK>
[  276.283249][ T5935] kobject: kobject_add_internal failed for hci5:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  276.379781][T15487] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2735'.
[  276.381759][ T5935] Bluetooth: hci5: failed to register connection device
[  276.394534][T15487] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2735'.
[  276.507500][T15492] syzkaller0: entered promiscuous mode
[  277.555996][    T9] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  277.887780][T15516] netlink: 'syz.6.2741': attribute type 10 has an invalid length.
[  277.887953][T15517] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2741'.
[  278.275580][T15516] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.279067][T15516] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.288530][T15516] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.291883][T15516] bridge0: port 2(bridge_slave_1) entered listening state
[  278.295115][T15516] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.298327][T15516] bridge0: port 1(bridge_slave_0) entered listening state
[  278.312236][T15516] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  278.316518][T15517] bridge_slave_1: left allmulticast mode
[  278.323491][T15517] bridge_slave_1: left promiscuous mode
[  278.333668][T15517] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.346141][T15517] bridge_slave_0: left allmulticast mode
[  278.348885][T15517] bridge_slave_0: left promiscuous mode
[  278.351418][T15517] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.364909][T15517] bond0: (slave bridge0): Releasing backup interface
[  278.411917][T15524] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.417387][T15524] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.447389][T15524] veth0_to_bond: left allmulticast mode
[  278.449210][T15524] veth0_to_bond: left promiscuous mode
[  278.451257][T15524] bridge3: port 2(veth0_to_bond) entered disabled state
[  278.464892][T15524] bond0: (slave bond_slave_0): Releasing backup interface
[  278.473123][T15524] bond0: (slave bond_slave_1): Releasing backup interface
[  278.479833][T15524] team0: Port device team_slave_0 removed
[  278.482847][T15524] team0: Port device team_slave_1 removed
[  278.484977][T15524] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  278.500766][T15533] team0: Mode changed to "loadbalance"
[  278.572659][T15541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2746'.
[  278.882919][T15563] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2753'.
[  278.939710][T15568] can0: slcan on ttynull.
[  279.015997][T15567] can0 (unregistered): slcan off ttynull.
[  279.083488][T15578] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2760'.
[  279.088227][T15578] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2760'.
[  279.143602][T15585] syzkaller0: entered promiscuous mode
[  279.184118][T15587] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  279.197416][T15587] syzkaller0: entered promiscuous mode
[  279.199199][T15587] syzkaller0: entered allmulticast mode
[  279.343723][T15596] bond2: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  279.356520][T15596] bond2 (unregistering): Released all slaves
[  279.427484][T15604] ALSA: mixer_oss: invalid OSS volume 'PHlâ6žžq
Ó†ØÈÌONEOUT'
[  279.431073][T15604] ALSA: mixer_oss: invalid index 1374389
[  279.554952][T15612] fuse: Unknown parameter 'fd0x0000000000000003'
[  279.587765][ T8829] Bluetooth: hci2: Frame reassembly failed (-84)
[  279.599327][ T1808] hid-generic 0362:07FF:7FFFFFFF.0003: item fetching failed at offset 0/2
[  279.603862][ T1808] hid-generic 0362:07FF:7FFFFFFF.0003: probe with driver hid-generic failed with error -22
[  279.730111][   T40] audit: type=1400 audit(1775041279.880:888): avc:  denied  { ioctl } for  pid=15619 comm="syz.6.2775" path="socket:[60505]" dev="sockfs" ino=60505 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  279.936080][T15629] bond0: (slave macvlan2): Error -98 calling set_mac_address
[  280.087098][T15635] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  280.087098][T15635]    program syz.6.2780 not setting count and/or reply_len properly
[  280.156244][T15637] ptrace attach of "/syz-executor exec"[15638] was attempted by "/syz-executor exec"[15637]
[  280.160830][T15637] netlink: 25 bytes leftover after parsing attributes in process `syz.6.2781'.
[  280.168300][T15637] netlink: 'syz.6.2781': attribute type 4 has an invalid length.
[  280.220972][T15640] 9p: Bad value for 'port'
[  280.509648][T15650] netlink: 212368 bytes leftover after parsing attributes in process `syz.7.2787'.
[  280.938011][T15656] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  280.995491][T15656] tun0: tun_chr_ioctl cmd 1074025675
[  280.997843][T15656] tun0: persist enabled
[  281.000159][T15656] tun0: tun_chr_ioctl cmd 1074025675
[  281.002589][T15656] tun0: persist enabled
[  281.625741][ T5289] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  281.645082][T15678] syzkaller0: entered promiscuous mode
[  281.777445][T15689] xt_CT: No such helper "pptp"
[  282.106887][T15706] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2803'.
[  282.110236][T15706] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2803'.
[  282.114070][T15706] netlink: 'syz.6.2803': attribute type 7 has an invalid length.
[  282.117549][T15706] netlink: 'syz.6.2803': attribute type 13 has an invalid length.
[  282.332935][   T40] audit: type=1400 audit(282.255:889): avc:  denied  { read } for  pid=15705 comm="syz.6.2803" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  282.342518][   T40] audit: type=1400 audit(282.255:890): avc:  denied  { open } for  pid=15705 comm="syz.6.2803" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  282.351117][   T40] audit: type=1400 audit(282.255:891): avc:  denied  { ioctl } for  pid=15705 comm="syz.6.2803" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  282.352545][T15033] libceph: connect (1)[c::]:6789 error -101
[  282.361998][T15033] libceph: mon0 (1)[c::]:6789 connect error
[  282.384282][T15707] ceph: No mds server is up or the cluster is laggy
[  283.871305][T15730] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2807'.
[  283.878869][T15730] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2807'.
[  283.986513][T15742] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2813'.
[  284.127589][T15757] syzkaller0: entered promiscuous mode
[  284.255716][T15033] usb 12-1: new full-speed USB device number 3 using dummy_hcd
[  284.407909][T15033] usb 12-1: config index 0 descriptor too short (expected 301, got 45)
[  284.411824][T15033] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  284.420229][T15033] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 64
[  284.424919][T15033] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  284.432788][T15033] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  284.436660][T15033] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.650391][T15033] usb 12-1: GET_CAPABILITIES returned 0
[  284.652782][T15033] usbtmc 12-1:16.0: can't read capabilities
[  284.859333][T15751] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2815'.
[  284.877101][   T40] audit: type=1400 audit(284.795:892): avc:  denied  { ioctl } for  pid=15750 comm="syz.7.2815" path="socket:[61619]" dev="sockfs" ino=61619 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  285.972137][T15788] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  286.113073][T15769] syzkaller0: entered promiscuous mode
[  286.129063][ T5936] usb 12-1: USB disconnect, device number 3
[  286.211211][T15794] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[  286.458131][   T40] audit: type=1400 audit(286.385:893): avc:  denied  { connect } for  pid=15791 comm="syz.3.2824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  286.508571][   T40] audit: type=1400 audit(286.435:894): avc:  denied  { listen } for  pid=15791 comm="syz.3.2824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  286.945363][   T24] usb 12-1: new high-speed USB device number 4 using dummy_hcd
[  287.075788][   T24] usb 12-1: device descriptor read/64, error -71
[  287.315639][   T24] usb 12-1: new high-speed USB device number 5 using dummy_hcd
[  287.455806][   T24] usb 12-1: device descriptor read/64, error -71
[  287.455904][T15822] kernel read not supported for file /policy (pid: 15822 comm: syz.0.2830)
[  287.461042][   T40] audit: type=1400 audit(287.375:895): avc:  denied  { module_load } for  pid=15821 comm="syz.0.2830" path="/selinux/policy" dev="selinuxfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=system permissive=1
[  287.566339][   T24] usb usb12-port1: attempt power cycle
[  287.703199][T15828] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2832'.
[  287.915421][   T24] usb 12-1: new high-speed USB device number 6 using dummy_hcd
[  287.957079][   T24] usb 12-1: device descriptor read/8, error -71
[  288.175440][   T56] usb 11-1: new high-speed USB device number 6 using dummy_hcd
[  288.205353][   T24] usb 12-1: new high-speed USB device number 7 using dummy_hcd
[  288.227000][   T24] usb 12-1: device descriptor read/8, error -71
[  288.335592][   T56] usb 11-1: Using ep0 maxpacket: 32
[  288.337938][   T24] usb usb12-port1: unable to enumerate USB device
[  288.341352][   T56] usb 11-1: config 0 has an invalid interface number: 184 but max is 0
[  288.344113][   T56] usb 11-1: config 0 has no interface number 0
[  288.346461][   T56] usb 11-1: config 0 interface 184 has no altsetting 0
[  288.350493][   T56] usb 11-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  288.354272][   T56] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.357088][   T56] usb 11-1: Product: syz
[  288.358673][   T56] usb 11-1: Manufacturer: syz
[  288.360215][   T56] usb 11-1: SerialNumber: syz
[  288.363704][   T56] usb 11-1: config 0 descriptor??
[  288.999525][ T5935] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  289.004696][ T5935] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  289.014924][   T56] smsc75xx 11-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  289.020075][ T5935] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  289.022332][   T56] smsc75xx 11-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  289.028286][   T56] smsc75xx 11-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  289.031928][ T5935] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  289.034124][   T56] smsc75xx 11-1:0.184: probe with driver smsc75xx failed with error -71
[  289.038136][ T5935] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  289.043405][   T56] usb 11-1: USB disconnect, device number 6
[  289.111398][T15852] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2840'.
[  289.212234][   T40] audit: type=1400 audit(289.135:896): avc:  denied  { map } for  pid=15853 comm="syz.3.2841" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  289.262804][T15856] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2842'.
[  289.293335][T15856] bridge0: port 1(syz_tun) entered blocking state
[  289.296614][T15856] bridge0: port 1(syz_tun) entered disabled state
[  289.311945][T15849] wg1 speed is unknown, defaulting to 1000
[  289.350267][T15859] syzkaller0: entered promiscuous mode
[  289.473421][ T8829] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  289.478623][ T8829] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.590000][ T8829] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  289.593722][ T8829] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.659875][T15849] chnl_net:caif_netlink_parms(): no params data found
[  289.677869][T15876] overlayfs: failed to resolve './file1/file0': -2
[  289.736527][ T8829] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  289.741504][ T8829] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.796687][T15881] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2850'.
[  289.801716][T15849] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.805926][T15849] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.809548][T15849] bridge_slave_0: entered allmulticast mode
[  289.813667][T15849] bridge_slave_0: entered promiscuous mode
[  289.818970][T15849] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.821549][T15849] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.824154][T15849] bridge_slave_1: entered allmulticast mode
[  289.827705][T15849] bridge_slave_1: entered promiscuous mode
[  289.828197][T15871] netlink: 'syz.6.2847': attribute type 1 has an invalid length.
[  289.837336][   T40] audit: type=1400 audit(289.765:897): avc:  denied  { connect } for  pid=15870 comm="syz.6.2847" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  289.878692][ T8829] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  289.883479][ T8829] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.902306][T15881] bond3: option primary: mode dependency failed, not supported in mode balance-rr(0)
[  289.909286][T15881] bond3 (unregistering): Released all slaves
[  289.956894][T15887] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2852'.
[  289.996854][T15849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  290.067705][T15849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  290.088793][T15895] dns_resolver: Unsupported content type (234)
[  290.104680][T15895] netlink: 'syz.3.2855': attribute type 5 has an invalid length.
[  290.136578][T15896] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=11008 sclass=netlink_route_socket pid=15896 comm=syz.6.2856
[  290.164112][T15849] team0: Port device team_slave_0 added
[  290.170157][T15849] team0: Port device team_slave_1 added
[  290.234013][T15849] batman_adv: batadv0: Adding interface: batadv_slave_0
[  290.238208][T15849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  290.241913][T15902] kernel read not supported for file /policy (pid: 15902 comm: syz.3.2857)
[  290.246838][T15849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  290.256522][T15849] batman_adv: batadv0: Adding interface: batadv_slave_1
[  290.259322][T15849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  290.268698][T15849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.285121][T15904] Invalid ELF header type: 2 != 1
[  290.285381][   T40] audit: type=1400 audit(290.205:898): avc:  denied  { map } for  pid=15903 comm="syz.6.2858" path="/dev/cuse" dev="devtmpfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  290.295595][ T6017] usb 12-1: new high-speed USB device number 8 using dummy_hcd
[  290.338994][ T8829] bridge_slave_1: left allmulticast mode
[  290.340861][ T8829] bridge_slave_1: left promiscuous mode
[  290.342870][ T8829] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.352033][ T8829] bridge_slave_0: left promiscuous mode
[  290.354037][ T8829] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.492738][ T6017] usb 12-1: Using ep0 maxpacket: 32
[  290.499221][ T6017] usb 12-1: config 0 has an invalid interface number: 119 but max is 0
[  290.503358][ T6017] usb 12-1: config 0 has no interface number 0
[  290.511429][ T6017] usb 12-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  290.517107][ T6017] usb 12-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xD3, changing to 0x83
[  290.523101][ T6017] usb 12-1: config 0 interface 119 altsetting 0 endpoint 0x83 has an invalid bInterval 36, changing to 7
[  290.532213][ T6017] usb 12-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  290.540695][ T6017] usb 12-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73
[  290.543825][ T6017] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.547561][ T6017] usb 12-1: Product: syz
[  290.548979][ T6017] usb 12-1: Manufacturer: syz
[  290.550558][ T6017] usb 12-1: SerialNumber: syz
[  290.550644][ T8829] gretap0 (unregistering): left promiscuous mode
[  290.554029][ T6017] usb 12-1: config 0 descriptor??
[  290.562565][ T6017] input: bcm5974 as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.119/input/input30
[  290.810708][ T8826] smc: removing ib device syz0
[  290.814098][ T8829] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  290.821396][ T8829] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  290.832770][ T8829] bond0 (unregistering): (slave 
4

): Releasing backup interface
[  290.841239][ T8829] bond0 (unregistering): Released all slaves
[  290.849771][ T8829] bond1 (unregistering): Released all slaves
[  290.862283][ T8829] bond2 (unregistering): Released all slaves
[  290.875923][ T8829] bond3 (unregistering): Released all slaves
[  290.888107][ T8829] bond4 (unregistering): Released all slaves
[  290.903566][   T10] usb 12-1: USB disconnect, device number 8
[  290.904990][ T8829] bond5 (unregistering): Released all slaves
[  290.944099][ T8829] bond6 (unregistering): (slave bond7): Releasing backup interface
[  290.949828][ T8829] bond7 (unregistering): left allmulticast mode
[  290.953716][ T8829] bond6 (unregistering): Released all slaves
[  290.968957][ T8829] bond7 (unregistering): Released all slaves
[  291.002280][T15849] hsr_slave_0: entered promiscuous mode
[  291.004833][T15849] hsr_slave_1: entered promiscuous mode
[  291.007771][T15849] debugfs: 'hsr0' already exists in 'hsr'
[  291.010101][T15849] Cannot create hsr debugfs directory
[  291.065648][ T5935] Bluetooth: hci2: command tx timeout
[  291.285600][T11891] udevd[11891]: inotify_add_watch(7, /dev/nbd2, 10) failed: No such file or directory
[  291.291419][   T40] audit: type=1400 audit(291.215:899): avc:  denied  { setattr } for  pid=15924 comm="syz.6.2863" name="/" dev="9p" ino=79431321 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  291.632054][T15948] netlink: 'syz.7.2869': attribute type 3 has an invalid length.
[  291.762058][T15962] openvswitch: netlink: Flow actions attr not present in new flow.
[  291.904115][T15971] ip6_vti0: entered promiscuous mode
[  291.911065][T15971] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2876'.
[  292.194824][T15849] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  292.225736][   T40] audit: type=1400 audit(292.145:900): avc:  denied  { execute } for  pid=15988 comm="syz.7.2880" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  292.232420][T15989] geneve1: entered allmulticast mode
[  292.244834][T15849] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  292.252005][   T40] audit: type=1400 audit(292.175:901): avc:  denied  { remove_name } for  pid=15987 comm="syz.6.2879" name="file0" dev="9p" ino=79431325 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  292.274109][   T40] audit: type=1400 audit(292.175:902): avc:  denied  { unlink } for  pid=15987 comm="syz.6.2879" name="file0" dev="9p" ino=79431325 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  292.288489][ T8829] : left promiscuous mode
[  292.313115][T15849] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  292.348733][T15849] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  292.393384][ T8829] tipc: Disabling bearer <udp:syz2>
[  292.402346][ T8829] tipc: Left network mode
[  292.416544][T16000] netlink: 'syz.7.2882': attribute type 3 has an invalid length.
[  292.493569][T15849] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.517589][T15849] 8021q: adding VLAN 0 to HW filter on device team0
[  292.523551][ T1254] bridge0: port 1(bridge_slave_0) entered blocking state
[  292.526836][ T1254] bridge0: port 1(bridge_slave_0) entered forwarding state
[  292.535122][ T1254] bridge0: port 2(bridge_slave_1) entered blocking state
[  292.538717][ T1254] bridge0: port 2(bridge_slave_1) entered forwarding state
[  292.566195][ T8829] IPVS: stopping backup sync thread 9782 ...
[  292.589149][T16011] wg1 speed is unknown, defaulting to 1000
[  292.617300][T15849] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  292.621642][T15849] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  292.750025][T15033] usb 12-1: new high-speed USB device number 9 using dummy_hcd
[  292.772234][T15849] 8021q: adding VLAN 0 to HW filter on device batadv0
[  292.783713][T16011] fuse: Unknown parameter 'Þd'
[  292.841047][T15849] veth0_vlan: entered promiscuous mode
[  292.847161][T15849] veth1_vlan: entered promiscuous mode
[  292.882579][T15849] veth0_macvtap: entered promiscuous mode
[  292.889285][T15849] veth1_macvtap: entered promiscuous mode
[  292.899791][T15849] batman_adv: batadv0: Interface activated: batadv_slave_0
[  292.904028][T15849] batman_adv: batadv0: Interface activated: batadv_slave_1
[  292.908317][T15033] usb 12-1: Using ep0 maxpacket: 16
[  292.912035][T15033] usb 12-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  292.919222][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  292.919478][T15033] usb 12-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  292.922270][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  292.930130][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  292.934885][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  292.935439][T15033] usb 12-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  292.944221][T15033] usb 12-1: config 0 interface 0 has no altsetting 0
[  292.952958][T15033] usb 12-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  292.958109][T15033] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.961566][T15033] usb 12-1: Product: syz
[  292.963435][T15033] usb 12-1: Manufacturer: syz
[  292.965804][T15033] usb 12-1: SerialNumber: syz
[  293.012019][T15033] usb 12-1: config 0 descriptor??
[  293.067203][T16025] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2886'.
[  293.070287][T16025] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2886'.
[  293.076618][ T8829] veth0_to_team: left promiscuous mode
[  293.096616][ T8829] hsr_slave_0: left promiscuous mode
[  293.102145][ T8829] hsr_slave_1: left promiscuous mode
[  293.119538][ T8829] veth1_vlan: left allmulticast mode
[  293.122149][ T8829] veth1_macvtap: left promiscuous mode
[  293.126774][ T8829] veth0_macvtap: left promiscuous mode
[  293.136352][ T8829] veth1_vlan: left promiscuous mode
[  293.138522][ T8829] veth0_vlan: left promiscuous mode
[  293.145696][ T5935] Bluetooth: hci2: command tx timeout
[  293.229047][T15033] input: syz syz as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/input/input31
[  293.241250][ T5323] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.263953][ T5323] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.268269][ T5323] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.277036][ T5323] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.307828][T11887] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.338516][ T5323] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.349687][ T5323] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.354129][ T5323] synaptics_usb 12-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  293.425013][ T6017] usb 12-1: USB disconnect, device number 9
[  293.499525][ T1194] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  293.502035][ T1194] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  293.541319][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  293.544472][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  293.821866][ T8829] IPVS: stop unused estimator thread 0...
[  294.341341][T16063] syzkaller0: entered promiscuous mode
[  294.681174][T16072] 8021q: VLANs not supported on tunl0
[  294.771580][   T40] audit: type=1400 audit(294.695:903): avc:  denied  { setopt } for  pid=16082 comm="syz.3.2900" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  294.929376][T16097] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  294.989850][T16114] i2c i2c-1: DVB: adapter 0 frontend 0 frequency 0 out of range (51000..2150000)
[  294.994559][T16109] batadv_slave_0: left allmulticast mode
[  295.043446][T16118] [U] VÔ3¸ÂFÙ¾"SÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«=
[  295.141500][T16119] [U] J"—E:ÀÆ"


[  295.225514][ T5935] Bluetooth: hci2: command tx timeout
[  295.585429][T16150] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(4)
[  295.588914][T16150] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  295.592663][T16150] vhci_hcd vhci_hcd.0: Device attached
[  295.597331][   T40] audit: type=1400 audit(295.525:904): avc:  denied  { listen } for  pid=16148 comm="syz.7.2919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  295.614776][   T40] audit: type=1400 audit(295.535:905): avc:  denied  { ioctl } for  pid=16148 comm="syz.7.2919" path="socket:[64533]" dev="sockfs" ino=64533 ioctlcmd=0x6612 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  295.614829][T16158] can0: slcan on ttyS3.
[  295.698611][T16161] bond0: (slave nr0): Error: Device can not be enslaved while up
[  295.715358][T16154] vhci_hcd: connection closed
[  295.716993][   T12] vhci_hcd vhci_hcd.7: stop threads
[  295.735842][   T12] vhci_hcd vhci_hcd.7: release socket
[  295.736356][T16158] can0 (unregistered): slcan off ttyS3.
[  295.738495][   T12] vhci_hcd vhci_hcd.7: disconnect device
[  295.775770][   T34] vhci_hcd vhci_hcd.7: vhci_device speed not set
[  295.851958][T16172] ip6tnl4: entered promiscuous mode
[  296.744240][T16205] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2936'.
[  296.756872][T16205] bond0: entered promiscuous mode
[  296.759539][T16205] bond_slave_0: entered promiscuous mode
[  296.762017][T16205] bond_slave_1: entered promiscuous mode
[  296.767312][T16205] gretap0: entered promiscuous mode
[  296.771040][T16205] hsr1: entered promiscuous mode
[  296.905022][T16216] netlink: 'syz.7.2940': attribute type 1 has an invalid length.
[  296.908366][T16216] netlink: 'syz.7.2940': attribute type 1 has an invalid length.
[  297.026078][T16223] /dev/sg0: Can't lookup blockdev
[  297.099954][T16227] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2944'.
[  297.115204][T16228] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  297.120127][T16228] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  297.305571][ T5935] Bluetooth: hci2: command tx timeout
[  297.477928][T16243] syzkaller0: entered promiscuous mode
[  297.685819][   T40] audit: type=1400 audit(297.595:906): avc:  denied  { rmdir } for  pid=16244 comm="syz.3.2949" name="file2" dev="9p" ino=79431331 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  297.893288][T16250] NILFS (nbd3): device size too small
[  298.028440][T16257] input: syz0 as /devices/virtual/input/input32
[  298.034171][T16257] FAULT_INJECTION: forcing a failure.
[  298.034171][T16257] name failslab, interval 1, probability 0, space 0, times 0
[  298.042307][T16257] CPU: 0 UID: 0 PID: 16257 Comm: syz.0.2953 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  298.042338][T16257] Tainted: [L]=SOFTLOCKUP
[  298.042345][T16257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  298.042355][T16257] Call Trace:
[  298.042362][T16257]  <TASK>
[  298.042369][T16257]  dump_stack_lvl+0x100/0x190
[  298.042433][T16257]  should_fail_ex.cold+0x5/0xa
[  298.042480][T16257]  should_failslab+0xc2/0x120
[  298.042519][T16257]  __kvmalloc_node_noprof+0xfa/0xa00
[  298.042565][T16257]  ? file_tty_write.isra.0+0x64e/0x890
[  298.042602][T16257]  file_tty_write.isra.0+0x64e/0x890
[  298.042626][T16257]  ? security_file_permission+0x76/0x210
[  298.042656][T16257]  ? rw_verify_area+0xce/0x6d0
[  298.042698][T16257]  vfs_write+0x6ac/0x1070
[  298.042716][T16257]  ? __pfx_tty_write+0x10/0x10
[  298.042742][T16257]  ? __pfx_vfs_write+0x10/0x10
[  298.042757][T16257]  ? find_held_lock+0x2b/0x80
[  298.042817][T16257]  ksys_write+0x12a/0x250
[  298.042833][T16257]  ? __pfx_ksys_write+0x10/0x10
[  298.042857][T16257]  do_syscall_64+0x106/0xf80
[  298.042889][T16257]  ? clear_bhb_loop+0x40/0x90
[  298.042912][T16257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.042930][T16257] RIP: 0033:0x7fd754d9c819
[  298.042946][T16257] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  298.042963][T16257] RSP: 002b:00007fd755bc5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  298.042980][T16257] RAX: ffffffffffffffda RBX: 00007fd755015fa0 RCX: 00007fd754d9c819
[  298.042991][T16257] RDX: 0000000000001006 RSI: 0000200000001040 RDI: 0000000000000005
[  298.043001][T16257] RBP: 00007fd755bc5090 R08: 0000000000000000 R09: 0000000000000000
[  298.043011][T16257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  298.043020][T16257] R13: 00007fd755016038 R14: 00007fd755015fa0 R15: 00007ffd3e7eb4f8
[  298.043045][T16257]  </TASK>
[  298.164012][T16261] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[  298.226635][T16263] netlink: 'syz.3.2954': attribute type 1 has an invalid length.
[  298.397398][T16276] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2954'.
[  298.487995][T15033] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  298.639598][T15033] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  298.643280][T15033] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  298.647633][T15033] usb 5-1: Product: syz
[  298.649693][T15033] usb 5-1: Manufacturer: syz
[  298.651640][T15033] usb 5-1: SerialNumber: syz
[  298.677112][T15033] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  298.692864][   T50] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  299.010790][T16279] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  299.434634][T16263] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  299.459878][T16273] bridge0: port 2(gretap2) entered blocking state
[  299.470049][T16273] bridge0: port 2(gretap2) entered disabled state
[  299.473215][T16273] gretap2: entered allmulticast mode
[  299.477882][T16273] gretap2: entered promiscuous mode
[  299.529116][   T40] audit: type=1400 audit(299.455:907): avc:  denied  { kexec_image_load } for  pid=16281 comm="syz.6.2959" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  299.713855][T16302] ufs: You didn't specify the type of your ufs filesystem
[  299.713855][T16302] 
[  299.713855][T16302] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  299.713855][T16302] 
[  299.713855][T16302] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  299.729835][T16302] ufs: ufstype=old is supported read-only
[  299.734618][T16302] ufs: ufs_fill_super(): bad magic number
[  299.795908][   T50] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  299.807833][   T50] ath9k_htc: Failed to initialize the device
[  299.842537][   T50] usb 5-1: ath9k_htc: USB layer deinitialized
[  299.914295][T16312] syzkaller0: entered promiscuous mode
[  299.932788][T16316] 9pnet_fd: p9_fd_create_unix (16316): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  301.351697][ T5936] usb 5-1: USB disconnect, device number 31
[  301.539767][T16333] FAULT_INJECTION: forcing a failure.
[  301.539767][T16333] name failslab, interval 1, probability 0, space 0, times 0
[  301.544820][T16333] CPU: 2 UID: 0 PID: 16333 Comm: syz.0.2975 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  301.544843][T16333] Tainted: [L]=SOFTLOCKUP
[  301.544848][T16333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  301.544858][T16333] Call Trace:
[  301.544866][T16333]  <TASK>
[  301.544873][T16333]  dump_stack_lvl+0x100/0x190
[  301.544906][T16333]  should_fail_ex.cold+0x5/0xa
[  301.544929][T16333]  ? tomoyo_encode2+0xfb/0x3c0
[  301.544952][T16333]  should_failslab+0xc2/0x120
[  301.544973][T16333]  __kmalloc_noprof+0xe0/0x850
[  301.544994][T16333]  ? d_absolute_path+0x136/0x1b0
[  301.545055][T16333]  tomoyo_encode2+0xfb/0x3c0
[  301.545087][T16333]  tomoyo_encode+0x29/0x50
[  301.545108][T16333]  tomoyo_realpath_from_path+0x18c/0x690
[  301.545138][T16333]  tomoyo_path_number_perm+0x23c/0x580
[  301.545158][T16333]  ? tomoyo_path_number_perm+0x22e/0x580
[  301.545181][T16333]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  301.545244][T16333]  ? find_held_lock+0x2b/0x80
[  301.545266][T16333]  ? __fget_files+0x215/0x3d0
[  301.545283][T16333]  ? hook_file_ioctl_common+0x146/0x410
[  301.545305][T16333]  ? __fget_files+0x21f/0x3d0
[  301.545324][T16333]  security_file_ioctl+0xd3/0x230
[  301.545347][T16333]  __x64_sys_ioctl+0xb7/0x210
[  301.545373][T16333]  do_syscall_64+0x106/0xf80
[  301.545397][T16333]  ? clear_bhb_loop+0x40/0x90
[  301.545418][T16333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.545434][T16333] RIP: 0033:0x7fd754d9c819
[  301.545448][T16333] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  301.545464][T16333] RSP: 002b:00007fd755bc5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  301.545480][T16333] RAX: ffffffffffffffda RBX: 00007fd755015fa0 RCX: 00007fd754d9c819
[  301.545490][T16333] RDX: 0000200000000000 RSI: 0000000000005392 RDI: 0000000000000003
[  301.545499][T16333] RBP: 00007fd755bc5090 R08: 0000000000000000 R09: 0000000000000000
[  301.545509][T16333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  301.545518][T16333] R13: 00007fd755016038 R14: 00007fd755015fa0 R15: 00007ffd3e7eb4f8
[  301.545540][T16333]  </TASK>
[  301.620859][T16333] ERROR: Out of memory at tomoyo_realpath_from_path.
[  301.670108][T16325] wg1 speed is unknown, defaulting to 1000
[  301.698873][T16335] syzkaller1: entered promiscuous mode
[  301.700653][T16335] syzkaller1: entered allmulticast mode
[  301.779599][T16337] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2977'.
[  301.806467][   T40] audit: type=1326 audit(301.735:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16340 comm="syz.0.2978" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd754d9c819 code=0x0
[  302.115388][T16362] netlink: 'syz.7.2983': attribute type 1 has an invalid length.
[  302.133855][T16362] vlan2: entered allmulticast mode
[  302.136433][T16362] macsec0: entered allmulticast mode
[  302.145454][T16362] veth1_macvtap: entered allmulticast mode
[  302.287732][T16373] FAULT_INJECTION: forcing a failure.
[  302.287732][T16373] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  302.293200][T16373] CPU: 2 UID: 0 PID: 16373 Comm: syz.3.2986 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  302.293231][T16373] Tainted: [L]=SOFTLOCKUP
[  302.293237][T16373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  302.293252][T16373] Call Trace:
[  302.293258][T16373]  <TASK>
[  302.293265][T16373]  dump_stack_lvl+0x100/0x190
[  302.293302][T16373]  should_fail_ex.cold+0x5/0xa
[  302.293327][T16373]  _copy_from_user+0x2e/0xd0
[  302.293346][T16373]  mmc_ioctl_dvd_auth+0x12d/0x250
[  302.293366][T16373]  ? __pfx_mmc_ioctl_dvd_auth+0x10/0x10
[  302.293399][T16373]  ? lock_acquire+0x1cf/0x380
[  302.293423][T16373]  cdrom_ioctl+0x3200/0x3880
[  302.293450][T16373]  ? __pfx_cdrom_ioctl+0x10/0x10
[  302.293472][T16373]  ? rcu_is_watching+0x12/0xc0
[  302.293537][T16373]  ? trace_rpm_return_int+0x78/0x250
[  302.293569][T16373]  ? rpm_resume+0x7eb/0x1350
[  302.293597][T16373]  ? sr_block_ioctl+0x118/0x250
[  302.293621][T16373]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  302.293654][T16373]  ? __pfx_rpm_resume+0x10/0x10
[  302.293682][T16373]  ? do_raw_spin_lock+0x128/0x260
[  302.293707][T16373]  ? find_held_lock+0x2b/0x80
[  302.293800][T16373]  ? lockdep_hardirqs_on+0x78/0x100
[  302.293829][T16373]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  302.293856][T16373]  ? __pm_runtime_resume+0xc3/0x170
[  302.293883][T16373]  sr_block_ioctl+0x1ae/0x250
[  302.293909][T16373]  ? __pfx_sr_block_ioctl+0x10/0x10
[  302.293933][T16373]  blkdev_ioctl+0x5ad/0x6f0
[  302.293958][T16373]  ? __pfx_blkdev_ioctl+0x10/0x10
[  302.293983][T16373]  ? selinux_file_ioctl+0x139/0x290
[  302.294011][T16373]  ? selinux_file_ioctl+0xb4/0x290
[  302.294041][T16373]  ? __pfx_blkdev_ioctl+0x10/0x10
[  302.294066][T16373]  __x64_sys_ioctl+0x18e/0x210
[  302.294100][T16373]  do_syscall_64+0x106/0xf80
[  302.294129][T16373]  ? clear_bhb_loop+0x40/0x90
[  302.294154][T16373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.294173][T16373] RIP: 0033:0x7f35af79c819
[  302.294192][T16373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  302.294211][T16373] RSP: 002b:00007f35b0615028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  302.294231][T16373] RAX: ffffffffffffffda RBX: 00007f35afa15fa0 RCX: 00007f35af79c819
[  302.294244][T16373] RDX: 0000200000000000 RSI: 0000000000005392 RDI: 0000000000000003
[  302.294255][T16373] RBP: 00007f35b0615090 R08: 0000000000000000 R09: 0000000000000000
[  302.294266][T16373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.294276][T16373] R13: 00007f35afa16038 R14: 00007f35afa15fa0 R15: 00007ffe115e9f58
[  302.294303][T16373]  </TASK>
[  302.737976][T16401] input: syz0 as /devices/virtual/input/input33
[  302.755743][T16401] FAULT_INJECTION: forcing a failure.
[  302.755743][T16401] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  302.761065][T16401] CPU: 3 UID: 0 PID: 16401 Comm: syz.7.2994 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  302.761086][T16401] Tainted: [L]=SOFTLOCKUP
[  302.761090][T16401] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  302.761102][T16401] Call Trace:
[  302.761107][T16401]  <TASK>
[  302.761112][T16401]  dump_stack_lvl+0x100/0x190
[  302.761136][T16401]  should_fail_ex.cold+0x5/0xa
[  302.761151][T16401]  _copy_to_user+0x32/0xd0
[  302.761166][T16401]  simple_read_from_buffer+0xcb/0x170
[  302.761180][T16401]  proc_fail_nth_read+0x1af/0x230
[  302.761231][T16401]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  302.761249][T16401]  ? rw_verify_area+0xce/0x6d0
[  302.761265][T16401]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  302.761282][T16401]  vfs_read+0x1e4/0xb30
[  302.761293][T16401]  ? __pfx_vfs_read+0x10/0x10
[  302.761303][T16401]  ? __fget_files+0x215/0x3d0
[  302.761319][T16401]  ? __fget_files+0x21f/0x3d0
[  302.761335][T16401]  ksys_read+0x12a/0x250
[  302.761347][T16401]  ? __pfx_ksys_read+0x10/0x10
[  302.761361][T16401]  do_syscall_64+0x106/0xf80
[  302.761379][T16401]  ? clear_bhb_loop+0x40/0x90
[  302.761393][T16401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.761405][T16401] RIP: 0033:0x7f4de115d04e
[  302.761415][T16401] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  302.761426][T16401] RSP: 002b:00007f4de2033fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  302.761438][T16401] RAX: ffffffffffffffda RBX: 00007f4de20346c0 RCX: 00007f4de115d04e
[  302.761447][T16401] RDX: 000000000000000f RSI: 00007f4de20340a0 RDI: 0000000000000006
[  302.761456][T16401] RBP: 00007f4de2034090 R08: 0000000000000000 R09: 0000000000000000
[  302.761465][T16401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.761489][T16401] R13: 00007f4de1416038 R14: 00007f4de1415fa0 R15: 00007fff2cd9e6d8
[  302.761516][T16401]  </TASK>
[  303.056026][T16413] FAULT_INJECTION: forcing a failure.
[  303.056026][T16413] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  303.062432][T16413] CPU: 2 UID: 0 PID: 16413 Comm: syz.6.2999 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  303.062464][T16413] Tainted: [L]=SOFTLOCKUP
[  303.062470][T16413] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  303.062481][T16413] Call Trace:
[  303.062488][T16413]  <TASK>
[  303.062497][T16413]  dump_stack_lvl+0x100/0x190
[  303.062533][T16413]  should_fail_ex.cold+0x5/0xa
[  303.062559][T16413]  _copy_from_user+0x2e/0xd0
[  303.062582][T16413]  mmc_ioctl_dvd_auth+0x12d/0x250
[  303.062605][T16413]  ? __pfx_mmc_ioctl_dvd_auth+0x10/0x10
[  303.062627][T16413]  ? lock_acquire+0x1cf/0x380
[  303.062651][T16413]  cdrom_ioctl+0x3200/0x3880
[  303.062677][T16413]  ? __pfx_cdrom_ioctl+0x10/0x10
[  303.062698][T16413]  ? rcu_is_watching+0x12/0xc0
[  303.062721][T16413]  ? trace_rpm_return_int+0x78/0x250
[  303.062751][T16413]  ? rpm_resume+0x7eb/0x1350
[  303.062776][T16413]  ? sr_block_ioctl+0x118/0x250
[  303.062798][T16413]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  303.062828][T16413]  ? __pfx_rpm_resume+0x10/0x10
[  303.062853][T16413]  ? do_raw_spin_lock+0x128/0x260
[  303.062876][T16413]  ? find_held_lock+0x2b/0x80
[  303.062903][T16413]  ? lockdep_hardirqs_on+0x78/0x100
[  303.062930][T16413]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  303.062956][T16413]  ? __pm_runtime_resume+0xc3/0x170
[  303.062975][T16413]  sr_block_ioctl+0x1ae/0x250
[  303.062998][T16413]  ? __pfx_sr_block_ioctl+0x10/0x10
[  303.063019][T16413]  blkdev_ioctl+0x5ad/0x6f0
[  303.063041][T16413]  ? __pfx_blkdev_ioctl+0x10/0x10
[  303.063059][T16413]  ? selinux_file_ioctl+0x139/0x290
[  303.063078][T16413]  ? selinux_file_ioctl+0xb4/0x290
[  303.063095][T16413]  ? __pfx_blkdev_ioctl+0x10/0x10
[  303.063110][T16413]  __x64_sys_ioctl+0x18e/0x210
[  303.063128][T16413]  do_syscall_64+0x106/0xf80
[  303.063145][T16413]  ? clear_bhb_loop+0x40/0x90
[  303.063159][T16413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.063171][T16413] RIP: 0033:0x7ff87519c819
[  303.063181][T16413] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  303.063191][T16413] RSP: 002b:00007ff875faa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  303.063208][T16413] RAX: ffffffffffffffda RBX: 00007ff875415fa0 RCX: 00007ff87519c819
[  303.063217][T16413] RDX: 0000200000000000 RSI: 0000000000005392 RDI: 0000000000000003
[  303.063227][T16413] RBP: 00007ff875faa090 R08: 0000000000000000 R09: 0000000000000000
[  303.063236][T16413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.063245][T16413] R13: 00007ff875416038 R14: 00007ff875415fa0 R15: 00007ffcc3c39f08
[  303.063267][T16413]  </TASK>
[  303.257194][T16417] kvm: kvm [16416]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7
[  303.261653][T16417] kvm: kvm [16416]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7
[  303.416240][T16428] netlink: 92 bytes leftover after parsing attributes in process `syz.0.3004'.
[  303.466579][T16430] 9pnet_virtio: no channels available for device syz
[  303.675113][T16433] wg1: entered promiscuous mode
[  303.676830][T16433] wg1: entered allmulticast mode
[  303.889353][T16439] kvm: MWAIT instruction emulated as NOP!
[  304.127931][T16444] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  304.177503][   T40] audit: type=1400 audit(304.105:909): avc:  denied  { listen } for  pid=16443 comm="syz.7.3010" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  304.189281][T16444] netlink: 'syz.7.3010': attribute type 20 has an invalid length.
[  304.366843][T16449] FAULT_INJECTION: forcing a failure.
[  304.366843][T16449] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  304.372745][T16449] CPU: 3 UID: 0 PID: 16449 Comm: syz.7.3011 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  304.372777][T16449] Tainted: [L]=SOFTLOCKUP
[  304.372784][T16449] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  304.372797][T16449] Call Trace:
[  304.372813][T16449]  <TASK>
[  304.372822][T16449]  dump_stack_lvl+0x100/0x190
[  304.372889][T16449]  should_fail_ex.cold+0x5/0xa
[  304.372940][T16449]  _copy_to_user+0x32/0xd0
[  304.372973][T16449]  simple_read_from_buffer+0xcb/0x170
[  304.373018][T16449]  proc_fail_nth_read+0x1af/0x230
[  304.373071][T16449]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  304.373101][T16449]  ? rw_verify_area+0xce/0x6d0
[  304.373130][T16449]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  304.373158][T16449]  vfs_read+0x1e4/0xb30
[  304.373181][T16449]  ? __pfx_vfs_read+0x10/0x10
[  304.373199][T16449]  ? __fget_files+0x215/0x3d0
[  304.373228][T16449]  ? __fget_files+0x21f/0x3d0
[  304.373257][T16449]  ksys_read+0x12a/0x250
[  304.373275][T16449]  ? __pfx_ksys_read+0x10/0x10
[  304.373300][T16449]  do_syscall_64+0x106/0xf80
[  304.373337][T16449]  ? clear_bhb_loop+0x40/0x90
[  304.373360][T16449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.373381][T16449] RIP: 0033:0x7f4de115d04e
[  304.373400][T16449] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  304.373418][T16449] RSP: 002b:00007f4de2033fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  304.373435][T16449] RAX: ffffffffffffffda RBX: 00007f4de20346c0 RCX: 00007f4de115d04e
[  304.373445][T16449] RDX: 000000000000000f RSI: 00007f4de20340a0 RDI: 0000000000000004
[  304.373454][T16449] RBP: 00007f4de2034090 R08: 0000000000000000 R09: 0000000000000000
[  304.373463][T16449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.373475][T16449] R13: 00007f4de1416038 R14: 00007f4de1415fa0 R15: 00007fff2cd9e6d8
[  304.373501][T16449]  </TASK>
[  304.619739][T16457] netlink: 25 bytes leftover after parsing attributes in process `syz.7.3014'.
[  304.629435][T16457] netlink: 'syz.7.3014': attribute type 4 has an invalid length.
[  304.677659][T16461] pimreg: entered allmulticast mode
[  304.682271][T16461] pimreg: left allmulticast mode
[  304.905761][ T6017] usb 11-1: new high-speed USB device number 7 using dummy_hcd
[  305.059486][T16477] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3021'.
[  305.069312][T16477] misc userio: Can't change port type on an already running userio instance
[  305.095554][ T6017] usb 11-1: Using ep0 maxpacket: 32
[  305.099488][ T6017] usb 11-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  305.107124][ T6017] usb 11-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  305.110079][ T6017] usb 11-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  305.112734][ T6017] usb 11-1: Product: syz
[  305.114153][ T6017] usb 11-1: Manufacturer: syz
[  305.125537][ T6017] usb 11-1: SerialNumber: syz
[  305.135555][ T6017] usb 11-1: config 0 descriptor??
[  305.138131][T16459] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  305.337816][   T40] audit: type=1400 audit(305.265:910): avc:  denied  { getopt } for  pid=16491 comm="syz.7.3025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  305.464776][T16499] mkiss: ax0: crc mode is auto.
[  305.504895][T16501] xt_socket: unknown flags 0x48
[  305.508017][T16501] overlayfs: failed to resolve './file2': -2
[  305.559232][T16503] support for the xor transformation has been removed.
[  305.668057][T16503] sr 2:0:0:0: [sr0] CDROM not ready.  Make sure there is a disc in the drive.
[  305.810832][T16521] input: syz0 as /devices/virtual/input/input35
[  306.167897][T16556] input: syz0 as /devices/virtual/input/input36
[  306.239518][T16561] tmpfs: Unknown parameter 'm'
[  306.244525][T16561] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  306.248565][T16561] overlayfs: missing 'lowerdir'
[  306.251950][T16562] tmpfs: Unknown parameter 'm'
[  306.293928][   T40] audit: type=1400 audit(306.215:911): avc:  denied  { ioctl } for  pid=16565 comm="syz.3.3043" path="/dev/cachefiles" dev="devtmpfs" ino=4 ioctlcmd=0x6415 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  306.298066][T16566] ªªªªªª: renamed from vlan0
[  306.326618][T16568] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3044'.
[  306.331316][T16568] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3044'.
[  306.339551][ T8826] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  306.342667][T16568] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3044'.
[  306.346508][ T8826] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  306.350530][ T8826] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  306.353830][ T8826] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  306.355624][T16568] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3044'.
[  306.391668][T16571] input: syz0 as /devices/virtual/input/input37
[  306.424471][   T40] audit: type=1400 audit(306.345:912): avc:  denied  { mount } for  pid=16572 comm="syz.7.3046" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  306.457201][   T40] audit: type=1400 audit(306.385:913): avc:  denied  { unmount } for  pid=14710 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  306.532617][T16579] netlink: 'syz.0.3049': attribute type 10 has an invalid length.
[  306.568600][T16579] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  306.624121][T16585] input: syz0 as /devices/virtual/input/input38
[  306.736187][T16596] input: syz0 as /devices/virtual/input/input39
[  306.808802][T16601] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  306.811099][T16603] loop6: detected capacity change from 0 to 524287999
[  306.812901][T16601] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  306.819485][T16604] netlink: 'syz.3.3057': attribute type 1 has an invalid length.
[  306.820595][T16603] buffer_io_error: 25 callbacks suppressed
[  306.820607][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.830846][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.833053][T16604] pimreg: entered allmulticast mode
[  306.833868][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.836542][T16604] pimreg: left allmulticast mode
[  306.838424][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.842727][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.845592][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.849133][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.852651][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.855362][T16603] ldm_validate_partition_table(): Disk read failed.
[  306.857476][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.859978][T16603] Buffer I/O error on dev loop6, logical block 0, async page read
[  306.862742][T16603] Dev loop6: unable to read RDB block 0
[  306.907162][T16603]  loop6: unable to read partition table
[  306.909376][T16603] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x) failed (rc=-5)
[  306.910514][    C1] sr 2:0:0:0: [sr0] tag#6 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  306.916716][    C1] sr 2:0:0:0: [sr0] tag#6 CDB: Regenerate(16) 82 5a 86 a5 26 a3 50 1f b1 dd 8d ff 3e 90 d6 f5
[  306.922115][T11891] ldm_validate_partition_table(): Disk read failed.
[  306.927734][T11891] Dev loop6: unable to read RDB block 0
[  306.930582][T11891]  loop6: unable to read partition table
[  306.935834][T16605] ldm_validate_partition_table(): Disk read failed.
[  306.939117][T16605] Dev loop6: unable to read RDB block 0
[  306.942516][T16605]  loop6: unable to read partition table
[  306.945173][T16605] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x) failed (rc=-5)
[  306.993193][T16617] input: syz0 as /devices/virtual/input/input40
[  307.129352][T16630] netlink: 'syz.3.3067': attribute type 28 has an invalid length.
[  307.163333][T16633] SELinux: security policydb version 18 (MLS) not backwards compatible
[  307.168431][T16633] SELinux: failed to load policy
[  307.244852][T16643] input: syz0 as /devices/virtual/input/input41
[  307.677373][  T830] usb 11-1: USB disconnect, device number 7
[  307.710086][T16657] input: syz0 as /devices/virtual/input/input42
[  308.137437][T16665] /dev/sr0: Can't open blockdev
[  308.277224][   T40] audit: type=1400 audit(308.205:914): avc:  denied  { listen } for  pid=16667 comm="syz.6.3076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  308.495579][T16674] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3077'.
[  309.367785][T16678] netem: change failed
[  309.642051][   T40] audit: type=1400 audit(309.565:915): avc:  denied  { write } for  pid=16683 comm="syz.3.3080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  309.650949][   T40] audit: type=1400 audit(309.565:916): avc:  denied  { accept } for  pid=16683 comm="syz.3.3080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  309.664051][   T40] audit: type=1400 audit(309.575:917): avc:  denied  { append } for  pid=16683 comm="syz.3.3080" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  309.676537][   T40] audit: type=1400 audit(309.575:918): avc:  denied  { map } for  pid=16683 comm="syz.3.3080" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  309.687156][   T40] audit: type=1400 audit(309.575:919): avc:  denied  { execute } for  pid=16683 comm="syz.3.3080" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  310.064326][T16621] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  310.072125][   T40] audit: type=1400 audit(309.995:920): avc:  denied  { watch_sb } for  pid=16703 comm="syz.3.3082" path="/309/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1648 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  310.284261][T16725] vlan0: entered promiscuous mode
[  310.372728][T16737] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3090'.
[  310.444019][   T40] audit: type=1400 audit(310.365:921): avc:  denied  { bind } for  pid=16738 comm="syz.0.3091" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  310.517153][T16739] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  310.579587][T16751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  310.591675][T16751] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  310.798123][T16757] input: syz0 as /devices/virtual/input/input46
[  311.069292][T16763] syzkaller0: entered promiscuous mode
[  311.204280][T16769] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3)
[  311.207408][T16769] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  311.215428][T16769] vhci_hcd vhci_hcd.0: Device attached
[  311.333627][T16770] vhci_hcd: unknown pdu 1
[  311.335977][ T8826] vhci_hcd vhci_hcd.6: stop threads
[  311.338318][ T8826] vhci_hcd vhci_hcd.6: release socket
[  311.341287][ T8826] vhci_hcd vhci_hcd.6: disconnect device
[  311.343352][T16769] bond0: (slave nr0): Error: Device can not be enslaved while up
[  311.405394][ T5972] vhci_hcd vhci_hcd.6: vhci_device speed not set
[  311.485760][ T6017] usb 12-1: new high-speed USB device number 10 using dummy_hcd
[  311.547434][T16782] input: syz0 as /devices/virtual/input/input47
[  311.566023][T16782] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes
[  311.646117][ T6017] usb 12-1: Using ep0 maxpacket: 32
[  311.650267][ T6017] usb 12-1: config 1 interface 0 altsetting 13 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  311.657121][ T6017] usb 12-1: config 1 interface 0 has no altsetting 0
[  311.663151][ T6017] usb 12-1: string descriptor 0 read error: -22
[  311.668358][ T6017] usb 12-1: New USB device found, idVendor=05ac, idProduct=027d, bcdDevice= 0.40
[  311.672635][ T6017] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  311.709403][T16786] netlink: 132 bytes leftover after parsing attributes in process `syz.3.3106'.
[  311.801332][T16786] kvm: pic: non byte write
[  311.855464][   T10] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  312.006741][   T10] usb 5-1: Using ep0 maxpacket: 16
[  312.016792][   T10] usb 5-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  312.020784][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.023947][   T10] usb 5-1: Product: syz
[  312.027349][   T10] usb 5-1: Manufacturer: syz
[  312.029459][   T10] usb 5-1: SerialNumber: syz
[  312.031503][   T40] audit: type=1400 audit(311.955:922): avc:  denied  { shutdown } for  pid=16789 comm="syz.6.3107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  312.097199][ T6017] usbhid 12-1:1.0: can't add hid device: -32
[  312.099966][ T6017] usbhid 12-1:1.0: probe with driver usbhid failed with error -32
[  312.107929][T16773] IPv6: NLM_F_CREATE should be specified when creating new route
[  312.119056][ T5973] usb 12-1: USB disconnect, device number 10
[  312.240669][   T10] usb 5-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  312.247307][   T10] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  312.250977][   T10] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  312.255386][   T10] usb 5-1: media controller created
[  312.265175][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  312.280383][   T10] zl10353_read_register: readreg error (reg=127, ret==-71)
[  312.298273][   T10] dvb_usb_gl861 5-1:157.0: probe with driver dvb_usb_gl861 failed with error -5
[  312.302633][   T10] usb 5-1: USB disconnect, device number 32
[  312.950890][T16812] hub 9-0:1.0: USB hub found
[  312.956347][T16812] hub 9-0:1.0: 1 port detected
[  313.209966][   T40] audit: type=1326 audit(313.135:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16823 comm="syz.6.3120" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  313.285822][   T40] kauditd_printk_skb: 37 callbacks suppressed
[  313.285845][   T40] audit: type=1326 audit(313.215:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16823 comm="syz.6.3120" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  313.308728][   T40] audit: type=1326 audit(313.215:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16823 comm="syz.6.3120" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  313.669450][T16853] binder: 16851:16853 ioctl c0306201 2000000003c0 returned -14
[  313.678361][   T40] audit: type=1400 audit(313.605:963): avc:  denied  { call } for  pid=16851 comm="syz.3.3132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  313.813949][T16862] netlink: 'syz.0.3136': attribute type 1 has an invalid length.
[  313.981797][T16801] syz.7.3111 (16801) used greatest stack depth: 18200 bytes left
[  314.065431][T16878] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  314.212325][T16891] kernel read not supported for file /policy (pid: 16891 comm: syz.6.3148)
[  316.623011][T16951] overlayfs: missing 'lowerdir'
[  316.629287][T16955] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3173'.
[  316.690275][T16959] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3175'.
[  316.693357][T16959] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3175'.
[  317.005373][ T5973] usb 12-1: new high-speed USB device number 11 using dummy_hcd
[  317.083972][   T40] audit: type=1400 audit(317.005:964): avc:  denied  { execheap } for  pid=16966 comm="syz.0.3179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  317.165370][ T5973] usb 12-1: Using ep0 maxpacket: 32
[  317.169746][ T5973] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  317.173355][ T5973] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  317.177204][ T5973] usb 12-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  317.180532][ T5973] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.185030][ T5973] usb 12-1: config 0 descriptor??
[  317.190302][ T5973] hub 12-1:0.0: USB hub found
[  317.391423][ T5973] hub 12-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  317.795883][ T5973] hid-generic 0003:046D:C31C.0004: unknown main item tag 0x0
[  317.813748][ T5973] hid-generic 0003:046D:C31C.0004: hidraw1: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.7-1/input0
[  318.228637][ T5973] usb 12-1: USB disconnect, device number 11
[  318.484681][   T40] audit: type=1326 audit(318.405:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.493473][   T40] audit: type=1326 audit(318.405:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.501674][   T40] audit: type=1326 audit(318.415:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.511419][   T40] audit: type=1326 audit(318.415:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=143 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.520848][   T40] audit: type=1326 audit(318.415:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.535445][   T40] audit: type=1326 audit(318.415:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.546264][   T40] audit: type=1326 audit(318.415:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.559724][   T40] audit: type=1326 audit(318.415:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  318.570385][   T40] audit: type=1326 audit(318.415:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17002 comm="syz.6.3191" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff87519c819 code=0x7ffc0000
[  319.408512][T17052] overlayfs: missing 'lowerdir'
[  319.751973][T17067] wg1 speed is unknown, defaulting to 1000
[  320.215464][ T1808] usb 11-1: new high-speed USB device number 8 using dummy_hcd
[  320.444457][T17083] xt_hashlimit: size too large, truncated to 1048576
[  320.465140][T17085] xt_hashlimit: size too large, truncated to 1048576
[  320.590910][ T1808] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  320.598814][ T1808] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  320.601959][ T1808] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.604803][ T1808] usb 11-1: Product: syz
[  320.607065][ T1808] usb 11-1: Manufacturer: syz
[  320.608881][ T1808] usb 11-1: SerialNumber: syz
[  321.639604][ T1808] cdc_ncm 11-1:1.0: MAC-Address: 42:42:42:42:42:42
[  321.641802][ T1808] cdc_ncm 11-1:1.0: dwNtbInMaxSize=129 is too small. Using 2048
[  321.644359][ T1808] cdc_ncm 11-1:1.0: setting rx_max = 2048
[  321.839898][ T1808] cdc_ncm 11-1:1.0: setting tx_max = 36
[  321.855084][ T1808] cdc_ncm 11-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.6-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  321.863789][ T1808] usb 11-1: USB disconnect, device number 8
[  321.866518][ T1808] cdc_ncm 11-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.6-1, CDC NCM (NO ZLP)
[  322.005419][T15033] usb 12-1: new low-speed USB device number 12 using dummy_hcd
[  322.166973][T15033] usb 12-1: config index 0 descriptor too short (expected 1307, got 27)
[  322.169797][T15033] usb 12-1: config 0 has an invalid interface number: 0 but max is -1
[  322.172919][T15033] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 0
[  322.176917][T15033] usb 12-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  322.180688][T15033] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  322.184133][T15033] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  322.188504][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[  322.191532][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
[  322.193881][T15033] usb 12-1: string descriptor 0 read error: -22
[  322.196632][T15033] usb 12-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  322.199827][T15033] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.210233][T15033] usb 12-1: config 0 descriptor??
[  322.213177][T17110] raw-gadget.2 gadget.7: fail, usb_ep_enable returned -22
[  322.219068][T15033] hub 12-1:0.0: bad descriptor, ignoring hub
[  322.221540][T15033] hub 12-1:0.0: probe with driver hub failed with error -5
[  322.229346][T15033] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/input/input48
[  322.243080][    C2] usb_acecad 12-1:0.0: can't resubmit intr, dummy_hcd.7-1/input0, status -1
[  322.255613][    C2] usb_acecad 12-1:0.0: can't resubmit intr, dummy_hcd.7-1/input0, status -1
[  322.429755][T16699] usb 12-1: USB disconnect, device number 12
[  323.806620][T17128] wg1 speed is unknown, defaulting to 1000
[  324.178537][T17147] SELinux: ebitmap start bit (2348810432) is beyond the end of the bitmap (1472)
[  324.184083][T17147] SELinux: failed to load policy
[  324.508978][T17152] netlink: 'syz.3.3236': attribute type 4 has an invalid length.
[  325.297064][T17161] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  325.447457][T15033] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  325.605511][T15033] usb 5-1: Using ep0 maxpacket: 32
[  325.619485][T15033] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  325.624010][T15033] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  325.641963][T15033] usb 5-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  325.647247][T15033] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  325.673962][T15033] usb 5-1: config 0 descriptor??
[  325.696372][T17171] binder: 17170:17171 ioctl c0306201 2000000003c0 returned -14
[  325.941653][T17178] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3246'.
[  326.206511][T15033] nintendo 0003:057E:200E.0005: unknown main item tag 0x2
[  326.208778][T15033] nintendo 0003:057E:200E.0005: item fetching failed at offset 3/5
[  326.211761][T15033] nintendo 0003:057E:200E.0005: HID parse failed
[  326.229205][T17178] bridge0: port 2(bridge_slave_1) entered disabled state
[  326.231866][T17178] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.243847][T15033] nintendo 0003:057E:200E.0005: probe - fail = -22
[  326.247066][T15033] nintendo 0003:057E:200E.0005: probe with driver nintendo failed with error -22
[  326.291756][ T6017] usb 5-1: USB disconnect, device number 33
[  326.422004][T17178] veth1_macvtap: left allmulticast mode
[  326.460499][ T8826] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  326.470216][ T8826] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.477584][ T8826] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  326.481569][ T8826] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.487864][ T8826] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  326.491955][ T8826] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.494881][ T8826] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  326.497976][ T8826] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  326.642880][T17190] xt_hashlimit: size too large, truncated to 1048576
[  326.742778][T17195] wg1 speed is unknown, defaulting to 1000
[  327.085870][ T1808] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  327.205459][ T6017] usb 12-1: new high-speed USB device number 13 using dummy_hcd
[  327.245363][ T1808] usb 5-1: Using ep0 maxpacket: 16
[  327.248946][ T1808] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  327.252680][ T1808] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  327.258866][ T1808] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  327.264897][ T1808] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  327.268706][ T1808] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.272670][ T1808] usb 5-1: config 0 descriptor??
[  327.360114][ T6017] usb 12-1: config index 0 descriptor too short (expected 45, got 36)
[  327.363845][ T6017] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  327.368920][ T6017] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  327.372214][ T6017] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  327.377734][ T6017] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  327.385302][ T6017] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.396125][ T6017] usb 12-1: config 0 descriptor??
[  327.435841][   T34] IPVS: starting estimator thread 0...
[  327.535702][T17224] IPVS: using max 27 ests per chain, 64800 per kthread
[  327.619312][T17226] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  327.835107][ T6017] plantronics 0003:047F:FFFF.0006: reserved main item tag 0xd
[  327.853946][ T6017] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  328.057194][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.060049][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.062527][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.065015][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.068129][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.070630][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.073372][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.076113][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.078801][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.081323][ T1808] HID 045e:07da: Invalid code 65791 type 1
[  328.091751][ T1808] microsoft 0003:045E:07DA.0007: hidraw2: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  328.096859][ T1808] microsoft 0003:045E:07DA.0007: no inputs found
[  328.099679][ T1808] microsoft 0003:045E:07DA.0007: could not initialize ff, continuing anyway
[  328.107368][ T5973] usb 12-1: USB disconnect, device number 13
[  328.111113][ T1808] usb 5-1: USB disconnect, device number 34
[  328.158046][T17230] fido_id[17230]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb5/report_descriptor': No such file or directory
[  328.535493][ T5973] usb 11-1: new high-speed USB device number 9 using dummy_hcd
[  328.705516][ T5973] usb 11-1: Using ep0 maxpacket: 16
[  328.729188][ T5973] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  328.745438][ T5973] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  328.758114][ T5973] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  328.772235][ T5973] usb 11-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  328.784853][ T5973] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.814259][ T5973] usb 11-1: config 0 descriptor??
[  329.432892][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x2
[  329.438200][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.443862][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.460414][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.462889][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.465940][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.468530][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.470991][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.473667][ T5973] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  329.480319][ T5973] microsoft 0003:045E:07DA.0008: hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  329.483919][ T5973] microsoft 0003:045E:07DA.0008: no inputs found
[  329.486131][ T5973] microsoft 0003:045E:07DA.0008: could not initialize ff, continuing anyway
[  329.584922][ T5973] usb 11-1: USB disconnect, device number 9
[  331.010015][T17325] syzkaller0: entered promiscuous mode
[  331.012162][T17325] syzkaller0: entered allmulticast mode
[  332.368129][   T40] audit: type=1400 audit(332.295:974): avc:  denied  { mount } for  pid=17348 comm="syz.7.3308" name="/" dev="configfs" ino=3125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  334.925541][ T5973] usb 12-1: new high-speed USB device number 14 using dummy_hcd
[  335.087562][ T5973] usb 12-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  335.092199][ T5973] usb 12-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  335.096574][ T5973] usb 12-1: New USB device found, idVendor=090a, idProduct=1200, bcdDevice=24.87
[  335.100427][ T5973] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.108612][ T5973] usb 12-1: config 0 descriptor??
[  335.317321][   T39] usb 12-1: USB disconnect, device number 14
[  336.030050][T17437] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[  336.034029][  T161] Bluetooth: hci1: Frame reassembly failed (-84)
[  337.030654][T17466] xt_hashlimit: size too large, truncated to 1048576
[  337.218773][T17471] wg1 speed is unknown, defaulting to 1000
[  337.485437][T17485] syzkaller0: entered promiscuous mode
[  337.488392][T17485] syzkaller0: entered allmulticast mode
[  338.119710][ T5935] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  338.121952][ T5932] Bluetooth: hci1: command 0x1003 tx timeout
[  340.795613][   T39] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  340.947536][   T39] usb 5-1: config 1 interface 0 altsetting 127 bulk endpoint 0x81 has invalid maxpacket 64
[  340.951571][   T39] usb 5-1: config 1 interface 0 altsetting 127 bulk endpoint 0x2 has invalid maxpacket 32
[  340.954920][   T39] usb 5-1: config 1 interface 0 has no altsetting 0
[  340.959850][   T39] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.40
[  340.963252][   T39] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  340.966228][   T39] usb 5-1: Product: syz
[  340.967688][   T39] usb 5-1: Manufacturer: syz
[  340.969299][   T39] usb 5-1: SerialNumber: syz
[  340.973213][T17542] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  340.977218][T17542] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  341.425795][ T1808] usb 11-1: new high-speed USB device number 10 using dummy_hcd
[  341.597486][ T1808] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  341.602371][ T1808] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  341.608248][ T1808] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  341.612830][ T1808] usb 11-1: New USB device found, idVendor=056a, idProduct=0010, bcdDevice= 0.00
[  341.626523][ T1808] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.633926][ T1808] usb 11-1: config 0 descriptor??
[  341.754615][T17559] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3383'.
[  342.065488][ T1808] hid_parser_main: 2 callbacks suppressed
[  342.065504][ T1808] wacom 0003:056A:0010.0009: unknown main item tag 0x0
[  342.070292][ T1808] wacom 0003:056A:0010.0009: unknown main item tag 0x0
[  342.072821][ T1808] wacom 0003:056A:0010.0009: unknown main item tag 0x0
[  342.075337][ T1808] wacom 0003:056A:0010.0009: unknown main item tag 0x0
[  342.077864][ T1808] wacom 0003:056A:0010.0009: unknown main item tag 0x0
[  342.080310][ T1808] wacom 0003:056A:0010.0009: unknown main item tag 0x0
[  342.082749][ T1808] wacom 0003:056A:0010.0009: unknown main item tag 0x0
[  342.228936][   T39] rtl8150 5-1:1.0: couldn't reset the device
[  342.232218][   T39] rtl8150 5-1:1.0: probe with driver rtl8150 failed with error -5
[  342.238816][   T39] usb 5-1: USB disconnect, device number 35
[  342.271124][T16699] usb 11-1: USB disconnect, device number 10
[  343.195623][T15033] usb 11-1: new high-speed USB device number 11 using dummy_hcd
[  343.345903][T15033] usb 11-1: Using ep0 maxpacket: 16
[  343.350150][T15033] usb 11-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  343.354949][T15033] usb 11-1: config 1 has 1 interface, different from the descriptor's value: 3
[  343.361766][T15033] usb 11-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  343.366000][T15033] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  343.369484][T15033] usb 11-1: Product: syz
[  343.371318][T15033] usb 11-1: Manufacturer: syz
[  343.373344][T15033] usb 11-1: SerialNumber: syz
[  343.588505][T15033] usb 11-1: 0:2 : does not exist
[  343.597505][T15033] usb 11-1: 5:0: failed to get current value for ch 0 (-22)
[  343.617189][T17594] ip6_vti0: left promiscuous mode
[  343.619094][T15033] usb 11-1: USB disconnect, device number 11
[  343.641565][T17594] 8021q: adding VLAN 0 to HW filter on device bond0
[  343.655095][T17594] 8021q: adding VLAN 0 to HW filter on device team0
[  343.655810][T11891] udevd[11891]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb11/11-1/11-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  343.666820][T17594] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  343.767872][   T40] audit: type=1326 audit(343.695:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.780024][   T40] audit: type=1326 audit(343.695:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.792483][   T40] audit: type=1326 audit(343.695:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.815456][   T40] audit: type=1326 audit(343.695:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.825170][   T40] audit: type=1326 audit(343.695:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.838700][   T40] audit: type=1326 audit(343.695:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.854412][   T40] audit: type=1326 audit(343.695:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.864884][   T40] audit: type=1326 audit(343.695:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  343.877150][   T40] audit: type=1326 audit(343.695:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17599 comm="syz.0.3401" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fd754d9c819 code=0x7ffc0000
[  344.215428][  T830] usb 12-1: new high-speed USB device number 15 using dummy_hcd
[  344.366874][  T830] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  344.370160][  T830] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  344.373168][  T830] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  344.378427][  T830] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  344.382163][  T830] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.389450][  T830] usb 12-1: config 0 descriptor??
[  344.810480][  T830] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  345.473388][T17638] dummy0: entered allmulticast mode
[  345.486848][T17638] dummy0: left allmulticast mode
[  345.762376][T17647] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3417'.
[  345.766563][T17647] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3417'.
[  346.835353][T15033] usb 11-1: new high-speed USB device number 12 using dummy_hcd
[  346.876568][   T39] usb 12-1: USB disconnect, device number 15
[  346.987915][T15033] usb 11-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  346.992317][T15033] usb 11-1: config 1 has 1 interface, different from the descriptor's value: 3
[  346.999082][T15033] usb 11-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  347.003699][T15033] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  347.007463][T15033] usb 11-1: SerialNumber: syz
[  347.224847][T15033] usb 11-1: 0:2 : does not exist
[  347.233972][T17683] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3434'.
[  347.258205][T15033] usb 11-1: USB disconnect, device number 12
[  347.281403][T11891] udevd[11891]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb11/11-1/11-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  347.367749][T17689] 
[  347.368936][T17689] ======================================================
[  347.371965][T17689] WARNING: possible circular locking dependency detected
[  347.374808][T17689] syzkaller #0 Tainted: G             L     
[  347.377675][T17689] ------------------------------------------------------
[  347.380674][T17689] syz.0.3437/17689 is trying to acquire lock:
[  347.383671][T17689] ffff88801caf6a20 (&root->kernfs_iattr_rwsem){++++}-{4:4}, at: kernfs_iop_getattr+0x9c/0xf0
[  347.388097][T17689] 
[  347.388097][T17689] but task is already holding lock:
[  347.391237][T17689] ffff8880285b09e8 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  347.395771][T17689] 
[  347.395771][T17689] which lock already depends on the new lock.
[  347.395771][T17689] 
[  347.400280][T17689] 
[  347.400280][T17689] the existing dependency chain (in reverse order) is:
[  347.403257][T17689] 
[  347.403257][T17689] -> #2 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  347.405997][T17689]        blk_alloc_queue+0x610/0x790
[  347.407788][T17689]        blk_mq_alloc_queue+0x174/0x290
[  347.409589][T17689]        __blk_mq_alloc_disk+0x29/0x120
[  347.411437][T17689]        loop_add+0x498/0xb60
[  347.413227][T17689]        loop_init+0x1d3/0x200
[  347.415486][T17689]        do_one_initcall+0x11d/0x760
[  347.417546][T17689]        kernel_init_freeable+0x6e5/0x7a0
[  347.419656][T17689]        kernel_init+0x1f/0x1e0
[  347.421282][T17689]        ret_from_fork+0x754/0xd80
[  347.422961][T17689]        ret_from_fork_asm+0x1a/0x30
[  347.424732][T17689] 
[  347.424732][T17689] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  347.427370][T17689]        fs_reclaim_acquire+0xc4/0x100
[  347.429291][T17689]        kmem_cache_alloc_noprof+0x4c/0x6e0
[  347.431214][T17689]        __kernfs_iattrs+0x126/0x400
[  347.432897][T17689]        __kernfs_setattr+0x4d/0x3c0
[  347.434664][T17689]        kernfs_iop_setattr+0xda/0x130
[  347.436400][T17689]        notify_change+0xb25/0x1330
[  347.438356][T17689]        do_truncate+0x1df/0x240
[  347.440191][T17689]        path_openat+0x2a55/0x31a0
[  347.441977][T17689]        do_file_open+0x20e/0x430
[  347.443616][T17689]        do_sys_openat2+0x10d/0x1e0
[  347.445265][T17689]        __x64_sys_openat+0x12d/0x210
[  347.446997][T17689]        do_syscall_64+0x106/0xf80
[  347.448609][T17689]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.450835][T17689] 
[  347.450835][T17689] -> #0 (&root->kernfs_iattr_rwsem){++++}-{4:4}:
[  347.453813][T17689]        __lock_acquire+0x14b8/0x2630
[  347.455836][T17689]        lock_acquire+0x1cf/0x380
[  347.457487][T17689]        down_read+0x99/0x460
[  347.458981][T17689]        kernfs_iop_getattr+0x9c/0xf0
[  347.460671][T17689]        vfs_getattr_nosec+0x2d4/0x430
[  347.462463][T17689]        vfs_getattr+0x4a/0x60
[  347.464076][T17689]        loop_query_min_dio_size.isra.0+0x117/0x250
[  347.466304][T17689]        lo_ioctl+0x13aa/0x1bc0
[  347.468191][T17689]        blkdev_ioctl+0x5ad/0x6f0
[  347.470007][T17689]        __x64_sys_ioctl+0x18e/0x210
[  347.471782][T17689]        do_syscall_64+0x106/0xf80
[  347.473397][T17689]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.475449][T17689] 
[  347.475449][T17689] other info that might help us debug this:
[  347.475449][T17689] 
[  347.478889][T17689] Chain exists of:
[  347.478889][T17689]   &root->kernfs_iattr_rwsem --> fs_reclaim --> &q->q_usage_counter(io)#24
[  347.478889][T17689] 
[  347.483730][T17689]  Possible unsafe locking scenario:
[  347.483730][T17689] 
[  347.486134][T17689]        CPU0                    CPU1
[  347.487861][T17689]        ----                    ----
[  347.489586][T17689]   lock(&q->q_usage_counter(io)#24);
[  347.491450][T17689]                                lock(fs_reclaim);
[  347.493729][T17689]                                lock(&q->q_usage_counter(io)#24);
[  347.496721][T17689]   rlock(&root->kernfs_iattr_rwsem);
[  347.498500][T17689] 
[  347.498500][T17689]  *** DEADLOCK ***
[  347.498500][T17689] 
[  347.501148][T17689] 3 locks held by syz.0.3437/17689:
[  347.502950][T17689]  #0: ffff8880286b4448 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_global_lock_killable+0x30/0xb0
[  347.506335][T17689]  #1: ffff8880285b09e8 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  347.510027][T17689]  #2: ffff8880285b0a20 (&q->q_usage_counter(queue)#8){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20
[  347.513732][T17689] 
[  347.513732][T17689] stack backtrace:
[  347.516004][T17689] CPU: 0 UID: 0 PID: 17689 Comm: syz.0.3437 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  347.516025][T17689] Tainted: [L]=SOFTLOCKUP
[  347.516030][T17689] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  347.516038][T17689] Call Trace:
[  347.516043][T17689]  <TASK>
[  347.516049][T17689]  dump_stack_lvl+0x100/0x190
[  347.516070][T17689]  print_circular_bug.cold+0x178/0x1c7
[  347.516093][T17689]  check_noncircular+0x146/0x160
[  347.516114][T17689]  __lock_acquire+0x14b8/0x2630
[  347.516128][T17689]  lock_acquire+0x1cf/0x380
[  347.516137][T17689]  ? kernfs_iop_getattr+0x9c/0xf0
[  347.516156][T17689]  ? __pfx___might_resched+0x10/0x10
[  347.516197][T17689]  down_read+0x99/0x460
[  347.516210][T17689]  ? kernfs_iop_getattr+0x9c/0xf0
[  347.516227][T17689]  ? find_held_lock+0x2b/0x80
[  347.516242][T17689]  ? __pfx_down_read+0x10/0x10
[  347.516253][T17689]  ? kernfs_root+0xee/0x2a0
[  347.516273][T17689]  kernfs_iop_getattr+0x9c/0xf0
[  347.516291][T17689]  vfs_getattr_nosec+0x2d4/0x430
[  347.516307][T17689]  ? __pfx_kernfs_iop_getattr+0x10/0x10
[  347.516325][T17689]  vfs_getattr+0x4a/0x60
[  347.516337][T17689]  loop_query_min_dio_size.isra.0+0x117/0x250
[  347.516354][T17689]  ? __pfx_loop_query_min_dio_size.isra.0+0x10/0x10
[  347.516374][T17689]  lo_ioctl+0x13aa/0x1bc0
[  347.516390][T17689]  ? __pfx_lo_ioctl+0x10/0x10
[  347.516405][T17689]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  347.516420][T17689]  ? kasan_quarantine_put+0x104/0x240
[  347.516459][T17689]  ? blk_get_meta_cap+0xd4/0x6c0
[  347.516474][T17689]  ? __pfx_blk_get_meta_cap+0x10/0x10
[  347.516492][T17689]  ? blkdev_common_ioctl+0x515/0x2ba0
[  347.516509][T17689]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  347.516527][T17689]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  347.516566][T17689]  ? do_vfs_ioctl+0x226/0x13e0
[  347.516584][T17689]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  347.516603][T17689]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  347.516623][T17689]  ? __fget_files+0x215/0x3d0
[  347.516637][T17689]  ? __pfx_lo_ioctl+0x10/0x10
[  347.516654][T17689]  blkdev_ioctl+0x5ad/0x6f0
[  347.516669][T17689]  ? __pfx_blkdev_ioctl+0x10/0x10
[  347.516684][T17689]  ? selinux_file_ioctl+0x139/0x290
[  347.516700][T17689]  ? selinux_file_ioctl+0xb4/0x290
[  347.516717][T17689]  ? __pfx_blkdev_ioctl+0x10/0x10
[  347.516731][T17689]  __x64_sys_ioctl+0x18e/0x210
[  347.516748][T17689]  do_syscall_64+0x106/0xf80
[  347.516764][T17689]  ? clear_bhb_loop+0x40/0x90
[  347.516777][T17689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.516788][T17689] RIP: 0033:0x7fd754d9c819
[  347.516798][T17689] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  347.516809][T17689] RSP: 002b:00007fd755bc5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  347.516820][T17689] RAX: ffffffffffffffda RBX: 00007fd755015fa0 RCX: 00007fd754d9c819
[  347.516827][T17689] RDX: 0000000000000004 RSI: 0000000000004c06 RDI: 0000000000000003
[  347.516834][T17689] RBP: 00007fd754e32c91 R08: 0000000000000000 R09: 0000000000000000
[  347.516841][T17689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  347.516847][T17689] R13: 00007fd755016038 R14: 00007fd755015fa0 R15: 00007ffd3e7eb4f8
[  347.516856][T17689]  </TASK>