last executing test programs:

3m27.918705473s ago: executing program 1 (id=145):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = socket(0x2, 0x80805, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x4, 0x8, 0x77}, {@rand_addr=0x64010102, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000580)={{0x84, @loopback, 0x4e24, 0x3, 'rr\x00', 0x2, 0x4, 0x7e}, {@rand_addr=0x64010101, 0x4e23, 0x10000, 0xffd, 0x80012d5a, 0x12d5c}}, 0x44)

3m27.88505849s ago: executing program 1 (id=146):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfd6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)

3m26.958911536s ago: executing program 1 (id=148):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x20048000)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=@newtfilter={0x30, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xffe0}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r5, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x2, 0x8}}]}}]}, 0x48}}, 0x0) (fail_nth: 1)

3m26.343592908s ago: executing program 1 (id=150):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587", 0x66}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe7", 0x52}], 0x2}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e4617", 0x6d}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m26.343057335s ago: executing program 1 (id=151):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0xa0380, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, &(0x7f00000001c0)=r2)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="1e030600bc5cb60128876360864666702c1ffe80", @ANYRESDEC], 0xffdd)

3m24.703678232s ago: executing program 3 (id=156):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e4617", 0x6d}], 0x1}}], 0x2, 0xc0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m24.623344955s ago: executing program 3 (id=157):
r0 = socket$inet6(0xa, 0x3, 0x3c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
read$FUSE(r3, &(0x7f0000000140)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_DIRENT(r3, &(0x7f0000002540)=ANY=[@ANYBLOB="e001000000000000", @ANYRES64=r4, @ANYBLOB="070000000000001400"], 0x1e0)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01000000000000000000170000000c0006"], 0x20}, 0x1, 0x0, 0x0, 0x408c4}, 0x4000004)
sendmsg$TIPC_NL_LINK_SET(r1, &(0x7f0000000980)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000940)={&(0x7f0000000580)={0x3a4, r5, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x78}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1000}]}]}, @TIPC_NLA_BEARER={0x1c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'ip_vti0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}]}, @TIPC_NLA_NODE={0x1e0, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x57}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "4df6059c6ee437dfc9eec11848146abe73ba977a8e"}}, @TIPC_NLA_NODE_KEY={0x49, 0x4, {'gcm(aes)\x00', 0x21, "28958065d7e389f111cf68840bbb9f29774381965d33798c3b379450c207b14399"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "2d874d3d4224cf1e87ecef4204a768bac283af9874cb247b5aad15"}}, @TIPC_NLA_NODE_ID={0xff, 0x3, "404773fa4152b8846d33e534974de523f086eb6900d44833407f38aa8def997cd05262e0b1c752edbf48fe9fe7f5ee62456190f59cc4233ee8efb466b15d136ee93850e066b6508f20e4465451856cf74f941ff20b6c9138be9ae8b5e2af9be52e4aa5ea119f7030536c5172dfd5ea10798b989bda88f61d068a22d7eb2acaa4fd2fb98d273d280585d4ab157bb0eab13d7497146aba2b5e2421e11d41e91f95c63ae148ad94ccf8e41f140c821e6488e3ee4c6a18f059eb74fc94adfc2deaeeb6e28a0e8c639013e724420bcbdf503ee1cf85a43afe9d99c89e7c1e46d2b688bd97b55963d04a3b01af3f4ca74b24d6ecd22a684d15193bdfee81"}]}, @TIPC_NLA_MEDIA={0xb4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff0001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x466eaa59}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffdf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x375d78fc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}]}, 0x3a4}, 0x1, 0x0, 0x0, 0x20008094}, 0x0)
syz_io_uring_setup(0xe00, &(0x7f0000000040)={0x0, 0xc56, 0x80, 0x7fffffff, 0x2b0}, &(0x7f0000000140), &(0x7f0000000180))
connect$inet6(r0, &(0x7f0000000a40)={0xa, 0x4e02, 0x7ffe, @remote, 0x9}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="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", 0xfe}, {&(0x7f0000000000)="68811e77b26df8ea178a3132a196cceca2fe5b43f2e7594ec782c6d036fbf7626029f0f78b60178a16aedd0fa8868a577c7f98", 0x33}, {&(0x7f00000002c0)="20ba8dd97e94ae3beb33858c3793a0b84db907729222d7315a980193b1e723ab246bb76d545d29af1a14ba15d1a06854d7e08ef0e6f8ac8bd1cffba6d1bbdd5559dda8aa2829e50adc80571125ea1c5bd8bdfe43fc8b2c50844ed8c976b2fe1c030a77728dd9f21cafaba47f079520d41d6dded27b3d0e45e59cf250aa9a07e768224bbb2ad6ff76b944dce128e59a85221b29ba39284ac646507466486c56723301b2115c156740e116f68cf40463427c6f4ac49833dc642bcaac37355f68ce4a8ed1b41b1356e85b5a5fe2995c1ff83d921c3c7893002deb0d9c39e626ae5175e54f4c130e1649204057536f9480baaa72719175ba", 0xf6}, {&(0x7f0000000100)="1be0d89d096088de5ddd95337c059a546e63f3b963c908a4a50ace63a0a94c0c0046d404ed7dde7af9b67ceb264ed57e11", 0x31}, {&(0x7f00000003c0)="ffd30454a56d8b7bcc16ba2017f7e4ceec5e94fbaff5dfda652db87747b642e35236f35051e5bda5ebeb831ef7", 0x2d}, {&(0x7f0000000400)="0a7db86179d84db2579cf31686e334e909851721c9b8435b49", 0x19}, {&(0x7f0000000440)="48807d2ff9db162f88db8e553eb57ba2b3b32e2977b3ee0b4a924eaa75e7cb66744a6a3704b98f2e51ddffbbfefe92ee87a87bc99ba951dc1d5206cb19929b485ffa952a4ee4be40c4c4d83da2fa5285271e3b0332d22802bdafe36fa42fb1f5215d2a0a2bbdafaf75101752ada37e304ae9f27be629d31773", 0x79}], 0x7, 0x0, 0x0, 0x2c}, 0x44004)

3m24.52248089s ago: executing program 3 (id=158):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32, 0x0, 0x3}, 0x9c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007640)=ANY=[], 0x3aa0}}, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$setpipe(r4, 0x407, 0x7000001)
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x0, 0x2000, 0x0, 0x0, 0x0, 0x3cd})
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
read$char_usb(r3, &(0x7f0000000040)=""/208, 0xd0)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r5, 0x5760, 0x5e)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xd, @loopback}, 0x1c)
fcntl$setpipe(r3, 0x407, 0x43)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="af", 0x34000}], 0x1}}], 0x1, 0x0)

3m24.463158222s ago: executing program 2 (id=160):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4", 0xb5}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d3843663", 0x6a}], 0x2}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e46", 0x6c}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m23.647331862s ago: executing program 0 (id=164):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0\x00', 0x0)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000580)=ANY=[@ANYBLOB="10"], 0x10)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000040), 0x10, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB='x\r'])
r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000600)='/sys/power/pm_trace_dev_match', 0x120, 0x108)
read$FUSE(r4, &(0x7f0000002680)={0x2020}, 0xfffffe2e)
sendmsg$key(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x2, 0x18, 0x3, 0x5, 0x22, 0x0, 0x70bd27, 0x25dfdbfb, [@sadb_x_filter={0x5, 0x1a, @in=@multicast1, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x26, 0x34, 0x10}, @sadb_lifetime={0x4, 0x4, 0x50d, 0x4, 0x85, 0x81}, @sadb_x_sa2={0x2, 0x13, 0x10, 0x0, 0x0, 0x70bd2c, 0x3502}, @sadb_lifetime={0x4, 0x4, 0x6, 0x800, 0x5, 0x5}, @sadb_x_sec_ctx={0x11, 0x18, 0x18, 0x0, 0x7a, "d4a0c96b5a987b3e8d83962188e29f2eaa714015184c06b29cbdfca22ddf4837cc275e006a8b8bab65139e9c70e902defbf822a504a3fb4389cb9d3afa38bc4c9d9d977ae2b1d8d30b6a1ecc0da8f391e2328a8524ebffd436bff75b656ef4ecc2634d5494f7be35012d53c768a461ff5f8f995a5e546de3eb0f"}]}, 0x110}}, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2d, 0x1, 0x0, 0x0, "", [@nested={0x103, 0x0, 0x0, 0x1, [@typed={0xc, 0x2, 0x0, 0x0, @u64}, @typed={0x14, 0x4, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8c"]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
write$cgroup_pid(r3, &(0x7f00000002c0), 0x12)
read$FUSE(r2, &(0x7f0000000ac0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d1d7a440041601801f44010203010902120001000000000904"], 0x0)
r7 = syz_open_dev$sndctrl(&(0x7f0000000000), 0xdc3, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r7, 0xc0045520, &(0x7f0000000040)=0x1)
r8 = getuid()
getresgid(&(0x7f0000000000), &(0x7f0000000100), &(0x7f0000000140)=<r9=>0x0)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000180)={0xb0, 0x0, r6, [{{0x4, 0x2, 0x2, 0x1, 0x40, 0x8, {0x4, 0x1, 0x3, 0x7, 0xfffffffffffffffc, 0x1, 0x2, 0x9, 0x1, 0xc000, 0x5, r8, r9, 0x8, 0xa13}}, {0x5, 0x5, 0x5, 0x9, 'rfdno'}}]}, 0xb0)

3m23.623561349s ago: executing program 3 (id=165):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e4617", 0x6d}], 0x1}}], 0x2, 0xc0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m23.612521061s ago: executing program 2 (id=166):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfd6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)

3m23.543770326s ago: executing program 3 (id=167):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}, 0xfffffffd}], 0x1, 0x10022, 0x0)
close_range(r0, r0, 0x2)

3m23.543604148s ago: executing program 3 (id=168):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0xa0380, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, &(0x7f00000001c0)=r2)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="1e030600bc5cb60128876360864666702c1ffe80000000000000", @ANYRESDEC], 0xffdd)

3m23.023516168s ago: executing program 1 (id=169):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000100)=@delneigh={0x24, 0x1d, 0x100, 0x70bd27, 0x25dfdbfc, {0x1c, 0x0, 0x0, 0x0, 0x10, 0x9a, 0x6}, [@NDA_PROBES={0x8, 0x4, 0x455}]}, 0x24}, 0x1, 0x0, 0x0, 0x2000c842}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x480, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000080))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYRES16, @ANYBLOB="0100000000000000000001000000080001003f0000000c000200700f00000000ffff0c00060003"], 0x6c}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x3a, &(0x7f0000000340)=0x2, 0x4)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x12, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000010000000000000000000000711206000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x67, '\x00', 0x0, @cgroup_sock_addr=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r6=>0x0})
r7 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r7, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@dellink={0x20, 0x11, 0x1, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, 0x1480, 0x2104}}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)

3m22.574618645s ago: executing program 2 (id=170):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4", 0xb5}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe7", 0x52}], 0x2}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e4617", 0x6d}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m22.361956687s ago: executing program 0 (id=171):
r0 = socket$inet6(0xa, 0x3, 0x4)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)={0x18, 0x0, 0x2, 0x801, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASK={0x4}]}, 0x18}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f00000007c0)=@overlay={0xb, 0x2, 0x4, 0x102, 0x9, {0x0, 0xea60}, {0x3, 0x8, 0xc0, 0x9, 0x7, 0x8, "10a826d3"}, 0x4, 0x3, {}, 0x5})
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x8a2e, @loopback, 0x6}, 0x1c)
sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0xffd8)

3m22.011796482s ago: executing program 0 (id=172):
r0 = socket$netlink(0x10, 0x3, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001640)='n', 0x1}], 0x1}, 0x4000001)
write(r0, &(0x7f00000000c0)="29000000140005b7ff000051915f95eb01010003a606a40e07fff024bb000000000000000040000000", 0x29) (fail_nth: 3)

3m21.925485549s ago: executing program 0 (id=173):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587", 0x66}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe7", 0x52}], 0x2}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e4617", 0x6d}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m21.924799787s ago: executing program 0 (id=174):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32, 0x0, 0x3}, 0x9c)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r2 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000007640)=ANY=[], 0x3aa0}}, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$setpipe(r4, 0x407, 0x7000001)
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x0, 0x2000, 0x0, 0x0, 0x0, 0x3cd})
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
read$char_usb(r3, &(0x7f0000000040)=""/208, 0xd0)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r5, 0x5760, 0x5e)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xd, @loopback}, 0x1c)
fcntl$setpipe(r3, 0x407, 0x43)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="af", 0x34000}], 0x1}}], 0x1, 0x0)

3m21.749788522s ago: executing program 2 (id=175):
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, 0x0, 0x40080)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000300)="0000000000000600000000000000", 0x0, 0x3, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

3m21.627879588s ago: executing program 2 (id=176):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e4617", 0x6d}], 0x1}}], 0x2, 0xc0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m15.006434033s ago: executing program 0 (id=177):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)}], 0x1}}], 0x1, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

3m15.005812028s ago: executing program 2 (id=178):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x609, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffa7, 0x10008}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}]}, 0x3c}}, 0x0)
r7 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r7, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff00000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003001008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r8], 0x5c}}, 0x40)

3m7.068655894s ago: executing program 32 (id=168):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0xa0380, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETFILTEREBPF(r1, 0x800454e1, &(0x7f00000001c0)=r2)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="1e030600bc5cb60128876360864666702c1ffe80000000000000", @ANYRESDEC], 0xffdd)

2m48.597837302s ago: executing program 33 (id=177):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)}], 0x1}}], 0x1, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x0)

2m42.988986439s ago: executing program 34 (id=169):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000100)=@delneigh={0x24, 0x1d, 0x100, 0x70bd27, 0x25dfdbfc, {0x1c, 0x0, 0x0, 0x0, 0x10, 0x9a, 0x6}, [@NDA_PROBES={0x8, 0x4, 0x455}]}, 0x24}, 0x1, 0x0, 0x0, 0x2000c842}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x480, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000080))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYRES16, @ANYBLOB="0100000000000000000001000000080001003f0000000c000200700f00000000ffff0c00060003"], 0x6c}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x3a, &(0x7f0000000340)=0x2, 0x4)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8001c00180081064e81f782db44b9b545c7910006007c09", 0x18}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x12, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000010000000000000000000000711206000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x67, '\x00', 0x0, @cgroup_sock_addr=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r6=>0x0})
r7 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r7, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@dellink={0x20, 0x11, 0x1, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, 0x1480, 0x2104}}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80)

2m22.946610009s ago: executing program 35 (id=178):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x609, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffa7, 0x10008}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}]}, 0x3c}}, 0x0)
r7 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r7, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff00000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003001008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r8], 0x5c}}, 0x40)

18.44831465s ago: executing program 5 (id=1003):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0xffffd000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, r4, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x20, r6, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}}, 0x0)
fdatasync(r1)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xa006}, 0x4)
r8 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
write$tun(r8, 0x0, 0x0)

18.381105866s ago: executing program 5 (id=1004):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000003900)={0x2020}, 0x2020)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/164, &(0x7f0000000100)=""/47, 0xf000})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000340))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x390, 0x0, 0x43, 0xa0, 0x1f0, 0x98, 0x2f8, 0x178, 0x178, 0x2f8, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @multicast2, 0xff, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00', {0xff}, {}, 0x9}, 0x12a, 0x190, 0x1f0, 0x0, {0x0, 0x7a010000}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1976f82701f3edc7, 0x0, 'syz0\x00'}}, @common=@unspec=@state={{0x28}, {0x9}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x1, [0x1, 0x4, 0x0, 0x0, 0xb, 0x2], 0x1, 0x7}, {0x1, [0x4f266c3099a50bf8, 0x4, 0x1, 0x0, 0x6, 0x4], 0x1, 0x4}}}}, {{@uncond, 0x0, 0xd8, 0x108, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xf}}, @common=@unspec=@connlimit={{0x40}, {[0xffffff00, 0xff, 0xffffff00, 0xff000000], 0x3, 0x1, {0x4413}}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x0, 0x5}, {0x1, 0x4, 0x5}, 0xb}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x3f0)
r4 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x1, r4})
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xf, 0x25, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ldst={0x2, 0x0, 0x4, 0xa, 0x0, 0x0, 0xfffffffffffffffc}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x98}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

18.339604383s ago: executing program 5 (id=1005):
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4affeeaf541d002007000000", @ANYRES32=r1, @ANYRES16=r2, @ANYRES32=r2], 0x44}}, 0x0)

18.259365763s ago: executing program 5 (id=1006):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x3}, 0x3}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x0, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r4 = dup(r3)
open(&(0x7f0000000100)='./file0\x00', 0x440, 0x0)
write$FUSE_BMAP(r4, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r4, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f00000005c0)=ANY=[@ANYBLOB="b900"], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000080), 0x1010412, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',cache=fscache'])
r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x22)
writev(r5, &(0x7f0000000000)=[{&(0x7f00000006c0)='\t', 0x2003f}], 0x1)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x3, 0x2}, 0x10)
sendmsg$tipc(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
dup3(r0, r1, 0x80000)
r6 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r7, 0x0)
write$tun(r6, &(0x7f0000000400)=ANY=[@ANYBLOB="000088090203000f"], 0x22)
r8 = socket(0x28, 0x1, 0x0)
getsockname$packet(r8, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0x800200, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r9, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)

18.193806966s ago: executing program 5 (id=1007):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r1, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r5, 0x0)
syz_clone(0x0, &(0x7f00000000c0), 0x0, 0x0, 0x0, &(0x7f0000000240)="9db3cd")
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00')
read$FUSE(r6, &(0x7f0000000080)={0x2020}, 0x2020)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000000400)={<r7=>0x0, @in={{0x2, 0x4e22, @local}}, 0xd, 0x6, 0x4, 0x5}, &(0x7f0000000040)=0x98)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r6, 0x84, 0x5, &(0x7f00000004c0)={r7, @in={{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x13}}}}, 0x84)
ioctl$BLKRRPART(r5, 0x125f, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a30000000160a03020000000000000000020000000900020073797a3000000000099700010073797a300000000004000380"], 0x58}}, 0x0)
r8 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r8, 0xaf01, 0x0)
bind$bt_rfcomm(0xffffffffffffffff, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r8, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000200)=""/78, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r8, 0x4028af11, &(0x7f00000020c0)={0x0, 0x0, 0x0, &(0x7f0000000680)=""/185, &(0x7f0000000140)=""/92, 0x3000})
ioctl$VHOST_SET_MEM_TABLE(r8, 0x4008af03, &(0x7f0000000ac0))
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r8, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_SET_VRING_ADDR(r8, 0x4028af11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000400)=""/253, 0x0, &(0x7f0000000600)=""/91})
ioctl$VHOST_VSOCK_SET_GUEST_CID(r8, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r9 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r9, &(0x7f00000001c0)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000ac0)=@newtfilter={0x44, 0x28, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {}, {0x9, 0xb}}, [@filter_kind_options=@f_fw={{0x7}, {0x18, 0x2, [@TCA_FW_INDEV={0x14, 0x3, 'ip6erspan0\x00'}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x810}, 0x40c4)

17.88125218s ago: executing program 5 (id=1012):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@deltaction={0x14, 0x18, 0x1, 0x70bd29, 0x25dfdbfe, {0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240)={'team0\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'pim6reg\x00', <r7=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)={0xa4, r4, 0x405, 0x70bd27, 0x25dfdbfd, {}, [{{0x8, 0x1, r6}, {0x88, 0x2, 0x0, 0x1, [{0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x402}}, {0x8, 0x6, r7}}}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x7, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10104}, [@IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}, @IFLA_MASTER={0x8}]}, 0x3c}}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r1, 0x1, 0x0, 0x25dfdbff, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)

17.831258655s ago: executing program 36 (id=1012):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@deltaction={0x14, 0x18, 0x1, 0x70bd29, 0x25dfdbfe, {0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240)={'team0\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'pim6reg\x00', <r7=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)={0xa4, r4, 0x405, 0x70bd27, 0x25dfdbfd, {}, [{{0x8, 0x1, r6}, {0x88, 0x2, 0x0, 0x1, [{0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x402}}, {0x8, 0x6, r7}}}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x7, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10104}, [@IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}, @IFLA_MASTER={0x8}]}, 0x3c}}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r1, 0x1, 0x0, 0x25dfdbff, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)

3.411724038s ago: executing program 7 (id=1196):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x5, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000004c0)='.\x00', &(0x7f0000000500)='debugfs\x00', 0x200010, &(0x7f00000001c0)='\x05\x00\x00\x00\x04\xb0\xfe\x98\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\xc77<r\xe9\x9cD\xb0\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3wA\xf6`>\x8b')
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x58}, 0x1, 0x0, 0x0, 0x24040804}, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000024c0)=@newtaction={0x6c, 0x30, 0x48b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x40000, 0x0, 0x0, 0x200}, @multicast2, @remote}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20008000}, 0x8000)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

2.551394067s ago: executing program 7 (id=1226):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f5", 0x2}], 0x1}}], 0x1, 0xc0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008034, 0x0, 0x240)

1.684340753s ago: executing program 7 (id=1241):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000100)=@raw={'raw\x00', 0xc01, 0x3, 0x1230, 0x10e8, 0x5002004a, 0xa, 0x10e8, 0x0, 0x1208, 0x3c8, 0x3c8, 0x1208, 0x3c8, 0x3, 0x0, {[{{@ip={@private, @loopback, 0x0, 0x0, 'syzkaller0\x00', 'syzkaller0\x00'}, 0x60, 0x10a0, 0x10e8, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0x0, 0x0, './cgroup.cpu/syz1\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x0, {@ipv6=@private0, 'wg2\x00'}}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "53f99237f41c832fc8969da1f2b7a86ddedeb7587f1590839a7a3acebc0f"}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x1290)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000003440), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x3a})
r0 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x1)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x40045730, &(0x7f0000002780))
syz_emit_ethernet(0x42, &(0x7f0000000400)={@local, @link_local={0x3}, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @dev={0xac, 0x14, 0x14, 0x80}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x7, 0xd7, [@private]}, @timestamp={0x44, 0x4, 0x0, 0x0, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)={0x44, r1, 0x100, 0x70bd26, 0x25dfdbfe, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffffff9}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]]}, 0x44}, 0x1, 0x0, 0x0, 0x8860}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_EXPBUF(0xffffffffffffffff, 0xc0405610, &(0x7f0000001000)={0x1, 0x6, 0xaa, 0x80080, <r5=>0xffffffffffffffff})
poll(&(0x7f0000001080)=[{r4, 0x92e0}, {r5, 0xcd0b}, {r5, 0x10}], 0x3, 0x9)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008000740"], 0x64}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000010c0)={'wlan1\x00', <r7=>0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x14403, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r8 = open$dir(&(0x7f0000000000)='./file0\x00', 0x80, 0x20)
write$binfmt_script(r8, &(0x7f0000003480)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa', [{0x20, ')\'$'}, {}, {0x20, '&::\xd1'}, {0x20, 'lowerdir'}, {}, {0x20, 'syz2\x00'}], 0xa, "2c81641c7925690061c3d28efd84043b9ed8f58dfdb4714aefd779519e5eecbf847211ffb80457d768412e1f478a426f233d0ceb049421533fad2e10778659f2764083a66f185305c8362818c23c2355b992d0915101dfb9c953583b93da08bc5510c30e191b117ad2772ca80b3b64cbb516f0e851c6573c116f7f3c730cf05fbff4ea474dc455ca134414302462a0edd50f8058db9f57f993767623c7428287b8e7d422c769cdc8452f431c773bbf9abc354697331938ee"}, 0x10c3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f0000001300)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000012c0)={&(0x7f0000001100)={0x1bc, r1, 0x10, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TX_RATES={0xd0, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x1, 0x7, 0x1, 0xfff, 0x7fff, 0x8001, 0x4]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x0, 0x7, 0xfff, 0x9, 0xe, 0x3, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x80, 0x9, 0x8, 0x7fff, 0x4, 0x40, 0x438b]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x4, 0x1]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xfff, 0xfff, 0x1, 0x4, 0x7, 0x9, 0x3, 0x9]}}, @NL80211_TXRATE_LEGACY={0x15, 0x1, [0xc, 0x7b, 0x18, 0xa, 0x9, 0x36, 0x9, 0x36, 0x30, 0x24, 0x1b, 0x1, 0x48, 0x1b, 0x2, 0x60, 0x12]}, @NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_60GHZ={0x34, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x36, 0x48, 0x36, 0x5, 0x60, 0x6c, 0x0, 0x30, 0x7c, 0x6, 0x36, 0x48, 0x6, 0x48, 0x5, 0x6c, 0x60, 0x25, 0x12, 0x2, 0x36, 0x36]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0xbf86, 0x7, 0x5, 0x6, 0xb1, 0x4, 0x7]}}]}, @NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}]}]}, @NL80211_ATTR_TX_RATES={0xd0, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x48, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x6, 0xbb, 0x7, 0x7bfa, 0x4, 0x0, 0x1ff, 0x1]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_6GHZ={0x4}, @NL80211_BAND_5GHZ={0x80, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9c, 0x34, 0x100, 0x5, 0x813, 0x3, 0x0, 0x40]}}, @NL80211_TXRATE_HT={0x25, 0x2, [{0x7, 0x9}, {0x7, 0x5}, {0x2, 0x2}, {0x0, 0x3}, {0x6}, {0x0, 0xa}, {0x7, 0x4}, {0x1, 0x1}, {0x0, 0xa}, {0x3, 0x2}, {0x5, 0x7}, {0x5, 0x1}, {0x7, 0x8}, {0x1, 0x9}, {0x0, 0x8}, {0x1, 0x6}, {0x1, 0x9}, {0x5, 0x1}, {0x7, 0x4}, {0x5, 0x4}, {0x0, 0x1}, {0x1, 0x8}, {0x5, 0x8}, {0x6, 0x7}, {0x2, 0x4}, {0x0, 0x6}, {0x3, 0xa}, {0x7, 0x6}, {0x3, 0x4}, {0x2, 0x8}, {0x4, 0x7}, {0x5}, {0x6, 0x3}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x5, 0x0, 0x6, 0x81, 0x8000, 0x3, 0xb0f, 0x31]}}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x9, 0x5, 0x9, 0x36, 0x12, 0x60, 0x1b, 0x6, 0x16, 0x36, 0xb, 0x6c, 0x60]}, @NL80211_TXRATE_HE_LTF={0x5}]}]}]}, 0x1bc}}, 0x20000054)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=ANY=[@ANYBLOB="48000000000101040000ff0f0000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000010000580"], 0x48}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r9=>0x0})
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0xfffc}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xc}]}, @NFT_MSG_NEWSETELEM={0x5c, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_EXPRESSIONS={0x28, 0xb, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x10, 0x1, 0x0, 0x1, @reject={{0xb}, @void}}]}]}]}]}], {0x14, 0x10}}, 0xe0}}, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000180)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010800000000000000000c00000008000300", @ANYRES32=r9, @ANYBLOB="0a000600080211000001000030005080110001004abee339084eeef16f162471f40000000800070000000000050002"], 0x58}}, 0x800)

1.581750136s ago: executing program 7 (id=1243):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x143600, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
userfaultfd(0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x89901)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x101442, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
fanotify_init(0x2, 0x80000)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$AUTOFS_IOC_EXPIRE(r2, 0x810c9365, &(0x7f0000000380)={{0x5, 0x2}, 0x100, './file0\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
userfaultfd(0x80001)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000000200))
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[0x0], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)})

1.451375025s ago: executing program 7 (id=1245):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000002c0)={0x0, &(0x7f0000000900)=[@cpuid={0x2, 0x18, {0x0, 0x4}}, @code={0x1, 0x6d, {"440f08c4e37549f0023ef3410fb8415ec42259f7774748b800200000000000000f23d00f21f8351000000b0f23f80f01cff0450fb3a36f860000b9800000c00f3235000400000f303e65674c0fc7af00000000c441255f9dabc30000"}}, @code={0x1, 0x85, {"48b8cc773cd1000000000f23d00f21f835300000080f23f866ba200066ed66baf80cb812cffd85ef66bafc0c66ed66baf80cb81485be88ef66bafc0cb800d0ffffefc481c5dd77f4c4417a2db30286da60f3420f6f69dfb9800000c00f3235000800000f30260f0179aa66ba610066b8103066ef"}}, @cpuid={0x2, 0x18, {0xffffffff, 0x5}}, @uexit={0x0, 0x18, 0xfffffffffffffff9}, @uexit={0x0, 0x18, 0x66c}, @code={0x1, 0x73, {"2e0f09c4019171d50e66ba410066b8050066ef0f20e035000100000f22e0460f381da000280000b93a1001c00f3266460f2132400f219b66baf80cb8b27ef98aef66bafc0cecc744240007000000c744240224000000c7442406000000000f011424"}}, @cpuid={0x2, 0x18, {0x100, 0x3}}, @uexit={0x0, 0x18, 0x400000}, @uexit={0x0, 0x18, 0x8001}, @uexit={0x0, 0x18, 0x1}, @cpuid={0x2, 0x18, {0x400, 0x4}}, @code={0x1, 0x5e, {"b9800000c00f3235000400000f30f3ab420f01c5b805000000b9009800000f01c166ba4100edc401996244acdd66450f3a446f010066ba2100b8ae546de5ef4e0fc76c170b420fc7b500600000"}}, @code={0x1, 0x50, {"8f285ca233f8470f7999f200000067660f388160000f20d835200000000f22d80f0843ad65450fc736650fc7ad2d00000066410f38823487f336f2460f21f1"}}, @cpuid={0x2, 0x18, {0x595, 0x100}}, @cpuid={0x2, 0x18, {0x8}}, @uexit={0x0, 0x18, 0x80000000}, @cpuid={0x2, 0x18, {0x50, 0x1182}}, @cpuid={0x2, 0x18, {0xfffffff5, 0x7}}, @uexit={0x0, 0x18, 0x7f}, @cpuid={0x2, 0x18, {0x1, 0x1000}}, @cpuid={0x2, 0x18, {0x2, 0x5e0}}, @cpuid={0x2, 0x18, {0x9, 0xfffffffe}}, @cpuid={0x2, 0x18, {0x7ff, 0x2}}, @uexit={0x0, 0x18, 0x2}], 0x3f3})
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000380)=[@text64={0x40, &(0x7f0000000300)="66b81f008ec866bad004b85efe0000ef0f20c035000000800f22c02e420fc77c702366b870008ed0f3f2470f0137c403dd0ecd0ec462ad3e1bf001744a00f3470fa7d0", 0x43}], 0x1, 0x18, &(0x7f0000000440), 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x10)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000250001"], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0xd0)
r5 = getpid()
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r3)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(&(0x7f0000000240)=@sr0, &(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)='gfs2\x00', 0x0, 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='gfs2meta\x00', 0x2000493, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x3c, r6, 0x100, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r5}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040050}, 0x40)
setpgid(r2, r5)
r7 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3', 0x0)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x80000, 0x8)
read$char_usb(r8, &(0x7f0000000040)=""/169, 0xa9)
ioctl$FS_IOC_RESVSP(r7, 0x40305828, &(0x7f0000000100)={0x0, 0x0, 0x4, 0x600000})
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x7, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xd, 0x3, 0x4, 0x1, 0x0, r9, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r10}, &(0x7f0000000840), &(0x7f0000000880)=r9}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000e80)={r10, &(0x7f0000000d40), 0x0}, 0x20)
ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f0000000080)={0xe97d793, "0c56aa0500b80a048600efb2ea3409a7c1c167a7328223ce89b3073171d40e69", <r11=>0xffffffffffffffff})
r12 = dup(r11)
write$binfmt_misc(r12, &(0x7f0000000280)="df", 0x1)
clock_nanosleep(0x0, 0x0, &(0x7f0000000000), 0xfffffffffffffffe)

1.19081581s ago: executing program 7 (id=1251):
r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="0d01000009000008250592d20700006a3b010902241700fa0074980904e4ff11070103000905010200ffe0000009058202"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000200)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB=' '], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r0)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12014101f2c59620d016b8108ede010203010902"], 0x0)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000a40)={0xa, 0x4e02, 0x7ffe, @remote, 0x9}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

940.95639ms ago: executing program 4 (id=1256):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000008095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)

531.698343ms ago: executing program 4 (id=1257):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000000c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e0000000000000000001800028008"], 0x44}}, 0x0)

531.483036ms ago: executing program 6 (id=1258):
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4affeeaf541d00", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r2, @ANYRES32=r2], 0x44}}, 0x0)

531.113286ms ago: executing program 4 (id=1259):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20702, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000280)={'veth1_to_bridge\x00', 0x400})
close(r0)
unshare(0x68040200)
unshare(0x12000080)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$inet6_udplite(0xa, 0x2, 0x88)
unshare(0x10000a00)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="44000000fe7a83d6aee044f02691d6c62560062522c7e00eba0a2f04ffc1e261eae2874dad1a25ca9687ee74e75020bd153f6baf7353058889ae75560fe3676a715d3a14bac847f6fac4d954e572d379d6b0ea2597beaebd072b879ac7d292ac0ae566cb5074a75f635594b706ed4e66e75813147ac8", @ANYRES16=r0, @ANYBLOB="01002cbd7000fcdbdf25210000000c000600010000000100000024002d800800030001000000050001000900000005000400000000000800020003000000"], 0x44}}, 0x4008000)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r2, 0x0, 0xcc, &(0x7f0000000000)={@private=0xa010100, @broadcast, 0xffffffffffffffff, "646629cab43926f84fa965c13f1bebe103be94789c417016a8d4ac30ded07a21", 0xfffffff9, 0xc077, 0x0, 0xffffffff}, 0x3c)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x6)
r5 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040)={'team0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x88, 0x24, 0xf0b, 0x20, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [0xa, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd], 0x0, [0x0, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}}}}]}, 0x88}}, 0x20000000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000040)=0x4)

496.891653ms ago: executing program 6 (id=1260):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
setuid(0xee00)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_open_dev$video4linux(&(0x7f00000060c0), 0x7, 0x0)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r4, 0xc0085666, &(0x7f0000000080)={0x2, 0x3})
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r4, 0xc0305616, &(0x7f0000000180)={0x0, {0x9, 0x4}})
setsockopt$sock_attach_bpf(r2, 0x1, 0x23, &(0x7f0000000000), 0x4)
sendmsg$inet(r3, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)
r5 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_TRY_DECODER_CMD(r5, 0xc0485661, &(0x7f0000000100)={0x3, 0x1, @stop_pts=0xf7})
recvmsg$unix(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)}, 0x40002320)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})

427.891122ms ago: executing program 6 (id=1261):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f000000ccc0)=@newtfilter={0x3c, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r3, {0x6, 0x4}, {}, {0xd, 0x10}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xba}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x404c021}, 0x2004c8d4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r1)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x4c}}, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='H\x00\x00\x00\n'], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
sendmsg$NL80211_CMD_LEAVE_MESH(r4, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0x14, r5, 0x200, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x34, 0x1, [@m_ctinfo={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x20040802}, 0x10)

371.456978ms ago: executing program 6 (id=1263):
mount$nfs(&(0x7f00000001c0)='>/.4\x8e\xc5\x16+\xec\xf6\bP\xca.v%\x05k\xa9\xcb\x00.\xa1\x82\xb5F\x03\xb8\x04\xd6%\x91-a\xb2\xd5\x00\xe5\xa5V8\x16sd@F\r\xb2Y\x8b!r~\xc1\x02\xee,\x93\a\xa2{}h\xaa\xc1e\xc0\x8e\xf4;\x7f\x90\\\'\xc3\r\x9a\x8d\x1d\x86\xff\x03\x973hr\xa3\"w\xf2\xea\xff\xb2\xe3\x9c\x81-\x92\x85\xa4\xf8\'\xc7\x11\xf4\x19\xa0\x1c\x03\x14\xc4P\\\x95h\xb5\x9b\xa3\x1fG5+\x84\xc3(\'\tCA6^)\xa73\xa4|\x04\x84\x03\xadQ\xd1\xf8\xea8\\\x97{F4\xdc\x99)b\xdb.\x9b\xfd2e{#\x8d\xaa\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x0, 0x2000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x25, &(0x7f00000000c0)=0x101, 0x4)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
clock_nanosleep(0x8, 0x0, &(0x7f0000000000)={0x0, 0x989680}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@x86={0xb5, 0x5, 0x6, 0x0, 0x7fffffff, 0x4, 0xf, 0xc0, 0x40, 0x4, 0x60, 0x6, 0x0, 0x6e8, 0xffffbfc3, 0xf0, 0x4, 0x0, 0x7, '\x00', 0xcb, 0xffffffffffffff59})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0xdddd1000, 0x59a35420, 0x20003, 0x10020f5b, 0x0, [{0x0, 0x9, 0x0, '\x00', 0x3a}, {}, {}, {0x0, 0x35}, {0x1d, 0x3}, {0x0, 0x0, 0x6}, {}, {0x2, 0x6}, {}, {0x73, 0x6, 0x2}, {0x0, 0x0, 0xfe}, {}, {}, {0x0, 0x0, 0x0, '\x00', 0xfe}, {0x7, 0x0, 0x0, '\x00', 0x39}, {0x0, 0x0, 0x0, '\x00', 0x8}, {0x0, 0x0, 0x0, '\x00', 0xff}, {0x0, 0x0, 0xfa}, {0x0, 0x0, 0x0, '\x00', 0xfe}, {0x0, 0x0, 0x40}, {0x6, 0x0, 0x0, '\x00', 0x1}, {0x0, 0x0, 0x0, '\x00', 0xfc}, {0x0, 0x5}, {0x0, 0x0, 0x10}]}})
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xc0042, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7f, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r7 = eventfd2(0x7fff, 0x80000)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000040)={0x1, r7, 0x1})
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x130, 0xa, 0xd0e0000, 0x0, 0x100, 0x268, 0x1d8, 0x1d8, 0x268, 0x1d8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x130, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x3, 0x1, 0xc}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}, {{@uncond, 0x3202, 0xd8, 0x138, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@set={{0x40}, {{0x0, [0x0, 0x4]}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{}, {0x10, [], 0x0, 0x4}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x360)
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0xfffffffffffffffe, 0x1, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x2], 0xeeee8000, 0x42240})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

161.368765ms ago: executing program 8 (id=1264):
r0 = socket$netlink(0x10, 0x3, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001640)='n', 0x1}], 0x1}, 0x4000001)
write(r0, &(0x7f00000000c0)="29000f00140005b7ff000051915f95eb01010003a606a40e07fff024bb000000000000000040000000", 0x29)

161.117383ms ago: executing program 8 (id=1265):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000003900)={0x2020}, 0x2020)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/164, &(0x7f0000000100)=""/47, 0xf000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000340))
r2 = dup(0xffffffffffffffff)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000000)={0x1, r2})

160.957752ms ago: executing program 8 (id=1266):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r1, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000ac0)=@newtfilter={0x44, 0x28, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0x14}, {0x9, 0xb}}, [@filter_kind_options=@f_fw={{0x7}, {0x18, 0x2, [@TCA_FW_INDEV={0x14, 0x3, 'ip6erspan0\x00'}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x810}, 0x40c4)

61.296288ms ago: executing program 8 (id=1267):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000000c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e0000000000000000001800028008"], 0x44}}, 0x0)

61.030878ms ago: executing program 4 (id=1268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x30, r2, 0x1, 0x9e, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x0]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}]}]}, 0x30}}, 0x0)

60.883526ms ago: executing program 8 (id=1269):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x15, 0xa, 0x801, 0x0, 0x0, {0x5, 0x0, 0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x20000046}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000180), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x40, &(0x7f0000000440)=ANY=[@ANYBLOB="78224fc427ed619f319b73733d616e792c63616368653d66736361636865"])
chdir(&(0x7f00000000c0)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r2, &(0x7f00000000c0), 0x10)
write$FUSE_INIT(r1, &(0x7f0000000200)={0x50, 0xffffffffffffffda, 0x0, {0x7, 0x2b, 0x7, 0x2001, 0x7, 0x3, 0x7, 0x9, 0x0, 0x0, 0x40, 0x892}}, 0x50)
readv(0xffffffffffffffff, &(0x7f0000003a00)=[{0x0}], 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)

60.721637ms ago: executing program 4 (id=1270):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0x0, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0xffffffffffffffdb, 0x3, {0x6, 0x2}}}}]}, 0x44}}, 0x800)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000ac0)=@newtfilter={0xfdef, 0x28, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r3, {0x6, 0x9}, {0x0, 0x9}, {0x9, 0xc}}, [@filter_kind_options=@f_fw={{0x7}, {0x60, 0x2, [@TCA_FW_INDEV={0x14, 0x3, 'ip6erspan0\x00'}, @TCA_FW_POLICE={0x48, 0x2, [@TCA_POLICE_AVRATE={0x8, 0x4, 0x4026}, @TCA_POLICE_TBF={0x3c, 0x1, {0x101, 0x0, 0xa, 0x81, 0xfffffff7, {0xf, 0x1, 0x3, 0x6, 0xf800, 0x1}, {0x2, 0x0, 0xf, 0xd, 0x80, 0xc}, 0x4, 0x8df7, 0x200000}}]}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x80}, 0x44084)

1.014872ms ago: executing program 6 (id=1271):
socketpair(0xf, 0x3, 0x2, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_G_FMT(r1, 0xc0d05604, &(0x7f0000000540)={0x7, @sdr={0x32314d54, 0x7f}})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00'/15, @ANYRES16=r3, @ANYBLOB="050001000000000000004400000008000300", @ANYRES32=r4, @ANYBLOB="1c00238008000b001f0800000800140008ffffff0500130000000000"], 0x38}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f0000000700)={0x261c, 0x26, 0x200, 0x70bd27, 0x25dfdbff, {0xa}, [@nested={0x1008, 0x117, 0x0, 0x1, [@nested={0x4, 0xc0}, @generic="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"]}, @generic="96b05b084c07ff5d5d7a063b6c324448ea267c89ca6c9b14bb4e0e77ca8f6f37512cf76616248dc78f38e925814741e57aa9815c56e25b6710bfe9303cf3e6aebcccc4958e9110110ea2f65fae306896b90f467f2fc33502890d2d4b11219dddcc127443d22a918100213cf804400724b26e78aea980b2326f9a15381c966c329b36a95a801ea4efb56158ce8aaf5f89e51f46683974c853c989dcb8d6aef3f267d369c4d4bedc9b87fa400f761af97e7d1811c733a1fb8133bf034b4f1d", @typed={0x14, 0x12e, 0x0, 0x0, @ipv6=@private0}, @generic="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", @nested={0x1e9, 0xec, 0x0, 0x1, [@generic='o', @typed={0xf5, 0x150, 0x0, 0x0, @binary="215818a75f8841732aa53d3f36874c2405295a5e86a6246b9e015f31a5ff3159fe61cf1ca96111ec81a43fdc881c89f56e94099c4be5bbb9bc6bc88029066009fca365894b0e326b28c3c9d00187fce8e3a4f6ca637cb704b447c9325bc58d5c937d52b65c07b3ec1a205b71ee7214fb3a55713a9ceca6b475eb8a9e8bb27f3f29eea69a6c28a1a5211eb50989e59de199a3ee60e6fa61d6dc2d63dbf21cff17ae2290c98fd8b5742ade1499d492d3dd55be0ac89cff7dc0932fb124956d06bde876735dcfdefe029fd1f6308ec3786909ad1aeb196f3f3fb6c7dce3649f7337c38426eb41fbed39fce9f526e467e10370"}, @typed={0xe0, 0x7a, 0x0, 0x0, @binary="e588620afa6fc00eb5875691b5efa6ef168b348412bb63c3f02f7ccf9368d1295a379bce0f253dc3466d27de8551e8a57ea34f23aab5cfb60c3ef7863133997cfd2a1571da94dead4ae37c8f4b460df80fdabdefdc16097c09bd03c1273ac0e3770efcb3a7af23868c8a5dda1b95c2ab02fde024fe3c47669a6761b2b03d07c8bdc76b81bacfeff270f1fe9a3815cb22ac108dfb74070e62e7c876e4fc89e9aa7b4346284cbee93cb13a8050a526c7e0f41c132639f042cab2e34ff5efe2a3c3feeea0b1374ab6d185492f1938112070110427b60a89563f745eb7dd"}, @typed={0x8, 0x66, 0x0, 0x0, @fd=r1}, @nested={0x4, 0x48}]}, @nested={0x280, 0x7c, 0x0, 0x1, [@nested={0xc, 0x116, 0x0, 0x1, [@nested={0x4, 0x45}, @nested={0x4, 0x80}]}, @nested={0xed, 0x30, 0x0, 0x1, [@generic="02432c6ad1dd3cf969c898eb6a84adf4fceeafdfa2d52c5d8196955a726cf3ecf83e2cf5f1171689b523db6ff24109f763983f2dbccbd0de71fd4b8568b10487e763f26047478eba683986b87960abcbdde22a8fc9fae0a1031a0e4d191a982539fa37f56ea48b927c3240e5bcb4cca37af76fea56f0b1be66d55ca6d9725fcddaa56690f7cb44a71ffe1683579498bbf8df7e57cfb847eb130bbd5bacc52927c004a7d5d6df9865c1e76fdcbefc0f575fa4ffb302abc698e4a73f82fbdc11fab04bbc480a6b775f11e3d8f8f28fad8128939b44c34b0ee3394f9b9eb3ad53d2c3f25bbcdb272602ae"]}, @nested={0x180, 0x4a, 0x0, 0x1, [@typed={0x4, 0x62}, @nested={0x16b, 0x11b, 0x0, 0x1, [@generic="5b611ba5798e2dfd8cf29db363f03b7c725c7c2a67e35e8648320f0aa8597b3c0c78624196e9a13971ebc6daafb5995d6fe28e771f7ba121dc60c0417dd6f6ba40fb10e643b1b5871fee3a4ed2a8b572ad9f8e019e00bc6058f81decff7e31c240598871caa893f64d50b9f3bb5efc61fe965be65f456850aeaa4142fe813e86e09d7865a499f0f002925f9afd0d9c75120b1b7418dc29a9d2db86d7e221ec89f0f772cd84538bd6e79d64e1c2c9cf766800bf", @generic="11ba3a65b98bb92529a27f29d7565f3e58186170b96f2ff91989bbd0ae29327468f77424774b43a60dc3473d0631597a4226443fd1eeadd971a532d0c28cbbd0fd8bf5e65078901df93a1e6fc3f99b1d33ae1cc0f2ade6a6554708c0ec65970cbfb3c5f35425058a3f866bccdd71be51e5a1b2b303ed46a1c343d5f8e3e7ee8ae68fe8518d9b060c3630f3ca55fb6a0c73df4dd152d858068c1996afee52f03b144dc64cab051eb019b2be32073f0625e71f53b8"]}, @nested={0x4, 0x127}, @typed={0x8, 0x7, 0x0, 0x0, @fd=r2}]}]}, @generic="3d0729cb802adf515820c3efe9d0e92d0901c1929857db17472ba824d873f8414b9839e177c6ddd9efaaecdda097352f518c8ecb7a82b7b3ab2971087066af88a419e5cd91fd70c6c5592d3248145b88c6006c61b9f9973d9e7fa9c15a065fe2f59032b2b54c6c971eeebd58c8e6ef3a57bf44b55d6598618f7c0d72b9bb0e07c80a1e6ada8c1ec706ab42bddd16d6466890cac304ff7f7875976db0da8eb86d6601b5cf698aeca443fac32934012998c4efaaec954b2a2cfba193b9b946bf5f6381"]}, 0x261c}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
r5 = socket$inet6(0x10, 0xa, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x7, <r6=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000c532ffffb703000008000000b704000000000000850000002400b73c03474f1e0041c8f70d702d75e7000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close_range(r1, r8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r8}, 0x10)
sendto$inet6(r5, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

687.362µs ago: executing program 4 (id=1272):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0xc201})
r0 = socket(0xa, 0x3, 0x3a)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYRES16=0x0, @ANYBLOB="20002abd7000fedbdf250814856d08"], 0x58}, 0x1, 0x0, 0x0, 0x804}, 0x4)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r2 = epoll_create(0x3)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)={0x40000002})
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
syz_io_uring_setup(0x48a5, &(0x7f0000000080)={0x0, 0x5f1c, 0x10100, 0x0, 0x1000040}, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000001f0000001a"])
write$P9_RSTATu(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="1e0200000200000005a80000000000000000000000008000000000000000000081030000000000000000000000000003e8001b00046e6f6465767b65766f6f7e0539c60005000037d93a8b92000000b0ff70673effeb09b5351f5bde05"], 0x21e)
recvmmsg(r0, &(0x7f0000004700)=[{{0x0, 0x0, 0x0}, 0x9466}], 0x1, 0x2, 0x0)
r4 = socket$kcm(0x2, 0xa, 0x2)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
writev(r5, &(0x7f0000000480)=[{&(0x7f0000000600)="65601a0d933a1eac6c", 0x9}, {&(0x7f00000002c0)="ff08", 0x2}], 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001"], 0xfdef)
r6 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000040)={0x0, &(0x7f0000000280)=[@uexit={0x0, 0x18, 0x6328709}, @code={0x1, 0x85, {"f3440f2c669c36450fc7bc5619000000c744240000500000c744240206000000c7442406000000000f0114246736660f6e12c744240033010000c74424020bfe4f5fff1c24c4817b2cc9b9800000c00f3235008000000f30410f14e6c744240012010000c744240200000000ff2c24420f017e03"}}, @code={0x1, 0x84, {"47f448b88600c0fe000000000f23c80f21f835040020000f23f8c422712e970088000066baf80cb8fb0d5f86ef66bafc0cec8f6978d31c4c676540c0317566baf80cb88562808aef66bafc0cec66baf80cb8461ce48cef66bafc0cb0e3eec421fbe62166baf80cb85c5a7585ef66bafc0c66ed"}}, @code={0x1, 0x3b, {"410f01f80fc73ec4e17d50f326f4b9c00b00000f3265450f01f8430fc77f787e00f3ad66420f38824900"}}, @code={0x1, 0x77, {"b983050000b85a000000ba000000000f3066baf80cb82039f78fef66bafc0cedc7442400c9000000c744240274000000ff2c2466ba4000b029ee46da3a660f388046d8c441f5eab8003800006667470f8a001000000f01c8b9800000c00f3235008000000f30"}}, @cpuid={0x2, 0x18, {0x7, 0xb7c}}, @uexit={0x0, 0x18}, @cpuid={0x2, 0x18, {0xb7, 0xfff}}, @uexit={0x0, 0x18}, @code={0x1, 0x6c, {"c4410ddfbd0600000048b800000000000000800f23c00f21f835010008000f23f8f2c7f8df00c0fe0f353e2e0f2337450f237566b849008ec8b9800000c00f3235000400000f30b805000000b9004000000f01c12666400f388209"}}, @cpuid={0x2, 0x18, {0xc2}}, @cpuid={0x2, 0x18, {0xe, 0x1}}, @cpuid={0x2, 0x18, {0x100, 0xff}}, @code={0x1, 0x76, {"66baf80cb86c79c98fef66bafc0cb886240000ef0f594a00f2470f23700f01cac7442400a4000000c744240200000000ff1c2466ba2000b024eec4a1a459f7b9b50900000f32b9800000c00f3235000800000f30b9150a0000b87adc0000ba000000000f30"}}, @code={0x1, 0x64, {"400f01c23e450f06f4400fc72b67660f381727b9410101c0b8e3baef61ba0ef3ca1c0f30f3410fc7b600000000c74424006d220000c744240248b96563c7442406000000000f011424640f781fc46278f24800"}}, @code={0x1, 0x6a, {"c441b973dd008f05ed0100002e410f01c266baf80cb8448c2689ef66bafc0cedc4a21d4750a6f2f60ef166baf80cb848761e87ef66bafc0ced0f01cf66baf80cb813aba283ef66bafc0cecb9800000c00f3235000100000f30"}}, @code={0x1, 0x53, {"0f0015000800003e0f0010c422d9ac9f0080000066bad104ec0f01bc0d0068000066ba430066edc4623d9254ef36656536460f01c8410f2090660f3803aa356e0000"}}], 0x47e})
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r9, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r8, 0x6, 0x14, 0x0, &(0x7f0000000080))
read$FUSE(r7, &(0x7f0000001680)={0x2020}, 0x2020)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

383.841µs ago: executing program 8 (id=1273):
timerfd_create(0x0, 0x800)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000003c0)={0x20, r1, 0x5, 0x0, 0x0, {0x22}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}}, 0x2000c094)

0s ago: executing program 6 (id=1274):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfd6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000500)=[{r1}], 0x1f, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)

kernel console output (not intermixed with test programs):

ce_t tclass=chr_file permissive=1
[  230.448527][ T8241] netlink: 8 bytes leftover after parsing attributes in process `syz.4.729'.
[  230.450822][   T53] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  230.464602][   T53] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.472491][   T53] usb 10-1: config 0 descriptor??
[  230.530923][ T8252] netlink: 'syz.6.733': attribute type 10 has an invalid length.
[  230.535507][ T8254] netlink: 'syz.7.734': attribute type 10 has an invalid length.
[  230.550205][ T8254] team0: Port device wlan1 added
[  230.588373][ T8259] netlink: 'syz.7.736': attribute type 27 has an invalid length.
[  230.592934][ T8257] fuse: Bad value for 'user_id'
[  230.594875][ T8257] fuse: Bad value for 'user_id'
[  230.631649][ T8259] batadv0: left promiscuous mode
[  230.633813][ T8259] batadv0: left allmulticast mode
[  230.673909][ T8259] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  230.684008][ T8259] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  230.727426][ T8259] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.730900][ T8259] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.734517][ T8259] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.738774][ T8259] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  230.776859][ T8264] 8021q: adding VLAN 0 to HW filter on device bond0
[  230.779847][ T8264] 8021q: adding VLAN 0 to HW filter on device team0
[  230.784652][ T8264] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  230.816964][ T5989] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  230.881971][   T53] plantronics 0003:047F:FFFF.0003: ignoring exceeding usage max
[  230.886628][   T53] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  230.893357][   T53] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  231.004498][ T8278] netlink: 'syz.6.744': attribute type 10 has an invalid length.
[  231.006501][ T1143] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  231.102742][ T8284] binder: BINDER_SET_CONTEXT_MGR bad uid 60928 != 0
[  231.104998][ T8284] binder: 8283:8284 ioctl 4018620d 200000000040 returned -1
[  231.147191][ T5989] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  231.166222][   T40] audit: type=1400 audit(1750515850.368:380): avc:  denied  { ioctl } for  pid=8287 comm="syz.6.749" path="socket:[25484]" dev="sockfs" ino=25484 ioctlcmd=0x4944 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  231.345066][ T8304] netlink: 'syz.6.754': attribute type 4 has an invalid length.
[  231.353923][   T40] audit: type=1400 audit(1750515850.558:381): avc:  denied  { getopt } for  pid=8303 comm="syz.6.754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  231.379623][   T40] audit: type=1400 audit(1750515850.588:382): avc:  denied  { execheap } for  pid=8303 comm="syz.6.754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  231.385052][   T40] audit: type=1400 audit(1750515850.588:383): avc:  denied  { execute } for  pid=8303 comm="syz.6.754" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=25497 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  231.488021][   T40] audit: type=1400 audit(1750515850.698:384): avc:  denied  { create } for  pid=8309 comm="syz.6.757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  231.654751][   T40] audit: type=1400 audit(1750515850.858:385): avc:  denied  { write } for  pid=8318 comm="syz.4.761" name="mouse0" dev="devtmpfs" ino=946 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  231.840011][ T8325] FAULT_INJECTION: forcing a failure.
[  231.840011][ T8325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.844131][ T8325] CPU: 2 UID: 0 PID: 8325 Comm: syz.7.763 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  231.844147][ T8325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  231.844154][ T8325] Call Trace:
[  231.844158][ T8325]  <TASK>
[  231.844163][ T8325]  dump_stack_lvl+0x16c/0x1f0
[  231.844183][ T8325]  should_fail_ex+0x512/0x640
[  231.844200][ T8325]  _copy_from_user+0x2e/0xd0
[  231.844230][ T8325]  vt_ioctl+0x42e/0x30a0
[  231.844241][ T8325]  ? lockdep_hardirqs_on+0x7c/0x110
[  231.844259][ T8325]  ? __pfx_vt_ioctl+0x10/0x10
[  231.844274][ T8325]  ? tomoyo_path_number_perm+0x18d/0x580
[  231.844290][ T8325]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  231.844305][ T8325]  ? do_vfs_ioctl+0x523/0x1a60
[  231.844316][ T8325]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  231.844329][ T8325]  ? tty_jobctrl_ioctl+0x152/0xe00
[  231.844342][ T8325]  ? __pfx_vt_ioctl+0x10/0x10
[  231.844352][ T8325]  tty_ioctl+0x661/0x1640
[  231.844368][ T8325]  ? __pfx_tty_ioctl+0x10/0x10
[  231.844383][ T8325]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  231.844404][ T8325]  ? hook_file_ioctl_common+0x145/0x410
[  231.844417][ T8325]  ? selinux_file_ioctl+0x180/0x270
[  231.844432][ T8325]  ? selinux_file_ioctl+0xb4/0x270
[  231.844447][ T8325]  ? __pfx_tty_ioctl+0x10/0x10
[  231.844463][ T8325]  __x64_sys_ioctl+0x18b/0x210
[  231.844475][ T8325]  do_syscall_64+0xcd/0x4c0
[  231.844493][ T8325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.844507][ T8325] RIP: 0033:0x7f0a29d8e929
[  231.844516][ T8325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.844527][ T8325] RSP: 002b:00007f0a2ab63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  231.844537][ T8325] RAX: ffffffffffffffda RBX: 00007f0a29fb5fa0 RCX: 00007f0a29d8e929
[  231.844544][ T8325] RDX: 0000200000000040 RSI: 0000000000004b72 RDI: 0000000000000003
[  231.844550][ T8325] RBP: 00007f0a2ab63090 R08: 0000000000000000 R09: 0000000000000000
[  231.844557][ T8325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  231.844563][ T8325] R13: 0000000000000000 R14: 00007f0a29fb5fa0 R15: 00007ffccfe857a8
[  231.844576][ T8325]  </TASK>
[  231.936192][ T8329] netlink: 24 bytes leftover after parsing attributes in process `syz.4.765'.
[  232.016633][ T1149] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  232.021541][ T1149] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  232.084513][ T8336] bpq0: entered promiscuous mode
[  232.086192][ T8336] bpq0: entered allmulticast mode
[  232.096607][ T6627] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  232.162013][ T8341] fuse: Bad value for 'fd'
[  232.226430][  T837] usb 12-1: new full-speed USB device number 3 using dummy_hcd
[  232.387834][  T837] usb 12-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  232.391228][  T837] usb 12-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  232.394902][  T837] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 65535, setting to 64
[  232.398649][  T837] usb 12-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  232.404153][  T837] usb 12-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  232.407712][  T837] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.410247][  T837] usb 12-1: Product: syz
[  232.411652][  T837] usb 12-1: Manufacturer: syz
[  232.413141][  T837] usb 12-1: SerialNumber: syz
[  232.416893][  T837] usb 12-1: config 0 descriptor??
[  232.419178][ T8334] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[  232.423308][  T837] input: KB Gear Tablet as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/input/input72
[  232.852648][  T837] usb 12-1: USB disconnect, device number 3
[  232.889506][   T34] usb 10-1: USB disconnect, device number 3
[  233.194992][ T8371] fuse: Bad value for 'fd'
[  233.350443][ T8375] batadv0: entered promiscuous mode
[  233.352596][ T8375] batadv0: entered allmulticast mode
[  233.355320][ T8375] 8021q: adding VLAN 0 to HW filter on device batadv0
[  233.366207][ T8377] FAULT_INJECTION: forcing a failure.
[  233.366207][ T8377] name failslab, interval 1, probability 0, space 0, times 0
[  233.371570][ T8377] CPU: 0 UID: 0 PID: 8377 Comm: syz.4.781 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  233.371595][ T8377] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  233.371607][ T8377] Call Trace:
[  233.371614][ T8377]  <TASK>
[  233.371622][ T8377]  dump_stack_lvl+0x16c/0x1f0
[  233.371652][ T8377]  should_fail_ex+0x512/0x640
[  233.371674][ T8377]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  233.371699][ T8377]  should_failslab+0xc2/0x120
[  233.371723][ T8377]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  233.371744][ T8377]  ? __alloc_skb+0x2b2/0x380
[  233.371771][ T8377]  __alloc_skb+0x2b2/0x380
[  233.371797][ T8377]  ? __pfx___alloc_skb+0x10/0x10
[  233.371822][ T8377]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  233.371844][ T8377]  netlink_alloc_large_skb+0x69/0x130
[  233.371863][ T8377]  netlink_sendmsg+0x6a1/0xdd0
[  233.371886][ T8377]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.371914][ T8377]  sock_write_iter+0x4fc/0x5b0
[  233.371934][ T8377]  ? __pfx_sock_write_iter+0x10/0x10
[  233.371961][ T8377]  ? bpf_lsm_file_permission+0x9/0x10
[  233.371988][ T8377]  ? security_file_permission+0x71/0x210
[  233.372013][ T8377]  ? rw_verify_area+0xcf/0x680
[  233.372035][ T8377]  vfs_write+0x6c4/0x1150
[  233.372056][ T8377]  ? __pfx_sock_write_iter+0x10/0x10
[  233.372076][ T8377]  ? __pfx_vfs_write+0x10/0x10
[  233.372095][ T8377]  ? find_held_lock+0x2b/0x80
[  233.372130][ T8377]  ksys_write+0x1f8/0x250
[  233.372151][ T8377]  ? __pfx_ksys_write+0x10/0x10
[  233.372178][ T8377]  do_syscall_64+0xcd/0x4c0
[  233.372204][ T8377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.372222][ T8377] RIP: 0033:0x7ff68a18e929
[  233.372236][ T8377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.372252][ T8377] RSP: 002b:00007ff68b032038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  233.372269][ T8377] RAX: ffffffffffffffda RBX: 00007ff68a3b5fa0 RCX: 00007ff68a18e929
[  233.372281][ T8377] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000003
[  233.372291][ T8377] RBP: 00007ff68b032090 R08: 0000000000000000 R09: 0000000000000000
[  233.372301][ T8377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.372310][ T8377] R13: 0000000000000000 R14: 00007ff68a3b5fa0 R15: 00007fffe0a57c88
[  233.372333][ T8377]  </TASK>
[  233.498857][ T8379] FAULT_INJECTION: forcing a failure.
[  233.498857][ T8379] name failslab, interval 1, probability 0, space 0, times 0
[  233.503061][ T8379] CPU: 2 UID: 0 PID: 8379 Comm: syz.4.782 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  233.503077][ T8379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  233.503083][ T8379] Call Trace:
[  233.503088][ T8379]  <TASK>
[  233.503092][ T8379]  dump_stack_lvl+0x16c/0x1f0
[  233.503113][ T8379]  should_fail_ex+0x512/0x640
[  233.503127][ T8379]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  233.503144][ T8379]  should_failslab+0xc2/0x120
[  233.503160][ T8379]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  233.503175][ T8379]  ? __alloc_skb+0x2b2/0x380
[  233.503192][ T8379]  __alloc_skb+0x2b2/0x380
[  233.503206][ T8379]  ? __pfx___alloc_skb+0x10/0x10
[  233.503220][ T8379]  ? __pfx_tc_new_tfilter+0x10/0x10
[  233.503237][ T8379]  netlink_ack+0x15d/0xb80
[  233.503253][ T8379]  netlink_rcv_skb+0x332/0x420
[  233.503264][ T8379]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  233.503282][ T8379]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  233.503298][ T8379]  ? netlink_deliver_tap+0x1ae/0xd30
[  233.503311][ T8379]  netlink_unicast+0x53a/0x7f0
[  233.503323][ T8379]  ? __pfx_netlink_unicast+0x10/0x10
[  233.503339][ T8379]  netlink_sendmsg+0x8d1/0xdd0
[  233.503352][ T8379]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.503368][ T8379]  ____sys_sendmsg+0xa98/0xc70
[  233.503380][ T8379]  ? copy_msghdr_from_user+0x10a/0x160
[  233.503396][ T8379]  ? __pfx_____sys_sendmsg+0x10/0x10
[  233.503413][ T8379]  ___sys_sendmsg+0x134/0x1d0
[  233.503429][ T8379]  ? __pfx____sys_sendmsg+0x10/0x10
[  233.503444][ T8379]  ? __lock_acquire+0x622/0x1c90
[  233.503477][ T8379]  __sys_sendmsg+0x16d/0x220
[  233.503493][ T8379]  ? __pfx___sys_sendmsg+0x10/0x10
[  233.503514][ T8379]  ? fput+0x70/0xf0
[  233.503532][ T8379]  do_syscall_64+0xcd/0x4c0
[  233.503549][ T8379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.503561][ T8379] RIP: 0033:0x7ff68a18e929
[  233.503570][ T8379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.503581][ T8379] RSP: 002b:00007ff68b032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  233.503591][ T8379] RAX: ffffffffffffffda RBX: 00007ff68a3b5fa0 RCX: 00007ff68a18e929
[  233.503598][ T8379] RDX: 0000000020000000 RSI: 0000200000006040 RDI: 0000000000000004
[  233.503604][ T8379] RBP: 00007ff68b032090 R08: 0000000000000000 R09: 0000000000000000
[  233.503611][ T8379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  233.503617][ T8379] R13: 0000000000000000 R14: 00007ff68a3b5fa0 R15: 00007fffe0a57c88
[  233.503629][ T8379]  </TASK>
[  233.584232][    C2] vkms_vblank_simulate: vblank timer overrun
[  233.684428][ T8384] FAULT_INJECTION: forcing a failure.
[  233.684428][ T8384] name failslab, interval 1, probability 0, space 0, times 0
[  233.689305][ T8384] CPU: 1 UID: 0 PID: 8384 Comm: syz.6.784 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  233.689322][ T8384] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  233.689329][ T8384] Call Trace:
[  233.689333][ T8384]  <TASK>
[  233.689338][ T8384]  dump_stack_lvl+0x16c/0x1f0
[  233.689359][ T8384]  should_fail_ex+0x512/0x640
[  233.689373][ T8384]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  233.689390][ T8384]  should_failslab+0xc2/0x120
[  233.689419][ T8384]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  233.689434][ T8384]  ? __kernfs_new_node+0xd2/0x8e0
[  233.689452][ T8384]  __kernfs_new_node+0xd2/0x8e0
[  233.689469][ T8384]  ? __pfx___kernfs_new_node+0x10/0x10
[  233.689488][ T8384]  ? find_held_lock+0x2b/0x80
[  233.689503][ T8384]  ? kernfs_root+0xee/0x2a0
[  233.689526][ T8384]  kernfs_new_node+0x13c/0x1e0
[  233.689546][ T8384]  __kernfs_create_file+0x53/0x350
[  233.689560][ T8384]  cgroup_addrm_files+0x546/0xc20
[  233.689579][ T8384]  ? __pfx_cgroup_addrm_files+0x10/0x10
[  233.689596][ T8384]  ? css_next_child+0xcf/0x2d0
[  233.689607][ T8384]  ? css_next_descendant_pre+0x58/0x1a0
[  233.689619][ T8384]  css_populate_dir+0x343/0x580
[  233.689636][ T8384]  cgroup_mkdir+0x5cb/0x11f0
[  233.689652][ T8384]  ? __pfx_cgroup_mkdir+0x10/0x10
[  233.689665][ T8384]  kernfs_iop_mkdir+0x10e/0x190
[  233.689681][ T8384]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  233.689698][ T8384]  vfs_mkdir+0x593/0x8c0
[  233.689712][ T8384]  do_mkdirat+0x304/0x3e0
[  233.689729][ T8384]  ? __pfx_do_mkdirat+0x10/0x10
[  233.689744][ T8384]  ? getname_flags.part.0+0x1c5/0x550
[  233.689758][ T8384]  __x64_sys_mkdirat+0x83/0xb0
[  233.689773][ T8384]  do_syscall_64+0xcd/0x4c0
[  233.689791][ T8384]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.689802][ T8384] RIP: 0033:0x7f6fc1d8e929
[  233.689811][ T8384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.689822][ T8384] RSP: 002b:00007f6fc2ccf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  233.689833][ T8384] RAX: ffffffffffffffda RBX: 00007f6fc1fb5fa0 RCX: 00007f6fc1d8e929
[  233.689840][ T8384] RDX: 00000000000001ff RSI: 0000200000000180 RDI: 0000000000000007
[  233.689846][ T8384] RBP: 00007f6fc2ccf090 R08: 0000000000000000 R09: 0000000000000000
[  233.689852][ T8384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  233.689859][ T8384] R13: 0000000000000000 R14: 00007f6fc1fb5fa0 R15: 00007ffebc73f2c8
[  233.689872][ T8384]  </TASK>
[  233.690059][ T8384] cgroup: cgroup_addrm_files: failed to add cgroup.procs, err=-12
[  234.677480][ T8423] fuse: Bad value for 'fd'
[  234.890385][ T8428] netlink: 4 bytes leftover after parsing attributes in process `syz.6.798'.
[  234.894866][ T8428] netlink: 12 bytes leftover after parsing attributes in process `syz.6.798'.
[  234.947825][ T8430] binder: BINDER_SET_CONTEXT_MGR bad uid 60928 != 0
[  234.949964][ T8430] binder: 8429:8430 ioctl 4018620d 200000000040 returned -1
[  235.019323][   T40] kauditd_printk_skb: 7 callbacks suppressed
[  235.019335][   T40] audit: type=1400 audit(1750515854.228:393): avc:  denied  { append } for  pid=8434 comm="syz.6.801" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  235.417173][ T8448] netlink: 28 bytes leftover after parsing attributes in process `syz.6.807'.
[  235.420018][ T8448] netlink: 8 bytes leftover after parsing attributes in process `syz.6.807'.
[  235.422916][ T8448] bridge0: vlan filtering disabled, automatically disabling multicast vlan snooping
[  235.777592][ T8453] netlink: 28 bytes leftover after parsing attributes in process `syz.5.809'.
[  235.780307][ T8453] netlink: 8 bytes leftover after parsing attributes in process `syz.5.809'.
[  235.783071][ T8453] FAULT_INJECTION: forcing a failure.
[  235.783071][ T8453] name failslab, interval 1, probability 0, space 0, times 0
[  235.787410][ T8453] CPU: 2 UID: 0 PID: 8453 Comm: syz.5.809 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  235.787443][ T8453] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  235.787454][ T8453] Call Trace:
[  235.787461][ T8453]  <TASK>
[  235.787467][ T8453]  dump_stack_lvl+0x16c/0x1f0
[  235.787498][ T8453]  should_fail_ex+0x512/0x640
[  235.787519][ T8453]  ? __kvmalloc_node_noprof+0x124/0x620
[  235.787544][ T8453]  should_failslab+0xc2/0x120
[  235.787568][ T8453]  __kvmalloc_node_noprof+0x137/0x620
[  235.787631][ T8453]  ? br_dev_setup+0x8cb/0xab0
[  235.787648][ T8453]  ? __pfx_br_dev_setup+0x10/0x10
[  235.787660][ T8453]  ? alloc_netdev_mqs+0xb5b/0x1570
[  235.787680][ T8453]  ? alloc_netdev_mqs+0xb5b/0x1570
[  235.787695][ T8453]  alloc_netdev_mqs+0xb5b/0x1570
[  235.787715][ T8453]  rtnl_create_link+0xc08/0xf90
[  235.787734][ T8453]  rtnl_newlink+0xb69/0x2000
[  235.787755][ T8453]  ? __pfx_rtnl_newlink+0x10/0x10
[  235.787771][ T8453]  ? find_held_lock+0x2b/0x80
[  235.787785][ T8453]  ? avc_has_perm_noaudit+0x117/0x3b0
[  235.787799][ T8453]  ? avc_has_perm_noaudit+0x149/0x3b0
[  235.787811][ T8453]  ? cred_has_capability.isra.0+0x193/0x2f0
[  235.787836][ T8453]  ? find_held_lock+0x2b/0x80
[  235.787848][ T8453]  ? __pfx_rtnl_newlink+0x10/0x10
[  235.787864][ T8453]  ? __pfx_rtnl_newlink+0x10/0x10
[  235.787879][ T8453]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  235.787896][ T8453]  ? __pfx_rtnl_newlink+0x10/0x10
[  235.787913][ T8453]  rtnetlink_rcv_msg+0x95e/0xe90
[  235.787931][ T8453]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  235.787953][ T8453]  ? ref_tracker_free+0x37c/0x830
[  235.787971][ T8453]  netlink_rcv_skb+0x155/0x420
[  235.787983][ T8453]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  235.788000][ T8453]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  235.788017][ T8453]  ? netlink_deliver_tap+0x1ae/0xd30
[  235.788056][ T8453]  netlink_unicast+0x53a/0x7f0
[  235.788072][ T8453]  ? __pfx_netlink_unicast+0x10/0x10
[  235.788088][ T8453]  netlink_sendmsg+0x8d1/0xdd0
[  235.788102][ T8453]  ? __pfx_netlink_sendmsg+0x10/0x10
[  235.788119][ T8453]  ____sys_sendmsg+0xa98/0xc70
[  235.788132][ T8453]  ? copy_msghdr_from_user+0x10a/0x160
[  235.788148][ T8453]  ? __pfx_____sys_sendmsg+0x10/0x10
[  235.788166][ T8453]  ___sys_sendmsg+0x134/0x1d0
[  235.788183][ T8453]  ? __pfx____sys_sendmsg+0x10/0x10
[  235.788197][ T8453]  ? __lock_acquire+0x622/0x1c90
[  235.788232][ T8453]  __sys_sendmsg+0x16d/0x220
[  235.788248][ T8453]  ? __pfx___sys_sendmsg+0x10/0x10
[  235.788273][ T8453]  do_syscall_64+0xcd/0x4c0
[  235.788293][ T8453]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.788305][ T8453] RIP: 0033:0x7fbf4338e929
[  235.788315][ T8453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  235.788326][ T8453] RSP: 002b:00007fbf44117038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  235.788337][ T8453] RAX: ffffffffffffffda RBX: 00007fbf435b5fa0 RCX: 00007fbf4338e929
[  235.788344][ T8453] RDX: 0000000000000840 RSI: 0000200000000140 RDI: 000000000000000d
[  235.788350][ T8453] RBP: 00007fbf44117090 R08: 0000000000000000 R09: 0000000000000000
[  235.788356][ T8453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  235.788362][ T8453] R13: 0000000000000000 R14: 00007fbf435b5fa0 R15: 00007ffce6f024a8
[  235.788376][ T8453]  </TASK>
[  235.910687][    C2] vkms_vblank_simulate: vblank timer overrun
[  235.942806][ T8455] bpq0: left promiscuous mode
[  235.944361][ T8455] bpq0: left allmulticast mode
[  236.017855][ T5948] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  236.258434][   T40] audit: type=1400 audit(1750515855.468:394): avc:  denied  { ioctl } for  pid=8466 comm="syz.5.815" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x1500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  236.321986][ T8471] team0: left allmulticast mode
[  236.323644][ T8471] team_slave_0: left allmulticast mode
[  236.325867][ T8471] team_slave_1: left allmulticast mode
[  236.328256][ T8471] mac80211_hwsim hwsim19 wlan1: left allmulticast mode
[  236.330671][ T8471] team0: left promiscuous mode
[  236.332835][ T8471] team_slave_0: left promiscuous mode
[  236.334622][ T8471] team_slave_1: left promiscuous mode
[  236.337475][ T8471] mac80211_hwsim hwsim19 wlan1: left promiscuous mode
[  236.339693][ T8471] bridge0: port 3(team0) entered disabled state
[  236.347087][ T8471] bridge_slave_0: left allmulticast mode
[  236.348809][ T8471] bridge_slave_0: left promiscuous mode
[  236.350640][ T8471] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.355729][ T8471] bridge_slave_1: left promiscuous mode
[  236.361828][ T8471] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.368447][ T8471] bond0: (slave bond_slave_0): Releasing backup interface
[  236.380277][ T8471] bond0: (slave bond_slave_1): Releasing backup interface
[  236.411104][ T8471] team0: Port device team_slave_0 removed
[  236.416417][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  236.417199][ T8477] sctp: [Deprecated]: syz.7.818 (pid 8477) Use of int in maxseg socket option.
[  236.417199][ T8477] Use struct sctp_assoc_value instead
[  236.417789][ T8471] team0: Port device team_slave_1 removed
[  236.418227][ T8471] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  236.418250][ T8471] batman_adv: batadv0: Removing interface: batadv_slave_0
[  236.433407][ T8471] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  236.435829][ T8471] batman_adv: batadv0: Removing interface: batadv_slave_1
[  236.450297][ T8471] team0: Port device wlan1 removed
[  236.476137][ T8474] team0: Mode changed to "activebackup"
[  236.478833][ T8471] vlan0: entered promiscuous mode
[  236.485697][ T8471] team0: Port device vlan0 added
[  236.505067][ T8473] syzkaller0: entered promiscuous mode
[  236.506979][ T8473] syzkaller0: entered allmulticast mode
[  236.509551][ T8471] tipc: Started in network mode
[  236.511222][ T8471] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  236.514401][ T8471] tipc: Enabled bearer <eth:team0>, priority 0
[  237.085110][ T8481] netlink: 24 bytes leftover after parsing attributes in process `syz.4.820'.
[  237.186374][ T8486] netlink: 148 bytes leftover after parsing attributes in process `syz.6.822'.
[  237.270359][ T8484] FAULT_INJECTION: forcing a failure.
[  237.270359][ T8484] name failslab, interval 1, probability 0, space 0, times 0
[  237.275935][ T8484] CPU: 1 UID: 0 PID: 8484 Comm: syz.4.821 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  237.275952][ T8484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  237.275960][ T8484] Call Trace:
[  237.275963][ T8484]  <TASK>
[  237.275968][ T8484]  dump_stack_lvl+0x16c/0x1f0
[  237.275987][ T8484]  should_fail_ex+0x512/0x640
[  237.276002][ T8484]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  237.276020][ T8484]  should_failslab+0xc2/0x120
[  237.276036][ T8484]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  237.276052][ T8484]  ? kstrdup_const+0x63/0x80
[  237.276068][ T8484]  kstrdup+0x53/0x100
[  237.276083][ T8484]  kstrdup_const+0x63/0x80
[  237.276097][ T8484]  __kernfs_new_node+0x9b/0x8e0
[  237.276114][ T8484]  ? kasan_save_track+0x14/0x30
[  237.276128][ T8484]  ? __kasan_kmalloc+0xaa/0xb0
[  237.276140][ T8484]  ? __pfx___kernfs_new_node+0x10/0x10
[  237.276155][ T8484]  ? xt_check_target+0x27c/0xa40
[  237.276172][ T8484]  ? find_held_lock+0x2b/0x80
[  237.276186][ T8484]  ? kernfs_root+0xee/0x2a0
[  237.276204][ T8484]  kernfs_new_node+0x13c/0x1e0
[  237.276223][ T8484]  __kernfs_create_file+0x53/0x350
[  237.276238][ T8484]  sysfs_add_file_mode_ns+0x207/0x3c0
[  237.276256][ T8484]  sysfs_create_file_ns+0x13d/0x1d0
[  237.276270][ T8484]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  237.276287][ T8484]  ? __asan_memcpy+0x3c/0x60
[  237.276314][ T8484]  idletimer_tg_checkentry+0x48e/0xac0
[  237.276326][ T8484]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  237.276342][ T8484]  ? __pfx_idletimer_tg_checkentry+0x10/0x10
[  237.276353][ T8484]  xt_check_target+0x27c/0xa40
[  237.276368][ T8484]  ? __pfx_xt_check_target+0x10/0x10
[  237.276383][ T8484]  ? pcpu_alloc_noprof+0x1f5/0x1470
[  237.276399][ T8484]  ? xt_find_target+0x1f2/0x290
[  237.276415][ T8484]  find_check_entry.constprop.0+0x82f/0xa20
[  237.276434][ T8484]  ? __pfx_find_check_entry.constprop.0+0x10/0x10
[  237.276458][ T8484]  ? lockdep_hardirqs_on+0x7c/0x110
[  237.276476][ T8484]  ? kfree+0x2b4/0x4d0
[  237.276487][ T8484]  ? translate_table+0xc0e/0x17b0
[  237.276502][ T8484]  translate_table+0xd0b/0x17b0
[  237.276521][ T8484]  ? __pfx_translate_table+0x10/0x10
[  237.276539][ T8484]  do_ip6t_set_ctl+0x570/0xb00
[  237.276552][ T8484]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  237.276567][ T8484]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  237.276582][ T8484]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  237.276606][ T8484]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  237.276619][ T8484]  nf_setsockopt+0x8a/0xf0
[  237.276632][ T8484]  ipv6_setsockopt+0x135/0x170
[  237.276646][ T8484]  udpv6_setsockopt+0x7d/0xd0
[  237.276661][ T8484]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  237.276673][ T8484]  do_sock_setsockopt+0x224/0x470
[  237.276684][ T8484]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  237.276706][ T8484]  __sys_setsockopt+0x1a0/0x230
[  237.276723][ T8484]  __x64_sys_setsockopt+0xbd/0x160
[  237.276737][ T8484]  ? do_syscall_64+0x91/0x4c0
[  237.276753][ T8484]  ? lockdep_hardirqs_on+0x7c/0x110
[  237.276768][ T8484]  do_syscall_64+0xcd/0x4c0
[  237.276785][ T8484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.276796][ T8484] RIP: 0033:0x7ff68a18e929
[  237.276805][ T8484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.276816][ T8484] RSP: 002b:00007ff68b011038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  237.276827][ T8484] RAX: ffffffffffffffda RBX: 00007ff68a3b6080 RCX: 00007ff68a18e929
[  237.276833][ T8484] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003
[  237.276839][ T8484] RBP: 00007ff68b011090 R08: 0000000000000408 R09: 0000000000000000
[  237.276846][ T8484] R10: 0000200000000400 R11: 0000000000000246 R12: 0000000000000002
[  237.276852][ T8484] R13: 0000000000000000 R14: 00007ff68a3b6080 R15: 00007fffe0a57c88
[  237.276867][ T8484]  </TASK>
[  237.322173][   T40] audit: type=1400 audit(1750515856.528:395): avc:  denied  { write } for  pid=8489 comm="syz.6.824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  237.416964][   T40] audit: type=1400 audit(1750515856.528:396): avc:  denied  { map } for  pid=8489 comm="syz.6.824" path="socket:[28767]" dev="sockfs" ino=28767 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  237.426149][   T40] audit: type=1400 audit(1750515856.528:397): avc:  denied  { read accept } for  pid=8489 comm="syz.6.824" path="socket:[28767]" dev="sockfs" ino=28767 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  237.651168][ T5989] tipc: Node number set to 11578026
[  237.768145][   T40] audit: type=1400 audit(1750515856.978:398): avc:  denied  { write } for  pid=8508 comm="syz.6.829" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  237.813820][ T8512] netlink: 4 bytes leftover after parsing attributes in process `syz.6.830'.
[  237.873449][ T8523] netlink: 8 bytes leftover after parsing attributes in process `syz.7.835'.
[  237.956589][   T40] audit: type=1400 audit(1750515857.168:399): avc:  denied  { read } for  pid=8524 comm="syz.7.836" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  237.967238][   T40] audit: type=1400 audit(1750515857.168:400): avc:  denied  { open } for  pid=8524 comm="syz.7.836" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  238.037844][ T8525] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  238.040958][ T8525] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  238.046482][ T8525] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  238.049576][ T8525] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  238.052302][ T8525] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  238.056247][ T8525] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  238.061287][ T8525] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  238.063730][ T8525] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  238.067587][ T8525] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  238.069976][ T8525] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  238.071867][ T8525] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  238.074229][ T8525] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  238.441652][ T8545] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(0)
[  238.443825][ T8545] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  238.449123][ T8545] vhci_hcd vhci_hcd.0: Device attached
[  238.626847][ T5989] vhci_hcd: vhci_device speed not set
[  238.686469][ T5989] usb 51-1: new full-speed USB device number 2 using vhci_hcd
[  238.887212][   T40] audit: type=1400 audit(1750515858.098:401): avc:  denied  { create } for  pid=8562 comm="syz.4.850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  238.888996][ T8563] netlink: 'syz.4.850': attribute type 10 has an invalid length.
[  238.896797][ T8563] batadv0: left promiscuous mode
[  238.898823][ T8563] batadv0: left allmulticast mode
[  238.903980][ T8563] bond0: (slave batadv0): Error -22 calling dev_set_mtu
[  238.909993][   T40] audit: type=1400 audit(1750515858.118:402): avc:  denied  { ioctl } for  pid=8562 comm="syz.4.850" path="socket:[26432]" dev="sockfs" ino=26432 ioctlcmd=0x89e4 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  238.913019][ T8563] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  238.921082][ T8563] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.925147][ T8563] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  238.927997][ T8563] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.964968][ T8546] vhci_hcd: connection reset by peer
[  238.968942][ T1143] vhci_hcd: stop threads
[  238.971009][ T1143] vhci_hcd: release socket
[  238.973147][ T1143] vhci_hcd: disconnect device
[  239.028413][ T8567] fuse: Bad value for 'rootmode'
[  239.214090][ T8575] syzkaller0: entered promiscuous mode
[  239.215884][ T8575] syzkaller0: entered allmulticast mode
[  239.620431][ T8579] netlink: 28 bytes leftover after parsing attributes in process `syz.6.858'.
[  239.623219][ T8579] netlink: 8 bytes leftover after parsing attributes in process `syz.6.858'.
[  239.997830][ T8581] netlink: 'syz.4.859': attribute type 10 has an invalid length.
[  240.096570][ T5948] Bluetooth: hci2: command 0x0c1a tx timeout
[  240.096648][ T5947] Bluetooth: hci5: command 0x0c1a tx timeout
[  240.096695][ T5299] Bluetooth: hci4: command 0x0c1a tx timeout
[  240.096748][ T5299] Bluetooth: hci1: command 0x0c1a tx timeout
[  240.297799][ T8599] fuse: Unknown parameter 'use00000000000000000000'
[  240.360743][   T40] audit: type=1400 audit(1750515859.568:403): avc:  denied  { watch } for  pid=8609 comm="syz.5.871" path="/184" dev="tmpfs" ino=965 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  240.364980][ T8610] sock: sock_timestamping_bind_phc: sock not bind to device
[  240.368153][   T40] audit: type=1400 audit(1750515859.568:404): avc:  denied  { setopt } for  pid=8609 comm="syz.5.871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  240.457893][ T8618] trusted_key: syz.7.874 sent an empty control message without MSG_MORE.
[  240.465356][ T8622] __nla_validate_parse: 1 callbacks suppressed
[  240.465372][ T8622] netlink: 4 bytes leftover after parsing attributes in process `syz.5.875'.
[  240.485369][ T8622] netlink: 12 bytes leftover after parsing attributes in process `syz.5.875'.
[  240.559308][ T8624] FAULT_INJECTION: forcing a failure.
[  240.559308][ T8624] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  240.563445][ T8624] CPU: 1 UID: 0 PID: 8624 Comm: syz.5.876 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  240.563461][ T8624] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  240.563467][ T8624] Call Trace:
[  240.563471][ T8624]  <TASK>
[  240.563476][ T8624]  dump_stack_lvl+0x16c/0x1f0
[  240.563513][ T8624]  should_fail_ex+0x512/0x640
[  240.563535][ T8624]  _copy_to_user+0x32/0xd0
[  240.563552][ T8624]  csum_and_copy_to_iter+0x299/0x1df0
[  240.563571][ T8624]  ? __pfx_csum_and_copy_to_iter+0x10/0x10
[  240.563586][ T8624]  ? do_raw_spin_lock+0x12c/0x2b0
[  240.563597][ T8624]  ? find_held_lock+0x2b/0x80
[  240.563610][ T8624]  ? __skb_recv_udp+0x720/0x940
[  240.563622][ T8624]  ? rcu_is_watching+0x12/0xc0
[  240.563645][ T8624]  __skb_datagram_iter+0x7fc/0x900
[  240.563662][ T8624]  ? __skb_recv_udp+0x3a9/0x940
[  240.563681][ T8624]  ? __pfx_csum_and_copy_to_iter+0x10/0x10
[  240.563702][ T8624]  ? do_csum+0x26f/0x2d0
[  240.563721][ T8624]  skb_copy_and_csum_datagram_msg+0x239/0x3a0
[  240.563744][ T8624]  ? __pfx_skb_copy_and_csum_datagram_msg+0x10/0x10
[  240.563767][ T8624]  ? avc_has_perm+0x11a/0x1c0
[  240.563787][ T8624]  udp_recvmsg+0x786/0x1340
[  240.563812][ T8624]  ? __pfx_udp_recvmsg+0x10/0x10
[  240.563830][ T8624]  ? __pfx_sock_has_perm+0x10/0x10
[  240.563857][ T8624]  ? __pfx_udp_recvmsg+0x10/0x10
[  240.563875][ T8624]  inet_recvmsg+0x444/0x6a0
[  240.563901][ T8624]  ? __pfx_inet_recvmsg+0x10/0x10
[  240.563930][ T8624]  sock_recvmsg+0x1b2/0x250
[  240.563949][ T8624]  ____sys_recvmsg+0x218/0x6b0
[  240.563971][ T8624]  ? __pfx_____sys_recvmsg+0x10/0x10
[  240.563999][ T8624]  ? __lock_acquire+0x622/0x1c90
[  240.564029][ T8624]  ___sys_recvmsg+0x114/0x1a0
[  240.564053][ T8624]  ? __pfx____sys_recvmsg+0x10/0x10
[  240.564077][ T8624]  ? find_held_lock+0x2b/0x80
[  240.564110][ T8624]  do_recvmmsg+0x2fe/0x750
[  240.564135][ T8624]  ? __pfx_do_recvmmsg+0x10/0x10
[  240.564164][ T8624]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  240.564197][ T8624]  ? __fget_files+0x20e/0x3c0
[  240.564226][ T8624]  __x64_sys_recvmmsg+0x22a/0x280
[  240.564251][ T8624]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  240.564272][ T8624]  do_syscall_64+0xcd/0x4c0
[  240.564290][ T8624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.564301][ T8624] RIP: 0033:0x7fbf4338e929
[  240.564311][ T8624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.564321][ T8624] RSP: 002b:00007fbf44117038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  240.564331][ T8624] RAX: ffffffffffffffda RBX: 00007fbf435b5fa0 RCX: 00007fbf4338e929
[  240.564341][ T8624] RDX: 0000000000000001 RSI: 0000200000008000 RDI: 0000000000000003
[  240.564347][ T8624] RBP: 00007fbf44117090 R08: 0000000000000000 R09: 0000000000000000
[  240.564353][ T8624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.564359][ T8624] R13: 0000000000000000 R14: 00007fbf435b5fa0 R15: 00007ffce6f024a8
[  240.564372][ T8624]  </TASK>
[  240.729209][   T40] audit: type=1400 audit(1750515859.938:405): avc:  denied  { setopt } for  pid=8630 comm="syz.5.878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  240.883343][   T40] audit: type=1400 audit(1750515860.088:406): avc:  denied  { mounton } for  pid=8633 comm="syz.5.879" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  240.891529][   T40] audit: type=1400 audit(1750515860.098:407): avc:  denied  { create } for  pid=8633 comm="syz.5.879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  240.944581][   T40] audit: type=1400 audit(1750515860.148:408): avc:  denied  { write } for  pid=8633 comm="syz.5.879" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  241.157983][ T8639] netlink: 28 bytes leftover after parsing attributes in process `syz.6.881'.
[  241.161165][ T8639] netlink: 'syz.6.881': attribute type 7 has an invalid length.
[  241.163862][ T8639] netlink: 'syz.6.881': attribute type 8 has an invalid length.
[  241.166912][ T8639] netlink: 4 bytes leftover after parsing attributes in process `syz.6.881'.
[  241.263237][ T8650] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  241.325499][   T40] audit: type=1400 audit(1750515860.528:409): avc:  denied  { connect } for  pid=8648 comm="syz.4.884" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  241.483702][ T8661] fuse: Unknown parameter 'use00000000000000000000'
[  241.578561][ T8650] syz.4.884 (8650): drop_caches: 1
[  241.595140][ T8650] syz.4.884 (8650): drop_caches: 1
[  241.741811][    C3] sr 2:0:0:0: [sr0] tag#6 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  241.745089][    C3] sr 2:0:0:0: [sr0] tag#6 CDB: Verify(16) 8f 17 6e 01 00 64
[  241.791677][ T8665] netlink: 12 bytes leftover after parsing attributes in process `syz.5.890'.
[  241.839880][ T8667] netlink: 132 bytes leftover after parsing attributes in process `syz.5.891'.
[  242.176463][ T5947] Bluetooth: hci2: command 0x0c1a tx timeout
[  242.186431][ T5947] Bluetooth: hci1: command 0x0c1a tx timeout
[  242.186439][ T5948] Bluetooth: hci4: command 0x0c1a tx timeout
[  242.189274][ T5947] Bluetooth: hci5: command 0x0c1a tx timeout
[  242.208146][ T8680] netlink: 28 bytes leftover after parsing attributes in process `syz.6.897'.
[  242.211211][ T8680] netlink: 8 bytes leftover after parsing attributes in process `syz.6.897'.
[  242.247970][   T40] audit: type=1400 audit(1750515861.458:410): avc:  denied  { wake_alarm } for  pid=8681 comm="syz.6.899" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  242.306874][ T8686] FAULT_INJECTION: forcing a failure.
[  242.306874][ T8686] name failslab, interval 1, probability 0, space 0, times 0
[  242.311196][ T8686] CPU: 3 UID: 0 PID: 8686 Comm: syz.6.900 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  242.311212][ T8686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  242.311219][ T8686] Call Trace:
[  242.311223][ T8686]  <TASK>
[  242.311228][ T8686]  dump_stack_lvl+0x16c/0x1f0
[  242.311248][ T8686]  should_fail_ex+0x512/0x640
[  242.311262][ T8686]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  242.311278][ T8686]  should_failslab+0xc2/0x120
[  242.311294][ T8686]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  242.311309][ T8686]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  242.311326][ T8686]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  242.311342][ T8686]  idr_get_free+0x528/0xa30
[  242.311362][ T8686]  idr_alloc_u32+0x190/0x2f0
[  242.311378][ T8686]  ? __pfx_idr_alloc_u32+0x10/0x10
[  242.311396][ T8686]  ? tcf_idr_check_alloc+0x588/0x770
[  242.311413][ T8686]  tcf_idr_check_alloc+0x136/0x770
[  242.311426][ T8686]  ? find_held_lock+0x2b/0x80
[  242.311439][ T8686]  ? __pfx_tcf_idr_check_alloc+0x10/0x10
[  242.311454][ T8686]  ? __nla_parse+0x40/0x60
[  242.311471][ T8686]  tcf_gact_init+0x2b2/0x7f0
[  242.311489][ T8686]  ? __pfx_tcf_gact_init+0x10/0x10
[  242.311510][ T8686]  ? tcf_action_init_1+0x2d2/0x6c0
[  242.311530][ T8686]  ? __asan_memcpy+0x3c/0x60
[  242.311550][ T8686]  tcf_action_init_1+0x460/0x6c0
[  242.311576][ T8686]  ? __pfx_tcf_action_init_1+0x10/0x10
[  242.311614][ T8686]  ? __nla_parse+0x40/0x60
[  242.311633][ T8686]  tcf_action_init+0x432/0xa50
[  242.311664][ T8686]  ? __pfx_tcf_action_init+0x10/0x10
[  242.311678][ T8686]  ? is_bpf_text_address+0x8a/0x1a0
[  242.311705][ T8686]  ? __lock_acquire+0xb8a/0x1c90
[  242.311733][ T8686]  ? find_held_lock+0x2b/0x80
[  242.311750][ T8686]  ? pcpu_alloc_noprof+0x949/0x1470
[  242.311767][ T8686]  tcf_exts_validate_ex+0x42d/0x550
[  242.311786][ T8686]  ? __pfx_tcf_exts_validate_ex+0x10/0x10
[  242.311801][ T8686]  ? mark_held_locks+0x49/0x80
[  242.311826][ T8686]  mall_change+0x3cd/0x1090
[  242.311846][ T8686]  ? __pfx_mall_change+0x10/0x10
[  242.311862][ T8686]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  242.311885][ T8686]  ? __pfx_mall_change+0x10/0x10
[  242.311900][ T8686]  tc_new_tfilter+0xa35/0x2340
[  242.311921][ T8686]  ? __pfx_tc_new_tfilter+0x10/0x10
[  242.311946][ T8686]  ? find_held_lock+0x2b/0x80
[  242.311959][ T8686]  ? __pfx_tc_new_tfilter+0x10/0x10
[  242.311970][ T8686]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  242.311987][ T8686]  ? __pfx_tc_new_tfilter+0x10/0x10
[  242.311999][ T8686]  rtnetlink_rcv_msg+0x95e/0xe90
[  242.312017][ T8686]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  242.312038][ T8686]  ? ref_tracker_free+0x37c/0x830
[  242.312055][ T8686]  netlink_rcv_skb+0x155/0x420
[  242.312066][ T8686]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  242.312083][ T8686]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  242.312100][ T8686]  ? netlink_deliver_tap+0x1ae/0xd30
[  242.312113][ T8686]  netlink_unicast+0x53a/0x7f0
[  242.312129][ T8686]  ? __pfx_netlink_unicast+0x10/0x10
[  242.312147][ T8686]  netlink_sendmsg+0x8d1/0xdd0
[  242.312161][ T8686]  ? __pfx_netlink_sendmsg+0x10/0x10
[  242.312177][ T8686]  ____sys_sendmsg+0xa98/0xc70
[  242.312189][ T8686]  ? copy_msghdr_from_user+0x10a/0x160
[  242.312205][ T8686]  ? __pfx_____sys_sendmsg+0x10/0x10
[  242.312223][ T8686]  ___sys_sendmsg+0x134/0x1d0
[  242.312239][ T8686]  ? __pfx____sys_sendmsg+0x10/0x10
[  242.312253][ T8686]  ? __lock_acquire+0x622/0x1c90
[  242.312286][ T8686]  __sys_sendmsg+0x16d/0x220
[  242.312302][ T8686]  ? __pfx___sys_sendmsg+0x10/0x10
[  242.312323][ T8686]  ? fput+0x70/0xf0
[  242.312342][ T8686]  do_syscall_64+0xcd/0x4c0
[  242.312360][ T8686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  242.312371][ T8686] RIP: 0033:0x7f6fc1d8e929
[  242.312381][ T8686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  242.312391][ T8686] RSP: 002b:00007f6fc2ccf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  242.312402][ T8686] RAX: ffffffffffffffda RBX: 00007f6fc1fb5fa0 RCX: 00007f6fc1d8e929
[  242.312408][ T8686] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  242.312415][ T8686] RBP: 00007f6fc2ccf090 R08: 0000000000000000 R09: 0000000000000000
[  242.312421][ T8686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  242.312427][ T8686] R13: 0000000000000000 R14: 00007f6fc1fb5fa0 R15: 00007ffebc73f2c8
[  242.312440][ T8686]  </TASK>
[  242.340375][ T8688] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=256 sclass=netlink_tcpdiag_socket pid=8688 comm=syz.5.901
[  242.645979][   T40] audit: type=1400 audit(1750515861.848:411): avc:  denied  { create } for  pid=8706 comm="syz.5.908" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  242.738508][ T8708] 9pnet_fd: Insufficient options for proto=fd
[  242.738637][   T40] audit: type=1400 audit(1750515861.948:412): avc:  denied  { mounton } for  pid=8706 comm="syz.5.908" path="/202/file0" dev="tmpfs" ino=1062 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  242.942538][ T8728] netlink: 4768 bytes leftover after parsing attributes in process `syz.5.915'.
[  242.989716][ T8728] xt_cgroup: xt_cgroup: no path or classid specified
[  242.994502][ T8732] netlink: 28 bytes leftover after parsing attributes in process `syz.4.917'.
[  242.999576][ T8732] FAULT_INJECTION: forcing a failure.
[  242.999576][ T8732] name failslab, interval 1, probability 0, space 0, times 0
[  243.003750][ T8732] CPU: 2 UID: 0 PID: 8732 Comm: syz.4.917 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  243.003766][ T8732] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  243.003772][ T8732] Call Trace:
[  243.003777][ T8732]  <TASK>
[  243.003781][ T8732]  dump_stack_lvl+0x16c/0x1f0
[  243.003802][ T8732]  should_fail_ex+0x512/0x640
[  243.003820][ T8732]  should_failslab+0xc2/0x120
[  243.003836][ T8732]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  243.003852][ T8732]  ? __alloc_skb+0x2b2/0x380
[  243.003869][ T8732]  __alloc_skb+0x2b2/0x380
[  243.003883][ T8732]  ? __pfx___alloc_skb+0x10/0x10
[  243.003899][ T8732]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  243.003914][ T8732]  __br_mdb_notify+0x93/0x6d0
[  243.003929][ T8732]  br_multicast_del_pg+0x227/0xc20
[  243.003947][ T8732]  br_multicast_find_del_pg+0x12d/0x180
[  243.003964][ T8732]  __br_multicast_disable_port_ctx+0x406/0x5f0
[  243.003981][ T8732]  br_multicast_toggle_vlan_snooping+0x215/0x640
[  243.004002][ T8732]  br_boolopt_toggle+0x4a/0xe0
[  243.004014][ T8732]  br_boolopt_multi_toggle+0x11a/0x250
[  243.004028][ T8732]  br_changelink+0x1343/0x1710
[  243.004042][ T8732]  ? __pfx_br_changelink+0x10/0x10
[  243.004058][ T8732]  ? ns_capable+0xd7/0x110
[  243.004070][ T8732]  ? netlink_ns_capable+0xfa/0x130
[  243.004088][ T8732]  ? __pfx_br_changelink+0x10/0x10
[  243.004102][ T8732]  rtnl_newlink+0x129b/0x2000
[  243.004123][ T8732]  ? __pfx_rtnl_newlink+0x10/0x10
[  243.004138][ T8732]  ? find_held_lock+0x2b/0x80
[  243.004151][ T8732]  ? avc_has_perm_noaudit+0x117/0x3b0
[  243.004164][ T8732]  ? avc_has_perm_noaudit+0x149/0x3b0
[  243.004176][ T8732]  ? cred_has_capability.isra.0+0x193/0x2f0
[  243.004201][ T8732]  ? find_held_lock+0x2b/0x80
[  243.004213][ T8732]  ? __pfx_rtnl_newlink+0x10/0x10
[  243.004228][ T8732]  ? __pfx_rtnl_newlink+0x10/0x10
[  243.004243][ T8732]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  243.004260][ T8732]  ? __pfx_rtnl_newlink+0x10/0x10
[  243.004277][ T8732]  rtnetlink_rcv_msg+0x95e/0xe90
[  243.004294][ T8732]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  243.004315][ T8732]  ? ref_tracker_free+0x37c/0x830
[  243.004332][ T8732]  netlink_rcv_skb+0x155/0x420
[  243.004343][ T8732]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  243.004361][ T8732]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  243.004377][ T8732]  ? netlink_deliver_tap+0x1ae/0xd30
[  243.004394][ T8732]  netlink_unicast+0x53a/0x7f0
[  243.004407][ T8732]  ? __pfx_netlink_unicast+0x10/0x10
[  243.004427][ T8732]  netlink_sendmsg+0x8d1/0xdd0
[  243.004448][ T8732]  ? __pfx_netlink_sendmsg+0x10/0x10
[  243.004476][ T8732]  ____sys_sendmsg+0xa98/0xc70
[  243.004495][ T8732]  ? copy_msghdr_from_user+0x10a/0x160
[  243.004521][ T8732]  ? __pfx_____sys_sendmsg+0x10/0x10
[  243.004549][ T8732]  ___sys_sendmsg+0x134/0x1d0
[  243.004567][ T8732]  ? __pfx____sys_sendmsg+0x10/0x10
[  243.004581][ T8732]  ? __lock_acquire+0x622/0x1c90
[  243.004614][ T8732]  __sys_sendmsg+0x16d/0x220
[  243.004629][ T8732]  ? __pfx___sys_sendmsg+0x10/0x10
[  243.004655][ T8732]  do_syscall_64+0xcd/0x4c0
[  243.004673][ T8732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.004685][ T8732] RIP: 0033:0x7ff68a18e929
[  243.004694][ T8732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.004705][ T8732] RSP: 002b:00007ff68b032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  243.004715][ T8732] RAX: ffffffffffffffda RBX: 00007ff68a3b5fa0 RCX: 00007ff68a18e929
[  243.004722][ T8732] RDX: 0000000000000840 RSI: 0000200000000140 RDI: 000000000000000d
[  243.004728][ T8732] RBP: 00007ff68b032090 R08: 0000000000000000 R09: 0000000000000000
[  243.004735][ T8732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  243.004741][ T8732] R13: 0000000000000000 R14: 00007ff68a3b5fa0 R15: 00007fffe0a57c88
[  243.004754][ T8732]  </TASK>
[  243.127479][ T8737] tipc: Started in network mode
[  243.145863][ T8737] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  243.148724][ T8737] tipc: Enabled bearer <eth:team0>, priority 0
[  243.766493][ T5989] vhci_hcd: vhci_device speed not set
[  244.010771][ T8761] netlink: 'syz.7.929': attribute type 2 has an invalid length.
[  244.045637][ T8764] tipc: Started in network mode
[  244.050136][ T8764] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  244.053286][ T8764] tipc: Enabled bearer <eth:team0>, priority 0
[  244.164066][ T8778] netlink: 'syz.7.937': attribute type 29 has an invalid length.
[  244.167405][   T10] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  244.172049][ T8778] netlink: 'syz.7.937': attribute type 29 has an invalid length.
[  244.256511][ T5948] Bluetooth: hci5: command 0x0c1a tx timeout
[  244.256630][ T5947] Bluetooth: hci4: command 0x0c1a tx timeout
[  244.256662][ T5937] Bluetooth: hci2: command 0x0c1a tx timeout
[  244.256697][ T5937] Bluetooth: hci1: command 0x0c1a tx timeout
[  244.276486][ T6537] tipc: Node number set to 11578026
[  244.336490][   T10] syz_tun: tun_net_xmit 90
[  244.446584][   T10] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  245.013197][ T8794] FAULT_INJECTION: forcing a failure.
[  245.013197][ T8794] name failslab, interval 1, probability 0, space 0, times 0
[  245.019158][ T8794] CPU: 1 UID: 0 PID: 8794 Comm: syz.4.942 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  245.019182][ T8794] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  245.019193][ T8794] Call Trace:
[  245.019208][ T8794]  <TASK>
[  245.019216][ T8794]  dump_stack_lvl+0x16c/0x1f0
[  245.019259][ T8794]  should_fail_ex+0x512/0x640
[  245.019292][ T8794]  should_failslab+0xc2/0x120
[  245.019317][ T8794]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  245.019340][ T8794]  ? skb_clone+0x190/0x3f0
[  245.019369][ T8794]  skb_clone+0x190/0x3f0
[  245.019393][ T8794]  netlink_deliver_tap+0xabd/0xd30
[  245.019422][ T8794]  netlink_unicast+0x6b2/0x7f0
[  245.019445][ T8794]  ? __pfx_netlink_unicast+0x10/0x10
[  245.019469][ T8794]  netlink_ack+0x696/0xb80
[  245.019494][ T8794]  netlink_rcv_skb+0x332/0x420
[  245.019511][ T8794]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  245.019539][ T8794]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  245.019568][ T8794]  ? netlink_deliver_tap+0x1ae/0xd30
[  245.019590][ T8794]  netlink_unicast+0x53a/0x7f0
[  245.019611][ T8794]  ? __pfx_netlink_unicast+0x10/0x10
[  245.019636][ T8794]  netlink_sendmsg+0x8d1/0xdd0
[  245.019658][ T8794]  ? __pfx_netlink_sendmsg+0x10/0x10
[  245.019686][ T8794]  ____sys_sendmsg+0xa98/0xc70
[  245.019705][ T8794]  ? copy_msghdr_from_user+0x10a/0x160
[  245.019728][ T8794]  ? __pfx_____sys_sendmsg+0x10/0x10
[  245.019759][ T8794]  ___sys_sendmsg+0x134/0x1d0
[  245.019784][ T8794]  ? __pfx____sys_sendmsg+0x10/0x10
[  245.019806][ T8794]  ? __lock_acquire+0x622/0x1c90
[  245.019866][ T8794]  __sys_sendmsg+0x16d/0x220
[  245.019891][ T8794]  ? __pfx___sys_sendmsg+0x10/0x10
[  245.019934][ T8794]  do_syscall_64+0xcd/0x4c0
[  245.019961][ T8794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.019977][ T8794] RIP: 0033:0x7ff68a18e929
[  245.019992][ T8794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  245.020009][ T8794] RSP: 002b:00007ff68b032038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  245.020026][ T8794] RAX: ffffffffffffffda RBX: 00007ff68a3b5fa0 RCX: 00007ff68a18e929
[  245.020037][ T8794] RDX: 0000000020000000 RSI: 0000200000006040 RDI: 0000000000000004
[  245.020048][ T8794] RBP: 00007ff68b032090 R08: 0000000000000000 R09: 0000000000000000
[  245.020058][ T8794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  245.020067][ T8794] R13: 0000000000000000 R14: 00007ff68a3b5fa0 R15: 00007fffe0a57c88
[  245.020092][ T8794]  </TASK>
[  245.144232][   T54] tipc: Node number set to 11578026
[  245.169222][ T8796] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  245.216739][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  245.250019][ T8800] syzkaller0: entered promiscuous mode
[  245.252352][ T8800] syzkaller0: entered allmulticast mode
[  245.305518][ T8806] batman_adv: batadv0: Adding interface: dummy0
[  245.308512][ T8806] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  245.318189][ T8806] batman_adv: batadv0: Interface activated: dummy0
[  245.671513][ T8809] i2c i2c-1: Invalid block write size 34
[  246.273239][ T8806] batadv0: mtu less than device minimum
[  246.275664][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.279770][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.283836][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.287908][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.291928][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.295835][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.299840][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.303705][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.307375][ T8806] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  246.403308][ T8819] batman_adv: batadv0: Interface deactivated: dummy0
[  246.405409][ T8819] batman_adv: batadv0: Removing interface: dummy0
[  246.417944][ T8819] team0: Port device team_slave_0 removed
[  246.422837][ T8819] team0: Port device team_slave_1 removed
[  246.425425][ T8819] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  246.427973][ T8819] batman_adv: batadv0: Removing interface: batadv_slave_0
[  246.430101][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  246.430114][   T40] audit: type=1400 audit(1750515865.638:426): avc:  denied  { read } for  pid=8816 comm="syz.7.952" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  246.440599][ T8819] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  246.442905][ T8819] batman_adv: batadv0: Removing interface: batadv_slave_1
[  246.455397][   T71] tipc: Resetting bearer <eth:team0>
[  246.458403][   T40] audit: type=1400 audit(1750515865.668:427): avc:  denied  { module_request } for  pid=8818 comm="syz.5.953" kmod="netdev-pim6reg" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  246.499546][ T8819] team0: Mode changed to "activebackup"
[  246.502465][ T8819] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  246.593933][   T40] audit: type=1400 audit(1750515865.798:428): avc:  denied  { ioctl } for  pid=8829 comm="syz.5.957" path="/dev/fb1" dev="devtmpfs" ino=640 ioctlcmd=0x4610 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  247.074411][ T8847] FAULT_INJECTION: forcing a failure.
[  247.074411][ T8847] name failslab, interval 1, probability 0, space 0, times 0
[  247.074432][ T8847] CPU: 2 UID: 0 PID: 8847 Comm: syz.5.964 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  247.074446][ T8847] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  247.074453][ T8847] Call Trace:
[  247.074456][ T8847]  <TASK>
[  247.074461][ T8847]  dump_stack_lvl+0x16c/0x1f0
[  247.074480][ T8847]  should_fail_ex+0x512/0x640
[  247.074495][ T8847]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  247.074510][ T8847]  should_failslab+0xc2/0x120
[  247.074528][ T8847]  __kmalloc_cache_noprof+0x6a/0x3e0
[  247.074540][ T8847]  ? virtio_gpu_plane_duplicate_state+0x6c/0xc0
[  247.074560][ T8847]  virtio_gpu_plane_duplicate_state+0x6c/0xc0
[  247.074577][ T8847]  drm_atomic_get_plane_state+0x20b/0x590
[  247.074596][ T8847]  drm_client_modeset_commit_atomic+0x237/0x7e0
[  247.074616][ T8847]  ? __pfx___might_resched+0x10/0x10
[  247.074640][ T8847]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  247.074658][ T8847]  ? __mutex_lock+0x1ca/0xb90
[  247.074686][ T8847]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  247.074717][ T8847]  drm_client_modeset_commit_locked+0x14d/0x580
[  247.074745][ T8847]  drm_fb_helper_pan_display+0x32d/0xa40
[  247.074778][ T8847]  fb_pan_display+0x479/0x7d0
[  247.074799][ T8847]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  247.074824][ T8847]  bit_update_start+0x49/0x1f0
[  247.074850][ T8847]  fbcon_switch+0xbf8/0x14c0
[  247.074882][ T8847]  ? __pfx_fbcon_switch+0x10/0x10
[  247.074920][ T8847]  ? __pfx_bit_cursor+0x10/0x10
[  247.074942][ T8847]  ? fbcon_cursor+0x40c/0x5f0
[  247.074973][ T8847]  csi_J+0x863/0xad0
[  247.075001][ T8847]  do_con_write+0x41d7/0x8280
[  247.075031][ T8847]  ? rcu_is_watching+0x12/0xc0
[  247.075056][ T8847]  ? __mutex_lock+0x1ca/0xb90
[  247.075083][ T8847]  ? n_tty_write+0x549/0x1160
[  247.075105][ T8847]  ? __pfx_do_con_write+0x10/0x10
[  247.075130][ T8847]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  247.075164][ T8847]  ? con_write+0x93/0xb0
[  247.075191][ T8847]  con_write+0x23/0xb0
[  247.075215][ T8847]  n_tty_write+0x40f/0x1160
[  247.075245][ T8847]  ? __pfx_n_tty_write+0x10/0x10
[  247.075261][ T8847]  ? rcu_is_watching+0x12/0xc0
[  247.075283][ T8847]  ? __pfx_woken_wake_function+0x10/0x10
[  247.075304][ T8847]  ? kfree+0x24f/0x4d0
[  247.075319][ T8847]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  247.075347][ T8847]  ? __pfx_n_tty_write+0x10/0x10
[  247.075367][ T8847]  file_tty_write.constprop.0+0x504/0x9b0
[  247.075399][ T8847]  vfs_write+0x6c4/0x1150
[  247.075423][ T8847]  ? __pfx_tty_write+0x10/0x10
[  247.075450][ T8847]  ? __pfx_vfs_write+0x10/0x10
[  247.075469][ T8847]  ? find_held_lock+0x2b/0x80
[  247.075509][ T8847]  ksys_write+0x12a/0x250
[  247.075530][ T8847]  ? __pfx_ksys_write+0x10/0x10
[  247.075560][ T8847]  do_syscall_64+0xcd/0x4c0
[  247.075589][ T8847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.075606][ T8847] RIP: 0033:0x7fbf4338e929
[  247.075621][ T8847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.075643][ T8847] RSP: 002b:00007fbf44117038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  247.075659][ T8847] RAX: ffffffffffffffda RBX: 00007fbf435b5fa0 RCX: 00007fbf4338e929
[  247.075670][ T8847] RDX: 0000000000001006 RSI: 00002000000030c0 RDI: 0000000000000003
[  247.075681][ T8847] RBP: 00007fbf44117090 R08: 0000000000000000 R09: 0000000000000000
[  247.075692][ T8847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.075702][ T8847] R13: 0000000000000000 R14: 00007fbf435b5fa0 R15: 00007ffce6f024a8
[  247.075728][ T8847]  </TASK>
[  247.242338][ T8853] __nla_validate_parse: 6 callbacks suppressed
[  247.242356][ T8853] netlink: 28 bytes leftover after parsing attributes in process `syz.7.966'.
[  247.247807][ T8853] netlink: 8 bytes leftover after parsing attributes in process `syz.7.966'.
[  247.272124][ T8857] sctp: [Deprecated]: syz.6.969 (pid 8857) Use of struct sctp_assoc_value in delayed_ack socket option.
[  247.272124][ T8857] Use struct sctp_sack_info instead
[  247.301039][ T8859] netlink: 'syz.4.971': attribute type 9 has an invalid length.
[  247.352790][ T8870] netlink: 'syz.4.971': attribute type 9 has an invalid length.
[  247.543878][   T40] audit: type=1400 audit(1750515866.748:429): avc:  denied  { ioctl } for  pid=8875 comm="syz.6.975" path="socket:[29791]" dev="sockfs" ino=29791 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  247.583497][   T40] audit: type=1400 audit(1750515866.788:430): avc:  denied  { read } for  pid=8877 comm="syz.4.976" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  247.589297][ T8878] dns_resolver: Unsupported content type (234)
[  247.590729][   T40] audit: type=1400 audit(1750515866.788:431): avc:  denied  { open } for  pid=8877 comm="syz.4.976" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  247.601050][   T40] audit: type=1400 audit(1750515866.788:432): avc:  denied  { ioctl } for  pid=8877 comm="syz.4.976" path="/dev/nvram" dev="devtmpfs" ino=631 ioctlcmd=0xae9c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  247.769623][ T8887] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=8887 comm=syz.4.980
[  248.091070][   T40] audit: type=1400 audit(1750515867.298:433): avc:  denied  { create } for  pid=8900 comm="syz.4.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  248.097185][   T40] audit: type=1400 audit(1750515867.298:434): avc:  denied  { setopt } for  pid=8900 comm="syz.4.984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  248.103987][   T40] audit: type=1400 audit(1750515867.298:435): avc:  denied  { write } for  pid=8900 comm="syz.4.984" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  248.397328][ T8918] fuse: root generation should be zero
[  248.607662][ T8933] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  248.611718][ T8933] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  248.615415][ T8933] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  248.620178][ T8933] overlayfs: missing 'lowerdir'
[  248.663602][   T53] Process accounting resumed
[  248.690890][ T8935] Process accounting resumed
[  248.885979][ T8948] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1002'.
[  249.000741][ T8952] xt_recent: Unsupported userspace flags (000000c7)
[  249.074759][ T8957] tipc: Can't bind to reserved service type 3
[  249.328953][ T8965] FAULT_INJECTION: forcing a failure.
[  249.328953][ T8965] name failslab, interval 1, probability 0, space 0, times 0
[  249.332903][ T8965] CPU: 1 UID: 0 PID: 8965 Comm: syz.4.1010 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  249.332919][ T8965] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  249.332926][ T8965] Call Trace:
[  249.332930][ T8965]  <TASK>
[  249.332935][ T8965]  dump_stack_lvl+0x16c/0x1f0
[  249.332969][ T8965]  should_fail_ex+0x512/0x640
[  249.332992][ T8965]  should_failslab+0xc2/0x120
[  249.333009][ T8965]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  249.333024][ T8965]  ? skb_clone+0x190/0x3f0
[  249.333042][ T8965]  skb_clone+0x190/0x3f0
[  249.333058][ T8965]  netlink_deliver_tap+0xabd/0xd30
[  249.333072][ T8965]  netlink_unicast+0x5df/0x7f0
[  249.333085][ T8965]  ? __pfx_netlink_unicast+0x10/0x10
[  249.333100][ T8965]  netlink_sendmsg+0x8d1/0xdd0
[  249.333128][ T8965]  ? __pfx_netlink_sendmsg+0x10/0x10
[  249.333147][ T8965]  sock_write_iter+0x4fc/0x5b0
[  249.333159][ T8965]  ? __pfx_sock_write_iter+0x10/0x10
[  249.333176][ T8965]  ? bpf_lsm_file_permission+0x9/0x10
[  249.333193][ T8965]  ? security_file_permission+0x71/0x210
[  249.333210][ T8965]  ? rw_verify_area+0xcf/0x680
[  249.333223][ T8965]  vfs_write+0x6c4/0x1150
[  249.333237][ T8965]  ? __pfx_sock_write_iter+0x10/0x10
[  249.333250][ T8965]  ? __pfx_vfs_write+0x10/0x10
[  249.333262][ T8965]  ? find_held_lock+0x2b/0x80
[  249.333285][ T8965]  ksys_write+0x1f8/0x250
[  249.333298][ T8965]  ? __pfx_ksys_write+0x10/0x10
[  249.333315][ T8965]  do_syscall_64+0xcd/0x4c0
[  249.333333][ T8965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.333344][ T8965] RIP: 0033:0x7ff68a18e929
[  249.333353][ T8965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.333364][ T8965] RSP: 002b:00007ff68b032038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  249.333374][ T8965] RAX: ffffffffffffffda RBX: 00007ff68a3b5fa0 RCX: 00007ff68a18e929
[  249.333381][ T8965] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000003
[  249.333387][ T8965] RBP: 00007ff68b032090 R08: 0000000000000000 R09: 0000000000000000
[  249.333393][ T8965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  249.333399][ T8965] R13: 0000000000000000 R14: 00007ff68a3b5fa0 R15: 00007fffe0a57c88
[  249.333412][ T8965]  </TASK>
[  249.667191][ T8973] fuse: Unknown parameter 'ÿÿÿÿÿÿÿÿ0x0000000000000006'
[  249.675895][ T5948] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  249.679854][ T5948] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  249.682782][ T5948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  249.692832][ T5948] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  249.695922][ T5948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  249.704104][ T8978] syz_tun: tun_net_xmit 86
[  249.828363][ T1149] tipc: Disabling bearer <eth:team0>
[  249.832464][ T1149] tipc: Left network mode
[  249.840372][ T8983] FAULT_INJECTION: forcing a failure.
[  249.840372][ T8983] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  249.844633][ T8983] CPU: 0 UID: 0 PID: 8983 Comm: syz.4.1017 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  249.844649][ T8983] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  249.844656][ T8983] Call Trace:
[  249.844661][ T8983]  <TASK>
[  249.844665][ T8983]  dump_stack_lvl+0x16c/0x1f0
[  249.844685][ T8983]  should_fail_ex+0x512/0x640
[  249.844702][ T8983]  _copy_to_user+0x32/0xd0
[  249.844718][ T8983]  simple_read_from_buffer+0xcb/0x170
[  249.844733][ T8983]  proc_fail_nth_read+0x197/0x270
[  249.844747][ T8983]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  249.844762][ T8983]  ? rw_verify_area+0xcf/0x680
[  249.844774][ T8983]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  249.844787][ T8983]  vfs_read+0x1e1/0xc60
[  249.844802][ T8983]  ? __pfx___mutex_lock+0x10/0x10
[  249.844818][ T8983]  ? __pfx_vfs_read+0x10/0x10
[  249.844835][ T8983]  ? __fget_files+0x20e/0x3c0
[  249.844854][ T8983]  ksys_read+0x12a/0x250
[  249.844866][ T8983]  ? __pfx_ksys_read+0x10/0x10
[  249.844883][ T8983]  do_syscall_64+0xcd/0x4c0
[  249.844901][ T8983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.844913][ T8983] RIP: 0033:0x7ff68a18d33c
[  249.844922][ T8983] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  249.844932][ T8983] RSP: 002b:00007ff68b032030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  249.844942][ T8983] RAX: ffffffffffffffda RBX: 00007ff68a3b5fa0 RCX: 00007ff68a18d33c
[  249.844949][ T8983] RDX: 000000000000000f RSI: 00007ff68b0320a0 RDI: 0000000000000006
[  249.844955][ T8983] RBP: 00007ff68b032090 R08: 0000000000000000 R09: 0000000000000000
[  249.844961][ T8983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  249.844967][ T8983] R13: 0000000000000000 R14: 00007ff68a3b5fa0 R15: 00007fffe0a57c88
[  249.844980][ T8983]  </TASK>
[  249.898186][ T8975] chnl_net:caif_netlink_parms(): no params data found
[  249.899791][    C0] vkms_vblank_simulate: vblank timer overrun
[  250.017218][ T8975] bridge0: port 1(bridge_slave_0) entered blocking state
[  250.019464][ T8975] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.021665][ T8975] bridge_slave_0: entered allmulticast mode
[  250.024196][ T8975] bridge_slave_0: entered promiscuous mode
[  250.030889][ T8975] bridge0: port 2(bridge_slave_1) entered blocking state
[  250.033044][ T8975] bridge0: port 2(bridge_slave_1) entered disabled state
[  250.035321][ T8975] bridge_slave_1: entered allmulticast mode
[  250.038735][ T8975] bridge_slave_1: entered promiscuous mode
[  250.091567][ T8975] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  250.101448][ T8975] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  250.118865][ T8994] syzkaller1: entered promiscuous mode
[  250.120619][ T8994] syzkaller1: entered allmulticast mode
[  250.143182][ T8975] team0: Port device team_slave_0 added
[  250.167833][ T8994] tipc: Resetting bearer <eth:team0>
[  250.191677][ T8975] team0: Port device team_slave_1 added
[  250.204882][ T1149] hsr_slave_0: left promiscuous mode
[  250.207722][ T1149] hsr_slave_1: left promiscuous mode
[  250.225443][ T1149] veth1_macvtap: left promiscuous mode
[  250.227316][ T1149] veth0_macvtap: left promiscuous mode
[  250.229080][ T1149] veth1_vlan: left promiscuous mode
[  250.230792][ T1149] veth0_vlan: left promiscuous mode
[  251.463963][ T9008] program syz.4.1024 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  251.471044][ T8975] batman_adv: batadv0: Adding interface: batadv_slave_0
[  251.473941][ T8975] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.482044][ T8975] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  251.486505][ T8975] batman_adv: batadv0: Adding interface: batadv_slave_1
[  251.488994][ T8975] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.498953][ T8975] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  251.516628][ T9010] xt_recent: Unsupported userspace flags (000000c7)
[  251.568344][ T8975] hsr_slave_0: entered promiscuous mode
[  251.570582][ T8975] hsr_slave_1: entered promiscuous mode
[  251.572040][ T9016] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1027'.
[  251.575242][ T9016] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1027'.
[  251.590588][ T9016] netlink: 'syz.4.1027': attribute type 10 has an invalid length.
[  251.620911][ T9016] bridge0: port 3(team0) entered blocking state
[  251.623412][ T9016] bridge0: port 3(team0) entered disabled state
[  251.625956][ T9016] team0: entered allmulticast mode
[  251.629575][ T9016] team_slave_0: entered allmulticast mode
[  251.631960][ T9016] team_slave_1: entered allmulticast mode
[  251.634835][ T9016] team0: entered promiscuous mode
[  251.637218][ T9016] team_slave_0: entered promiscuous mode
[  251.639309][ T9016] team_slave_1: entered promiscuous mode
[  251.642319][ T9016] bridge0: port 3(team0) entered blocking state
[  251.644359][ T9016] bridge0: port 3(team0) entered forwarding state
[  251.652323][ T9022] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1028'.
[  251.684839][ T9024] binder: 9023:9024 ioctl 4018620d 0 returned -22
[  251.688979][ T9024] binder: 9023:9024 ioctl c0306201 200000000240 returned -11
[  251.734579][ T9026] netlink: 'syz.4.1030': attribute type 28 has an invalid length.
[  251.737280][ T9026] netlink: 'syz.4.1030': attribute type 3 has an invalid length.
[  251.739449][ T9026] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1030'.
[  251.743232][ T8975] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  251.748007][ T8975] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  251.752255][ T8975] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  251.757927][ T8975] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  251.778484][ T5947] Bluetooth: hci0: command tx timeout
[  251.808846][ T8975] 8021q: adding VLAN 0 to HW filter on device bond0
[  251.824043][ T8975] 8021q: adding VLAN 0 to HW filter on device team0
[  251.832846][ T6522] bridge0: port 1(bridge_slave_0) entered blocking state
[  251.835676][ T6522] bridge0: port 1(bridge_slave_0) entered forwarding state
[  251.844821][ T6522] bridge0: port 2(bridge_slave_1) entered blocking state
[  251.847569][ T6522] bridge0: port 2(bridge_slave_1) entered forwarding state
[  251.875783][ T8975] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  251.888391][ T9046] FAULT_INJECTION: forcing a failure.
[  251.888391][ T9046] name failslab, interval 1, probability 0, space 0, times 0
[  251.888457][ T9046] CPU: 1 UID: 0 PID: 9046 Comm: syz.7.1035 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  251.888472][ T9046] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  251.888479][ T9046] Call Trace:
[  251.888482][ T9046]  <TASK>
[  251.888487][ T9046]  dump_stack_lvl+0x16c/0x1f0
[  251.888507][ T9046]  should_fail_ex+0x512/0x640
[  251.888521][ T9046]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  251.888541][ T9046]  should_failslab+0xc2/0x120
[  251.888558][ T9046]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  251.888574][ T9046]  ? drm_atomic_get_connector_state+0x231/0x740
[  251.888596][ T9046]  krealloc_noprof+0x1fc/0x370
[  251.888612][ T9046]  drm_atomic_get_connector_state+0x231/0x740
[  251.888633][ T9046]  drm_atomic_add_affected_connectors+0x2e0/0x3f0
[  251.888653][ T9046]  ? __pfx_drm_atomic_add_affected_connectors+0x10/0x10
[  251.888670][ T9046]  ? ww_mutex_lock+0x37/0x160
[  251.888688][ T9046]  ? modeset_lock+0x114/0x6e0
[  251.888706][ T9046]  __drm_atomic_helper_set_config+0x5ef/0xea0
[  251.888726][ T9046]  ? __pfx___drm_atomic_helper_set_config+0x10/0x10
[  251.888748][ T9046]  ? drm_client_rotation+0x4da/0x6a0
[  251.888768][ T9046]  drm_client_modeset_commit_atomic+0x53d/0x7e0
[  251.888791][ T9046]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  251.888819][ T9046]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  251.888841][ T9046]  drm_client_modeset_commit_locked+0x14d/0x580
[  251.888861][ T9046]  drm_fb_helper_pan_display+0x32d/0xa40
[  251.888882][ T9046]  fb_pan_display+0x479/0x7d0
[  251.888896][ T9046]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  251.888913][ T9046]  bit_update_start+0x49/0x1f0
[  251.888930][ T9046]  fbcon_switch+0xbf8/0x14c0
[  251.888949][ T9046]  ? __pfx_fbcon_switch+0x10/0x10
[  251.888972][ T9046]  ? __pfx_bit_cursor+0x10/0x10
[  251.888986][ T9046]  ? fbcon_cursor+0x40c/0x5f0
[  251.889005][ T9046]  csi_J+0x863/0xad0
[  251.889022][ T9046]  do_con_write+0x41d7/0x8280
[  251.889040][ T9046]  ? rcu_is_watching+0x12/0xc0
[  251.889056][ T9046]  ? __mutex_lock+0x1ca/0xb90
[  251.889073][ T9046]  ? n_tty_write+0x549/0x1160
[  251.889086][ T9046]  ? __pfx_do_con_write+0x10/0x10
[  251.889136][ T9046]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  251.889156][ T9046]  ? con_write+0x93/0xb0
[  251.889173][ T9046]  con_write+0x23/0xb0
[  251.889189][ T9046]  n_tty_write+0x40f/0x1160
[  251.889206][ T9046]  ? __pfx_n_tty_write+0x10/0x10
[  251.889217][ T9046]  ? rcu_is_watching+0x12/0xc0
[  251.889230][ T9046]  ? __pfx_woken_wake_function+0x10/0x10
[  251.889244][ T9046]  ? kfree+0x24f/0x4d0
[  251.889254][ T9046]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  251.889275][ T9046]  ? __pfx_n_tty_write+0x10/0x10
[  251.889287][ T9046]  file_tty_write.constprop.0+0x504/0x9b0
[  251.889308][ T9046]  vfs_write+0x6c4/0x1150
[  251.889322][ T9046]  ? __pfx_tty_write+0x10/0x10
[  251.889339][ T9046]  ? __pfx_vfs_write+0x10/0x10
[  251.889351][ T9046]  ? find_held_lock+0x2b/0x80
[  251.889374][ T9046]  ksys_write+0x12a/0x250
[  251.889387][ T9046]  ? __pfx_ksys_write+0x10/0x10
[  251.889406][ T9046]  do_syscall_64+0xcd/0x4c0
[  251.889423][ T9046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.889435][ T9046] RIP: 0033:0x7f0a29d8e929
[  251.889445][ T9046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.889455][ T9046] RSP: 002b:00007f0a2ab63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  251.889466][ T9046] RAX: ffffffffffffffda RBX: 00007f0a29fb5fa0 RCX: 00007f0a29d8e929
[  251.889472][ T9046] RDX: 0000000000001006 RSI: 00002000000030c0 RDI: 0000000000000003
[  251.889478][ T9046] RBP: 00007f0a2ab63090 R08: 0000000000000000 R09: 0000000000000000
[  251.889484][ T9046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  251.889490][ T9046] R13: 0000000000000000 R14: 00007f0a29fb5fa0 R15: 00007ffccfe857a8
[  251.889506][ T9046]  </TASK>
[  251.893415][ T9044] netlink: 'syz.4.1034': attribute type 29 has an invalid length.
[  251.894878][ T9044] netlink: 'syz.4.1034': attribute type 29 has an invalid length.
[  252.029562][ T9056] fuse: Unknown parameter '0x0000000000000009'
[  252.037268][ T8975] 8021q: adding VLAN 0 to HW filter on device batadv0
[  252.048110][ T9061] netlink: 'syz.6.1040': attribute type 15 has an invalid length.
[  252.067805][ T9061] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1040'.
[  252.132899][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  252.132914][   T40] audit: type=1400 audit(1750515871.338:445): avc:  denied  { create } for  pid=9066 comm="syz.7.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  252.143535][   T40] audit: type=1400 audit(1750515871.348:446): avc:  denied  { connect } for  pid=9066 comm="syz.7.1041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  252.187446][ T9071] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1042'.
[  252.233119][ T8975] veth0_vlan: entered promiscuous mode
[  252.239325][ T8975] veth1_vlan: entered promiscuous mode
[  252.244594][ T9073] netlink: 'syz.6.1043': attribute type 29 has an invalid length.
[  252.248857][ T9073] netlink: 'syz.6.1043': attribute type 29 has an invalid length.
[  252.263552][ T8975] veth0_macvtap: entered promiscuous mode
[  252.269085][ T8975] veth1_macvtap: entered promiscuous mode
[  252.280794][ T8975] batman_adv: batadv0: Interface activated: batadv_slave_0
[  252.288729][ T8975] batman_adv: batadv0: Interface activated: batadv_slave_1
[  252.299645][ T8975] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  252.302812][ T8975] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  252.305891][ T8975] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  252.311902][ T8975] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  252.365846][ T6522] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.368747][ T6522] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.384700][  T216] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.389218][  T216] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.440196][   T40] audit: type=1400 audit(1750515871.648:447): avc:  denied  { create } for  pid=9080 comm="syz.6.1047" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=atmpvc_socket permissive=1
[  252.479536][   T40] audit: type=1400 audit(1750515871.688:448): avc:  denied  { write } for  pid=9089 comm="syz.8.1050" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  252.517556][ T9092] FAULT_INJECTION: forcing a failure.
[  252.517556][ T9092] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  252.521984][ T9092] CPU: 0 UID: 0 PID: 9092 Comm: syz.8.1051 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  252.522001][ T9092] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  252.522008][ T9092] Call Trace:
[  252.522012][ T9092]  <TASK>
[  252.522016][ T9092]  dump_stack_lvl+0x16c/0x1f0
[  252.522036][ T9092]  should_fail_ex+0x512/0x640
[  252.522053][ T9092]  _copy_to_user+0x32/0xd0
[  252.522069][ T9092]  simple_read_from_buffer+0xcb/0x170
[  252.522085][ T9092]  proc_fail_nth_read+0x197/0x270
[  252.522099][ T9092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  252.522114][ T9092]  ? rw_verify_area+0xcf/0x680
[  252.522126][ T9092]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  252.522139][ T9092]  vfs_read+0x1e1/0xc60
[  252.522154][ T9092]  ? __pfx___mutex_lock+0x10/0x10
[  252.522171][ T9092]  ? __pfx_vfs_read+0x10/0x10
[  252.522188][ T9092]  ? __fget_files+0x20e/0x3c0
[  252.522207][ T9092]  ksys_read+0x12a/0x250
[  252.522220][ T9092]  ? __pfx_ksys_read+0x10/0x10
[  252.522237][ T9092]  do_syscall_64+0xcd/0x4c0
[  252.522255][ T9092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.522267][ T9092] RIP: 0033:0x7f41ad98d33c
[  252.522276][ T9092] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  252.522286][ T9092] RSP: 002b:00007f41ae792030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  252.522297][ T9092] RAX: ffffffffffffffda RBX: 00007f41adbb5fa0 RCX: 00007f41ad98d33c
[  252.522303][ T9092] RDX: 000000000000000f RSI: 00007f41ae7920a0 RDI: 0000000000000004
[  252.522309][ T9092] RBP: 00007f41ae792090 R08: 0000000000000000 R09: 0000000000000000
[  252.522316][ T9092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.522327][ T9092] R13: 0000000000000000 R14: 00007f41adbb5fa0 R15: 00007ffcb194b728
[  252.522341][ T9092]  </TASK>
[  252.588913][    C0] vkms_vblank_simulate: vblank timer overrun
[  252.591392][  T837] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  252.641497][ T9096] fuse: Unknown parameter '0x0000000000000009'
[  252.767955][  T837] usb 9-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  252.771281][  T837] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  252.774903][  T837] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 65535, setting to 64
[  252.779385][  T837] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  252.779915][ T9099] netlink: 'syz.7.1054': attribute type 29 has an invalid length.
[  252.785526][  T837] usb 9-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  252.789273][  T837] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  252.791768][  T837] usb 9-1: Product: syz
[  252.793108][  T837] usb 9-1: Manufacturer: syz
[  252.794668][  T837] usb 9-1: SerialNumber: syz
[  252.797716][  T837] usb 9-1: config 0 descriptor??
[  252.805163][ T9075] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  252.809741][  T837] input: KB Gear Tablet as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input73
[  252.840545][ T9101] netlink: 16178 bytes leftover after parsing attributes in process `syz.7.1055'.
[  252.958863][   T40] audit: type=1400 audit(1750515872.168:449): avc:  denied  { add_name } for  pid=9107 comm="syz.7.1058" name="pids.current" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  252.965684][   T40] audit: type=1400 audit(1750515872.168:450): avc:  denied  { create } for  pid=9107 comm="syz.7.1058" name="pids.current" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  252.973360][   T40] audit: type=1400 audit(1750515872.168:451): avc:  denied  { associate } for  pid=9107 comm="syz.7.1058" name="pids.current" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  252.973693][ T9108] netfs: Couldn't get user pages (rc=-14)
[  252.982844][   T40] audit: type=1400 audit(1750515872.168:452): avc:  denied  { append } for  pid=9107 comm="syz.7.1058" path="/213/file0/pids.current" dev="9p" ino=35913917 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  252.982874][   T40] audit: type=1400 audit(1750515872.178:453): avc:  denied  { map } for  pid=9107 comm="syz.7.1058" path="/213/file0/pids.current" dev="9p" ino=35913917 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  253.008630][ T9075] FAULT_INJECTION: forcing a failure.
[  253.008630][ T9075] name failslab, interval 1, probability 0, space 0, times 0
[  253.013735][ T9075] CPU: 2 UID: 0 PID: 9075 Comm: syz.4.1044 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  253.013757][ T9075] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  253.013767][ T9075] Call Trace:
[  253.013773][ T9075]  <TASK>
[  253.013780][ T9075]  dump_stack_lvl+0x16c/0x1f0
[  253.013806][ T9075]  should_fail_ex+0x512/0x640
[  253.013827][ T9075]  ? fs_reclaim_acquire+0xae/0x150
[  253.013844][ T9075]  ? tomoyo_encode2+0x100/0x3e0
[  253.013866][ T9075]  should_failslab+0xc2/0x120
[  253.013886][ T9075]  __kmalloc_noprof+0xd2/0x510
[  253.013906][ T9075]  ? d_absolute_path+0x136/0x1a0
[  253.013926][ T9075]  tomoyo_encode2+0x100/0x3e0
[  253.013950][ T9075]  tomoyo_encode+0x29/0x50
[  253.013970][ T9075]  tomoyo_realpath_from_path+0x18f/0x6e0
[  253.013996][ T9075]  tomoyo_check_open_permission+0x2ab/0x3c0
[  253.014016][ T9075]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  253.014060][ T9075]  ? do_raw_spin_lock+0x12c/0x2b0
[  253.014079][ T9075]  tomoyo_file_open+0x6b/0x90
[  253.014095][ T9075]  security_file_open+0x84/0x1e0
[  253.014118][ T9075]  do_dentry_open+0x596/0x1c10
[  253.014146][ T9075]  vfs_open+0x82/0x3f0
[  253.014170][ T9075]  path_openat+0x1de4/0x2cb0
[  253.014198][ T9075]  ? __pfx_path_openat+0x10/0x10
[  253.014220][ T9075]  ? __lock_acquire+0xb8a/0x1c90
[  253.014246][ T9075]  do_filp_open+0x20b/0x470
[  253.014264][ T9075]  ? __pfx_do_filp_open+0x10/0x10
[  253.014301][ T9075]  ? alloc_fd+0x471/0x7d0
[  253.014329][ T9075]  do_sys_openat2+0x11b/0x1d0
[  253.014348][ T9075]  ? __pfx_do_sys_openat2+0x10/0x10
[  253.014363][ T9075]  ? __fget_files+0x20e/0x3c0
[  253.014388][ T9075]  __x64_sys_openat+0x174/0x210
[  253.014404][ T9075]  ? __pfx___x64_sys_openat+0x10/0x10
[  253.014418][ T9075]  ? ksys_write+0x1ac/0x250
[  253.014445][ T9075]  do_syscall_64+0xcd/0x4c0
[  253.014466][ T9075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.014482][ T9075] RIP: 0033:0x7ff68a18e929
[  253.014495][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.014510][ T9075] RSP: 002b:00007ff68b032038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  253.014527][ T9075] RAX: ffffffffffffffda RBX: 00007ff68a3b5fa0 RCX: 00007ff68a18e929
[  253.014538][ T9075] RDX: 0000000000004000 RSI: 00002000000000c0 RDI: ffffffffffffff9c
[  253.014544][ T9075] RBP: 00007ff68b032090 R08: 0000000000000000 R09: 0000000000000000
[  253.014550][ T9075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.014556][ T9075] R13: 0000000000000000 R14: 00007ff68a3b5fa0 R15: 00007fffe0a57c88
[  253.014573][ T9075]  </TASK>
[  253.014590][ T9075] ERROR: Out of memory at tomoyo_realpath_from_path.
[  253.016518][   T40] audit: type=1400 audit(1750515872.218:454): avc:  denied  { create } for  pid=9107 comm="syz.7.1058" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  253.017473][ T9108] overlayfs: missing 'lowerdir'
[  253.122870][    C2] kbtab 9-1:0.0: kbtab_irq - usb_submit_urb failed with result -1
[  253.126731][ T9108] netlink: 32 bytes leftover after parsing attributes in process `syz.7.1058'.
[  253.134261][ T9108] nbd: socks must be embedded in a SOCK_ITEM attr
[  253.242608][  T837] usb 9-1: USB disconnect, device number 2
[  253.244798][ T9122] netlink: 'syz.8.1063': attribute type 29 has an invalid length.
[  253.366933][ T9138] net_ratelimit: 11 callbacks suppressed
[  253.366951][ T9138] openvswitch: netlink: Unknown key attributes 2
[  253.454874][ T9142] FAULT_INJECTION: forcing a failure.
[  253.454874][ T9142] name failslab, interval 1, probability 0, space 0, times 0
[  253.454895][ T9142] CPU: 2 UID: 0 PID: 9142 Comm: syz.7.1069 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  253.454908][ T9142] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  253.454915][ T9142] Call Trace:
[  253.454919][ T9142]  <TASK>
[  253.454924][ T9142]  dump_stack_lvl+0x16c/0x1f0
[  253.454943][ T9142]  should_fail_ex+0x512/0x640
[  253.454958][ T9142]  ? __kmalloc_noprof+0xbf/0x510
[  253.454973][ T9142]  ? vc_do_resize+0x1de/0x10e0
[  253.454987][ T9142]  should_failslab+0xc2/0x120
[  253.455003][ T9142]  __kmalloc_noprof+0xd2/0x510
[  253.455020][ T9142]  vc_do_resize+0x1de/0x10e0
[  253.455036][ T9142]  ? irqentry_exit+0x3b/0x90
[  253.455052][ T9142]  ? lockdep_hardirqs_on+0x7c/0x110
[  253.455070][ T9142]  ? __pfx_vc_do_resize+0x10/0x10
[  253.455084][ T9142]  ? set_vc_hi_font+0x3d0/0x6e0
[  253.455096][ T9142]  ? set_vc_hi_font+0x36d/0x6e0
[  253.455108][ T9142]  ? __sanitizer_cov_trace_pc+0x41/0x70
[  253.455124][ T9142]  fbcon_do_set_font+0x449/0x940
[  253.455143][ T9142]  fbcon_set_font+0x9ed/0xb80
[  253.455161][ T9142]  ? __pfx_fbcon_set_font+0x10/0x10
[  253.455174][ T9142]  con_font_op+0x7fb/0xf50
[  253.455193][ T9142]  ? __pfx_con_font_op+0x10/0x10
[  253.455209][ T9142]  ? __might_fault+0xe3/0x190
[  253.455222][ T9142]  ? __might_fault+0xe3/0x190
[  253.455234][ T9142]  ? __might_fault+0x13b/0x190
[  253.455253][ T9142]  vt_ioctl+0x48f/0x30a0
[  253.455263][ T9142]  ? lockdep_hardirqs_on+0x7c/0x110
[  253.455280][ T9142]  ? __pfx_vt_ioctl+0x10/0x10
[  253.455295][ T9142]  ? tomoyo_path_number_perm+0x18d/0x580
[  253.455311][ T9142]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  253.455324][ T9142]  ? do_vfs_ioctl+0x523/0x1a60
[  253.455335][ T9142]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  253.455348][ T9142]  ? tty_jobctrl_ioctl+0x152/0xe00
[  253.455361][ T9142]  ? __pfx_vt_ioctl+0x10/0x10
[  253.455373][ T9142]  tty_ioctl+0x661/0x1640
[  253.455390][ T9142]  ? __pfx_tty_ioctl+0x10/0x10
[  253.455405][ T9142]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  253.455425][ T9142]  ? hook_file_ioctl_common+0x145/0x410
[  253.455445][ T9142]  ? selinux_file_ioctl+0x180/0x270
[  253.455464][ T9142]  ? selinux_file_ioctl+0xb4/0x270
[  253.455484][ T9142]  ? __pfx_tty_ioctl+0x10/0x10
[  253.455505][ T9142]  __x64_sys_ioctl+0x18b/0x210
[  253.455518][ T9142]  do_syscall_64+0xcd/0x4c0
[  253.455536][ T9142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.455547][ T9142] RIP: 0033:0x7f0a29d8e929
[  253.455555][ T9142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.455566][ T9142] RSP: 002b:00007f0a2ab63038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  253.455576][ T9142] RAX: ffffffffffffffda RBX: 00007f0a29fb5fa0 RCX: 00007f0a29d8e929
[  253.455583][ T9142] RDX: 0000200000000040 RSI: 0000000000004b72 RDI: 0000000000000003
[  253.455590][ T9142] RBP: 00007f0a2ab63090 R08: 0000000000000000 R09: 0000000000000000
[  253.455596][ T9142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.455602][ T9142] R13: 0000000000000000 R14: 00007f0a29fb5fa0 R15: 00007ffccfe857a8
[  253.455620][ T9142]  </TASK>
[  253.619077][ T9155] xt_recent: Unsupported userspace flags (000000c7)
[  253.660249][ T5947] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  253.687134][ T9166] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1078'.
[  254.014257][ T9175] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1081'.
[  254.020000][ T9175] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1081'.
[  254.167172][ T9180] random: crng reseeded on system resumption
[  254.191165][ T9180] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1082'.
[  254.515135][ T9192] xt_recent: Unsupported userspace flags (000000c7)
[  254.589966][ T9198] delete_channel: no stack
[  254.809370][ T9210] fuse: Unknown parameter '0x0000000000000009'
[  254.936111][ T9214] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1094'.
[  255.123664][ T9222] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1096'.
[  255.127886][ T9222] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1096'.
[  255.130776][ T9222] tipc: MTU too low for tipc bearer
[  255.461087][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  255.463319][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  255.548979][ T9233] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1102'.
[  255.876947][ T9240] fuse: Unknown parameter '0x0000000000000009'
[  256.015924][ T9248] overlayfs: conflicting options: nfs_export=on,index=off
[  256.051836][ T9252] FAULT_INJECTION: forcing a failure.
[  256.051836][ T9252] name failslab, interval 1, probability 0, space 0, times 0
[  256.056170][ T9252] CPU: 2 UID: 0 PID: 9252 Comm: syz.6.1110 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  256.056192][ T9252] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  256.056202][ T9252] Call Trace:
[  256.056208][ T9252]  <TASK>
[  256.056215][ T9252]  dump_stack_lvl+0x16c/0x1f0
[  256.056239][ T9252]  should_fail_ex+0x512/0x640
[  256.056254][ T9252]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  256.056271][ T9252]  should_failslab+0xc2/0x120
[  256.056288][ T9252]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  256.056316][ T9252]  ? __alloc_skb+0x2b2/0x380
[  256.056336][ T9252]  __alloc_skb+0x2b2/0x380
[  256.056352][ T9252]  ? __pfx___alloc_skb+0x10/0x10
[  256.056365][ T9252]  ? __pfx___mutex_trylock_common+0x10/0x10
[  256.056386][ T9252]  ? rcu_is_watching+0x12/0xc0
[  256.056403][ T9252]  netlink_dump+0x678/0xce0
[  256.056414][ T9252]  ? __rhashtable_lookup.constprop.0+0x3a5/0x760
[  256.056424][ T9252]  ? __netlink_dump_start+0x150/0x990
[  256.056435][ T9252]  ? __pfx_netlink_dump+0x10/0x10
[  256.056445][ T9252]  ? __pfx___mutex_lock+0x10/0x10
[  256.056470][ T9252]  __netlink_dump_start+0x6d6/0x990
[  256.056483][ T9252]  ? __pfx_rtnl_dump_all+0x10/0x10
[  256.056497][ T9252]  rtnetlink_rcv_msg+0xb3e/0xe90
[  256.056513][ T9252]  ? __pfx_rtnl_dump_all+0x10/0x10
[  256.056527][ T9252]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  256.056544][ T9252]  ? __pfx_rtnl_dumpit+0x10/0x10
[  256.056556][ T9252]  ? __pfx_rtnl_dump_all+0x10/0x10
[  256.056572][ T9252]  ? ref_tracker_free+0x37c/0x830
[  256.056593][ T9252]  netlink_rcv_skb+0x155/0x420
[  256.056604][ T9252]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  256.056622][ T9252]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  256.056638][ T9252]  ? netlink_deliver_tap+0x1ae/0xd30
[  256.056652][ T9252]  netlink_unicast+0x53a/0x7f0
[  256.056664][ T9252]  ? __pfx_netlink_unicast+0x10/0x10
[  256.056680][ T9252]  netlink_sendmsg+0x8d1/0xdd0
[  256.056693][ T9252]  ? __pfx_netlink_sendmsg+0x10/0x10
[  256.056710][ T9252]  sock_write_iter+0x4fc/0x5b0
[  256.056723][ T9252]  ? __pfx_sock_write_iter+0x10/0x10
[  256.056739][ T9252]  ? bpf_lsm_file_permission+0x9/0x10
[  256.056756][ T9252]  ? security_file_permission+0x71/0x210
[  256.056773][ T9252]  ? rw_verify_area+0xcf/0x680
[  256.056787][ T9252]  vfs_write+0x6c4/0x1150
[  256.056801][ T9252]  ? __pfx_sock_write_iter+0x10/0x10
[  256.056814][ T9252]  ? __pfx_vfs_write+0x10/0x10
[  256.056826][ T9252]  ? find_held_lock+0x2b/0x80
[  256.056848][ T9252]  ksys_write+0x1f8/0x250
[  256.056861][ T9252]  ? __pfx_ksys_write+0x10/0x10
[  256.056878][ T9252]  do_syscall_64+0xcd/0x4c0
[  256.056897][ T9252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.056908][ T9252] RIP: 0033:0x7f6fc1d8e929
[  256.056918][ T9252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.056929][ T9252] RSP: 002b:00007f6fc2ccf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  256.056940][ T9252] RAX: ffffffffffffffda RBX: 00007f6fc1fb5fa0 RCX: 00007f6fc1d8e929
[  256.056947][ T9252] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000003
[  256.056953][ T9252] RBP: 00007f6fc2ccf090 R08: 0000000000000000 R09: 0000000000000000
[  256.056959][ T9252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  256.056965][ T9252] R13: 0000000000000000 R14: 00007f6fc1fb5fa0 R15: 00007ffebc73f2c8
[  256.056978][ T9252]  </TASK>
[  256.116421][ T6537] usb 12-1: new low-speed USB device number 4 using dummy_hcd
[  256.329978][ T6537] usb 12-1: config 168 descriptor has 1 excess byte, ignoring
[  256.333266][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  256.338017][ T6537] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  256.342490][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  256.347103][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  256.354462][ T6537] usb 12-1: config 168 descriptor has 1 excess byte, ignoring
[  256.364326][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  256.371570][ T6537] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  256.380630][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  256.389443][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  256.401640][ T6537] usb 12-1: config 168 descriptor has 1 excess byte, ignoring
[  256.404206][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  256.410833][ T6537] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  256.426951][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  256.432041][ T6537] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  256.452307][ T6537] usb 12-1: string descriptor 0 read error: -22
[  256.454392][ T6537] usb 12-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  256.457532][ T6537] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  256.467486][ T6537] adutux 12-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  256.670892][ T6537] usb 12-1: USB disconnect, device number 4
[  257.242938][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  257.242955][   T40] audit: type=1400 audit(1750515876.448:471): avc:  denied  { sqpoll } for  pid=9300 comm="syz.7.1128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  257.734645][ T9311] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  257.739232][ T9311] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  257.756396][   T40] audit: type=1400 audit(1750515876.928:472): avc:  denied  { execmem } for  pid=9308 comm="syz.8.1132" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  257.764404][   T40] audit: type=1400 audit(1750515876.938:473): avc:  denied  { append } for  pid=9310 comm="syz.6.1131" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  258.028653][  T836] syz_tun: tun_net_xmit 110
[  258.325937][ T9318] FAULT_INJECTION: forcing a failure.
[  258.325937][ T9318] name failslab, interval 1, probability 0, space 0, times 0
[  258.331261][ T9318] CPU: 3 UID: 0 PID: 9318 Comm: syz.7.1134 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  258.331288][ T9318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  258.331299][ T9318] Call Trace:
[  258.331306][ T9318]  <TASK>
[  258.331314][ T9318]  dump_stack_lvl+0x16c/0x1f0
[  258.331347][ T9318]  should_fail_ex+0x512/0x640
[  258.331371][ T9318]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  258.331401][ T9318]  should_failslab+0xc2/0x120
[  258.331427][ T9318]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  258.331453][ T9318]  ? __addrconf_sysctl_register+0xbb/0x360
[  258.331486][ T9318]  kmemdup_noprof+0x29/0x60
[  258.331510][ T9318]  __addrconf_sysctl_register+0xbb/0x360
[  258.331541][ T9318]  ? __pfx___addrconf_sysctl_register+0x10/0x10
[  258.331574][ T9318]  ? lockdep_init_map_type+0x5c/0x280
[  258.331603][ T9318]  ? mld_in_v1_mode+0x2b2/0x3a0
[  258.331628][ T9318]  addrconf_sysctl_register+0x15f/0x1f0
[  258.331658][ T9318]  ipv6_add_dev+0xb39/0x15f0
[  258.331689][ T9318]  addrconf_notify+0x98a/0x19e0
[  258.331710][ T9318]  ? ip6mr_device_event+0x1bc/0x230
[  258.331737][ T9318]  notifier_call_chain+0xb9/0x410
[  258.331761][ T9318]  ? __pfx_addrconf_notify+0x10/0x10
[  258.331787][ T9318]  call_netdevice_notifiers_info+0xbe/0x140
[  258.331810][ T9318]  netif_set_mtu_ext+0x3bf/0x5c0
[  258.331838][ T9318]  ? __pfx_netif_set_mtu_ext+0x10/0x10
[  258.331872][ T9318]  ? netif_change_flags+0x10d/0x160
[  258.331900][ T9318]  do_setlink.constprop.0+0x7f9/0x4380
[  258.331937][ T9318]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  258.331964][ T9318]  ? stack_trace_save+0x8e/0xc0
[  258.331988][ T9318]  ? __pfx_stack_trace_save+0x10/0x10
[  258.332010][ T9318]  ? __lock_acquire+0xb8a/0x1c90
[  258.332035][ T9318]  ? find_held_lock+0x2b/0x80
[  258.332059][ T9318]  ? __mutex_trylock_common+0xe9/0x250
[  258.332087][ T9318]  ? __pfx___mutex_trylock_common+0x10/0x10
[  258.332115][ T9318]  ? __pfx___might_resched+0x10/0x10
[  258.332139][ T9318]  ? rcu_is_watching+0x12/0xc0
[  258.332161][ T9318]  ? trace_contention_end+0xdd/0x130
[  258.332189][ T9318]  ? __mutex_lock+0x1ca/0xb90
[  258.332219][ T9318]  ? rtnl_newlink+0x600/0x2000
[  258.332252][ T9318]  ? __pfx___mutex_lock+0x10/0x10
[  258.332278][ T9318]  ? cap_capable+0xb3/0x250
[  258.332310][ T9318]  ? netlink_ns_capable+0xfa/0x130
[  258.332342][ T9318]  rtnl_newlink+0x18e0/0x2000
[  258.332377][ T9318]  ? __pfx_rtnl_newlink+0x10/0x10
[  258.332402][ T9318]  ? find_held_lock+0x2b/0x80
[  258.332423][ T9318]  ? avc_has_perm_noaudit+0x117/0x3b0
[  258.332446][ T9318]  ? avc_has_perm_noaudit+0x149/0x3b0
[  258.332467][ T9318]  ? cred_has_capability.isra.0+0x193/0x2f0
[  258.332494][ T9318]  ? __lock_acquire+0x622/0x1c90
[  258.332533][ T9318]  ? find_held_lock+0x2b/0x80
[  258.332553][ T9318]  ? __pfx_rtnl_newlink+0x10/0x10
[  258.332579][ T9318]  ? __pfx_rtnl_newlink+0x10/0x10
[  258.332603][ T9318]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  258.332630][ T9318]  ? __pfx_rtnl_newlink+0x10/0x10
[  258.332658][ T9318]  rtnetlink_rcv_msg+0x95e/0xe90
[  258.332688][ T9318]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  258.332721][ T9318]  ? __lock_acquire+0x622/0x1c90
[  258.332753][ T9318]  netlink_rcv_skb+0x155/0x420
[  258.332772][ T9318]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  258.332817][ T9318]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  258.332847][ T9318]  ? netlink_deliver_tap+0x1ae/0xd30
[  258.332864][ T9318]  ? is_vmalloc_addr+0x86/0xa0
[  258.332890][ T9318]  netlink_unicast+0x53a/0x7f0
[  258.332913][ T9318]  ? __pfx_netlink_unicast+0x10/0x10
[  258.332939][ T9318]  netlink_sendmsg+0x8d1/0xdd0
[  258.332963][ T9318]  ? __pfx_netlink_sendmsg+0x10/0x10
[  258.332993][ T9318]  ____sys_sendmsg+0xa98/0xc70
[  258.333014][ T9318]  ? copy_msghdr_from_user+0x10a/0x160
[  258.333060][ T9318]  ? __pfx_____sys_sendmsg+0x10/0x10
[  258.333092][ T9318]  ___sys_sendmsg+0x134/0x1d0
[  258.333120][ T9318]  ? __pfx____sys_sendmsg+0x10/0x10
[  258.333143][ T9318]  ? __lock_acquire+0x622/0x1c90
[  258.333201][ T9318]  __sys_sendmsg+0x16d/0x220
[  258.333228][ T9318]  ? __pfx___sys_sendmsg+0x10/0x10
[  258.333276][ T9318]  do_syscall_64+0xcd/0x4c0
[  258.333306][ T9318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.333324][ T9318] RIP: 0033:0x7f0a29d8e929
[  258.333339][ T9318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.333356][ T9318] RSP: 002b:00007f0a2ab63038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  258.333374][ T9318] RAX: ffffffffffffffda RBX: 00007f0a29fb5fa0 RCX: 00007f0a29d8e929
[  258.333385][ T9318] RDX: 0000000000000884 RSI: 00002000000000c0 RDI: 0000000000000003
[  258.333397][ T9318] RBP: 00007f0a2ab63090 R08: 0000000000000000 R09: 0000000000000000
[  258.333407][ T9318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  258.333418][ T9318] R13: 0000000000000000 R14: 00007f0a29fb5fa0 R15: 00007ffccfe857a8
[  258.333443][ T9318]  </TASK>
[  258.335294][ T9318] tipc: Resetting bearer <eth:team0>
[  258.544521][ T9318] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  258.566943][ T9274] netlink: 'syz.4.1118': attribute type 9 has an invalid length.
[  258.569355][ T9274] netlink: 'syz.4.1118': attribute type 7 has an invalid length.
[  258.571721][ T9274] netlink: 'syz.4.1118': attribute type 8 has an invalid length.
[  258.669235][ T9321] syzkaller0: entered promiscuous mode
[  258.671023][ T9321] syzkaller0: entered allmulticast mode
[  258.934325][ T9333] fuse: Unknown parameter 'fd0x0000000000000009'
[  258.980937][ T9335] fuse: Unknown parameter 'grouÏùa00000000000000000000'
[  258.981386][  T836] syz_tun: tun_net_xmit 110
[  259.851469][ T9328] syzkaller0: entered promiscuous mode
[  259.853343][ T9328] syzkaller0: entered allmulticast mode
[  260.872884][ T9355] __nla_validate_parse: 2 callbacks suppressed
[  260.872900][ T9355] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1146'.
[  260.914618][ T9356] mac80211_hwsim hwsim18 wlan0: default FDB implementation only supports local addresses
[  260.952523][ T9358] PM: Enabling pm_trace changes system date and time during resume.
[  260.952523][ T9358] PM: Correct system time has to be restored manually after resume.
[  261.115864][   T40] audit: type=1400 audit(1750515880.318:474): avc:  denied  { read write } for  pid=9369 comm="syz.4.1152" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  261.119115][ T9370] loop6: detected capacity change from 0 to 524287999
[  261.125039][   T40] audit: type=1400 audit(1750515880.318:475): avc:  denied  { open } for  pid=9369 comm="syz.4.1152" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  261.128641][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.137977][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.140555][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.143053][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.145573][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.148224][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.150903][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.153359][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.155804][ T9370] ldm_validate_partition_table(): Disk read failed.
[  261.157980][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.160541][ T9370] Buffer I/O error on dev loop6, logical block 0, async page read
[  261.163090][ T9370] Dev loop6: unable to read RDB block 0
[  261.165066][ T9370]  loop6: unable to read partition table
[  261.167008][ T9370] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  261.173608][ T9370] netlink: 'syz.4.1152': attribute type 3 has an invalid length.
[  261.174635][   T40] audit: type=1400 audit(1750515880.378:476): avc:  denied  { ioctl } for  pid=9361 comm="syz.8.1149" path="socket:[33585]" dev="sockfs" ino=33585 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  261.292251][ T9374] Can't find a SQUASHFS superblock on nullb0
[  261.433572][ T9388] tmpfs: Bad value for 'mpol'
[  261.461996][ T9390] syz_tun: tun_net_xmit 86
[  261.502296][   T40] audit: type=1400 audit(1750515880.708:477): avc:  denied  { connect } for  pid=9392 comm="syz.8.1161" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  261.614886][   T40] audit: type=1400 audit(1750515880.818:478): avc:  denied  { ioctl } for  pid=9379 comm="syz.7.1156" path="socket:[33684]" dev="sockfs" ino=33684 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  262.031515][ T9404] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9404 comm=syz.8.1165
[  262.149398][   T40] audit: type=1400 audit(1750515881.358:479): avc:  denied  { getopt } for  pid=9407 comm="syz.4.1167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  262.498591][ T9452] binder_alloc: binder_alloc_mmap_handler: 9451 200000ffc000-200001000000 already mapped failed -16
[  262.506856][    C3] syz_tun: tun_net_xmit 86
[  262.562267][ T9460] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9460 comm=syz.8.1184
[  262.635725][   T40] audit: type=1400 audit(1750515881.838:480): avc:  denied  { getopt } for  pid=9446 comm="syz.6.1179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  262.823863][ T9478] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1186'.
[  262.846795][ T6537] usb 13-1: new low-speed USB device number 2 using dummy_hcd
[  262.930552][ T9482] netfs: Couldn't get user pages (rc=-14)
[  263.002457][ T6537] usb 13-1: config 168 descriptor has 1 excess byte, ignoring
[  263.005718][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  263.011717][ T6537] usb 13-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  263.016433][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  263.020705][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  263.025347][ T6537] usb 13-1: config 168 descriptor has 1 excess byte, ignoring
[  263.028513][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  263.032026][ T6537] usb 13-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  263.035788][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  263.039782][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  263.044403][ T6537] usb 13-1: config 168 descriptor has 1 excess byte, ignoring
[  263.047125][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  263.052863][ T6537] usb 13-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  263.058102][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  263.062734][ T6537] usb 13-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  263.075209][ T6537] usb 13-1: string descriptor 0 read error: -22
[  263.077564][ T6537] usb 13-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  263.080546][ T6537] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  263.093687][ T6537] adutux 13-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  263.476750][  T837] usb 13-1: USB disconnect, device number 2
[  263.546763][    C3] syz_tun: tun_net_xmit 86
[  263.957248][ T9507] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9507 comm=syz.4.1198
[  263.969321][ T9509] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1199'.
[  263.988917][   T40] audit: type=1400 audit(1750515883.198:481): avc:  denied  { mount } for  pid=9503 comm="syz.7.1196" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  264.012582][ T5947] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  264.069617][ T9526] netlink: 44 bytes leftover after parsing attributes in process `syz.8.1207'.
[  264.072775][ T9526] netlink: 'syz.8.1207': attribute type 1 has an invalid length.
[  264.088457][ T9526] 8021q: adding VLAN 0 to HW filter on device bond1
[  264.101331][ T9526] bond1: (slave geneve2): making interface the new active one
[  264.105202][ T9526] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  264.276427][ T9544] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1214'.
[  264.479752][   T40] audit: type=1400 audit(1750515883.688:482): avc:  denied  { read } for  pid=9550 comm="syz.4.1217" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  264.563656][ T9553] usb usb8: usbfs: process 9553 (syz.4.1217) did not claim interface 0 before use
[  264.740021][ T9568] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1223'.
[  264.743219][   T40] audit: type=1400 audit(1750515883.948:483): avc:  denied  { execute_no_trans } for  pid=9567 comm="syz.6.1224" path=2F6D656D66643AA39F6EB4645204693502ACCEE1889D5B4038D7CE1F2039497F151D933DB5E75C274CE6D28EBC294A7454447181CF81BAE531F520C8103EC95C85174CBFCF91DF4DF3025E542A202864656C6574656429 dev="hugetlbfs" ino=36090 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  264.756527][ T9568] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1223'.
[  264.767531][ T9568] program syz.8.1223 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  264.784207][   T40] audit: type=1400 audit(1750515883.988:484): avc:  denied  { unmount } for  pid=6553 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[  264.893744][   T40] audit: type=1400 audit(1750515884.098:485): avc:  denied  { append } for  pid=9574 comm="syz.6.1227" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  264.924722][   T40] audit: type=1400 audit(1750515884.128:486): avc:  denied  { mount } for  pid=9574 comm="syz.6.1227" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  264.931590][ T9575] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  264.933180][   T40] audit: type=1400 audit(1750515884.138:487): avc:  denied  { mounton } for  pid=9574 comm="syz.6.1227" path="/247/file0" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[  264.938236][ T9575] overlayfs: fs on './file0' does not support file handles, falling back to xino=off.
[  264.952555][ T9575] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  264.958116][ T9575] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1227'.
[  264.991685][ T9575] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1227'.
[  265.015337][   T40] audit: type=1400 audit(1750515884.218:488): avc:  denied  { unmount } for  pid=6558 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  265.105472][   T40] audit: type=1400 audit(1750515884.308:489): avc:  denied  { nlmsg_read } for  pid=9581 comm="syz.6.1230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  265.348898][ T9595] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1235'.
[  265.361992][ T9593] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[  265.688463][ T9612] 9pnet: Unknown protocol version 9p2000.uaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  265.917089][ T9625] FAULT_INJECTION: forcing a failure.
[  265.917089][ T9625] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.922308][ T9625] CPU: 3 UID: 0 PID: 9625 Comm: syz.8.1247 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  265.922334][ T9625] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  265.922346][ T9625] Call Trace:
[  265.922352][ T9625]  <TASK>
[  265.922358][ T9625]  dump_stack_lvl+0x16c/0x1f0
[  265.922404][ T9625]  should_fail_ex+0x512/0x640
[  265.922426][ T9625]  _copy_from_iter+0x29f/0x16f0
[  265.922445][ T9625]  ? __pfx__copy_from_iter+0x10/0x10
[  265.922461][ T9625]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  265.922484][ T9625]  copy_page_from_iter+0xde/0x180
[  265.922501][ T9625]  tun_build_skb.constprop.0+0x2e8/0x14f0
[  265.922523][ T9625]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  265.922548][ T9625]  ? __pfx__kstrtoull+0x10/0x10
[  265.922562][ T9625]  tun_get_user+0x165f/0x3b80
[  265.922583][ T9625]  ? __pfx_tun_get_user+0x10/0x10
[  265.922598][ T9625]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  265.922618][ T9625]  ? find_held_lock+0x2b/0x80
[  265.922632][ T9625]  ? tun_get+0x191/0x370
[  265.922650][ T9625]  tun_chr_write_iter+0xdc/0x210
[  265.922667][ T9625]  vfs_write+0x6c4/0x1150
[  265.922681][ T9625]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  265.922699][ T9625]  ? __pfx_vfs_write+0x10/0x10
[  265.922711][ T9625]  ? find_held_lock+0x2b/0x80
[  265.922732][ T9625]  ksys_write+0x12a/0x250
[  265.922745][ T9625]  ? __pfx_ksys_write+0x10/0x10
[  265.922762][ T9625]  do_syscall_64+0xcd/0x4c0
[  265.922780][ T9625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.922791][ T9625] RIP: 0033:0x7f41ad98d3df
[  265.922800][ T9625] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  265.922811][ T9625] RSP: 002b:00007f41ae792000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  265.922822][ T9625] RAX: ffffffffffffffda RBX: 00007f41adbb5fa0 RCX: 00007f41ad98d3df
[  265.922829][ T9625] RDX: 000000000000004a RSI: 00002000000000c0 RDI: 00000000000000c8
[  265.922836][ T9625] RBP: 00007f41ae792090 R08: 0000000000000000 R09: 0000000000000000
[  265.922842][ T9625] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[  265.922848][ T9625] R13: 0000000000000001 R14: 00007f41adbb5fa0 R15: 00007ffcb194b728
[  265.922861][ T9625]  </TASK>
[  265.989371][    C3] vkms_vblank_simulate: vblank timer overrun
[  266.068312][ T9620] /dev/sr0: Can't open blockdev
[  266.071078][ T9626] gfs2: gfs2 mount does not exist
[  266.396519][ T6537] usb 12-1: new high-speed USB device number 5 using dummy_hcd
[  266.546447][ T6537] usb 12-1: Using ep0 maxpacket: 8
[  266.550736][ T6537] usb 12-1: config index 0 descriptor too short (expected 5924, got 36)
[  266.553847][ T6537] usb 12-1: config 250 has an invalid interface number: 228 but max is -1
[  266.558515][ T6537] usb 12-1: config 250 has 1 interface, different from the descriptor's value: 0
[  266.562001][ T6537] usb 12-1: config 250 has no interface number 0
[  266.564397][ T6537] usb 12-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  266.569015][ T6537] usb 12-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  266.572735][ T6537] usb 12-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  266.576842][ T6537] usb 12-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  266.580524][ T6537] usb 12-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  266.585309][ T6537] usb 12-1: config 250 interface 228 has no altsetting 0
[  266.591545][ T6537] usb 12-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  266.594662][ T6537] usb 12-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  266.597875][ T6537] usb 12-1: Product: syz
[  266.599508][ T6537] usb 12-1: SerialNumber: syz
[  266.605287][ T6537] hub 12-1:250.228: bad descriptor, ignoring hub
[  266.607922][ T6537] hub 12-1:250.228: probe with driver hub failed with error -5
[  266.820897][ T6537] usblp 12-1:250.228: usblp0: USB Bidirectional printer dev 5 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  266.825483][ T9654] __nla_validate_parse: 2 callbacks suppressed
[  266.825494][ T9654] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1258'.
[  266.870442][ T9658] binder: BINDER_SET_CONTEXT_MGR bad uid 60928 != 0
[  266.873219][ T9658] binder: 9657:9658 ioctl 4018620d 200000000040 returned -1
[  266.987292][ T9664] FAULT_INJECTION: forcing a failure.
[  266.987292][ T9664] name failslab, interval 1, probability 0, space 0, times 0
[  266.992684][ T9664] CPU: 0 UID: 0 PID: 9664 Comm: syz.8.1262 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  266.992706][ T9664] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  266.992716][ T9664] Call Trace:
[  266.992722][ T9664]  <TASK>
[  266.992730][ T9664]  dump_stack_lvl+0x16c/0x1f0
[  266.992765][ T9664]  should_fail_ex+0x512/0x640
[  266.992787][ T9664]  ? fs_reclaim_acquire+0xae/0x150
[  266.992806][ T9664]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  266.992828][ T9664]  should_failslab+0xc2/0x120
[  266.992853][ T9664]  __kmalloc_noprof+0xd2/0x510
[  266.992881][ T9664]  tomoyo_realpath_from_path+0xc2/0x6e0
[  266.992908][ T9664]  ? tomoyo_profile+0x47/0x60
[  266.992937][ T9664]  tomoyo_path_number_perm+0x245/0x580
[  266.992980][ T9664]  ? tomoyo_path_number_perm+0x237/0x580
[  266.993005][ T9664]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  266.993027][ T9664]  ? find_held_lock+0x2b/0x80
[  266.993071][ T9664]  ? find_held_lock+0x2b/0x80
[  266.993090][ T9664]  ? hook_file_ioctl_common+0x145/0x410
[  266.993112][ T9664]  ? __fget_files+0x20e/0x3c0
[  266.993140][ T9664]  security_file_ioctl+0x9b/0x240
[  266.993165][ T9664]  __x64_sys_ioctl+0xb7/0x210
[  266.993187][ T9664]  do_syscall_64+0xcd/0x4c0
[  266.993215][ T9664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.993233][ T9664] RIP: 0033:0x7f41ad98e929
[  266.993247][ T9664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.993264][ T9664] RSP: 002b:00007f41ae792038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  266.993281][ T9664] RAX: ffffffffffffffda RBX: 00007f41adbb5fa0 RCX: 00007f41ad98e929
[  266.993293][ T9664] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  266.993303][ T9664] RBP: 00007f41ae792090 R08: 0000000000000000 R09: 0000000000000000
[  266.993314][ T9664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.993324][ T9664] R13: 0000000000000000 R14: 00007f41adbb5fa0 R15: 00007ffcb194b728
[  266.993348][ T9664]  </TASK>
[  266.993356][ T9664] ERROR: Out of memory at tomoyo_realpath_from_path.
[  267.013908][ T9666] TCP: TCP_TX_DELAY enabled
[  267.095465][ T9666] xt_l2tp: invalid flags combination: c
[  267.138044][   T54] usb 12-1: USB disconnect, device number 5
[  267.141982][   T54] usblp0: removed
[  267.235194][ T9676] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1266'.
[  267.364263][ T9688] program syz.4.1272 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  267.431023][ T9693] ==================================================================
[  267.431032][ T9693] BUG: KASAN: global-out-of-bounds in bit_putcs+0xa63/0xde0
[  267.431066][ T9693] Read of size 1 at addr ffffffff8c187810 by task syz.4.1272/9693
[  267.431077][ T9693] 
[  267.431082][ T9693] CPU: 2 UID: 0 PID: 9693 Comm: syz.4.1272 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  267.431098][ T9693] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.431106][ T9693] Call Trace:
[  267.431110][ T9693]  <TASK>
[  267.431115][ T9693]  dump_stack_lvl+0x116/0x1f0
[  267.431137][ T9693]  print_report+0xcd/0x680
[  267.431154][ T9693]  ? __virt_addr_valid+0x81/0x610
[  267.431167][ T9693]  ? __phys_addr+0xe8/0x180
[  267.431180][ T9693]  ? bit_putcs+0xa63/0xde0
[  267.431195][ T9693]  kasan_report+0xe0/0x110
[  267.431211][ T9693]  ? bit_putcs+0xa63/0xde0
[  267.431227][ T9693]  bit_putcs+0xa63/0xde0
[  267.431254][ T9693]  ? __pfx_bit_putcs+0x10/0x10
[  267.431272][ T9693]  ? fb_get_color_depth+0x120/0x250
[  267.431288][ T9693]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  267.431303][ T9693]  ? __pfx_bit_putcs+0x10/0x10
[  267.431318][ T9693]  fbcon_putcs+0x383/0x4a0
[  267.431334][ T9693]  do_update_region+0x2e6/0x3f0
[  267.431349][ T9693]  update_region+0xc1/0x160
[  267.431363][ T9693]  vcs_write+0x7c7/0xdb0
[  267.431378][ T9693]  ? __pfx_vcs_write+0x10/0x10
[  267.431391][ T9693]  ? bpf_lsm_file_permission+0x9/0x10
[  267.431408][ T9693]  ? security_file_permission+0x71/0x210
[  267.431424][ T9693]  ? iov_iter_advance+0x1e3/0x6c0
[  267.431439][ T9693]  ? rw_verify_area+0xcf/0x680
[  267.431452][ T9693]  ? __pfx_vcs_write+0x10/0x10
[  267.431464][ T9693]  vfs_writev+0x5df/0xde0
[  267.431477][ T9693]  ? __pfx_vfs_writev+0x10/0x10
[  267.431490][ T9693]  ? kmem_cache_free+0x2d1/0x4d0
[  267.431503][ T9693]  ? preempt_schedule_thunk+0x16/0x30
[  267.431520][ T9693]  ? __fget_files+0x20e/0x3c0
[  267.431537][ T9693]  ? do_writev+0x132/0x340
[  267.431548][ T9693]  do_writev+0x132/0x340
[  267.431560][ T9693]  ? __pfx_do_writev+0x10/0x10
[  267.431574][ T9693]  do_syscall_64+0xcd/0x4c0
[  267.431591][ T9693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.431602][ T9693] RIP: 0033:0x7ff68a18e929
[  267.431613][ T9693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.431625][ T9693] RSP: 002b:00007ff68af10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  267.431635][ T9693] RAX: ffffffffffffffda RBX: 00007ff68a3b6080 RCX: 00007ff68a18e929
[  267.431642][ T9693] RDX: 0000000000000002 RSI: 0000200000000480 RDI: 0000000000000009
[  267.431649][ T9693] RBP: 00007ff68a210b39 R08: 0000000000000000 R09: 0000000000000000
[  267.431655][ T9693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  267.431661][ T9693] R13: 0000000000000000 R14: 00007ff68a3b6080 R15: 00007fffe0a57c88
[  267.431672][ T9693]  </TASK>
[  267.431675][ T9693] 
[  267.431678][ T9693] The buggy address belongs to the variable:
[  267.431681][ T9693]  oid_index+0xd0/0x100
[  267.431699][ T9693] 
[  267.431701][ T9693] The buggy address belongs to the physical page:
[  267.431706][ T9693] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xc187
[  267.431717][ T9693] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  267.431732][ T9693] raw: 00fff00000002000 ffffea00003061c8 ffffea00003061c8 0000000000000000
[  267.431743][ T9693] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  267.431750][ T9693] page dumped because: kasan: bad access detected
[  267.431756][ T9693] page_owner info is not present (never set?)
[  267.431760][ T9693] 
[  267.431762][ T9693] Memory state around the buggy address:
[  267.431768][ T9693]  ffffffff8c187700: 00 00 00 07 f9 f9 f9 f9 00 00 00 00 00 00 00 00
[  267.431777][ T9693]  ffffffff8c187780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  267.431785][ T9693] >ffffffff8c187800: 00 00 f9 f9 f9 f9 f9 f9 00 00 00 00 00 00 00 00
[  267.431792][ T9693]                          ^
[  267.431797][ T9693]  ffffffff8c187880: 00 02 f9 f9 f9 f9 f9 f9 00 01 f9 f9 f9 f9 f9 f9
[  267.431805][ T9693]  ffffffff8c187900: 00 04 f9 f9 f9 f9 f9 f9 00 00 02 f9 f9 f9 f9 f9
[  267.431813][ T9693] ==================================================================
[  267.431819][ T9693] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  267.431826][ T9693] CPU: 2 UID: 0 PID: 9693 Comm: syz.4.1272 Not tainted 6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(full) 
[  267.431839][ T9693] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  267.431846][ T9693] Call Trace:
[  267.431850][ T9693]  <TASK>
[  267.431854][ T9693]  dump_stack_lvl+0x3d/0x1f0
[  267.431870][ T9693]  panic+0x71c/0x800
[  267.431887][ T9693]  ? __pfx_panic+0x10/0x10
[  267.431905][ T9693]  ? __pfx__printk+0x10/0x10
[  267.431918][ T9693]  ? bit_putcs+0xa63/0xde0
[  267.431937][ T9693]  check_panic_on_warn+0xab/0xb0
[  267.431955][ T9693]  end_report+0x107/0x170
[  267.431971][ T9693]  kasan_report+0xee/0x110
[  267.431986][ T9693]  ? bit_putcs+0xa63/0xde0
[  267.432003][ T9693]  bit_putcs+0xa63/0xde0
[  267.432022][ T9693]  ? __pfx_bit_putcs+0x10/0x10
[  267.432040][ T9693]  ? fb_get_color_depth+0x120/0x250
[  267.432054][ T9693]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  267.432067][ T9693]  ? __pfx_bit_putcs+0x10/0x10
[  267.432082][ T9693]  fbcon_putcs+0x383/0x4a0
[  267.432097][ T9693]  do_update_region+0x2e6/0x3f0
[  267.432109][ T9693]  update_region+0xc1/0x160
[  267.432123][ T9693]  vcs_write+0x7c7/0xdb0
[  267.432138][ T9693]  ? __pfx_vcs_write+0x10/0x10
[  267.432150][ T9693]  ? bpf_lsm_file_permission+0x9/0x10
[  267.432167][ T9693]  ? security_file_permission+0x71/0x210
[  267.432183][ T9693]  ? iov_iter_advance+0x1e3/0x6c0
[  267.432198][ T9693]  ? rw_verify_area+0xcf/0x680
[  267.432210][ T9693]  ? __pfx_vcs_write+0x10/0x10
[  267.432222][ T9693]  vfs_writev+0x5df/0xde0
[  267.432241][ T9693]  ? __pfx_vfs_writev+0x10/0x10
[  267.432254][ T9693]  ? kmem_cache_free+0x2d1/0x4d0
[  267.432267][ T9693]  ? preempt_schedule_thunk+0x16/0x30
[  267.432285][ T9693]  ? __fget_files+0x20e/0x3c0
[  267.432303][ T9693]  ? do_writev+0x132/0x340
[  267.432315][ T9693]  do_writev+0x132/0x340
[  267.432328][ T9693]  ? __pfx_do_writev+0x10/0x10
[  267.432344][ T9693]  do_syscall_64+0xcd/0x4c0
[  267.432362][ T9693]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.432373][ T9693] RIP: 0033:0x7ff68a18e929
[  267.432380][ T9693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.432391][ T9693] RSP: 002b:00007ff68af10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  267.432401][ T9693] RAX: ffffffffffffffda RBX: 00007ff68a3b6080 RCX: 00007ff68a18e929
[  267.432408][ T9693] RDX: 0000000000000002 RSI: 0000200000000480 RDI: 0000000000000009
[  267.432415][ T9693] RBP: 00007ff68a210b39 R08: 0000000000000000 R09: 0000000000000000
[  267.432422][ T9693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  267.432428][ T9693] R13: 0000000000000000 R14: 00007ff68a3b6080 R15: 00007fffe0a57c88
[  267.432438][ T9693]  </TASK>
[  267.433157][ T9693] Kernel Offset: disabled

VM DIAGNOSIS:
14:24:46  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81607bc0 RDX=ffffffff8e297780
RSI=ffffffff81607c08 RDI=ffffffff93d1f080 RBP=0000000000000000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff27a3e10 R10=ffffffff93d1f087 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81607c09 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6753000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555561636808 CR3=0000000013bc2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000010000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffebc73f650 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fc1e11b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fc1e11b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fc1e11b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fc1e11b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fc1e11bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fc1e11c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81607bc0 RDX=ffff88801deb2440
RSI=ffffffff81607c08 RDI=ffffffff93d1f080 RBP=0000000000000001 RSP=ffffc900006a0fd0
R8 =0000000000000001 R9 =fffffbfff27a3e10 R10=ffffffff93d1f087 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81607c09 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6853000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055558706c808 CR3=000000000e382000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcb194bab0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ada11b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ada11b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ada11b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ada11b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ada11bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ada11c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855b8b95 RDI=ffffffff9b087320 RBP=ffffffff9b0872e0 RSP=ffffc9000c2a73a0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000039363954
R12=0000000000000000 R13=000000000000002e R14=ffffffff9b0872e0 R15=ffffffff855b8b30
RIP=ffffffff855b8bbf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff68af106c0 ffffffff 00c00000
GS =0000 ffff8880d6953000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c295b18 CR3=0000000039450000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a384488 00007ff68a384480 00007ff68a384478 00007ff68a384450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68aeed100 00007ff68a384440 00007ff68a384458 00007ff68a3844a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a384498 00007ff68a384490 00007ff68a384488 00007ff68a384480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81607bc0 RDX=ffff88805879c880
RSI=ffffffff81607c08 RDI=ffffffff93d1f080 RBP=0000000000000003 RSP=ffffc900006f8fd0
R8 =0000000000000001 R9 =fffffbfff27a3e10 R10=ffffffff93d1f087 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81607c09 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007f41ae7926c0 ffffffff 00c00000
GS =0000 ffff8880d6a53000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ff68af10d58 CR3=0000000065f94000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b12
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b1f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b19
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211b2d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211bb3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a211c91
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a384488 00007ff68a384480 00007ff68a384478 00007ff68a384450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68aeed100 00007ff68a384440 00007ff68a380004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff68a384498 00007ff68a384490 00007ff68a384488 00007ff68a384480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000