last executing test programs:

42.048972697s ago: executing program 0 (id=15):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x8)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000040)={{{@in=@remote, @in=@loopback, 0x4e25, 0x0, 0x3, 0x2, 0x2}, {0x2, 0x53, 0xfff, 0x7, 0xffffdffffffffffc, 0x1e6, 0xfffffffffffffffe, 0x8001}, {0x7ffffffffffffffe, 0x0, 0xfffffffffffffffe, 0x5}, 0x727, 0x0, 0x1, 0x0, 0x3, 0x2}, {{@in=@multicast1, 0x0, 0x2b}, 0xa, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x4, 0x2, 0x0, 0xffffffff, 0x3439, 0x400009}}, 0xe8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x2}, 0x1c)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x1414, 0x1}, 0x10}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r7=>r4, {0x401}}, './file0\x00'})
sendmsg$nl_route(r7, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)=@ipv6_newaddr={0x58, 0x14, 0x100, 0x70bd27, 0x25dfdbfe, {0xa, 0x18, 0xf3, 0xfd, r5}, [@IFA_ADDRESS={0x14, 0x1, @mcast2}, @IFA_FLAGS={0x8, 0x8, 0x493}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x1}, @IFA_LOCAL={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, @IFA_RT_PRIORITY={0x8, 0x9, 0x9}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000000}, 0x20000881)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r5, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'macvlan1\x00'})
syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), r3)
unshare(0x22020600)
r8 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
getsockname$netlink(r6, &(0x7f0000000200), &(0x7f0000000240)=0xc)
r9 = fsmount(r8, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002580)={&(0x7f00000024c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000002540)={&(0x7f0000002500)=@ipv4_getroute={0x1c, 0x1a, 0x102, 0x70bd2a, 0x25dfdbfb, {0x2, 0x10, 0x0, 0x5, 0xfc, 0x1, 0xfe, 0x3, 0x1100}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040080}, 0x4000)
r10 = openat$cgroup_ro(r9, &(0x7f0000000380)='pids.events\x00', 0x300, 0x0)
read$FUSE(r10, &(0x7f0000000480)={0x2020}, 0x2020)
r11 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0)
read$FUSE(r11, &(0x7f00000049c0)={0x2020}, 0xb3b)
ioctl$VIDIOC_SUBDEV_S_SELECTION(r11, 0xc040563e, &(0x7f00000025c0)={0x0, 0x0, 0x102, 0x0, {0x7, 0x641, 0xeb, 0x8}})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

41.950292196s ago: executing program 0 (id=17):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r2=>0x0}) (async)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r3, &(0x7f0000000080)={0x1d, r2}, 0x18) (async)
sendmsg$can_j1939(r3, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee) (async)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0) (async)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa}}}}}}, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, &(0x7f0000000400)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x48}, [@ldst={0x6, 0x0, 0x2, 0x0, 0x0, 0x40}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xca, &(0x7f0000000500)=""/202, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async)
setsockopt$inet_int(r0, 0x0, 0x33, &(0x7f0000000000)=0x80000000, 0x4)
bind$l2tp(r0, &(0x7f0000000080)={0x2, 0x0, @broadcast, 0x2}, 0x10)

41.898428563s ago: executing program 0 (id=18):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r1=>0x0})
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote, r1}, 0x14)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x109)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[0x4], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f00000001c0)={r1, 0x1, 0x6, @local}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r6, 0x28, 0x2, &(0x7f0000001e80)=0x1a6, 0x8)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
r8 = socket$tipc(0x1e, 0x0, 0x0)
bind$tipc(r8, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x1, 0xfffffffd}}, 0x10)
r9 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r9, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x61, 0x11, 0x78}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x70)
sendmsg$TIPC_NL_LINK_SET(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0106000000000000000009000000240004801300010062726f6164636173742d6c696e6b00000c00071b0800050004000000"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r10 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r10, 0x0)
creat(&(0x7f0000000200)='./file0\x00', 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

41.818332584s ago: executing program 0 (id=22):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, <r1=>0x0})
syz_open_procfs(r1, &(0x7f0000000200)='net/ip_vs_stats\x00')
unlink(&(0x7f00000002c0)='./file0\x00')
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x200000, 0x0)
lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0xee01)

41.748783544s ago: executing program 0 (id=25):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)={0x2c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x5, 0x2, [{0x1}]}]}]}]}, 0x2c}, 0x1, 0x0, 0x1f00, 0x4000800}, 0x0)

40.440229432s ago: executing program 0 (id=41):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_clone3(&(0x7f0000000240)={0x100000200, 0x0, 0x0, 0x0, {0x54}, 0x0, 0x0, 0x0, 0x0}, 0x58)
tgkill(r3, r3, 0x21)
write$qrtrtun(r0, &(0x7f0000000340)="8f52eb24cc8080", 0x7)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="2c0000003f000701ddffffff00000000037c00001800378013000300717472283414d6bba9"], 0x2c}}, 0x0)

40.400308985s ago: executing program 32 (id=41):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_clone3(&(0x7f0000000240)={0x100000200, 0x0, 0x0, 0x0, {0x54}, 0x0, 0x0, 0x0, 0x0}, 0x58)
tgkill(r3, r3, 0x21)
write$qrtrtun(r0, &(0x7f0000000340)="8f52eb24cc8080", 0x7)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="2c0000003f000701ddffffff00000000037c00001800378013000300717472283414d6bba9"], 0x2c}}, 0x0)

5.930230201s ago: executing program 3 (id=616):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='ext4_es_remove_extent\x00', r0, 0x0, 0x4}, 0x18)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200), 0x40103, 0x0) (async)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x80500, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000240)={0x0, 0x0, 0x9, 0x0, '\x00', [{0x40, 0x6, 0xd34, 0x1000, 0x10001, 0xd7}, {0x200, 0x6, 0x9, 0x4, 0x1370aa57, 0x1}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})

5.030237337s ago: executing program 3 (id=625):
socket$nl_route(0x10, 0x3, 0x0)
r0 = epoll_create1(0x0)
r1 = fsopen(&(0x7f0000000100)='udf\x00', 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[], 0x0) (async)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[], 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x93) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x93)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x0)
dup(r1) (async)
dup(r1)
mkdir(&(0x7f0000000380)='./bus\x00', 0x0) (async)
mkdir(&(0x7f0000000380)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}]})
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20) (async)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20)
socket$unix(0x1, 0x2, 0x0) (async)
socket$unix(0x1, 0x2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
pipe(&(0x7f0000000200)) (async)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c) (async)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r4, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000000080)='D', 0x1, 0x0, 0x0, 0x0)
writev(r4, &(0x7f0000000240)=[{0x0}, {0x0}, {&(0x7f0000001500)="4ab5bec612ba6c86bcdd82d40c3ce6331443ad18ef03a27e683fdab4f9f59ee535", 0x21}], 0x3) (async)
writev(r4, &(0x7f0000000240)=[{0x0}, {0x0}, {&(0x7f0000001500)="4ab5bec612ba6c86bcdd82d40c3ce6331443ad18ef03a27e683fdab4f9f59ee535", 0x21}], 0x3)
splice(r4, 0x0, r3, 0x0, 0x406f413, 0x0)
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="010000000000000000000900000030000380140002007369"], 0x44}}, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000001c0)={'netdevsim0\x00', &(0x7f00000002c0)=@ethtool_pauseparam={0x13, 0x0, 0x80, 0xb}})
r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000200), r0)
sendmsg$SEG6_CMD_GET_TUNSRC(r7, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[@ANYBLOB="895b811065e20f88667cfa4c000000", @ANYRES16=r8, @ANYBLOB="000027bd7000ffdbdf25040000000800030000000000050006000e000000140001002001000000000000000000000000000114000100fc00"/70], 0x4c}, 0x1, 0x0, 0x0, 0x40000d2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f00000003c0)="b805000000b9000000000f01c10f01c50fc774f902640f2094f4c1e5a5b80b0000000f23c80f21f8350c00a0000f23f80f09660f3881ac9d81780000360f01d6", 0x40}], 0x1, 0x0, 0x0, 0x0)

4.896900236s ago: executing program 3 (id=632):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@gettfilter={0x24, 0x2e, 0x301, 0x0, 0x0, {0x0, 0x0, 0x0, r4}}, 0x24}, 0x1, 0x4000000}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
io_setup(0x8, &(0x7f0000000600)) (async)
io_setup(0x8, &(0x7f0000000600)=<r6=>0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002) (async)
r7 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000001c0)={'pimreg\x00', {0x2, 0x4e21, @empty}})
io_submit(r6, 0x1, &(0x7f0000000080)=[&(0x7f0000000140)={0x0, 0x4, 0x0, 0x1, 0x0, r7, &(0x7f00000000c0)="01", 0x400000}])
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYRES16=r1, @ANYRES32, @ANYRESOCT=r5, @ANYRES32=r1, @ANYBLOB="7460e01769896327b0fd4f49510282f1e65aaeeedeba0ddb908c03d25b0953441e2fab1a6d39093945d97c2a091cd2eeb4c7a1ccbac274496dea", @ANYRESOCT, @ANYRES16=r5], 0xb4}}, 0x0) (async)
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYRES16=r1, @ANYRES32, @ANYRESOCT=r5, @ANYRES32=r1, @ANYBLOB="7460e01769896327b0fd4f49510282f1e65aaeeedeba0ddb908c03d25b0953441e2fab1a6d39093945d97c2a091cd2eeb4c7a1ccbac274496dea", @ANYRESOCT, @ANYRES16=r5], 0xb4}}, 0x0)

4.719718048s ago: executing program 3 (id=633):
r0 = socket$nl_route(0x10, 0x3, 0x0)
io_uring_enter(0xffffffffffffffff, 0x207a98, 0x0, 0x0, 0x0, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(r1, &(0x7f0000000280)=[{&(0x7f0000000140)=""/255, 0xff}], 0x1, &(0x7f0000000240)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
syz_open_dev$video(&(0x7f0000000000), 0x7, 0x40440)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000100)={0x1, "fa02c800"})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r6 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r6, 0xc0184800, &(0x7f0000000100)={0x4, <r7=>r5})
ioctl$DMA_BUF_SET_NAME_A(r7, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
r8 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r8, &(0x7f0000000000)={0x1a, 0x1, 0xfc, 0x5, 0xff}, 0x10)
close_range(r3, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xf1)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r9 = open(&(0x7f0000000780)='./bus\x00', 0x145c7e, 0x0)
io_setup(0x5ff, &(0x7f0000000400)=<r10=>0x0)
r11 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x200000a, 0x13, r11, 0x0)
syz_clone(0x20022180, 0x0, 0x0, 0x0, 0x0, 0x0)
io_submit(r10, 0x1, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r9, &(0x7f0000000000)="96", 0x1, 0x0, 0x0, 0x3}])
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r12=>0x0})
rmdir(&(0x7f00000002c0)='./file0/file0\x00')
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x1, {0x0, 0x0, 0x0, r12, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0xfffffffc}}}}]}, 0x4c}}, 0x0)

4.659625579s ago: executing program 3 (id=634):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xf1)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x40040, 0x6ab858183a7ef6ba)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e24, @empty}}, 0x3ff, 0x5}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
r2 = socket(0x10, 0x3, 0x0)
write(r2, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e24, @rand_addr=0x64010100}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c00000046000701fcffffff02000000017c0000080001"], 0x1c}, 0x1, 0x0, 0x0, 0x488c4}, 0xc000)
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$nl_route(0x10, 0x3, 0x0)
r4 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0xa2)
fcntl$setsig(r4, 0xa, 0x13)
fcntl$setlease(r4, 0x400, 0x0)
timer_create(0x7, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = getpid()
syz_clone(0x648e7000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000680)={0x40004000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$setownex(r5, 0xf, &(0x7f0000000100)={0x2, r6})
ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f00000001c0)=<r7=>0x0)
fcntl$setown(r4, 0x8, r7)

4.380269849s ago: executing program 3 (id=635):
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0)
madvise(&(0x7f00002e3000/0x3000)=nil, 0x3000, 0x66)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x4001, 0x3, 0x438, 0x0, 0x700001b, 0x148, 0x0, 0x148, 0x3a0, 0x206, 0x240, 0x3a0, 0x240, 0x7fffffe, 0x0, {[{{@uncond, 0x1ea, 0x2c8, 0x2f0, 0x0, {0x390, 0x8f00}, [@inet=@rpfilter={{0x28}, {0x3}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00', {0x1000}}}]}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x5, 0xff, {0x9184}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x498)
r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SIOCNRDECOBS(r2, 0x89e2)
mmap$IORING_OFF_SQ_RING(&(0x7f00000e7000/0xc00000)=nil, 0xc00000, 0x8, 0x40010, r2, 0x0)

4.318783857s ago: executing program 33 (id=635):
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0)
madvise(&(0x7f00002e3000/0x3000)=nil, 0x3000, 0x66)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x4001, 0x3, 0x438, 0x0, 0x700001b, 0x148, 0x0, 0x148, 0x3a0, 0x206, 0x240, 0x3a0, 0x240, 0x7fffffe, 0x0, {[{{@uncond, 0x1ea, 0x2c8, 0x2f0, 0x0, {0x390, 0x8f00}, [@inet=@rpfilter={{0x28}, {0x3}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00', {0x1000}}}]}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x70, 0xb0}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x5, 0xff, {0x9184}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x498)
r2 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SIOCNRDECOBS(r2, 0x89e2)
mmap$IORING_OFF_SQ_RING(&(0x7f00000e7000/0xc00000)=nil, 0xc00000, 0x8, 0x40010, r2, 0x0)

3.487894086s ago: executing program 1 (id=645):
r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$link(0x8, 0x0, r0)
r1 = socket$kcm(0x10, 0xf, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000006207000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f000000a200)='afs_cell\x00', r2}, 0x10)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x200)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000640)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f0000000540)="8a21d57b0000", 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f000000a200)='afs_cell\x00', r4}, 0x10)
r5 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000300)='source', &(0x7f00000000c0)='%(,:', 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000040)={0xad, 0x2, 0x1, 0x0, 0xf7})
close(r1)
socket$kcm(0x10, 0x2, 0x0)
pipe2(&(0x7f0000000140)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80800)
syz_io_uring_setup(0x10e, &(0x7f0000000300)={0x0, 0x519, 0x80, 0x0, 0x1bc}, &(0x7f00000003c0)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r7, 0x0, 0x0, 0x0, 0x80000})
r10 = syz_open_dev$cec(&(0x7f00000004c0), 0xffffffffffffffff, 0x0)
ioctl$IOC_PR_PREEMPT(r10, 0x40046109, &(0x7f0000000040)={0xf0, 0x40000})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r7, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, r10}, './file0\x00'})
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac00800020007000c00040005c00364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

3.310326556s ago: executing program 1 (id=647):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4ea0, 0x0, @mcast2, 0x2}, 0x1c) (async)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}) (async)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000080), r3)
sendmsg$NFC_CMD_VENDOR(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x2c, r4, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@NFC_ATTR_VENDOR_SUBCMD={0x8, 0x1e, 0x3}, @NFC_ATTR_VENDOR_ID={0x8, 0x1d, 0x5}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x4004) (async)
vmsplice(r2, &(0x7f0000000500)=[{&(0x7f0000000840)="43569b", 0x3}], 0x1, 0x1) (async)
getpriority(0x1, 0xffffffffffffffff) (async)
splice(r1, 0x0, r0, 0x0, 0x25a5, 0x0)

3.309245762s ago: executing program 1 (id=648):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000002380)={0x2020}, 0x2020) (async, rerun: 64)
write$FUSE_DIRENTPLUS(r1, &(0x7f00000000c0)={0x10, 0xffffffffffffffda, 0x3}, 0x10) (async, rerun: 64)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x24, 0x4, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88e7}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}]}, 0x24}, 0x1, 0x0, 0x0, 0x24004011}, 0x20008000)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x38, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4048b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_TOS={0x5, 0x9, 0x1}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x40000) (async)
ioperm(0x0, 0xe4c, 0x2)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
ioperm(0x1ff, 0x3eb, 0x2) (async)
syz_clone(0x20223000, 0x0, 0x0, 0x0, 0x0, 0x0)

3.208651053s ago: executing program 1 (id=650):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)={0x118, 0x2c, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x106, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000380)=ANY=[@ANYBLOB="bbbbbbbbbbbb0000960000000800450000200000000000119078000000000000000000004e20000c907837d2"], 0x0)
recvmsg(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000540)}, 0x10000)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed00080001"], 0x2c}}, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080"], 0x24}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000600)=ANY=[@ANYBLOB="d615de13aaaaaaaaaaaaaa5a86dd60f900f500180600fe80419de5460098c30000000000000000000100000000000000000000000000000000000000aa00004e22cc8cacafc88784bb51a200e7a09796f886cd343c209f44cd436e09d0828485c10b71221695dae21e1bd6aa63e9b60be2278b2e84141b0804e1c3b01582875610d5be40b1308883a8008618", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="60020000907800001e020000"], 0x0)

3.139842726s ago: executing program 1 (id=652):
r0 = memfd_create(&(0x7f0000000140)='\x9d#\x00\xe6Z\x00\xafq%\xa5\x83\xa6\xb5\x00\x83y\xf3\xb2\xe6b\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x17?&^\xe1Ob\xe1Y\xd6\xeb\x91\x83;\xeb\xf1\xd0\xe3\xe5\x19T\xff\x01\x00\x00\xe2\x9f\xd9\xae\xcf>/\x05V%$6\x9fU\x86\xbe\xcbx\x00\x00\x00\x15\x00\x00\x00\xa1\xa2\xe0g\x98\xbf*\xa2c\x12.\xb7\xbe`\'\xcb\xb6\xaf\xdc\xa0D\x93.\xf25\x957\xec\xfb\xe6|\\\xe4h\xfc\x14\x06\xb5\xaa\xe6\x05\xe4\xc3\x90\x91\x98\x15\xec\xdb\xaa\t9\x11\xb4\x84$&0\xdd\x19\x86\x90\xbe\xd7\xdc\n\xcbC\x15\xfcp\x11\xdai\f{a?\xd0\xe1{\x84\xb5\x82q\x19\xacS\x88|\x99\xfd\x9eS\x80\xcb\x14G\xfa\xff\xff\xff\xff\xff\xff\xff\xcd\xf0%\x97!\xba\xe3J\xc2t\x96\xf8\xb1\xd2\x168\xbf`$\xbf\xca\xea\xa3\x83\x8e-k\x12\xdf\xb9q\xb6Pr\xd4\xb5X\\\xdbD\n\x03G\x00\x04\x00\x00\xbc\xac\x18\xba\xce\xb3%QF\x03\b\x9dh\xcb)\xf4f\x12[\xf9\r\t\xef{h\xb0\xc0:\x8f|\x8f\x06\xf8\x83\x87+nM\x11\x1c\xb0*8\v\x1e\xcf\x03\xd3\xe8,?\x87\x84\\/y\xed\x01#?\xab\x1c\x11\x00\xc5\x8d\x82\x9c\xd6B[\xc9\x00\xf5]\x81\xf3\xfd\x06M\xbe\xf9\xba\x9em\xe9\"\x03\x933P\xa3\xcc\x9b\f\xa7\x8f\x91O\xc9\xb9\x10M\x8b\xd0\xc0\xb8L\xbd\x1c4\xb59\x988\tgC\xbc\xe0\xc5\xf4\xe0E%\xd9\xd8w\x00k\x042Y\xdc\xc5\xe59\xa95\xd1m\xd8hCuZYi\x10D\xb9\xe6\xff\x04K%yH\xe5W\xfb\x82\xac\x19,\\D\x91T\xfd\x9c\xb8\x8b\x88\xa5\xcc\x8fI\x00\xf0\xc9%\n\xa7\xd6\x0f:\xb0\xf5?\xc3\x88\x1e\xbb-\xa6\xecA\x92\xaf\xa4Xl\v\xa5\xca\v|\xe2L\xac\x80\xc7\x15\x96fh\x83\x15\xc7\xea\xd5\xe8\x89W\x11\xd7oC\xe4\x06\xa8[O\xe6\x1d=\x87\x93\x0f\x87I\xdf\xb1\xeb\x89\x11.\x01\x00\r`\x1e8\x94\v)\x06B\xf0\xed\x91 )y\xb4\xba\x01\x00\x00\x00\xad\xf1\x92/(A=A\x8b\xa5\xb0\x89\x9e5\x12\xa4\x9a\va\xdf\xf4\xea\xc6\xc7\x10g\x1d\xd5\xb0\xbb\xd2\xfc]fC\x8d\x0f\xa6q\x0f\xef\x90\xfe\x94k\xf1\xb8\xfa\xbbb\xb1\x03\x99\xf7\xfd\'\xae\x906\xe0\xaa\xdbtWWH\xa4L\xb5pe,\xdfN\x0f8\t\xe7X_H\xd4\xe3\xb2,oj\xbaL\xd3#\x87|J\xb9\xd0\b\x00\x00\x00\x00/ \xe4]@\xf7mA\xe8\xd1\xf4:\x00\x00\x00\x00\x018\x1c\x95%o\x05x\x1a\x90\xf4\x03\xe7\xe9\xa9Z\xd9G\xb6K[\x94\xfd^\xdd\x04\xa1\x83U\x900}!\x8b\x0e,M\xc0D\x15\x02\xde\xda', 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)={0x30, r3, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000100)={'wg0\x00', <r5=>0x0})
r6 = syz_open_dev$vcsn(&(0x7f00000004c0), 0x4, 0x200200)
sendmsg$nl_route(r4, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000500)={&(0x7f0000000700)=@setlink={0x134, 0x13, 0x400, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, 0x40001, 0x4001}, [@IFLA_AF_SPEC={0xa4, 0x1a, 0x0, 0x1, [@AF_INET={0x30, 0x2, 0x0, 0x1, {0x2c, 0x1, 0x0, 0x1, [{0x8, 0x1f, 0x0, 0x0, 0x7}, {0x8, 0x0, 0x0, 0x0, 0x7}, {0x8, 0x1, 0x0, 0x0, 0xfffffc01}, {0x8, 0xa, 0x0, 0x0, 0x6838}, {0x8, 0x7, 0x0, 0x0, 0x2}]}}, @AF_INET6={0x50, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @loopback}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xe}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xac}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}, @IFLA_INET6_TOKEN={0x14, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, @AF_BRIDGE={0x4}, @AF_INET={0x10, 0x2, 0x0, 0x1, {0xc, 0x1, 0x0, 0x1, [{0x8, 0xf}]}}, @AF_MPLS={0x4}, @AF_BRIDGE={0x4}, @AF_MPLS={0x4}]}, @IFLA_NET_NS_FD={0x8, 0x1c, r6}, @IFLA_PHYS_PORT_ID={0x19, 0x22, "2ddcd27889d428bf72bcd838f57be663e441976072"}, @IFLA_OPERSTATE={0x5, 0x10, 0x2}, @IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e23}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x1}, @IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x1}, @IFLA_GRE_ERSPAN_HWID={0x6, 0x18, 0xff}, @IFLA_GRE_REMOTE={0x8, 0x7, @broadcast}]}}}, @IFLA_TXQLEN={0x8, 0xd, 0x1}]}, 0x134}, 0x1, 0x0, 0x0, 0x6000000}, 0x844)
r7 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec26, 0x8, 0xfffffffd, 0x15f}, &(0x7f00000006c0)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f00000003c0)=""/216, 0xd8}], 0x1})
io_uring_enter(r7, 0x847ba, 0x0, 0xe, 0x0, 0x0)
fallocate(r0, 0x0, 0x0, 0x400001)
ioctl$FS_IOC_RESVSP(r0, 0x4030582b, &(0x7f0000000080)={0x0, 0x0, 0x9, 0x100000001})

2.970225714s ago: executing program 1 (id=654):
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000140)=0x6, 0x4)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
pselect6(0x0, 0x0, 0x0, &(0x7f0000000240)={0x7, 0x0, 0x0, 0x6}, 0x0, 0x0)
sendmsg$TIPC_CMD_DISABLE_BEARER(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x30, 0x0, 0x200, 0x70bd25, 0x25dfdbfc, {{}, {}, {0x14, 0x13, @l2={'ib', 0x3a, 'bond_slave_1\x00'}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x20000014}, 0x4008001)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0x3caf, 0x1c080, 0xa, 0x20002f7})
io_uring_enter(r0, 0x402219, 0x7721, 0x16, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2b)
r2 = eventfd2(0xd26, 0x80801)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000180)={0x3, r2})
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r4, &(0x7f00000001c0)="a6e2976b", 0x4, 0x840, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffc000/0x4000)=nil, 0xb00, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff78, 0x0, 0x0}, &(0x7f0000000340)=0x40)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup=r3, 0x2f, 0x0, 0x0, &(0x7f0000000240)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
bind$bt_sco(r3, &(0x7f0000000100), 0x8)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000380)='/dev/comedi0\x00', 0x50001, 0x0)
vmsplice(r5, &(0x7f0000001940)=[{&(0x7f00000003c0)="9bb39068104a2c90ea24dedfe19094fc0ea4371b01afd28799653ee1b651af3914bf5e2d932470993be754047f751891734cbb96c7309f34c7044b7c4f54ffb5724f93dfac0b3367effd0113214f3a637bf32c2a5e8f8604c4f1d82d35d425c56b1955a5f6d0e8850ceb0e3f0ad34aaa649916b094327149ba3fe10a96c7f699d1ab2414f5f8e156ae7de8e250cb19dc839dd07411fdef29fefb00e3a40b6e8bd54ddebde1679ca6a349c2c801b9d3dbe931d20881f1ce76", 0xb8}, {&(0x7f0000000480)="a8f31cb303a6138e167743d21337c7e31d5ae4f960a573bcaddbb1e6fa9b2516d73e29bdc568273af40dc832ceb869b3177d3fa67b1a12072414a7eccb15a87c0308c5a611e9d623a0d7d384fd1c72782c24c31f8e231c989e83bf9df1644ae91399a53acc40c3f16c42920b27c3c7893adae8f49c21e53a960a18b1a780605d96ef5befa0690ca491ef7e8a5b40a5b3d5ed46b4017fd4791012402e49d5c162d92e662af5d9c0c11d9985d948acc056f413bcc49e7a52884cd2e8", 0xbb}, {&(0x7f0000000540)="5f9abef462e178dc24c0a3a4438998b77668882391dc214b076c79eaad868a536f2861f22d4c95bb1461882e650c87f3504da5b7672ff0396a673cf9fbf1ac33992131265d94df7f69ad807ab94dbbe4a7e023509f", 0x55}, {&(0x7f00000005c0)="53e60ae7dcd9429aa98397d520394f7e61267d3cfbbd7225c76ded9e55a520085ac88baf2e360d291480bbf2f7302f9d387aa8cd8c898d6b548d0a7b39cade77777e9b73b4f11832c2e9c2753de4a4b0", 0x50}, {&(0x7f0000000640)="47f657ab48b71a29813460e4e6389b7aaeb341c35d88db0a418fe3b8cc2938f2bbd683202b5f4e3c1c57a71869db63fb74c1db051480fed889acfe50b5103c8a5b3fd0186eb3a1446ac262389a11dcc3cc6c0d72adeba10c46c2f5d85ed97f1b714381cd6eaa631a340df354c498ba87d44478519c03f3b8dc23474f71dee618851d157687548349b02c90c889e73fc017b469d078cc7d8279dc2d9b0a8e0f5d0ce181fe9741d92b057007f878951941b2eb0208fbc5b277ea46388d977467db03c83387c0828bd363eefdbded4fd6377b2c24bc6d25ab12f80ce17b6de617a9f34bd4d956ebdc8175c5d31a607040fc9a9c026c3b27fd81262e3d71f2058ef5df45c729e015e043a66e9d8a176d997a3c2ef1f2d15f8f59533ffac80b202da942e081fa2d109f5849e80afecad44d4d9aa7a298c9a8625601c36991ee8c7c3bcef9bff8778dac229ca93b226c4daec049f830356358c73ae9a48fa3fb8c7d1e55d893d03a37257bf53a5f17be996f8a3423ea022dcb40537523ad5c606929a9055f9fb9f650d9e1fe9125c623eaeff959b367ea38ea2eb1b0da226a894a05d846f1fd1690cec0903f3d7ba8ed92dae2469e68d65d3100ce8de6e8e41d3838be853c83b97e634dd509c768849403ee52898a5386f7e9e37e00af84b9d14fd7049c87b3170cbaca627927fd1ae5d52210a5e5f70873781d03de0aa552830df1bab5e858e6141c4a4e20e21b8dc4d91075d2b88861d263adb563dfbe1ceb3debd675f9a016b93f4c2daef85f0222d4acdcd779eeaa0eadcc92507a17a836457c1bd924350ded56b3de8fcca2e0086c28efefc012f1bb604f2160814eeb0e0bd8f6b6a0a478ec7d81496f498975db97072bd1969cf0591541670ad8f22c40f78c2a60b74316617c075cab1d3b1738c4649e6be164b439f429628dfde1dad660754a3829ccd59eda2e99741213bd7b650dd1455363aa0131db06533416da816dae4b25c76bd680c04b34db813aad7cd7c00d02fd8e20bd711b2af95016da627b1c73709e01dadb7a3394ab91780da11010eeb906582ce38a3d443fa7c207a8f5322ff226e38e4a4da42374e6031de79c4fa4a6b7f053acc6933595596fb2022cb4133d054048e45e3610a4619dab6bc27566029ab60d3c645145398f73cde83a7da027ab534596eb2f425823947718774117b7dc907135ebd8d90dcd3d95e696620734b7eaf2079ba4f590fe0c6559a8851524a89275d87cd6d488691294960940490c5390c901f96e8b4f14d7bd008d4427d203500dbec4d2092014ae2aa4b4ff33972adadc41e617c50cc81f4d288520be43685e2f2d6514183d03b50f4af98462a9d8249ee226acd041b34bd573f1f7e26e10c999a2c013c15789de9b16a681c66ca1b6847096531abc1f173ac552747526d78839c40a2be36fcdfc0158a6e956dfb61ce8fba41a7c82ba50b09983d778cd5bfd40c04a1b32095dca2055205ad4e029716fb7fa9c9dfdfdde04b6f07e3d9d908c3731c7dd37c0281a6efb42c612eeb6b2c2c707c6cb6c36a958a20a4b23851eb4c7bdb4ef0d4cfd7517850932f6ff10c3a58d8039f9bc285a026ef70b35c0bd19bd55b55107d54e1bf8a3457ffb0fc4be4cb424a985cde86b356842e517c3fafe9f77cd8bbe0666bd0d027da81e4b08113d6471a262d5c3f5b697cca3eff4aa1c953c910878475ab42e58017bd75fe7e14badafae8362c67891a6512456f945c97db4248db7a934df8bcc001c5899b2262a15a91dbede93a0165f7b44eda8d056f07999f9e0189df9ed9a3a9cad9ff2ad2613f3a3a0f6828b786766772eaa43611d1ad7ab6eb19994d21d47cefd4038317e000c7ef6b3440a47f8162d5dd26e4a2ee1d22596ed13d7407fd263eedb9f6b67b1645c88c93836bb7f0b317f1946e3964d054b05722f3e514dd5393d4a68adfe1462d763f44f1a5db4d4add8aeef636f6b21b6ce532cda5d2e230b493a0105fd1c8bc5f56972fa86ba18ab8295c5d1fbb00569e31440b5546fe6e20cc3163f958ba610e3e29aded585439460fadc7946283c4baf2f1358dc4cf9d4d8a7de9c2431e187987653c00ed7de17a07ff25cb9c7848336ed745b0f9ae69b30aa8a0fca7622b0ddcc81f1e0191127ee5be9c0e5eee7b33ed38dbe45cb5faedc1882ac98d6915f05a937eb2273bbf9e016fd22db8b280be1a3ac91d671ebc92107cee24344c7a8ec21fc6e08c315293d0d09d2d43f14cdd68092df20ed7adc99ff89f3bac534ede1b5044d9c92f44789c664d83072dd48cb56c5398e6168611135352fde3a6781cec0c3dfd7d4254e079847a86e492f94e1c0bf70707d0ea98e02205e1a6a07beb3cb3130914dac60a8d9c63837c5f9c3851e83e1f5c9802b9a394788990277d1d619be99585fbb0a682b77ddfd497ab45ce158b264dfb73a9370bd8106c7623508d88a15c7d3572f9595c09cf1d982e95de7914b635357d926643e3e11de7009501f58a9c45180fe5e2aa82a869802e1b643898ff35dc22f72f66c272457914a8901c94355116e4fa2863518e929de09a6605e664423ee9358c7f749cf8a3aac6da71c3e37279542c267d04c9668d27e512001883b08df6ec3f03434e77d5cd3ac6921a83f9b3267856a55796d54be14057faef2e8d72fa1e67c738aec23157d3e4de13ea1f5d9970b55975349b6e5d633675595fd1fa3228e3fcac5a97ac7264825ca066887aa6b7bfd4c4f3fed8f9eacc7a371b063b19b3c47452eea9c21818cbe553e6000fb0044e11cddd59f4e7c44055810e62e99f854d0d976f15f20dda8acfcb566398d90e983d32dec287d308834b3e743eadea169969bbeb87d9e7852d0e118057cffd96eec3639ef1747531e91d5ad19ab348dc1746a3db52da8e6c451225f1437f2222a4e70b35061a341799c59a5904fe647f681235949cab07780f9206d3e223a8e124a24b110530e7199e2032bd91ec2c6ec4d769bc2b818af4bd311e1a24d2fcecaadb01a23cf319ba7392766749e4a0f7f0817ed4ffeb3c3be3d6bd165a4d00fb8e49e4f16142ff621eadeb8af8cbefa9eda37db98105ed2f82fd65d591249e13098119e04be489ea7da05ebf4e264446b04f0061474da7153b0154004a5ab3a61a02076a0c8e4ecd752f7e4a0c9620d367910fb183d211c3d07e52fe50b7ca0919b7947c021f4019e671c6d3375e21b9209e2ee97f4e630fcb9654435f04a877a2fcfd384b1402496d5b1d7e286a79a12b674d03c66e81e6ddc2a2d0cd5b59db83952688730e105c71c03863ecc728592e7cf777ab296ab1903b22079e87e7bddb71d1533cbb40d5e114483c195fb61f35189368f815d5f90f28cc77d591c21f19478fd33c59acff3d462053f647ca2c537d5d471b519ba9c707c7c78e3eded96b42000162e0859231da3aff4543728d7af2e6dd951c09c9e3e2916df45ce81626f26cd436a8fb0f3fab8116538810cd165cdf91c6191f407c88344872649e9aec07e5e5ad289e0f102a3fd18344792b6d52b0c9ab546233ab99098d979606e62cdcd5ab1fe145484929ce24f882e0be05c6123c188473c27696e85f4dee15e19de5822db279292f7a02b15a7e68b87cfc05eba6fa533cde2ec1412d8de86eb7b2e944a6f8ae32d23c6ec115ca5cd096d91b044c7a80e8ab1c4d26abfcc5c5c096614bc9ff8e21fe0cdebf50b5789e7127875d593d24306dd402a4affc16e6a4d2a8b784dd7d57bf0659fa572b2e6dd965bd22d2adcab5e201633763d3186a7f035ea253514f69357f6150dcc5e2ae46eb90e69cbc7a58853438be1d22fe34a73fb613ec1e7c2597fa1690234a20cbbced80be8865c1ada8305dc5a5e95074bba827ff0c84efc382d2f2ff7e3d136c9f1c5adce5c0e95471d5cd308a2e843ff7755244221c9ac680e187140259773ff489aa8666b10d10c845aeff5f5986a5fa4f1fa65e10926ee172d55626758224c6309e56d96b699e6430ce12fba5320ed28f036fe8254920a1fdad0b4db3aebbc658c2aad8790a7203408f5d11cd9455fa5e7d97065bcaaacf2ce3106dfa2e7ee66eb55acb18629dfd9451120e656df0417e24bf987d3f6dadb8f170cd0a75b8021c2fac7de36f543571a93ab7a274f9f17e8c35a5e0be1737b249d7242b0b7198fc0ad65d8ccc0109709178ef54ada079b8bce41357fd4039a98c74c76cd91d69bfc32f0c01e46534b0b68e75b50c4fd4f46d63fad202b0dafe50a1bbfdb37cd828f56f1a5e20899a8aaaca7dad1becc7e11c6c4fc6568b965c00cc85dd9111baea5c2fe93e2664aa6372f5185f418d56f6e67ecd0fbc0c4063d6c552e76a53bc471eb17c773fe2db79b72dc89b141d10ce168403f1f968ae8e60af96302e5d7c354fdd0b3c978cdc4af73a92e3ba84d8a33e6dbab9be52cb2d1ea455a4be425bb060a9bf8acf9d116605325e4c00001cdbe0d31d34419217f045bb90671ddaec4759cbb9fbaa1d9c6f0a1efea5792d6afb60c6a52c2631909432bef504831bd30c72c8b026c9693374d8e5d3e9e0cc080a37c4c5ebbeca1dd82ff22e67e32ec80106161137886b244c4e2c70de538de0127757fc8969937b8ebb1db99422e5a592274001b597f4c24e25c484d468327036db58c059c755f8fbeb7780605b52d868d7b928ba2edbbfdf0a2def84023841710e483e5563ce5eb103a63f391afe7ae7a56ee48ebd543c9e397cbea36c15fbd4361b465c4ac2c5ce69356aebf7b3397baafc44ed567b4e7bbeface1a7015c2ce7961e9a603187e536ef9940a13bf0e8329952eb7ca86987a2c7e0ddc4ab8917b66ceba41f9b10ff6bc3bb7d070d630ab22ca4e86d2a5c2e6034160c275f059ffb741f1032c5c0b497a57c2ad513f863d96394fbfae29821ff1448c896a7d6a409389147ac19886168536eff268d72abd6502ed2879ac5e6eea3e578c5824acecc0ae9350a5362415bd0b26e68665aa1fbee54b6bedaf1524c962b03e9e146421d7cd30cfdccfa71c1559ef8045f12e8b0d38d59c6ac0c69a74dadc2e00c50b954cfb0125fa68753c43c19ac8917bf814901a5a22ca988f054f795b4b78fff2e84ba040f74f98429d4fe57a7210344ef143407966e5e55d6098e6e276d8cfa455d7eab2ab68ecc74f4844c86f3c2b002efe5290100aad7bf1487758d5977aa5f501f6a4dac41afa6f3f7f65683ff6ffa03cd345fa34c52ab71474c6cbfd8194573f26bc37ef7124339599818f2ff22599ccc28e989ff8a702740d3b8d3239e2b49b50f30e02795690c446e94adbc63ddaea4313e407e2fe8b58d382f00275a31b9072472eca819c942a8aa57567447bf6b88aaa4d6e41a52e24bbb09013f1510ae6541161ad7e4347e3be77434a6120e6fa87e40a2900348001e943d05c5e0b565fc314845678a8f68c9332bf5cd8d611ab6e3299812ea4c368c4affe56818e6f6c9c93b3c646273a12f91d8e312e822a385d55e8ec11d67851c4c9d2a4906b1a4a13aa30bceed138e819473dc9a1287c1f0094e17728bbd17d27c8da978d9c0e673cb803de695e7f9787b073d412625b53e675522f00a923ebee22c17e3bdb35cb733f80bcfa9393ec7f60ce7f36fd4f43841402a33dfce33e53b3f194f2c0af0bb66881a10e5c05fc18175f3c30bd1c49ba18bd849ae3830ec22333f36d319499a4950da517d9bab700b3f3c64320c5d5def919c49d77afd58b5d1b65c1342348b98dc6a9798b1f75e75911dfaa2ef7342603cf9b2f9e349c7047d1c0b4a1b4601f02b592bf26b9c6f1ebaca7771b6", 0x1000}, {&(0x7f0000001640)="b9e30a4e78324d42f9ae3f9b596c04eced7dfb53451ce8fab3653f0914d54a7f87162db6ae09cd327ab92955069e7691d22a8933debd241551fc3c32b78431fb0150183795603b4474802d536756710369f49fc650fa317f05a469f922c18b15f829c6d7e9df8f2c32963d6fabdfba4ddb4ea719de91956504305cd2d2e8634da25660a6b2c7acef6399e238cd52a062f8cff7a8d352806c2e02ca511bef1abc6732f2cffa47d54fdbec9e225bf02ee84dcc88f0a22f2642a633af31d6e77df9ed9d2cfdefe2f8dcca1856a9a5ffc8", 0xcf}, {&(0x7f0000001740)="af8c10d49571a7d1d9b5b00f5c7421dbf407c0f1ca1748b4bc25eca4837341638e1b0528b85bb23a7fe9f9c0784031a98913a7f9d49e1ee224a92abe2a05bc62fdd49021dca5986df6ff07e116a9c3d2974d3590d8f2fcf37a50b7791761995ffa6135e9f1426721cb37c4af1db634632ed133fd51611a16ddf297b4b67a4169daa79f5f946739410d", 0x89}, {&(0x7f0000001800)="399b9c7bdeebfcdd4430646dbd4ff0ec8bc7515d8b39781970670f447f5f", 0x1e}, {&(0x7f0000001840)="19dc9d6b0f9efbdd32904e370d777423075970447434345b20cbfeab69f9be5cee7a6a5bb4bfa6cf0d16a7dc8a388fbb9afa4ec8d9c872c2dc8c1c13c4d89a57840b3dd71a2e6112535a89f0638d8e1b7605bc47653bb7d904c4be872a9ddd40094ca1687ec0f60fd58bf7fde3a66b75e48e32c0b56781733f0b0cc08dea88460f4b8b12c74cf24beb9be90d9933930ac81a832724bf170414da8215310688aebba1053977d1e9d6ae5cf4813933927af3135a6a49", 0xb5}, {&(0x7f0000001900)="6910f6956a", 0x5}], 0xa, 0x8)

745.215861ms ago: executing program 4 (id=682):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) (async)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) (async)
r0 = socket(0x400000000010, 0x3, 0x0) (async)
r1 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) (async)
listen(r1, 0x8) (async)
r2 = accept4(r1, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000000c0)={0x0, 0x1}, &(0x7f0000000100)=0x8) (async)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x20008850) (async)
r4 = socket(0x400000000010, 0xa, 0x1) (async)
r5 = socket$unix(0x1, 0x1, 0x0) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01082cbd7000fedbdf250c000000180005800800010075647000000000800800040006000000"], 0x2c}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000019580)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0xa, 0x4}, {0xd, 0xfff1}, {0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x4, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb30f}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x50, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x4048801) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffe0}, {0xfff1, 0xffff}, {0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x4, 0x80000000, 0x0, {0x0, 0x0, 0x0, 0x0, {0x3, 0x3}, {0xa, 0xffe0}, {0x0, 0x9}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_FLOWS={0x8, 0x2, 0xaf62}]}}]}, 0x3c}}, 0x20004055) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
bpf$LINK_DETACH(0xf, &(0x7f0000000140), 0x4) (async)
socket$netlink(0x10, 0x3, 0x0)

659.243626ms ago: executing program 5 (id=686):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
read$FUSE(r1, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x14)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/asound/timers\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000004ec0)=[{&(0x7f0000000180)=""/79, 0x4f}], 0x1, 0x0, 0x0)
ioctl$KVM_CAP_VM_MOVE_ENC_CONTEXT_FROM(r2, 0x4068aea3, &(0x7f0000000280)={0xce, 0x0, r3})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000800)=ANY=[@ANYRES32=r4, @ANYRES32, @ANYBLOB='&'], 0x10)
ioctl$RFKILL_IOC_MAX_SIZE(0xffffffffffffffff, 0x2, &(0x7f0000000200)=0x1ff)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000100))
prctl$PR_SET_MM(0x23, 0xa, &(0x7f0000ff9000/0x4000)=nil)
r5 = syz_open_procfs(0x0, &(0x7f0000000500)='environ\x00')
preadv(r5, &(0x7f0000000140)=[{&(0x7f0000000040)=""/235, 0xeb}], 0x1, 0x8000, 0xc)
r6 = dup(r0)
ioctl$PTP_EXTTS_REQUEST2(r6, 0x43403d05, 0x0)

598.668969ms ago: executing program 5 (id=688):
r0 = openat$binfmt_register(0xffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000480)={0x3a, 'syz0', 0x3a, 'M', 0x3a, 0x7, 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\x93r2\x0eeu}\xf7\"\xbd&-~\xeahJ\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{\xc5\xe2\xf1u\xd1\xca\x8a>\xc3\x84\xd3\xcf\xa7\x1f\xc1\xb5\x12\xd0\x1e\x98\xce+\x12\xaex{\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132\xf9\xbf7K\x8d\x16\xa6\xbf4\v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde\x13\xdf\xc6Z+\r\xb4\x9a\xe8V1\x82\xce\xdd\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x89\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xd3W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a', 0x3a, '', 0x3a, './file0'}, 0x12f) (async)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x1814, 0x90000)
ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f0000000040))

598.251918ms ago: executing program 4 (id=689):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r3, 0x4188aec6, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2, 0xfffffffffffffffe})
r4 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_script(r4, &(0x7f0000000600)={'#! ', './file0', [{}, {0x20, 'wfdno'}, {0x20, 'noextend'}, {0x20, 'noextend'}, {0x20, 'trans=fd,'}, {0x20, '\x8b,^][^'}], 0xa, "7757dac1f11b601ffcbf88c22b16f470247af615f33d04e2fe2ab1996bbec9b686249f9adf31a6c3eebd6cf34c66670812ad38be1900b2479dcf1914a417c299c49bf29ee18e2fc7007f526f5ecda7235925fc10421a5acab0ef1b09f52514b051728dc04a8ae2"}, 0x9c)
readv(r1, &(0x7f0000000500)=[{&(0x7f0000000180)=""/144, 0x90}, {&(0x7f0000000280)=""/119, 0x77}, {&(0x7f0000000000)=""/35, 0x23}, {&(0x7f0000000300)=""/144, 0x90}, {&(0x7f0000000080)=""/6, 0x6}, {&(0x7f00000003c0)=""/156, 0x9c}, {&(0x7f0000000480)=""/72, 0x48}], 0x7)
mkdirat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0\x00', 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a80000000060a0b0400000000000000000200fffe540004802800018007000100637400001c0002800800014000000002080002400000001005000300010000002800018007000100637400001c0002800800024000000011080004400000000c05000300010000000900010073797a30000000000900020073797a32"], 0xa8}, 0x1, 0x0, 0x0, 0x840}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x10, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_any}, {@noextend}]}})

550.162391ms ago: executing program 5 (id=690):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x121000, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="18020000feffffff0000000000000000850000004100000018010000756c6c2500000000003c20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x2, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0xa, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r2, 0x2, 0x1}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x4}, 0x38)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$9p_virtio(&(0x7f0000000180), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x800040, &(0x7f0000000440)=ANY=[@ANYBLOB="78224fc427ed619f319b73733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000100)='./file0\x00')
r4 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_S_STD(r4, 0x40085618, &(0x7f0000000040)=0x320000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
write$UHID_CREATE2(r5, 0x0, 0x118)
chdir(&(0x7f0000000500)='./file0/file0\x00')
setxattr$trusted_overlay_upper(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000002c0), &(0x7f0000000300)={0x0, 0xfb, 0x49, 0x5, 0x2, "95b42409f1a1f08b931a3a7fb5d3873e", "b3d57d9d41101e7d7240ff784a75f4f2ec45ee80b56c4ade9d747ee11e903782c32b468b46856b76f95a525e4d01f0d5ae264a9b"}, 0x49, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r5, 0x0)
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r7, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0xc})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r7, 0x4008ae6a, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000000026bcc8cacdb8427d000000000000005700000000000000008000190000000077040000200000004800200100000221c3f916daa3902bf24ddf7695501c8f542f33f096cd442fac95b14e968fa0aca347caf5038d3602caf577de"])
mount$bind(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x800000, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

379.524342ms ago: executing program 5 (id=695):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="9000000000010104000000000000000002000000240001801400018008000100ac14140008000200ac1414bb0c0002800500010000000000240002801400018008000100ac14140008000200ac1414aa0c000280050001000000000008000740000000002c000e801400018008000100ac1414aa08000200000000000c000280050001"], 0x90}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="c00000000201010200000000000000000300000108000340000000041c0010800800024000000007080003400000000808000240000000030c001980"], 0xc0}, 0x1, 0x0, 0x0, 0x4000004}, 0x0)
r2 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x109)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYRES8=r3], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa95d}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r5)
sendmsg$DEVLINK_CMD_RATE_GET(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, r6, 0x6a9354ab0d020bb7, 0x0, 0xffffffff, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000002640)={0x3, 0xa5b1}, 0x0)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[0x4], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r7 = syz_open_dev$sndpcmp(&(0x7f00000004c0), 0x0, 0x0)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[@ANYBLOB="4c01000010000100000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb0000fff720000001000000003b000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="64010102000000000000000000000000000000006c000000ac1414bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000004000000000000000000000000000000000000000080000004000000000000000000004000000000000000000000000000000000000000000000000025bd70000000000002000001000000000000000008001f0004000000480003006465666c617465000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c", @ANYRESOCT=r4, @ANYBLOB="321444"], 0x14c}}, 0x4810)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r7, 0xc0844123, &(0x7f0000002180))
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r3)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000000380)={&(0x7f0000000100), 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x60, r9, 0x4, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x8, 0x2a, [@ibss={0x6, 0x2, 0x1112}]}, @NL80211_ATTR_IE={0x13, 0x2a, [@challenge={0x10, 0x1, 0x8}, @erp={0x2a, 0x1}, @mesh_config={0x71, 0x7, {0x1, 0x5, 0x1, 0x1, 0x1, 0x7, 0x40}}]}, @NL80211_ATTR_IE={0x25, 0x2a, [@prep={0x83, 0x1f, {{}, 0x7, 0x2a, @broadcast, 0x7, @void, 0x8, 0xfffff584, @device_a, 0x74}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x800)
writev(r2, &(0x7f0000000b00)=[{&(0x7f0000000940)='\r', 0x2000}], 0x2)

378.724077ms ago: executing program 2 (id=696):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x4404c2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000002100010000000000000000000a000000000000000000000005001e"], 0x24}}, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000001000), 0x1ff, 0x2)
ioctl$DRM_IOCTL_SET_UNIQUE(r2, 0x40106410, &(0x7f0000001080)={0x0, 0x0})
r3 = socket$kcm(0x10, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x428a4}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}}, 0x8000)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x200, 0x2, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x2, {0x2, 0x1, 0x3, 0x2, 0x3}, 0x4})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) (async)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x4404c2) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="240000002100010000000000000000000a000000000000000000000005001e"], 0x24}}, 0x0) (async)
syz_open_dev$dri(&(0x7f0000001000), 0x1ff, 0x2) (async)
ioctl$DRM_IOCTL_SET_UNIQUE(r2, 0x40106410, &(0x7f0000001080)={0x0, 0x0}) (async)
socket$kcm(0x10, 0x2, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
socket(0x10, 0x803, 0x0) (async)
sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x428a4}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}}, 0x8000) (async)
sendmsg$inet(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000680)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014020d000a00000000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d00d00000000000000bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0) (async)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000003c0)={0x200, 0x2, 0x0, 'queue0\x00'}) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000280)={0x0, 0x2, {0x2, 0x1, 0x3, 0x2, 0x3}, 0x4}) (async)

290.299255ms ago: executing program 2 (id=697):
r0 = openat$sequencer2(0xffffff9c, &(0x7f00000001c0), 0x0, 0x0) (async)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x8) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)={0xac, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @broadcast}}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private0}]}]}, 0xac}}, 0x0) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="c00000000001050500000000000000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400ff0200000000000000000000000000010c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff02000000020000000000000000000114000400fc00000000000000000000000000000108000740000000012c00068014000500fe800000000000000000000400000031140004"], 0xc0}, 0x1, 0x0, 0x0, 0x4040081}, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000040)=@l={0x92, 0x0, 0xd0, 0x18, 0x0, 0x0, 0x8000})

225.461318ms ago: executing program 2 (id=698):
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000080)={0x0, 0x80000, <r0=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f0000000140)={0x0, <r1=>0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000100)=[0x0]})
ioctl$DRM_IOCTL_MODE_GETGAMMA(r0, 0xc02064a4, &(0x7f0000000300)={r1, 0x8, &(0x7f00000001c0)=[0x5, 0x8000, 0xb, 0x9, 0x401, 0x0, 0xc1, 0x200], &(0x7f0000000200)=[0x3, 0x8, 0x0, 0x539e, 0x9, 0xf, 0x6], &(0x7f00000002c0)=[0x6, 0x1ff, 0xf800, 0x100]})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000180)='%(,c\xbe\xfbL:', 0x0)
r3 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000000)='source', &(0x7f00000000c0)='%(,:', 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = dup3(r4, r5, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x15, 0x0, &(0x7f0000000280))
r7 = socket$netlink(0x10, 0x3, 0xb)
sendmsg$nl_generic(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000019c0)={0x80, 0x1e, 0x200, 0x70bd2b, 0x25dfdbfc, {0x2a}, [@typed={0x69, 0x1, 0x0, 0x0, @str='\x85\x95\x1aq\vT\xd4\xc5:\xd8\x7f:_\xa9\xe2mb:\x8e_\xaa\x9b\xc7\x80\xc3\x91\xe7\xfe\xf3S\xa6\xffg\xbe\x1d\xc1!q\x8a\xbb\xa1\xc6\xb3r#W\x98\xe7:\xf2\x92!\xc8\xfdi\xd2}\xf2\x88\x87\x11M\x1e\b\xf2\xa6\x14\xcf\x9d\xbeX\x9a&?\x98\xe4o\xec\xb2\x1fA.CX\x8f-\x88\xcf\x05\x14\xa1n\x9e\xc3F\xf1\x9ft\f\xe4]'}]}, 0x80}}, 0x4000040)

224.818012ms ago: executing program 4 (id=699):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r2 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x6, 0x0, 0x0, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001180), 0x2000, 0x0)
poll(&(0x7f0000001980)=[{r3, 0x420}], 0x1, 0x4)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(r3, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x48, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8001}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x20, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x48}}, 0x8000)
r4 = fsmount(r2, 0x0, 0x0)
r5 = openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000140)=ANY=[@ANYBLOB='+rdma -cpuset'], 0xe)
r6 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
getsockname$packet(r4, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000000)="0900bf65653f47f4020000008bd458d1e7cbdaf300000f34e7e4165f081ae36850f6d15c3e681411f7a496c0da04003c242f5bedaf6bec340dee49474362b24cb800edc500", 0x0, 0x48)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r7, 0xffffffffffffffff, 0x200000000000000)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={{0x14}, [], {0x14}}, 0x28}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c000380140001"], 0xfc}}, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x4000, 0x3, &(0x7f0000ffa000/0x4000)=nil)
syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x82)

224.32783ms ago: executing program 2 (id=700):
socket$nl_route(0x10, 0x3, 0x0) (async)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x104, 0x0, 0x0, 0x4) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) (async, rerun: 64)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0) (async, rerun: 64)
r3 = socket$netlink(0x10, 0x3, 0x0) (rerun: 64)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32=r4, @ANYBLOB="401f2700060010"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0) (async)
r5 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e24, 0x0, @rand_addr, 0x8000}, 0x1c) (async)
sendmmsg(r5, &(0x7f00000092c0), 0x4ff, 0xfdff)

135.426906ms ago: executing program 2 (id=701):
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x1}}, './file0\x00'})
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040), 0x8) (async)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040), 0x8)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000080))
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0xa5, 0x1a, 0x0, 0x6, 0x1000, 0x7f, 0x0, 0x200}, 0x20)
sendto$inet(r0, &(0x7f0000000100)="74fe4e1bd36d11042fe6a3dc08ffc0d2", 0x10, 0x0, &(0x7f0000000140)={0x2, 0x4e23, @private=0xa010100}, 0x10)
ioctl$CDROMREADCOOKED(0xffffffffffffffff, 0x5315, &(0x7f0000000180)) (async)
ioctl$CDROMREADCOOKED(0xffffffffffffffff, 0x5315, &(0x7f0000000180))
recvfrom(r0, &(0x7f0000000c00)=""/220, 0xdc, 0x101, &(0x7f0000000d00)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x80)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000d80), 0x80080, 0x0) (async)
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000d80), 0x80080, 0x0)
ioctl$CDROMREADTOCHDR(r1, 0x5305, &(0x7f0000000dc0)) (async)
ioctl$CDROMREADTOCHDR(r1, 0x5305, &(0x7f0000000dc0))
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000e00))
ioctl$FS_IOC_GETFSUUID(r0, 0x80111500, &(0x7f0000000e40))
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000e80), 0x2000, 0x0)
ioctl$CDROM_DEBUG(r2, 0x5330, 0x0)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000ec0)) (async)
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f0000000ec0))
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000f40)={{{@in6=@remote, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@remote}, 0x0, @in6=@dev}}, &(0x7f0000001040)=0xe8)
fsetxattr$security_capability(r2, &(0x7f0000000f00), &(0x7f0000001080)=@v3={0x3000000, [{0x6}, {0x9, 0x80}], r3}, 0x18, 0x1)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000010c0), 0x240081, 0x0) (async)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000010c0), 0x240081, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000001100)={0x1, <r4=>r0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001180), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000011c0)={'wlan1\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000011c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000001280)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001240)={&(0x7f0000001200)={0x30, r5, 0x400, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x40, 0x2b}}}}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x287}]}, 0x30}, 0x1, 0x0, 0x0, 0x4c085}, 0x24040891)
ioctl$SOUND_MIXER_READ_VOLUME(r4, 0x80044d18, &(0x7f00000012c0))
openat$fuse(0xffffffffffffff9c, &(0x7f0000001300), 0x2, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r4, &(0x7f00000015c0)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001580)={&(0x7f0000001380)={0x1d8, r5, 0x20, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x10001, 0x4c}}}}, [@NL80211_ATTR_REKEY_DATA={0x98, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x2}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="37963544dd73e3a00de7a2820eec6a80b06b277e02597ab6ae5d48e03a67638f"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="2330106d6959ee5782bb10253f5001ceac75be51e111cbf0"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="49280a5b3e08a12ebe342d59ec120b54"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="ca206a05e1815efd11a3fb93d6037919956774a6e615e918167cd414ac4f8bdb"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "683da56e5dc8045b"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x3}]}, @NL80211_ATTR_REKEY_DATA={0x64, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="cefad707b4844e331be1916d011f6dd8564486f38dcce3a7"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="76aac76cace0b4be79b44cff5cced37c"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="b379d5b0ecf65251ffc7d7359fe89e85d37da4a14bbf703b3ebd42a3fc04edb0"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "aadf9acea5b52d97"}]}, @NL80211_ATTR_REKEY_DATA={0x38, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "ebcfcce4fcda3679"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "9960408337f57962"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "1be6aceff63885a1"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x1}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xf4}]}, @NL80211_ATTR_REKEY_DATA={0x7c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="12c1e6bb53bd7fed2cc8b555333162ff31ea18e57f954749"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x9}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="c636c05fa4dc9d905c2e015389382172e03af0742d056c668bf874745bc9b43e"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="261a2a0d806cc31239e4827308737be5509306eba1be5919abd40d8e27f0b9f2"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "0582f0b1db8d162e"}]}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x46}, 0x80)
ioctl$SNDCTL_DSP_GETCAPS(r0, 0x8004500f, &(0x7f0000001600))
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001800)={&(0x7f0000001640)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000017c0)={&(0x7f0000001680)={0x114, r5, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x10001, 0x4a}}}}, [@NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_TX_RATES={0x70, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x60, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xc, 0x58a, 0x3, 0xf, 0x7, 0x31, 0x7f, 0x4de8]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x3}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0xb, 0x2, 0x3, 0x6, 0x2, 0x6c, 0x5, 0x9, 0x9, 0xb, 0x16, 0x6, 0x12, 0x36, 0x6, 0x12, 0x24, 0x6, 0x1, 0x49, 0x6c, 0x1b, 0x4, 0x60, 0x24, 0x1]}]}, @NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0x6, 0x9]}]}]}, @NL80211_ATTR_BSS_BASIC_RATES={0x21, 0x24, [{0x6c, 0x1}, {0x24, 0x1}, {0x30}, {0x24}, {0x1e, 0x1}, {0x16, 0x1}, {0x36}, {0x36}, {0x2}, {0x1b, 0x1}, {0x60, 0x1}, {0x6, 0x1}, {0x5}, {0x1b}, {0x3, 0x1}, {0x6, 0x1}, {0x30, 0x1}, {0x1}, {0xc, 0x1}, {0x7b}, {0xc, 0x1}, {0x0, 0x1}, {0x4}, {0x48, 0x1}, {0x12}, {0x16, 0x1}, {0x18, 0x1}, {0x3, 0x1}, {0x18}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x24}, @NL80211_ATTR_BSS_BASIC_RATES={0x1f, 0x24, [{0xb}, {0x2, 0x1}, {0x44}, {0x30, 0x1}, {0x9, 0x1}, {0x9, 0x1}, {0x18, 0x1}, {0x1, 0x1}, {0xc}, {0x48, 0x1}, {0x7d}, {0x6, 0x1}, {0x30, 0x1}, {0x6, 0x1}, {0x60, 0x1}, {0x9, 0x1}, {0x4}, {0xc}, {0x6, 0x1}, {0x24}, {0x48}, {0x24}, {0x48}, {0x25, 0x1}, {0x4}, {0x1, 0x1}, {0x2}]}, @NL80211_ATTR_MESH_CONFIG={0x14, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffffcb}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0xfa}]}, @NL80211_ATTR_BSS_BASIC_RATES={0x16, 0x24, [{0x2, 0x1}, {0x9, 0x1}, {0x1b}, {0xb}, {0x48, 0x1}, {0x12, 0x1}, {0x45, 0x1}, {0x36, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x5}, {0xb}, {0x2, 0x1}, {0x36}, {0x5, 0x1}, {0x6, 0x1}, {0x2, 0x1}]}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x114}, 0x1, 0x0, 0x0, 0x800}, 0xc0) (async)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001800)={&(0x7f0000001640)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000017c0)={&(0x7f0000001680)={0x114, r5, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x10001, 0x4a}}}}, [@NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_TX_RATES={0x70, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x60, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xc, 0x58a, 0x3, 0xf, 0x7, 0x31, 0x7f, 0x4de8]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x3}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0xb, 0x2, 0x3, 0x6, 0x2, 0x6c, 0x5, 0x9, 0x9, 0xb, 0x16, 0x6, 0x12, 0x36, 0x6, 0x12, 0x24, 0x6, 0x1, 0x49, 0x6c, 0x1b, 0x4, 0x60, 0x24, 0x1]}]}, @NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0x6, 0x9]}]}]}, @NL80211_ATTR_BSS_BASIC_RATES={0x21, 0x24, [{0x6c, 0x1}, {0x24, 0x1}, {0x30}, {0x24}, {0x1e, 0x1}, {0x16, 0x1}, {0x36}, {0x36}, {0x2}, {0x1b, 0x1}, {0x60, 0x1}, {0x6, 0x1}, {0x5}, {0x1b}, {0x3, 0x1}, {0x6, 0x1}, {0x30, 0x1}, {0x1}, {0xc, 0x1}, {0x7b}, {0xc, 0x1}, {0x0, 0x1}, {0x4}, {0x48, 0x1}, {0x12}, {0x16, 0x1}, {0x18, 0x1}, {0x3, 0x1}, {0x18}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x24}, @NL80211_ATTR_BSS_BASIC_RATES={0x1f, 0x24, [{0xb}, {0x2, 0x1}, {0x44}, {0x30, 0x1}, {0x9, 0x1}, {0x9, 0x1}, {0x18, 0x1}, {0x1, 0x1}, {0xc}, {0x48, 0x1}, {0x7d}, {0x6, 0x1}, {0x30, 0x1}, {0x6, 0x1}, {0x60, 0x1}, {0x9, 0x1}, {0x4}, {0xc}, {0x6, 0x1}, {0x24}, {0x48}, {0x24}, {0x48}, {0x25, 0x1}, {0x4}, {0x1, 0x1}, {0x2}]}, @NL80211_ATTR_MESH_CONFIG={0x14, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffffcb}, @NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES={0x5, 0x8, 0xfa}]}, @NL80211_ATTR_BSS_BASIC_RATES={0x16, 0x24, [{0x2, 0x1}, {0x9, 0x1}, {0x1b}, {0xb}, {0x48, 0x1}, {0x12, 0x1}, {0x45, 0x1}, {0x36, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x5}, {0xb}, {0x2, 0x1}, {0x36}, {0x5, 0x1}, {0x6, 0x1}, {0x2, 0x1}]}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x114}, 0x1, 0x0, 0x0, 0x800}, 0xc0)
flock(r0, 0x4)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet_sctp(r7, &(0x7f0000004000)=[{&(0x7f0000001840)=@in6={0xa, 0x4e23, 0x8, @rand_addr=' \x01\x00', 0x4}, 0x1c, &(0x7f0000001980)=[{&(0x7f0000001880)="dd06ede52544c69b4621a93bb8e16a6590e7c0bc1be7149231c86d4915e4a93ca31f96802b63f6ff72a54e9bb2d50971aecd8d4a9ccb819d5c03064e9a005bf25ab8f3cc11a5f888106b59a25f689b1c8a689d48deb8b2132385d61b72433723bd7afc794a0150fef18c0fda76b2a649d23d7ee76842c9ba9e3dbd95b986c6a3f4a07b818c7d0028cbf1589c71c314241d01d6235e4d9ed37fbe524265961ac8c16f3b070bed9b3aa46d54d7b0c601fd486f8892e9f7", 0xb6}, {&(0x7f0000001940)="85adfb28b7f32d1ec30bd98dc7bae626159d9fa0030eeea10bf21d5bfe3620b91111116bbc3e6ca1e16c5e10b9c709b229304d80", 0x34}], 0x2, &(0x7f00000019c0)=[@init={0x18, 0x84, 0x0, {0x6, 0x5, 0x3, 0x52}}, @dstaddrv4={0x18, 0x84, 0x7, @multicast1}, @dstaddrv6={0x20, 0x84, 0x8, @empty}], 0x50, 0xc800}, {&(0x7f0000001a40)=@in6={0xa, 0x4e23, 0x84b, @dev={0xfe, 0x80, '\x00', 0x2d}, 0x200}, 0x1c, &(0x7f0000001ac0)=[{&(0x7f0000001a80)="e57f61c3b981872ac2d2181e44e0f313b6b4ed3d07dff70bf42a9fd50dbc41186cc9e73cfbea0569a5235f765a2d3a2f0a5af7583c", 0x35}], 0x1, &(0x7f0000001d00)=[@dstaddrv4={0x18, 0x84, 0x7, @broadcast}, @sndrcv={0x30, 0x84, 0x1, {0x7, 0x1, 0x5, 0x4, 0x8, 0x8, 0x86a, 0x6}}, @sndinfo={0x20, 0x84, 0x2, {0x2, 0x10106, 0x0, 0x2}}, @sndinfo={0x20, 0x84, 0x2, {0xc0, 0x0, 0x3, 0x4}}], 0x88, 0x1}, {&(0x7f0000001dc0)=@in={0x2, 0x4e22, @private=0xa010100}, 0x10, &(0x7f0000003e40)=[{&(0x7f0000001e00)="3de54de3ff0b84c7dceeb6a101", 0xd}, {&(0x7f0000001e40)="a32201060bad260cb1c9ff3a116a240bf911ea0606d57b9607a32f74aa0b57b13da7d1fc967aed6d57da9885b4540ce6e3c842b560d13399fc52b05a8cbc8ca7ee6234bc6e13220fff1c170f8d04bc4ac40d11d741f4f9ad7a259ad62a434ca77952015e544650f6624447b574c6592986acd02943ce91f1d7b09c69136a59902391ea38f1a0d5328fc4cae48952532937b275c1bfe6d9de1ec6c30fa997da8eacd64819e52a3b556190f392afa50a4daf05ef66fc3fce6d89849e88c3ec4be65229213cf0dc41e49db3f442fa58049303b68b67c0bc69d829f3aec96d78b9def17cb12f020ece38fff5d1271b8660a880d9fd36420996a20b1f25d4bedbc5aec6c6c8d06bd4190b3a25239c2163a50c152a4dc3d923cb6beda4ddb5effea72bebf01cdf31a5ab885348bc9c3e9147529c4310761ff5f0479b9209a3e0acad48f723a8b6b9fc4a2b4f2bae43116d89a536469f5498def96a71de2a7ae5fffd7242705bf386c656a554df654c8a7c18575deb81dd02e3e6787cc473c5a6e866ea487e91a5e492c993a33fb0491c44a6157a0dc27f72985d29900014110b1a919a971b52ee3adfe4fe5129feaebedf4d176bee29b8467d3ee1c9974767a973959c5417d982f0e328e4d04e2ab40ba349dbd342ac397f397416274eb79999fbd8c3dca6b26667101374b41287a8035c2181376a56e94cfc70280bd8936521fd79272b45f4d0a79fd85337e1b9e0d22465919e0f38a50892e0fda34bf27bbb4e315237a087d885c5eb543c5e35b6f8d67b2c7681c42dc1406bc45dacd0f6b2423265b8edd961dcff704eb65bfe001b84baea2d4507a8c13ec3261906ccb02463022cc7374dab02bfebab3470193ce40a0af6842d7762c8025d5d4884540f57e12e55ff2fe81757f0503e53144a281ab2ce49b38a33f277182bc6e6539a3c05a8eb9477aeca319294a85c46a70fa215c86455a8a8f394e3338c5e24ebff28f10a87c66a6c4c7eff9774a025104cbc2e039c1b4825411d5182d500946db83e1f65336d6dbd7a9ed9556c04daf13241eced2410755168724c40ef313a78213040ddeace587f833b148751d2b8fe6a430b2b4a282d1aabf10f760d61d7d66a7ccc1d0bb7bbc04c28824a777db1978decd4bfe13509c2084894ef9d1548eb27a22eb2b46ca928b0c63c8f796aba2fd4ec7d13eab23fb6231c6a72a27c6edb2fbddbe13381b1f615727cdb49fd4c3da2ed13c970185715fb26cecd2bd84f1225083b8c36f6e6a00da808748ab0a6052192a19f34cb9910a6080d4838ebd05cb72bd5c8fbc56d5c41edeec1437bf19596abaa8f4d22db170363108cff193a7022f5a1123aa7c5049c795a3ad8e13e89388aa50962e5b2eb4a4f61e510f06599d6f3a494eee599dacb25b01b16784045b7d483c57aae7b303ced36367efc05ee023e5c7d87bb2bc840a252303f405a3926df0f8df555bc8137cab853681a69006514b6a0c89f40069d9bd4385adeb0028b761f16f9defa68f9cb62f6609ecb693127e7ad83bddbbb287058a7645227cf932bfe5033ecd6ff12fdc2adb884424e94f5e9f63a16f73386cbbb43c6d95e27bc01e24173d291e99b1e055cd9ec483fb85d3b441ca7b9dfed81ebba22673685c81ddfb6b9ad77abcecee97339e85d77fbd3d5d305ecb8737182077e97ef47ce5dd3af8fb2280a7504032bb2e85d82be45bb0eadbc155a28c20522fc37348953ad07ffac08bed53c66657bb79721669299906cd45f62149b03a13fb2236304afc1f0a672dea170cdcc423edce1fcccda82bd7d6e5af25d4561cf82df93c5a314911806c0d230641e5c24d6df8f632c5a6217ea97545fc2080037622df48e2bb6bc931753bb10c48124ef1da938ef4b6940aadb5384669c7506d321cefb3a90feab1e140cbdf90f442e75b048d99fca48ffd409e91f8b6b5a3a2684147f7082ad91a021331f6730a3259641c8a59db0c8a4891fedf92f92dd121d687cda8a84d62b8d1d1d7a256ac127827089d06a535e27f7d0932362d527710a5e62ddf317316379e6bf8644a3dc8fdcf5a9fa05ca768c39b4e311641e20e880df75af359a24ab59857fc5132a554e91d34ed48747af5ce89435a2ef5fe2e46ed906683e2788253a30a09ff872baa311ea789df4c0bcdb96b9a1384cfdb2bbbb048157d39263852c4cca90360a60a8725b81f8ce35c609322a416898340098b75eaec0cded65e407214d7c074a0d58611c731e592701a96028063855eb8fa7d40a34227935033ec3705602ff97d8623d09a0ca0029933d079b9cc7e9c250e680a5f08934d8f1280f61fe3fdb0da325f37aed2fe871e8c14740e9d35f6ece3ef9ce9ca6569f3b3fc4a019ccf4978ca97414c81ba6f4b5fd133aa1db56e19332802ad4dcf73ae78926480380fa62e82434b816e72041ac274d6f21d67e7729a74a20bb83582d87786e7b28b5a24eba3eeeddb861f8745382e79ea1267ef218d63a4bf5b60b0c0fcd3b9f4de2199a2eb0cde212efc5b5225bfa0e358d586ce43dab8f8167e5c31e8f8a266bca42c202b5e66decdeda91d71e94da08dfea5fcc66cb6e93b68222e3ce09de33003dd49b65146ef6d0276086f550dc81af90a24dae971440d72309e9f24fd306a8a823b8d1e5b1ec30ef53b7c0bb32cb495f45f8a8e51c9d656e15baab43c86ecc2c081e75bc5f3553b58e3a0913a6b55d02e40dda88216e7c5a9e2d7cd99afbfa97e192bd5ca3078bf2bfe0e51a17247f68699d5fca421003aca59fd4121ff79aeb9a0f08e2c80373a73f39bb9210678feb549d0fa94937876aced24c49818f8907219cc0e813c5593321d110975c7557487f60d8a66bb743e6cfa0e09f0418c790401a9a46c41b60096934079dcfc2b0b8410c390f30c00506f7199b42ba94793034fbc033558986315b4f57446d37d0e862ab83945b1d2279fe3d31a3139f1c0a40ad5d3919421afd327ecb623e80235f20b90a3f1bd734f7af86c125f17b7a224b465e990fb23497dfe47fabf10c53a65ade73d66609bfc352d8e40d85c30153c0ee6a0467146b9b341fecd6843106012ca0d6d36b2003411a73422a6022bca80f3c6ff7fb3fc8a35c488ea4e0d251e5278867c790c680c0f5fda4557119241641ccdb696a0d102d3fe2a76faee7e15c3b808faed351374b9868491c914f429c8f7a908997781ff853901a8c3254eff7d55f968e85ba1bf86e6095b0b02869eed429d5ec6f865e379cccb41a40e06ea923729ac41ba0139af0f35b50a14fbc12a16540f12518e047b21f660b649012f05adb46e0eed9e2b4b9d4bdd36d23da1ea3a199604dbd1696cc8024cf453a1e0f2216e8a92fd04e270dffb96baf219abd8dd087ec510a9cea1a0b81cf5a7ed3e60689f1ee1a7697f7b66f6fa617bb4e15a810c5e1c245e3519b706cbe1565ad602026bad9971d978d7e0228cb0a846edb9c92b444c93c4763c810c41eab10b35ff6bed48337d262d18c4e9862ab887b749ef96d18b4c1b5d378b6b8d620bb796a0feab1f706d07b26e7eb2670de7b13e97bb03defe32707c686a17befd2ef5227aa6a02b2f713d2be26cf69b4882decd18a92bc3a9610acdbd9547badd43091d28c33f318fd733303d770dfd312dbcb08b82c5563c88e4753d4ab866bb7303b11afb00f8928ad83ae1aff68e89bed97338d1ac459a6470c0385c96c1948c46b5a7f7b47041890a4e536ac2029e70cca5e29bd5dacc590d9b85c149d892d60dadbc9c6e0b8ac57109403b64e3b63d3af08e1c6bc4778a1a8f3470db4dddee7a4b1c02ba521fee4bee18ecc14805e316fee0e7d60d41cb21ac90c4a65674c2de48f95a7d1cf1cfe33f7ea8935b59a2532ffa55557e3366c6a42b60cfa896efe2ed65311cfd421748407ac5cc33e99220f3a587aee180c726bb045d4c2aaa1e57d40895184a90fe6682239c9ccdb128f9761631961fef1c0b62f06b4734a87da131359f15a4d0017d1a2d97daaedc6f947d39e679d5e250da073e57fe08ebbf337078948da28b400dadfbb1ec717bbfacdcb8b403aa60248a5d63f348c9b3c8be56d9324a94913c2407b641b7a1d42b1b33f835468b78b76c840b2ebc7610955b6eed1c382794dd82bc9abb7643fd8e9727b410ab805d08d9fc3b36ac1b3cc76c409e328a7ab205a5561c705e12100b80547525a8cf2df147b8a62b39b5aba7c409205f6278fa46ada28c9c5b51589e7eb725f1c9323d9b8e84e036b5890346e0c38889743715acd6420b125b21144bd14d7e718f2911a04c52078191ad8a347822f6013538636a300e9b36ea0cc2f10c11ad33e964de5574a3032fee777ecc6ee8d1f379d99d15391437d9e161fd2034eb10cc70a0e0eb5eb49589254cba8406357bd505fa42ea133885e0befbf0acfddb2b7c737be4fbcc66181370e9a060d2178358ef232b9d506cba5a9e914c8295c6fff4f5f3f5ac09d19cfdfc84e4dd4844073776d652bbe79a0b091beda3cd45e6e1b27264a08942bff7431231c6f13fb222c5194e0b2533cb9c21b535da064aa5223a8814df22d5edb2b331f29e66b1385c39a5ea48283f9b23782dc826785db695063a3ec207e22363c674fe27563c2b53940d4407aea4cec0451a7bc64e476edff44debb1303c0ab2e660391f9e86ed5028c39f176d9e654ec8d99780a133591adc1e76f39516d0c3418d6ecfa149f56c1a50eb24c194e34ba68b4819d1ec594e2761bd3053b96484f7727851e01daa1c3db9c2c8293bd97a61bd0eeedb87abcd2ac696b169a52795c21b691a4870f66043c7046a5b8de002a4d1220299d6f8591978ce3f270040c8019f371efdc3cb6615a9d5f572b6276977acd8f4895a722a810d59373cb325f1f911f7ace73dbe8b7f54fdb4ae374e71d3c49df163dde866266f79628582a7bee4eb790e885d13d77ccf2951033a9c2f6a55061db9aab96d92b52ea1a4ac3ac9dfee3e5d81d73ac2dd2dcf1c44b47ceeea1a627cce7df04bff145a5ce19ad0056c604733329ed5a15a7efff15686487b110870349ff30c12f8e7f1806f264480787e753f54ba63b88d4518cda137936d2e92d5fd3e686ff7355c8e86b346751a013f9e9f0a9564d2b26e875a0695c476d02896c4232d8c1bab66db73048b335b0c0f4743670e7dbcf25329f0f168405e7fceee6a166a2e2a59a89559defe910ff12c5fee6172b8ebc2f305d3784b381ab9639c5743d8d497e6b68ab154275bb08ec4576cfabed657307b40435a754906b0f502949ab2693afeeb49f971144f61e2bd64fed38b514155498b16b2e24cf24d76380b944f5d18dd60c4c55ad4d79a2bef49e365fda1e0d47917da994eb743d5cd91fb9378b8ed3531ce486f04abc0012be163bc8090b5554d1f8f80ad36f1baa23a5d8dd7c100297f4e22c744390bad0396e6f5c84f35c8e33019c00a49bcbe30a4ed8d0b5f69e2bc0710afd4ab69d21cca2c3969bc03f479543d2b7216ba347d05dcd6697569109e1fc7961158bad71938254b108db4ef4a7e490179ca0c24a39ff876c01949cb7956bf07d23b81dbde9e8fb41bc6388b34cd66fec24a379b394631dabab0e05d8033699cdcc03f9d21c57c74edf51251a97eb3fd3da1bd6d9da322e4a67bf11dc73cb9f8720b1b222a0f5b158122acf2035595776126f43314c00ed5cbd47aba1388a216f3ba4e91848525cf5fb562c2a366378b824e5f3704d3c34dd82832fe3da0449dbf40a065cd6a793941f4284232f67c7fad768f949f1d4531a4f6c714deafa512286c1bed23a0c2baa1bf3", 0x1000}, {&(0x7f0000002e40)="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", 0x1000}], 0x3, &(0x7f0000003fc0)=[@sndinfo={0x20, 0x84, 0x2, {0x9, 0x200, 0x8b, 0x69}}], 0x20, 0x7457450641d6284b}], 0x3, 0x10000004)

135.137451ms ago: executing program 5 (id=702):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xfbff, @empty}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f00000004c0)="1ed8b7f9d457", 0x6}], 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000080)
r1 = socket(0x2c, 0x3, 0x0)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum={0x0, 0x0, 0x0, 0x13}]}}, 0x0, 0x26, 0x0, 0x0, 0xfbc}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000140)={0x9, 0x4, 0x4, 0x2, 0x80, 0x1, 0x0, '\x00', 0x0, r2, 0x3, 0x1, 0x3}, 0x50)
close_range(r1, 0xffffffffffffffff, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = socket$kcm(0x11, 0x2, 0x0)
shutdown(r3, 0x1)
setsockopt$sock_attach_bpf(r3, 0x107, 0x14, &(0x7f0000000000), 0x4)
sendmsg$kcm(r3, &(0x7f0000000300)={&(0x7f00000000c0)=@phonet={0x23, 0x0, 0x0, 0x5}, 0x80, 0x0}, 0x0)

134.951651ms ago: executing program 5 (id=703):
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40186f40, &(0x7f0000000040)=0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x18)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
move_pages(0x0, 0x20a0, &(0x7f0000000040), &(0x7f0000001180), &(0x7f0000000000), 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
execve(&(0x7f0000000040)='./file0\x00', &(0x7f0000000780)={[&(0x7f0000000840)='\x7f\xb7\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xa9\x1702\x7f\x9e\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab7P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb80\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\xb9\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7\x87C\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01']}, 0x0)

69.766294ms ago: executing program 4 (id=704):
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='veth1_to_team\x00', 0x10)
sendto$inet(r0, 0x0, 0x0, 0x804, &(0x7f0000000080)={0x2, 0x4e22, @multicast1}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000040)=0x2, 0x4)
recvmmsg(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, 0x0}, 0x8a}], 0x1, 0x22, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x50, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x922ecbcc}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b000100627269646765000018000280050019"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r1 = socket$netlink(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000001c0)='./bus\x00', 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="05012cbde9185c5036671517000008000300", @ANYRES32=r4], 0x30}, 0x1, 0x0, 0x0, 0x4810}, 0x0)
mount$overlay(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000140), 0x200800, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000440)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1/file0'}}]})
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x12)
socket(0x10, 0x3, 0x0)
r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000900)=@newtaction={0x74, 0x30, 0xb, 0x5, 0x0, {}, [{0x60, 0x1, [@m_ct={0x5c, 0x1, 0x0, 0x0, {{0x7}, {0x34, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x0, 0x0, 0x400}}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @private=0xa010102}, @TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @multicast2}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r8 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_ADD_MFC(r8, 0x29, 0xcc, &(0x7f0000000380)={{0xa, 0x4e24, 0x1, @private2, 0x29}, {0xa, 0x4e24, 0x6, @mcast1, 0x6}, 0x0, {[0x8, 0x8, 0x1b, 0x9, 0x9, 0xa, 0x7ff, 0x8e69]}}, 0x5c)
dup2(r5, r7)

69.540085ms ago: executing program 2 (id=705):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000b40)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "0100"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @local=@item_4={0x3, 0x2, 0x0, "53743ff6"}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8, "0400"}, @global=@item_4={0x3, 0x1, 0x5, "a90da1f6"}, @local=@item_4={0x3, 0x2, 0x0, "00000400"}]}}, 0x0}, 0x0)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCGKEYCODE_V2(r2, 0x80284504, &(0x7f0000000100)=""/101)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001840)=ANY=[@ANYBLOB="34000000000401"], 0x40}}, 0x0)

285.32µs ago: executing program 4 (id=706):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000080)={0x11, 0x1, 0xc, 0x8001, @vifc_lcl_ifindex, @empty}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x24, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x1, 0xfff2}, {0xffff, 0xffff}, {0x0, 0x2}}}, 0x24}}, 0x4)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000500), 0x101002, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0xac1414aa, @initdev={0xac, 0x1e, 0x0, 0x0}}, "341517c1b7df60c7"}}}}}, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x4000011, r4, 0x80000000)

0s ago: executing program 4 (id=707):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="fcffffff00"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES8], 0x50)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00') (async)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
r2 = fcntl$dupfd(r1, 0x0, r1) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@bridge_newvlan={0x24, 0x70, 0x239, 0x70bd2a, 0x25dfdbfb, {0x7, 0x0, 0x0, r4}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_RANGE={0x6, 0x2, 0x8}}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x2404c0d0) (async)
ioctl$TCFLSH(r2, 0x400455c8, 0x2) (async)
ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000140)=0xffffffc0) (async)
pread64(r0, &(0x7f0000000080)=""/237, 0xed, 0x0)

kernel console output (not intermixed with test programs):

are name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.527170][ T6623] Call Trace:
[   64.527177][ T6623]  <TASK>
[   64.527184][ T6623]  dump_stack_lvl+0x16c/0x1f0
[   64.527214][ T6623]  should_fail_ex+0x512/0x640
[   64.527240][ T6623]  ? __kmalloc_node_noprof+0xcd/0x8a0
[   64.527262][ T6623]  should_failslab+0xc2/0x120
[   64.527283][ T6623]  __kmalloc_node_noprof+0xe0/0x8a0
[   64.527300][ T6623]  ? alloc_slab_obj_exts+0x43/0xf0
[   64.527329][ T6623]  ? alloc_slab_obj_exts+0x43/0xf0
[   64.527350][ T6623]  alloc_slab_obj_exts+0x43/0xf0
[   64.527388][ T6623]  new_slab+0x283/0x360
[   64.527414][ T6623]  ___slab_alloc+0xdae/0x1a60
[   64.527443][ T6623]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.527483][ T6623]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.527509][ T6623]  ? __slab_alloc.constprop.0+0x63/0x110
[   64.527531][ T6623]  __slab_alloc.constprop.0+0x63/0x110
[   64.527560][ T6623]  kmem_cache_alloc_noprof+0x43f/0x6e0
[   64.527585][ T6623]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   64.527610][ T6623]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.527641][ T6623]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.527667][ T6623]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.527700][ T6623]  mmu_topup_memory_caches+0x25/0x170
[   64.527731][ T6623]  kvm_mmu_load+0xd6/0x23c0
[   64.527760][ T6623]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   64.527782][ T6623]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   64.527809][ T6623]  ? __pfx_kvm_mmu_load+0x10/0x10
[   64.527836][ T6623]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   64.527862][ T6623]  ? kvm_check_and_inject_events+0x71c/0x1310
[   64.527897][ T6623]  vcpu_run+0x3779/0x54d0
[   64.527930][ T6623]  ? __pfx_vcpu_run+0x10/0x10
[   64.527956][ T6623]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   64.527976][ T6623]  ? __local_bh_enable_ip+0xa4/0x120
[   64.528005][ T6623]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   64.528023][ T6623]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   64.528052][ T6623]  kvm_vcpu_ioctl+0x5eb/0x1690
[   64.528080][ T6623]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.528105][ T6623]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   64.528129][ T6623]  ? do_vfs_ioctl+0x128/0x14f0
[   64.528156][ T6623]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   64.528180][ T6623]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   64.528210][ T6623]  ? hook_file_ioctl_common+0x145/0x410
[   64.528246][ T6623]  ? selinux_file_ioctl+0x180/0x270
[   64.528264][ T6623]  ? selinux_file_ioctl+0xb4/0x270
[   64.528284][ T6623]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.528309][ T6623]  __x64_sys_ioctl+0x18e/0x210
[   64.528334][ T6623]  do_syscall_64+0xcd/0xfa0
[   64.528363][ T6623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.528380][ T6623] RIP: 0033:0x7f6454f8efc9
[   64.528395][ T6623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.528411][ T6623] RSP: 002b:00007f6455d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.528427][ T6623] RAX: ffffffffffffffda RBX: 00007f64551e5fa0 RCX: 00007f6454f8efc9
[   64.528438][ T6623] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   64.528448][ T6623] RBP: 00007f6455d9f090 R08: 0000000000000000 R09: 0000000000000000
[   64.528458][ T6623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   64.528468][ T6623] R13: 00007f64551e6038 R14: 00007f64551e5fa0 R15: 00007ffd1c29d4f8
[   64.528494][ T6623]  </TASK>
[   64.648071][ T6626] warning: `syz.4.149' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   64.807548][   T59] usb 7-1: USB disconnect, device number 2
[   64.918048][ T6663] FAULT_INJECTION: forcing a failure.
[   64.918048][ T6663] name failslab, interval 1, probability 0, space 0, times 0
[   64.923529][ T6663] CPU: 0 UID: 0 PID: 6663 Comm: syz.4.160 Not tainted syzkaller #0 PREEMPT(full) 
[   64.923549][ T6663] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.923559][ T6663] Call Trace:
[   64.923565][ T6663]  <TASK>
[   64.923572][ T6663]  dump_stack_lvl+0x16c/0x1f0
[   64.923601][ T6663]  should_fail_ex+0x512/0x640
[   64.923620][ T6663]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   64.923646][ T6663]  should_failslab+0xc2/0x120
[   64.923667][ T6663]  kmem_cache_alloc_noprof+0x75/0x6e0
[   64.923689][ T6663]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   64.923712][ T6663]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.923739][ T6663]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.923762][ T6663]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   64.923804][ T6663]  mmu_topup_memory_caches+0x25/0x170
[   64.923831][ T6663]  kvm_mmu_load+0xd6/0x23c0
[   64.923855][ T6663]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   64.923875][ T6663]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   64.923898][ T6663]  ? __pfx_kvm_mmu_load+0x10/0x10
[   64.923922][ T6663]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   64.923945][ T6663]  ? kvm_check_and_inject_events+0x71c/0x1310
[   64.923976][ T6663]  vcpu_run+0x3779/0x54d0
[   64.924003][ T6663]  ? __pfx_vcpu_run+0x10/0x10
[   64.924024][ T6663]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   64.924044][ T6663]  ? __local_bh_enable_ip+0xa4/0x120
[   64.924068][ T6663]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   64.924084][ T6663]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   64.924109][ T6663]  kvm_vcpu_ioctl+0x5eb/0x1690
[   64.924134][ T6663]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.924156][ T6663]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   64.924179][ T6663]  ? do_vfs_ioctl+0x128/0x14f0
[   64.924202][ T6663]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   64.924224][ T6663]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   64.924257][ T6663]  ? hook_file_ioctl_common+0x145/0x410
[   64.924285][ T6663]  ? selinux_file_ioctl+0x180/0x270
[   64.924301][ T6663]  ? selinux_file_ioctl+0xb4/0x270
[   64.924319][ T6663]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   64.924341][ T6663]  __x64_sys_ioctl+0x18e/0x210
[   64.924364][ T6663]  do_syscall_64+0xcd/0xfa0
[   64.924390][ T6663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.924406][ T6663] RIP: 0033:0x7f630a58efc9
[   64.924419][ T6663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.924434][ T6663] RSP: 002b:00007f630b399038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.924450][ T6663] RAX: ffffffffffffffda RBX: 00007f630a7e5fa0 RCX: 00007f630a58efc9
[   64.924460][ T6663] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   64.924469][ T6663] RBP: 00007f630b399090 R08: 0000000000000000 R09: 0000000000000000
[   64.924479][ T6663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   64.924488][ T6663] R13: 00007f630a7e6038 R14: 00007f630a7e5fa0 R15: 00007ffc24dc9238
[   64.924512][ T6663]  </TASK>
[   65.041962][    C0] vkms_vblank_simulate: vblank timer overrun
[   65.050469][ T6678] sctp: [Deprecated]: syz.3.166 (pid 6678) Use of int in maxseg socket option.
[   65.050469][ T6678] Use struct sctp_assoc_value instead
[   65.159988][ T6686] qnx4: no qnx4 filesystem (no root dir).
[   65.210207][   T59] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   65.301739][ T6693] process 'syz.1.172' launched './file1' with NULL argv: empty string added
[   65.315771][ T6693] vlan2: entered promiscuous mode
[   65.317373][ T6693] bridge0: entered promiscuous mode
[   65.355714][ T6697] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   65.363067][   T59] usb 7-1: Using ep0 maxpacket: 16
[   65.365896][   T59] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   65.371433][   T59] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   65.374306][   T59] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   65.377217][   T59] usb 7-1: Product: syz
[   65.378667][   T59] usb 7-1: Manufacturer: syz
[   65.381306][   T59] usb 7-1: SerialNumber: syz
[   65.385785][   T59] usb 7-1: config 0 descriptor??
[   65.390249][   T59] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   65.394243][   T59] em28xx 7-1:0.0: DVB interface 0 found: bulk
[   65.630419][  T131] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   65.661371][   T59] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[   65.728050][   T59] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[   65.731728][   T59] em28xx 7-1:0.0: board has no eeprom
[   65.780258][  T131] usb 6-1: Using ep0 maxpacket: 16
[   65.783900][  T131] usb 6-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[   65.786978][  T131] usb 6-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[   65.790373][   T59] em28xx 7-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[   65.790919][  T131] usb 6-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   65.793608][   T59] em28xx 7-1:0.0: dvb set to bulk mode.
[   65.798623][  T131] usb 6-1: config 1 interface 0 has no altsetting 0
[   65.803863][ T5982] em28xx 7-1:0.0: Binding DVB extension
[   65.805031][  T131] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   65.808686][   T59] usb 7-1: USB disconnect, device number 3
[   65.810713][  T131] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   65.815263][  T131] usb 6-1: Product: syz
[   65.816195][   T59] em28xx 7-1:0.0: Disconnecting em28xx
[   65.816963][  T131] usb 6-1: Manufacturer: syz
[   65.820853][  T131] usb 6-1: SerialNumber: syz
[   65.831195][ T5982] em28xx 7-1:0.0: Registering input extension
[   65.834144][   T59] em28xx 7-1:0.0: Closing input extension
[   65.843980][   T59] em28xx 7-1:0.0: Freeing device
[   65.940381][ T5950] Bluetooth: hci3: command 0x041b tx timeout
[   66.034187][  T131] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[   66.090808][ T6708] FAULT_INJECTION: forcing a failure.
[   66.090808][ T6708] name failslab, interval 1, probability 0, space 0, times 0
[   66.094641][ T6708] CPU: 1 UID: 0 PID: 6708 Comm: syz.4.177 Not tainted syzkaller #0 PREEMPT(full) 
[   66.094655][ T6708] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.094661][ T6708] Call Trace:
[   66.094664][ T6708]  <TASK>
[   66.094668][ T6708]  dump_stack_lvl+0x16c/0x1f0
[   66.094688][ T6708]  should_fail_ex+0x512/0x640
[   66.094700][ T6708]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   66.094718][ T6708]  should_failslab+0xc2/0x120
[   66.094731][ T6708]  kmem_cache_alloc_noprof+0x75/0x6e0
[   66.094746][ T6708]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   66.094761][ T6708]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   66.094779][ T6708]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   66.094794][ T6708]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   66.094813][ T6708]  mmu_topup_memory_caches+0x25/0x170
[   66.094831][ T6708]  kvm_mmu_load+0xd6/0x23c0
[   66.094847][ T6708]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   66.094861][ T6708]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   66.094875][ T6708]  ? __pfx_kvm_mmu_load+0x10/0x10
[   66.094891][ T6708]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   66.094906][ T6708]  ? kvm_check_and_inject_events+0x71c/0x1310
[   66.094926][ T6708]  vcpu_run+0x3779/0x54d0
[   66.094942][ T6708]  ? __pfx_vcpu_run+0x10/0x10
[   66.094956][ T6708]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   66.094968][ T6708]  ? __local_bh_enable_ip+0xa4/0x120
[   66.095000][ T6708]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   66.095012][ T6708]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   66.095027][ T6708]  kvm_vcpu_ioctl+0x5eb/0x1690
[   66.095043][ T6708]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   66.095058][ T6708]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   66.095072][ T6708]  ? do_vfs_ioctl+0x128/0x14f0
[   66.095087][ T6708]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   66.095101][ T6708]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   66.095118][ T6708]  ? hook_file_ioctl_common+0x145/0x410
[   66.095136][ T6708]  ? selinux_file_ioctl+0x180/0x270
[   66.095146][ T6708]  ? selinux_file_ioctl+0xb4/0x270
[   66.095158][ T6708]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   66.095173][ T6708]  __x64_sys_ioctl+0x18e/0x210
[   66.095188][ T6708]  do_syscall_64+0xcd/0xfa0
[   66.095204][ T6708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.095219][ T6708] RIP: 0033:0x7f630a58efc9
[   66.095227][ T6708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.095237][ T6708] RSP: 002b:00007f630b399038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   66.095247][ T6708] RAX: ffffffffffffffda RBX: 00007f630a7e5fa0 RCX: 00007f630a58efc9
[   66.095253][ T6708] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   66.095258][ T6708] RBP: 00007f630b399090 R08: 0000000000000000 R09: 0000000000000000
[   66.095264][ T6708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   66.095270][ T6708] R13: 00007f630a7e6038 R14: 00007f630a7e5fa0 R15: 00007ffc24dc9238
[   66.095283][ T6708]  </TASK>
[   66.240163][   T59] usb 7-1: new low-speed USB device number 4 using dummy_hcd
[   66.299284][ T6713] capability: warning: `syz.4.179' uses deprecated v2 capabilities in a way that may be insecure
[   66.390219][   T59] usb 7-1: Invalid ep0 maxpacket: 16
[   66.520168][   T59] usb 7-1: new low-speed USB device number 5 using dummy_hcd
[   66.570192][ T5938] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   66.583279][ T6714] dlm: no locking on control device
[   66.690153][   T59] usb 7-1: Invalid ep0 maxpacket: 16
[   66.692769][   T59] usb usb7-port1: attempt power cycle
[   66.734273][ T5938] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   66.738100][ T5938] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   66.743611][ T5938] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   66.752848][ T5938] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   66.756289][ T5938] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   66.758732][ T5938] usb 9-1: Product: syz
[   66.760034][ T5938] usb 9-1: Manufacturer: syz
[   66.761615][ T5938] usb 9-1: SerialNumber: syz
[   66.767128][ T5938] hub 9-1:1.0: bad descriptor, ignoring hub
[   66.769016][ T5938] hub 9-1:1.0: probe with driver hub failed with error -5
[   66.854411][ T6717] __nla_validate_parse: 17 callbacks suppressed
[   66.854426][ T6717] netlink: 8 bytes leftover after parsing attributes in process `syz.3.180'.
[   66.975040][ T5938] usblp 9-1:1.0: usblp1: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   67.001110][ T5938] usb 9-1: USB disconnect, device number 2
[   67.008076][ T5938] usblp1: removed
[   67.030577][   T59] usb 7-1: new low-speed USB device number 6 using dummy_hcd
[   67.051887][   T59] usb 7-1: Invalid ep0 maxpacket: 16
[   67.180935][   T59] usb 7-1: new low-speed USB device number 7 using dummy_hcd
[   67.200905][   T59] usb 7-1: Invalid ep0 maxpacket: 16
[   67.203347][   T59] usb usb7-port1: unable to enumerate USB device
[   67.506385][ T6726] netlink: 172 bytes leftover after parsing attributes in process `syz.4.183'.
[   67.692584][ T6733] netlink: 20 bytes leftover after parsing attributes in process `syz.4.185'.
[   67.695406][ T6733] nbd: must specify at least one socket
[   67.863608][   T40] kauditd_printk_skb: 123 callbacks suppressed
[   67.863622][   T40] audit: type=1400 audit(1762015928.321:407): avc:  denied  { read write } for  pid=6740 comm="syz.2.187" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   67.875116][   T40] audit: type=1400 audit(1762015928.321:408): avc:  denied  { open } for  pid=6740 comm="syz.2.187" path="/dev/ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   67.884147][   T40] audit: type=1400 audit(1762015928.331:409): avc:  denied  { ioctl } for  pid=6740 comm="syz.2.187" path="/dev/ppp" dev="devtmpfs" ino=730 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   67.885899][ T6741] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   67.900749][ T6741] iommufd_mock iommufd_mock1: Adding to iommu group 10
[   67.904739][   T40] audit: type=1400 audit(1762015928.361:410): avc:  denied  { accept } for  pid=6740 comm="syz.2.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   67.914281][ T6743] autofs4:pid:6743:validate_dev_ioctl: invalid path supplied for cmd(0xc018937e)
[   67.917026][   T40] audit: type=1400 audit(1762015928.371:411): avc:  denied  { read } for  pid=6742 comm="syz.3.188" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   67.924910][   T40] audit: type=1400 audit(1762015928.371:412): avc:  denied  { open } for  pid=6742 comm="syz.3.188" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   67.932171][   T40] audit: type=1400 audit(1762015928.371:413): avc:  denied  { ioctl } for  pid=6742 comm="syz.3.188" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   68.022510][ T5950] Bluetooth: hci3: command 0x041b tx timeout
[   68.027015][ T6750] netlink: 'syz.2.190': attribute type 1 has an invalid length.
[   68.030231][ T6750] netlink: 'syz.2.190': attribute type 3 has an invalid length.
[   68.033378][ T6750] netlink: 224 bytes leftover after parsing attributes in process `syz.2.190'.
[   68.060383][   T40] audit: type=1400 audit(1762015928.511:414): avc:  denied  { setopt } for  pid=6757 comm="syz.4.193" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   68.069409][ T6758] netlink: 8 bytes leftover after parsing attributes in process `syz.4.193'.
[   68.072709][ T6758] netlink: 4 bytes leftover after parsing attributes in process `syz.4.193'.
[   68.097335][ T6759] netlink: 64 bytes leftover after parsing attributes in process `syz.3.192'.
[   68.198525][   T40] audit: type=1400 audit(1762015928.651:415): avc:  denied  { ioctl } for  pid=6769 comm="syz.2.198" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0xe501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   68.242905][   T40] audit: type=1400 audit(1762015928.701:416): avc:  denied  { write } for  pid=6766 comm="syz.3.197" path="socket:[14152]" dev="sockfs" ino=14152 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   68.292897][ T6792] netlink: 'syz.3.197': attribute type 2 has an invalid length.
[   68.373769][ T6800] FAULT_INJECTION: forcing a failure.
[   68.373769][ T6800] name failslab, interval 1, probability 0, space 0, times 0
[   68.377753][ T6800] CPU: 2 UID: 0 PID: 6800 Comm: syz.4.202 Not tainted syzkaller #0 PREEMPT(full) 
[   68.377767][ T6800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.377773][ T6800] Call Trace:
[   68.377777][ T6800]  <TASK>
[   68.377781][ T6800]  dump_stack_lvl+0x16c/0x1f0
[   68.377800][ T6800]  should_fail_ex+0x512/0x640
[   68.377813][ T6800]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   68.377831][ T6800]  should_failslab+0xc2/0x120
[   68.377843][ T6800]  kmem_cache_alloc_noprof+0x75/0x6e0
[   68.377858][ T6800]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   68.377874][ T6800]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   68.377892][ T6800]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   68.377907][ T6800]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   68.377926][ T6800]  mmu_topup_memory_caches+0x25/0x170
[   68.377944][ T6800]  kvm_mmu_load+0xd6/0x23c0
[   68.377961][ T6800]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   68.377974][ T6800]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   68.377991][ T6800]  ? __pfx_kvm_mmu_load+0x10/0x10
[   68.378007][ T6800]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   68.378022][ T6800]  ? kvm_check_and_inject_events+0x71c/0x1310
[   68.378043][ T6800]  vcpu_run+0x3779/0x54d0
[   68.378059][ T6800]  ? __pfx_vcpu_run+0x10/0x10
[   68.378072][ T6800]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   68.378085][ T6800]  ? __local_bh_enable_ip+0xa4/0x120
[   68.378101][ T6800]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   68.378111][ T6800]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   68.378126][ T6800]  kvm_vcpu_ioctl+0x5eb/0x1690
[   68.378141][ T6800]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   68.378156][ T6800]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   68.378170][ T6800]  ? do_vfs_ioctl+0x128/0x14f0
[   68.378185][ T6800]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   68.378200][ T6800]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   68.378216][ T6800]  ? hook_file_ioctl_common+0x145/0x410
[   68.378238][ T6800]  ? selinux_file_ioctl+0x180/0x270
[   68.378249][ T6800]  ? selinux_file_ioctl+0xb4/0x270
[   68.378260][ T6800]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   68.378275][ T6800]  __x64_sys_ioctl+0x18e/0x210
[   68.378291][ T6800]  do_syscall_64+0xcd/0xfa0
[   68.378308][ T6800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.378318][ T6800] RIP: 0033:0x7f630a58efc9
[   68.378327][ T6800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.378336][ T6800] RSP: 002b:00007f630b399038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.378347][ T6800] RAX: ffffffffffffffda RBX: 00007f630a7e5fa0 RCX: 00007f630a58efc9
[   68.378353][ T6800] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   68.378359][ T6800] RBP: 00007f630b399090 R08: 0000000000000000 R09: 0000000000000000
[   68.378364][ T6800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.378370][ T6800] R13: 00007f630a7e6038 R14: 00007f630a7e5fa0 R15: 00007ffc24dc9238
[   68.378383][ T6800]  </TASK>
[   68.511694][  T941] usb 6-1: USB disconnect, device number 2
[   68.520970][  T941] usblp0: removed
[   68.633440][ T6821] netlink: 'syz.1.206': attribute type 1 has an invalid length.
[   68.636008][ T6821] netlink: 228 bytes leftover after parsing attributes in process `syz.1.206'.
[   68.996724][ T6837] i2c i2c-1: Invalid block write size 34
[   69.050210][  T941] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   69.105172][ T6846] program syz.2.212 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   69.109972][ T6845] fuse: Unknown parameter 'user[id'
[   69.200510][  T941] usb 9-1: device descriptor read/64, error -71
[   69.440176][  T941] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[   69.580187][  T941] usb 9-1: device descriptor read/64, error -71
[   69.690514][  T941] usb usb9-port1: attempt power cycle
[   69.738735][ T6873] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.216'.
[   69.741737][ T6873] ksmbd: Unknown IPC event: 1, ignore.
[   69.771538][ T6877] FAULT_INJECTION: forcing a failure.
[   69.771538][ T6877] name failslab, interval 1, probability 0, space 0, times 0
[   69.775397][ T6877] CPU: 1 UID: 0 PID: 6877 Comm: syz.1.217 Not tainted syzkaller #0 PREEMPT(full) 
[   69.775411][ T6877] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.775417][ T6877] Call Trace:
[   69.775429][ T6877]  <TASK>
[   69.775433][ T6877]  dump_stack_lvl+0x16c/0x1f0
[   69.775466][ T6877]  should_fail_ex+0x512/0x640
[   69.775486][ T6877]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   69.775503][ T6877]  should_failslab+0xc2/0x120
[   69.775515][ T6877]  kmem_cache_alloc_noprof+0x75/0x6e0
[   69.775530][ T6877]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   69.775546][ T6877]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   69.775564][ T6877]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   69.775579][ T6877]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   69.775599][ T6877]  mmu_topup_memory_caches+0x25/0x170
[   69.775616][ T6877]  kvm_mmu_load+0xd6/0x23c0
[   69.775633][ T6877]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   69.775646][ T6877]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   69.775661][ T6877]  ? __pfx_kvm_mmu_load+0x10/0x10
[   69.775677][ T6877]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   69.775692][ T6877]  ? kvm_check_and_inject_events+0x71c/0x1310
[   69.775712][ T6877]  vcpu_run+0x3779/0x54d0
[   69.775728][ T6877]  ? __pfx_vcpu_run+0x10/0x10
[   69.775742][ T6877]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   69.775755][ T6877]  ? __local_bh_enable_ip+0xa4/0x120
[   69.775771][ T6877]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   69.775781][ T6877]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   69.775796][ T6877]  kvm_vcpu_ioctl+0x5eb/0x1690
[   69.775812][ T6877]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   69.775827][ T6877]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   69.775841][ T6877]  ? do_vfs_ioctl+0x128/0x14f0
[   69.775856][ T6877]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   69.775870][ T6877]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   69.775888][ T6877]  ? hook_file_ioctl_common+0x145/0x410
[   69.775909][ T6877]  ? selinux_file_ioctl+0x180/0x270
[   69.775920][ T6877]  ? selinux_file_ioctl+0xb4/0x270
[   69.775931][ T6877]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   69.775946][ T6877]  __x64_sys_ioctl+0x18e/0x210
[   69.775962][ T6877]  do_syscall_64+0xcd/0xfa0
[   69.775979][ T6877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.775989][ T6877] RIP: 0033:0x7f41cdf8efc9
[   69.775998][ T6877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.776007][ T6877] RSP: 002b:00007f41cee3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   69.776018][ T6877] RAX: ffffffffffffffda RBX: 00007f41ce1e5fa0 RCX: 00007f41cdf8efc9
[   69.776024][ T6877] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   69.776030][ T6877] RBP: 00007f41cee3e090 R08: 0000000000000000 R09: 0000000000000000
[   69.776036][ T6877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   69.776041][ T6877] R13: 00007f41ce1e6038 R14: 00007f41ce1e5fa0 R15: 00007ffdc1db4528
[   69.776055][ T6877]  </TASK>
[   70.050165][  T941] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[   70.057983][ T6896] netlink: 'syz.2.223': attribute type 1 has an invalid length.
[   70.065240][ T6896] MTD: Couldn't look up './bus': -15
[   70.081829][  T941] usb 9-1: device descriptor read/8, error -71
[   70.154794][ T6909] netlink: 4 bytes leftover after parsing attributes in process `syz.2.227'.
[   70.320260][  T941] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[   70.350634][  T941] usb 9-1: device descriptor read/8, error -71
[   70.470651][  T941] usb usb9-port1: unable to enumerate USB device
[   70.927892][ T6901] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   70.967071][ T6916] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   70.970885][ T6916] block device autoloading is deprecated and will be removed.
[   71.018861][ T6918] 8021q: adding VLAN 0 to HW filter on device bond1
[   71.028305][ T6918] bond_slave_0: entered promiscuous mode
[   71.030264][ T6918] bond_slave_1: entered promiscuous mode
[   71.032824][ T6918] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   71.036261][ T6918] bond1: (slave macvlan2): Enslaving as a backup interface with an up link
[   71.223406][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[   71.225575][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[   71.330321][   T59] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   71.481340][   T59] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   71.484459][   T59] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   71.487389][   T59] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   71.493803][   T59] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   71.496536][   T59] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.498985][   T59] usb 8-1: Product: syz
[   71.500567][   T59] usb 8-1: Manufacturer: syz
[   71.502023][   T59] usb 8-1: SerialNumber: syz
[   71.506953][   T59] hub 8-1:1.0: bad descriptor, ignoring hub
[   71.509435][   T59] hub 8-1:1.0: probe with driver hub failed with error -5
[   71.709675][   T59] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   72.020403][   T10] usb 8-1: USB disconnect, device number 2
[   72.024040][   T10] usblp0: removed
[   72.180149][ T5950] Bluetooth: hci0: command 0x0c1a tx timeout
[   72.444715][ T6954] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   72.743988][ T6975] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   72.747994][ T6975] iommufd_mock iommufd_mock1: Adding to iommu group 10
[   72.859407][ T6980] overlayfs: missing 'workdir'
[   72.873849][ T6980] __nla_validate_parse: 1 callbacks suppressed
[   72.873859][ T6980] netlink: 12 bytes leftover after parsing attributes in process `syz.3.249'.
[   72.903490][ T6982] netlink: 4 bytes leftover after parsing attributes in process `syz.4.250'.
[   72.966698][   T40] kauditd_printk_skb: 35 callbacks suppressed
[   72.966708][   T40] audit: type=1400 audit(1762015933.421:452): avc:  denied  { mounton } for  pid=6985 comm="syz.4.253" path="/bus" dev="ramfs" ino=16695 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[   73.014027][ T6995] kvm: user requested TSC rate below hardware speed
[   73.077927][ T7002] FAULT_INJECTION: forcing a failure.
[   73.077927][ T7002] name failslab, interval 1, probability 0, space 0, times 0
[   73.082320][ T7002] CPU: 2 UID: 0 PID: 7002 Comm: syz.3.257 Not tainted syzkaller #0 PREEMPT(full) 
[   73.082335][ T7002] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   73.082341][ T7002] Call Trace:
[   73.082345][ T7002]  <TASK>
[   73.082349][ T7002]  dump_stack_lvl+0x16c/0x1f0
[   73.082369][ T7002]  should_fail_ex+0x512/0x640
[   73.082382][ T7002]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   73.082399][ T7002]  should_failslab+0xc2/0x120
[   73.082412][ T7002]  kmem_cache_alloc_noprof+0x75/0x6e0
[   73.082427][ T7002]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   73.082442][ T7002]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   73.082460][ T7002]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   73.082476][ T7002]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   73.082495][ T7002]  mmu_topup_memory_caches+0x25/0x170
[   73.082513][ T7002]  kvm_mmu_load+0xd6/0x23c0
[   73.082530][ T7002]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   73.082543][ T7002]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   73.082558][ T7002]  ? __pfx_kvm_mmu_load+0x10/0x10
[   73.082574][ T7002]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   73.082589][ T7002]  ? kvm_check_and_inject_events+0x71c/0x1310
[   73.082610][ T7002]  vcpu_run+0x3779/0x54d0
[   73.082626][ T7002]  ? __pfx_vcpu_run+0x10/0x10
[   73.082640][ T7002]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   73.082653][ T7002]  ? __local_bh_enable_ip+0xa4/0x120
[   73.082669][ T7002]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   73.082680][ T7002]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   73.082695][ T7002]  kvm_vcpu_ioctl+0x5eb/0x1690
[   73.082711][ T7002]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.082725][ T7002]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   73.082741][ T7002]  ? do_vfs_ioctl+0x128/0x14f0
[   73.082756][ T7002]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   73.082771][ T7002]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   73.082789][ T7002]  ? hook_file_ioctl_common+0x145/0x410
[   73.082807][ T7002]  ? selinux_file_ioctl+0x180/0x270
[   73.082817][ T7002]  ? selinux_file_ioctl+0xb4/0x270
[   73.082834][ T7002]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   73.082849][ T7002]  __x64_sys_ioctl+0x18e/0x210
[   73.082865][ T7002]  do_syscall_64+0xcd/0xfa0
[   73.082882][ T7002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.082892][ T7002] RIP: 0033:0x7f6454f8efc9
[   73.082901][ T7002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.082911][ T7002] RSP: 002b:00007f6455d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   73.082950][ T7002] RAX: ffffffffffffffda RBX: 00007f64551e5fa0 RCX: 00007f6454f8efc9
[   73.082956][ T7002] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   73.082962][ T7002] RBP: 00007f6455d9f090 R08: 0000000000000000 R09: 0000000000000000
[   73.082968][ T7002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   73.082974][ T7002] R13: 00007f64551e6038 R14: 00007f64551e5fa0 R15: 00007ffd1c29d4f8
[   73.082988][ T7002]  </TASK>
[   73.216013][    C1] Unknown status report in ack skb
[   73.227337][   T40] audit: type=1400 audit(1762015933.681:453): avc:  denied  { getopt } for  pid=7004 comm="syz.1.258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   73.227757][ T7005] netlink: ct family unspecified
[   73.235810][ T7005] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   73.290535][   T40] audit: type=1400 audit(1762015933.741:454): avc:  denied  { mount } for  pid=7006 comm="syz.4.259" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[   73.343465][ T7014] netlink: 8 bytes leftover after parsing attributes in process `syz.3.262'.
[   73.346495][ T7014] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   73.351721][ T7014] netlink: 88 bytes leftover after parsing attributes in process `syz.3.262'.
[   73.354601][ T7014] netlink: 48 bytes leftover after parsing attributes in process `syz.3.262'.
[   73.358559][ T7014] netlink: 88 bytes leftover after parsing attributes in process `syz.3.262'.
[   73.362496][   T40] audit: type=1400 audit(1762015933.821:455): avc:  denied  { write } for  pid=7011 comm="syz.1.261" path="socket:[16786]" dev="sockfs" ino=16786 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   73.362681][ T7014] netlink: 48 bytes leftover after parsing attributes in process `syz.3.262'.
[   73.379520][   T40] audit: type=1400 audit(1762015933.831:456): avc:  denied  { watch watch_reads } for  pid=7013 comm="syz.3.262" path="pipe:[8268]" dev="pipefs" ino=8268 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   73.392287][   T40] audit: type=1400 audit(1762015933.831:457): avc:  denied  { create } for  pid=7011 comm="syz.1.261" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   73.400245][   T40] audit: type=1400 audit(1762015933.841:458): avc:  denied  { write } for  pid=7011 comm="syz.1.261" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   73.400343][   T40] audit: type=1400 audit(1762015933.841:459): avc:  denied  { create } for  pid=7013 comm="syz.3.262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   73.400380][   T40] audit: type=1400 audit(1762015933.841:460): avc:  denied  { write } for  pid=7013 comm="syz.3.262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   73.419541][ T7012] bond1: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-alb(6)
[   73.431968][ T7012] bond1 (unregistering): Released all slaves
[   73.450363][ T7033] vlan3: entered promiscuous mode
[   73.452128][ T7033] vlan3: entered allmulticast mode
[   73.453736][ T7033] hsr_slave_1: entered allmulticast mode
[   73.464060][ T7034] lo speed is unknown, defaulting to 1000
[   73.466126][ T7034] lo speed is unknown, defaulting to 1000
[   73.468385][ T7029] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '�'
[   73.471632][ T7034] lo speed is unknown, defaulting to 1000
[   73.475779][ T7034] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   73.488884][ T7034] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   73.494410][   T40] audit: type=1400 audit(1762015933.951:461): avc:  denied  { create } for  pid=7036 comm="syz.4.268" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   73.510643][ T7034] lo speed is unknown, defaulting to 1000
[   73.513347][ T7034] lo speed is unknown, defaulting to 1000
[   73.515830][ T7034] lo speed is unknown, defaulting to 1000
[   73.517683][ T7037] netlink: 'syz.4.268': attribute type 19 has an invalid length.
[   73.518390][ T7034] lo speed is unknown, defaulting to 1000
[   73.520396][ T7037] netlink: 4 bytes leftover after parsing attributes in process `syz.4.268'.
[   73.526557][ T7037] netlink: 'syz.4.268': attribute type 19 has an invalid length.
[   73.529010][ T6354] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   73.532099][ T6364] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   73.532268][ T7037] netlink: 4 bytes leftover after parsing attributes in process `syz.4.268'.
[   73.535167][ T6364] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   73.545193][ T7040] netlink: 'syz.3.267': attribute type 29 has an invalid length.
[   73.551815][ T7034] kvm: user requested TSC rate below hardware speed
[   73.560151][ T6364] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   73.596386][ T7046] gfs2: error -5 reading superblock
[   73.634731][ T7050] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7050 comm=syz.2.270
[   73.684892][ T7055] netlink: 12 bytes leftover after parsing attributes in process `syz.2.272'.
[   73.719534][ T7063] bond0: (slave veth0_virt_wifi): Enslaving as an active interface with an up link
[   73.739392][ T7066] Cannot find add_set index 0 as target
[   73.969570][ T7112] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27 sclass=netlink_route_socket pid=7112 comm=syz.4.285
[   74.332988][ T7165] FAULT_INJECTION: forcing a failure.
[   74.332988][ T7165] name failslab, interval 1, probability 0, space 0, times 0
[   74.340436][ T7165] CPU: 3 UID: 0 PID: 7165 Comm: syz.2.296 Not tainted syzkaller #0 PREEMPT(full) 
[   74.340451][ T7165] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.340457][ T7165] Call Trace:
[   74.340461][ T7165]  <TASK>
[   74.340465][ T7165]  dump_stack_lvl+0x16c/0x1f0
[   74.340485][ T7165]  should_fail_ex+0x512/0x640
[   74.340497][ T7165]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   74.340515][ T7165]  should_failslab+0xc2/0x120
[   74.340527][ T7165]  kmem_cache_alloc_noprof+0x75/0x6e0
[   74.340543][ T7165]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   74.340558][ T7165]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   74.340576][ T7165]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   74.340591][ T7165]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   74.340611][ T7165]  mmu_topup_memory_caches+0x25/0x170
[   74.340629][ T7165]  kvm_mmu_load+0xd6/0x23c0
[   74.340645][ T7165]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   74.340659][ T7165]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   74.340674][ T7165]  ? __pfx_kvm_mmu_load+0x10/0x10
[   74.340689][ T7165]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   74.340705][ T7165]  ? kvm_check_and_inject_events+0x71c/0x1310
[   74.340725][ T7165]  vcpu_run+0x3779/0x54d0
[   74.340742][ T7165]  ? __pfx_vcpu_run+0x10/0x10
[   74.340768][ T7165]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   74.340782][ T7165]  ? __local_bh_enable_ip+0xa4/0x120
[   74.340798][ T7165]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   74.340808][ T7165]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   74.340824][ T7165]  kvm_vcpu_ioctl+0x5eb/0x1690
[   74.340840][ T7165]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   74.340854][ T7165]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   74.340870][ T7165]  ? do_vfs_ioctl+0x128/0x14f0
[   74.340885][ T7165]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   74.340899][ T7165]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   74.340917][ T7165]  ? hook_file_ioctl_common+0x145/0x410
[   74.340935][ T7165]  ? selinux_file_ioctl+0x180/0x270
[   74.340945][ T7165]  ? selinux_file_ioctl+0xb4/0x270
[   74.340957][ T7165]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   74.340972][ T7165]  __x64_sys_ioctl+0x18e/0x210
[   74.340988][ T7165]  do_syscall_64+0xcd/0xfa0
[   74.341005][ T7165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.341015][ T7165] RIP: 0033:0x7fd1a938efc9
[   74.341024][ T7165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.341034][ T7165] RSP: 002b:00007fd1aa2bb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.341044][ T7165] RAX: ffffffffffffffda RBX: 00007fd1a95e5fa0 RCX: 00007fd1a938efc9
[   74.341051][ T7165] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   74.341057][ T7165] RBP: 00007fd1aa2bb090 R08: 0000000000000000 R09: 0000000000000000
[   74.341062][ T7165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.341068][ T7165] R13: 00007fd1a95e6038 R14: 00007fd1a95e5fa0 R15: 00007ffee00bb268
[   74.341082][ T7165]  </TASK>
[   74.548103][ T7178] usb usb8: usbfs: process 7178 (syz.1.299) did not claim interface 0 before use
[   74.636832][ T7183] : entered promiscuous mode
[   74.742639][ T7198] FAULT_INJECTION: forcing a failure.
[   74.742639][ T7198] name failslab, interval 1, probability 0, space 0, times 0
[   74.747487][ T7198] CPU: 0 UID: 0 PID: 7198 Comm: syz.1.306 Not tainted syzkaller #0 PREEMPT(full) 
[   74.747511][ T7198] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.747522][ T7198] Call Trace:
[   74.747540][ T7198]  <TASK>
[   74.747547][ T7198]  dump_stack_lvl+0x16c/0x1f0
[   74.747593][ T7198]  should_fail_ex+0x512/0x640
[   74.747622][ T7198]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   74.747652][ T7198]  should_failslab+0xc2/0x120
[   74.747672][ T7198]  kmem_cache_alloc_noprof+0x75/0x6e0
[   74.747697][ T7198]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   74.747724][ T7198]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   74.747765][ T7198]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   74.747790][ T7198]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   74.747824][ T7198]  mmu_topup_memory_caches+0x25/0x170
[   74.747860][ T7198]  kvm_mmu_load+0xd6/0x23c0
[   74.747889][ T7198]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   74.747911][ T7198]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   74.747937][ T7198]  ? __pfx_kvm_mmu_load+0x10/0x10
[   74.747964][ T7198]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   74.747990][ T7198]  ? kvm_check_and_inject_events+0x71c/0x1310
[   74.748024][ T7198]  vcpu_run+0x3779/0x54d0
[   74.748055][ T7198]  ? __pfx_vcpu_run+0x10/0x10
[   74.748079][ T7198]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   74.748101][ T7198]  ? __local_bh_enable_ip+0xa4/0x120
[   74.748128][ T7198]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   74.748147][ T7198]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   74.748174][ T7198]  kvm_vcpu_ioctl+0x5eb/0x1690
[   74.748202][ T7198]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   74.748227][ T7198]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   74.748253][ T7198]  ? do_vfs_ioctl+0x128/0x14f0
[   74.748278][ T7198]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   74.748303][ T7198]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   74.748333][ T7198]  ? hook_file_ioctl_common+0x145/0x410
[   74.748364][ T7198]  ? selinux_file_ioctl+0x180/0x270
[   74.748382][ T7198]  ? selinux_file_ioctl+0xb4/0x270
[   74.748403][ T7198]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   74.748429][ T7198]  __x64_sys_ioctl+0x18e/0x210
[   74.748455][ T7198]  do_syscall_64+0xcd/0xfa0
[   74.748483][ T7198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.748502][ T7198] RIP: 0033:0x7f41cdf8efc9
[   74.748517][ T7198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.748533][ T7198] RSP: 002b:00007f41cee3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.748550][ T7198] RAX: ffffffffffffffda RBX: 00007f41ce1e5fa0 RCX: 00007f41cdf8efc9
[   74.748562][ T7198] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   74.748572][ T7198] RBP: 00007f41cee3e090 R08: 0000000000000000 R09: 0000000000000000
[   74.748582][ T7198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.748592][ T7198] R13: 00007f41ce1e6038 R14: 00007f41ce1e5fa0 R15: 00007ffdc1db4528
[   74.748618][ T7198]  </TASK>
[   74.849307][    C0] vkms_vblank_simulate: vblank timer overrun
[   74.869544][ T7202] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.944317][ T7202] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.975629][ T7204] lo speed is unknown, defaulting to 1000
[   75.062509][ T7207] program syz.1.309 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.073478][ T7202] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.104784][ T7211] lo speed is unknown, defaulting to 1000
[   75.161923][ T7202] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.197112][ T7216] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   75.292953][ T6365] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.302824][ T6365] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.309629][ T6365] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.336612][ T1158] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.418337][ T7235] FAULT_INJECTION: forcing a failure.
[   75.418337][ T7235] name failslab, interval 1, probability 0, space 0, times 0
[   75.424525][ T7235] CPU: 1 UID: 0 PID: 7235 Comm: syz.3.317 Not tainted syzkaller #0 PREEMPT(full) 
[   75.424541][ T7235] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.424548][ T7235] Call Trace:
[   75.424552][ T7235]  <TASK>
[   75.424556][ T7235]  dump_stack_lvl+0x16c/0x1f0
[   75.424577][ T7235]  should_fail_ex+0x512/0x640
[   75.424591][ T7235]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   75.424633][ T7235]  should_failslab+0xc2/0x120
[   75.424669][ T7235]  kmem_cache_alloc_noprof+0x75/0x6e0
[   75.424693][ T7235]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   75.424716][ T7235]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   75.424745][ T7235]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   75.424768][ T7235]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   75.424789][ T7235]  mmu_topup_memory_caches+0x25/0x170
[   75.424809][ T7235]  kvm_mmu_load+0xd6/0x23c0
[   75.424832][ T7235]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   75.424846][ T7235]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   75.424863][ T7235]  ? __pfx_kvm_mmu_load+0x10/0x10
[   75.424879][ T7235]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   75.424896][ T7235]  ? kvm_check_and_inject_events+0x71c/0x1310
[   75.424917][ T7235]  vcpu_run+0x3779/0x54d0
[   75.424945][ T7235]  ? __pfx_vcpu_run+0x10/0x10
[   75.424960][ T7235]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   75.424979][ T7235]  ? __local_bh_enable_ip+0xa4/0x120
[   75.425001][ T7235]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   75.425012][ T7235]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   75.425028][ T7235]  kvm_vcpu_ioctl+0x5eb/0x1690
[   75.425045][ T7235]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   75.425061][ T7235]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   75.425078][ T7235]  ? do_vfs_ioctl+0x128/0x14f0
[   75.425094][ T7235]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   75.425109][ T7235]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   75.425127][ T7235]  ? hook_file_ioctl_common+0x145/0x410
[   75.425146][ T7235]  ? selinux_file_ioctl+0x180/0x270
[   75.425158][ T7235]  ? selinux_file_ioctl+0xb4/0x270
[   75.425170][ T7235]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   75.425186][ T7235]  __x64_sys_ioctl+0x18e/0x210
[   75.425203][ T7235]  do_syscall_64+0xcd/0xfa0
[   75.425221][ T7235]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.425232][ T7235] RIP: 0033:0x7f6454f8efc9
[   75.425241][ T7235] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.425252][ T7235] RSP: 002b:00007f6455d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.425263][ T7235] RAX: ffffffffffffffda RBX: 00007f64551e5fa0 RCX: 00007f6454f8efc9
[   75.425270][ T7235] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   75.425276][ T7235] RBP: 00007f6455d9f090 R08: 0000000000000000 R09: 0000000000000000
[   75.425284][ T7235] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   75.425293][ T7235] R13: 00007f64551e6038 R14: 00007f64551e5fa0 R15: 00007ffd1c29d4f8
[   75.425313][ T7235]  </TASK>
[   75.604239][ T7239] IPv4: Oversized IP packet from 172.20.20.24
[   75.607209][    C3] IPv4: Oversized IP packet from 172.20.20.24
[   75.609406][    C3] IPv4: Oversized IP packet from 172.20.20.24
[   75.685993][ T7249] netlink: 'syz.3.323': attribute type 1 has an invalid length.
[   75.688553][ T7249] nbd: error processing sock list
[   75.718210][ T7251] vlan2: entered promiscuous mode
[   75.720039][ T7251] vlan2: entered allmulticast mode
[   75.722376][ T7251] hsr_slave_1: entered allmulticast mode
[   75.850185][  T941] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   76.010395][  T941] usb 7-1: Using ep0 maxpacket: 32
[   76.013391][  T941] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[   76.016004][  T941] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   76.018589][  T941] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[   76.021571][  T941] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   76.025058][  T941] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   76.028089][  T941] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   76.032500][  T941] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   76.035492][  T941] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.040169][  T941] usb 7-1: config 0 descriptor??
[   76.082321][ T7260] lo speed is unknown, defaulting to 1000
[   76.136598][ T7263] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   76.191484][ T7263] No control pipe specified
[   76.248920][  T941] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 8 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   76.254701][  T941] usb 7-1: USB disconnect, device number 8
[   76.258270][  T941] usblp0: removed
[   76.516322][ T7273] Bluetooth: MGMT ver 1.23
[   76.519669][ T7273] Bluetooth: hci0: unsupported parameter 255
[   76.523500][ T7273] Bluetooth: hci0: unsupported parameter 64
[   76.526108][ T7273] Bluetooth: hci0: unsupported parameter 255
[   76.528844][ T7273] Bluetooth: hci0: unsupported parameter 64
[   76.574694][ T7277] program syz.1.332 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   76.597507][ T7275] FAULT_INJECTION: forcing a failure.
[   76.597507][ T7275] name failslab, interval 1, probability 0, space 0, times 0
[   76.601618][ T7275] CPU: 1 UID: 0 PID: 7275 Comm: syz.4.330 Not tainted syzkaller #0 PREEMPT(full) 
[   76.601631][ T7275] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.601638][ T7275] Call Trace:
[   76.601650][ T7275]  <TASK>
[   76.601654][ T7275]  dump_stack_lvl+0x16c/0x1f0
[   76.601685][ T7275]  should_fail_ex+0x512/0x640
[   76.601703][ T7275]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   76.601721][ T7275]  should_failslab+0xc2/0x120
[   76.601733][ T7275]  kmem_cache_alloc_noprof+0x75/0x6e0
[   76.601748][ T7275]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   76.601764][ T7275]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   76.601782][ T7275]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   76.601797][ T7275]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   76.601816][ T7275]  mmu_topup_memory_caches+0x25/0x170
[   76.601834][ T7275]  kvm_mmu_load+0xd6/0x23c0
[   76.601851][ T7275]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   76.601864][ T7275]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   76.601879][ T7275]  ? __pfx_kvm_mmu_load+0x10/0x10
[   76.601895][ T7275]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   76.601910][ T7275]  ? kvm_check_and_inject_events+0x71c/0x1310
[   76.601931][ T7275]  vcpu_run+0x3779/0x54d0
[   76.601947][ T7275]  ? __pfx_vcpu_run+0x10/0x10
[   76.601961][ T7275]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   76.601974][ T7275]  ? __local_bh_enable_ip+0xa4/0x120
[   76.601989][ T7275]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   76.602000][ T7275]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   76.602015][ T7275]  kvm_vcpu_ioctl+0x5eb/0x1690
[   76.602031][ T7275]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   76.602045][ T7275]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   76.602060][ T7275]  ? do_vfs_ioctl+0x128/0x14f0
[   76.602076][ T7275]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   76.602095][ T7275]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   76.602112][ T7275]  ? hook_file_ioctl_common+0x145/0x410
[   76.602130][ T7275]  ? selinux_file_ioctl+0x180/0x270
[   76.602141][ T7275]  ? selinux_file_ioctl+0xb4/0x270
[   76.602153][ T7275]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   76.602168][ T7275]  __x64_sys_ioctl+0x18e/0x210
[   76.602183][ T7275]  do_syscall_64+0xcd/0xfa0
[   76.602200][ T7275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.602211][ T7275] RIP: 0033:0x7f630a58efc9
[   76.602219][ T7275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.602229][ T7275] RSP: 002b:00007f630b399038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   76.602239][ T7275] RAX: ffffffffffffffda RBX: 00007f630a7e5fa0 RCX: 00007f630a58efc9
[   76.602246][ T7275] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   76.602251][ T7275] RBP: 00007f630b399090 R08: 0000000000000000 R09: 0000000000000000
[   76.602257][ T7275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.602263][ T7275] R13: 00007f630a7e6038 R14: 00007f630a7e5fa0 R15: 00007ffc24dc9238
[   76.602277][ T7275]  </TASK>
[   76.652248][ T7280] kvm: MONITOR instruction emulated as NOP!
[   76.713842][ T6035] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   76.734817][ T7268] tipc: Started in network mode
[   76.736761][ T7268] tipc: Node identity 3a8f7743a8df, cluster identity 4711
[   76.739738][ T7268] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   76.744408][ T7268] netlink: 'syz.3.329': attribute type 1 has an invalid length.
[   76.774701][ T7268] gretap1: entered promiscuous mode
[   76.778075][ T7268] bond2: (slave gretap1): making interface the new active one
[   76.781250][ T7268] bond2: (slave gretap1): Enslaving as an active interface with an up link
[   76.824981][ T7268] "syz.3.329" (7268) uses obsolete ecb(arc4) skcipher
[   76.829705][ T7295] (syz.1.337,7295,0):ocfs2_get_sector:1714 ERROR: status = -5
[   76.829900][ T7267] tipc: Resetting bearer <eth:syzkaller0>
[   76.832727][ T7295] (syz.1.337,7295,0):ocfs2_sb_probe:753 ERROR: status = -5
[   76.832755][ T7295] (syz.1.337,7295,0):ocfs2_fill_super:989 ERROR: superblock probe failed!
[   76.832766][ T7295] (syz.1.337,7295,0):ocfs2_fill_super:1177 ERROR: status = -5
[   76.867170][ T7297] netlink: 'syz.4.336': attribute type 10 has an invalid length.
[   76.890650][ T6035] usb 7-1: Using ep0 maxpacket: 32
[   76.893669][ T6035] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[   76.896972][ T6035] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   76.899629][ T6035] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[   76.902928][ T6035] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   76.906397][ T6035] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   76.910691][ T6035] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   76.915948][ T6035] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   76.918751][ T6035] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   76.920728][ T7301] netlink: 'syz.1.338': attribute type 1 has an invalid length.
[   76.922543][ T6035] usb 7-1: config 0 descriptor??
[   77.134165][ T6035] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   77.388224][    C1] usblp0: nonzero read bulk status received: -71
[   77.388468][ T6035] usb 7-1: USB disconnect, device number 9
[   77.391195][ T7245] usblp0: error -71 reading from printer
[   77.666762][ T7244] usblp0: removed
[   77.670774][ T7267] tipc: Disabling bearer <eth:syzkaller0>
[   77.680479][ T7297] team0: Port device dummy0 added
[   77.734727][ T7314] erofs (device loop1): cannot find valid erofs superblock
[   77.763613][ T7316] netlink: 'syz.1.341': attribute type 10 has an invalid length.
[   77.771114][ T7316] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.775779][ T7316] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   77.853060][ T7322] FAULT_INJECTION: forcing a failure.
[   77.853060][ T7322] name failslab, interval 1, probability 0, space 0, times 0
[   77.857800][ T7322] CPU: 1 UID: 0 PID: 7322 Comm: syz.1.343 Not tainted syzkaller #0 PREEMPT(full) 
[   77.857822][ T7322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.857831][ T7322] Call Trace:
[   77.857837][ T7322]  <TASK>
[   77.857843][ T7322]  dump_stack_lvl+0x16c/0x1f0
[   77.857870][ T7322]  should_fail_ex+0x512/0x640
[   77.857890][ T7322]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   77.857915][ T7322]  should_failslab+0xc2/0x120
[   77.857934][ T7322]  kmem_cache_alloc_noprof+0x75/0x6e0
[   77.857955][ T7322]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   77.857977][ T7322]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   77.858004][ T7322]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   77.858026][ T7322]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   77.858055][ T7322]  mmu_topup_memory_caches+0x25/0x170
[   77.858085][ T7322]  kvm_mmu_load+0xd6/0x23c0
[   77.858109][ T7322]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   77.858128][ T7322]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   77.858151][ T7322]  ? __pfx_kvm_mmu_load+0x10/0x10
[   77.858174][ T7322]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   77.858197][ T7322]  ? kvm_check_and_inject_events+0x71c/0x1310
[   77.858227][ T7322]  vcpu_run+0x3779/0x54d0
[   77.858255][ T7322]  ? __pfx_vcpu_run+0x10/0x10
[   77.858276][ T7322]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   77.858294][ T7322]  ? __local_bh_enable_ip+0xa4/0x120
[   77.858319][ T7322]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   77.858336][ T7322]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   77.858360][ T7322]  kvm_vcpu_ioctl+0x5eb/0x1690
[   77.858384][ T7322]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   77.858407][ T7322]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   77.858428][ T7322]  ? do_vfs_ioctl+0x128/0x14f0
[   77.858451][ T7322]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   77.858473][ T7322]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   77.858500][ T7322]  ? hook_file_ioctl_common+0x145/0x410
[   77.858527][ T7322]  ? selinux_file_ioctl+0x180/0x270
[   77.858544][ T7322]  ? selinux_file_ioctl+0xb4/0x270
[   77.858562][ T7322]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   77.858584][ T7322]  __x64_sys_ioctl+0x18e/0x210
[   77.858608][ T7322]  do_syscall_64+0xcd/0xfa0
[   77.858633][ T7322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.858649][ T7322] RIP: 0033:0x7f41cdf8efc9
[   77.858662][ T7322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.858678][ T7322] RSP: 002b:00007f41cee3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   77.858694][ T7322] RAX: ffffffffffffffda RBX: 00007f41ce1e5fa0 RCX: 00007f41cdf8efc9
[   77.858704][ T7322] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   77.858713][ T7322] RBP: 00007f41cee3e090 R08: 0000000000000000 R09: 0000000000000000
[   77.858722][ T7322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   77.858731][ T7322] R13: 00007f41ce1e6038 R14: 00007f41ce1e5fa0 R15: 00007ffdc1db4528
[   77.858754][ T7322]  </TASK>
[   77.972258][   T40] kauditd_printk_skb: 39 callbacks suppressed
[   77.972271][   T40] audit: type=1400 audit(1762015938.431:501): avc:  denied  { connect } for  pid=7311 comm="syz.4.340" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   78.052575][ T7331] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   78.210178][   T40] audit: type=1400 audit(1762015938.661:502): avc:  denied  { append } for  pid=7362 comm="syz.2.353" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   78.215680][ T7365] __nla_validate_parse: 9 callbacks suppressed
[   78.215693][ T7365] netlink: 20 bytes leftover after parsing attributes in process `syz.2.353'.
[   78.217404][   T40] audit: type=1400 audit(1762015938.671:503): avc:  denied  { read } for  pid=7362 comm="syz.2.353" path="socket:[19852]" dev="sockfs" ino=19852 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   78.233890][ T7369] FAULT_INJECTION: forcing a failure.
[   78.233890][ T7369] name failslab, interval 1, probability 0, space 0, times 0
[   78.236745][   T40] audit: type=1400 audit(1762015938.691:504): avc:  denied  { map } for  pid=7361 comm="syz.1.352" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   78.239043][ T7369] CPU: 2 UID: 0 PID: 7369 Comm: syz.3.354 Not tainted syzkaller #0 PREEMPT(full) 
[   78.239065][ T7369] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.239075][ T7369] Call Trace:
[   78.239082][ T7369]  <TASK>
[   78.239088][ T7369]  dump_stack_lvl+0x16c/0x1f0
[   78.239117][ T7369]  should_fail_ex+0x512/0x640
[   78.239138][ T7369]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   78.239167][ T7369]  should_failslab+0xc2/0x120
[   78.239188][ T7369]  kmem_cache_alloc_noprof+0x75/0x6e0
[   78.239212][ T7369]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   78.239237][ T7369]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   78.239267][ T7369]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   78.239291][ T7369]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   78.239322][ T7369]  mmu_topup_memory_caches+0x25/0x170
[   78.239352][ T7369]  kvm_mmu_load+0xd6/0x23c0
[   78.239379][ T7369]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   78.239400][ T7369]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   78.239425][ T7369]  ? __pfx_kvm_mmu_load+0x10/0x10
[   78.239451][ T7369]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   78.239477][ T7369]  ? kvm_check_and_inject_events+0x71c/0x1310
[   78.239510][ T7369]  vcpu_run+0x3779/0x54d0
[   78.239540][ T7369]  ? __pfx_vcpu_run+0x10/0x10
[   78.239563][ T7369]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   78.239584][ T7369]  ? __local_bh_enable_ip+0xa4/0x120
[   78.239611][ T7369]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   78.239627][ T7369]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   78.239651][ T7369]  kvm_vcpu_ioctl+0x5eb/0x1690
[   78.239674][ T7369]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   78.239697][ T7369]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   78.239714][ T7369]  ? do_vfs_ioctl+0x128/0x14f0
[   78.239729][ T7369]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   78.239743][ T7369]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   78.239761][ T7369]  ? hook_file_ioctl_common+0x145/0x410
[   78.239779][ T7369]  ? selinux_file_ioctl+0x180/0x270
[   78.239790][ T7369]  ? selinux_file_ioctl+0xb4/0x270
[   78.239801][ T7369]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   78.239816][ T7369]  __x64_sys_ioctl+0x18e/0x210
[   78.239832][ T7369]  do_syscall_64+0xcd/0xfa0
[   78.239849][ T7369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.239864][ T7369] RIP: 0033:0x7f6454f8efc9
[   78.239873][ T7369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.239883][ T7369] RSP: 002b:00007f6455d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   78.239893][ T7369] RAX: ffffffffffffffda RBX: 00007f64551e5fa0 RCX: 00007f6454f8efc9
[   78.239900][ T7369] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   78.239906][ T7369] RBP: 00007f6455d9f090 R08: 0000000000000000 R09: 0000000000000000
[   78.239911][ T7369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   78.239917][ T7369] R13: 00007f64551e6038 R14: 00007f64551e5fa0 R15: 00007ffd1c29d4f8
[   78.239931][ T7369]  </TASK>
[   78.342493][   T40] audit: type=1400 audit(1762015938.701:505): avc:  denied  { call } for  pid=7361 comm="syz.1.352" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   78.430058][ T7375] SELinux:  policydb magic number 0xc does not match expected magic number 0xf97cff8c
[   78.430308][   T40] audit: type=1400 audit(1762015938.881:506): avc:  denied  { load_policy } for  pid=7374 comm="syz.3.356" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   78.434672][ T7375] SELinux: failed to load policy
[   78.547610][ T7381] netlink: 32 bytes leftover after parsing attributes in process `syz.3.357'.
[   78.565007][ T7396] gre1: entered promiscuous mode
[   78.566644][ T7396] gre1: entered allmulticast mode
[   78.587406][   T40] audit: type=1400 audit(1762015939.041:507): avc:  denied  { search } for  pid=7395 comm="syz.4.362" name="/" dev="configfs" ino=3073 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   78.603916][ T7401] FAULT_INJECTION: forcing a failure.
[   78.603916][ T7401] name failslab, interval 1, probability 0, space 0, times 0
[   78.607939][ T7401] CPU: 2 UID: 0 PID: 7401 Comm: syz.3.364 Not tainted syzkaller #0 PREEMPT(full) 
[   78.607953][ T7401] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.607960][ T7401] Call Trace:
[   78.607964][ T7401]  <TASK>
[   78.607969][ T7401]  dump_stack_lvl+0x16c/0x1f0
[   78.607988][ T7401]  should_fail_ex+0x512/0x640
[   78.608000][ T7401]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   78.608018][ T7401]  should_failslab+0xc2/0x120
[   78.608030][ T7401]  kmem_cache_alloc_noprof+0x75/0x6e0
[   78.608050][ T7401]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   78.608067][ T7401]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   78.608085][ T7401]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   78.608100][ T7401]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   78.608119][ T7401]  mmu_topup_memory_caches+0x25/0x170
[   78.608137][ T7401]  kvm_mmu_load+0xd6/0x23c0
[   78.608154][ T7401]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   78.608167][ T7401]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   78.608182][ T7401]  ? __pfx_kvm_mmu_load+0x10/0x10
[   78.608198][ T7401]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   78.608214][ T7401]  ? kvm_check_and_inject_events+0x71c/0x1310
[   78.608235][ T7401]  vcpu_run+0x3779/0x54d0
[   78.608251][ T7401]  ? __pfx_vcpu_run+0x10/0x10
[   78.608264][ T7401]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   78.608278][ T7401]  ? __local_bh_enable_ip+0xa4/0x120
[   78.608294][ T7401]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   78.608304][ T7401]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   78.608319][ T7401]  kvm_vcpu_ioctl+0x5eb/0x1690
[   78.608336][ T7401]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   78.608350][ T7401]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   78.608365][ T7401]  ? do_vfs_ioctl+0x128/0x14f0
[   78.608380][ T7401]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   78.608395][ T7401]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   78.608413][ T7401]  ? hook_file_ioctl_common+0x145/0x410
[   78.608430][ T7401]  ? selinux_file_ioctl+0x180/0x270
[   78.608441][ T7401]  ? selinux_file_ioctl+0xb4/0x270
[   78.608453][ T7401]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   78.608467][ T7401]  __x64_sys_ioctl+0x18e/0x210
[   78.608483][ T7401]  do_syscall_64+0xcd/0xfa0
[   78.608500][ T7401]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.608510][ T7401] RIP: 0033:0x7f6454f8efc9
[   78.608519][ T7401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.608529][ T7401] RSP: 002b:00007f6455d9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   78.608539][ T7401] RAX: ffffffffffffffda RBX: 00007f64551e5fa0 RCX: 00007f6454f8efc9
[   78.608546][ T7401] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   78.608552][ T7401] RBP: 00007f6455d9f090 R08: 0000000000000000 R09: 0000000000000000
[   78.608558][ T7401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   78.608564][ T7401] R13: 00007f64551e6038 R14: 00007f64551e5fa0 R15: 00007ffd1c29d4f8
[   78.608578][ T7401]  </TASK>
[   78.634342][ T7404] exFAT-fs (nullb0): invalid boot record signature
[   78.691519][ T7410] netlink: 48 bytes leftover after parsing attributes in process `syz.1.366'.
[   78.694223][ T7404] exFAT-fs (nullb0): failed to read boot sector
[   78.708120][ T7406] Bluetooth: hci4: Frame reassembly failed (-84)
[   78.709024][ T7404] exFAT-fs (nullb0): failed to recognize exfat type
[   78.718027][   T40] audit: type=1400 audit(1762015939.171:508): avc:  denied  { mounton } for  pid=7403 comm="syz.1.366" path="/71/file0" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:removable_device_t tclass=blk_file permissive=1
[   78.757240][   T40] audit: type=1400 audit(1762015939.211:509): avc:  denied  { remount } for  pid=7412 comm="syz.3.368" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   78.805154][ T7415] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=7415 comm=syz.3.369
[   78.809765][ T7415] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[   78.813815][ T7415] overlayfs: missing 'lowerdir'
[   78.872864][   T40] audit: type=1400 audit(1762015939.331:510): avc:  denied  { create } for  pid=7416 comm="syz.3.370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[   78.885692][ T7417] VFS: Mount too revealing
[   79.004567][ T7426] overlayfs: conflicting lowerdir path
[   79.150170][  T941] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   79.264980][ T7436] FAULT_INJECTION: forcing a failure.
[   79.264980][ T7436] name failslab, interval 1, probability 0, space 0, times 0
[   79.269136][ T7436] CPU: 0 UID: 0 PID: 7436 Comm: syz.1.376 Not tainted syzkaller #0 PREEMPT(full) 
[   79.269150][ T7436] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.269157][ T7436] Call Trace:
[   79.269161][ T7436]  <TASK>
[   79.269166][ T7436]  dump_stack_lvl+0x16c/0x1f0
[   79.269185][ T7436]  should_fail_ex+0x512/0x640
[   79.269198][ T7436]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   79.269216][ T7436]  should_failslab+0xc2/0x120
[   79.269228][ T7436]  kmem_cache_alloc_noprof+0x75/0x6e0
[   79.269244][ T7436]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   79.269259][ T7436]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   79.269288][ T7436]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   79.269305][ T7436]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   79.269325][ T7436]  mmu_topup_memory_caches+0x25/0x170
[   79.269343][ T7436]  kvm_mmu_load+0xd6/0x23c0
[   79.269361][ T7436]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   79.269373][ T7436]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   79.269389][ T7436]  ? __pfx_kvm_mmu_load+0x10/0x10
[   79.269404][ T7436]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   79.269420][ T7436]  ? kvm_check_and_inject_events+0x71c/0x1310
[   79.269441][ T7436]  vcpu_run+0x3779/0x54d0
[   79.269457][ T7436]  ? __pfx_vcpu_run+0x10/0x10
[   79.269471][ T7436]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   79.269484][ T7436]  ? __local_bh_enable_ip+0xa4/0x120
[   79.269500][ T7436]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   79.269510][ T7436]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   79.269525][ T7436]  kvm_vcpu_ioctl+0x5eb/0x1690
[   79.269542][ T7436]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.269556][ T7436]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   79.269571][ T7436]  ? do_vfs_ioctl+0x128/0x14f0
[   79.269586][ T7436]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   79.269600][ T7436]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   79.269618][ T7436]  ? hook_file_ioctl_common+0x145/0x410
[   79.269636][ T7436]  ? selinux_file_ioctl+0x180/0x270
[   79.269647][ T7436]  ? selinux_file_ioctl+0xb4/0x270
[   79.269659][ T7436]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.269674][ T7436]  __x64_sys_ioctl+0x18e/0x210
[   79.269689][ T7436]  do_syscall_64+0xcd/0xfa0
[   79.269706][ T7436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.269717][ T7436] RIP: 0033:0x7f41cdf8efc9
[   79.269725][ T7436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.269736][ T7436] RSP: 002b:00007f41cee3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   79.269746][ T7436] RAX: ffffffffffffffda RBX: 00007f41ce1e5fa0 RCX: 00007f41cdf8efc9
[   79.269752][ T7436] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   79.269758][ T7436] RBP: 00007f41cee3e090 R08: 0000000000000000 R09: 0000000000000000
[   79.269764][ T7436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   79.269770][ T7436] R13: 00007f41ce1e6038 R14: 00007f41ce1e5fa0 R15: 00007ffdc1db4528
[   79.269784][ T7436]  </TASK>
[   79.290146][  T941] usb 8-1: device descriptor read/64, error -71
[   79.342494][ T7440] tmpfs: Unknown parameter 'pcr'
[   79.342520][ T7439] tmpfs: Unknown parameter 'pcr'
[   79.426477][ T7444] netlink: 'syz.4.379': attribute type 29 has an invalid length.
[   79.427061][ T7446] MTD: Attempt to mount non-MTD device "/dev/sr0"
[   79.430456][ T7444] netlink: 'syz.4.379': attribute type 3 has an invalid length.
[   79.436310][ T7444] netlink: 76 bytes leftover after parsing attributes in process `syz.4.379'.
[   79.438569][ T7446] cramfs: wrong magic
[   79.580973][  T941] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   79.660325][ T5982] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   79.711066][  T941] usb 8-1: device descriptor read/64, error -71
[   79.821379][  T941] usb usb8-port1: attempt power cycle
[   79.831426][ T5982] usb 6-1: config 0 has no interfaces?
[   79.833923][ T5982] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[   79.837786][ T5982] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.844293][ T5982] usb 6-1: config 0 descriptor??
[   79.950202][   T59] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[   80.062612][ T5938] usb 6-1: USB disconnect, device number 3
[   80.102285][   T59] usb 9-1: unable to get BOS descriptor or descriptor too short
[   80.105543][   T59] usb 9-1: config 6 has an invalid interface number: 200 but max is 0
[   80.108491][   T59] usb 9-1: config 6 has no interface number 0
[   80.110788][   T59] usb 9-1: config 6 interface 200 altsetting 8 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   80.114357][   T59] usb 9-1: config 6 interface 200 has no altsetting 0
[   80.118710][   T59] usb 9-1: string descriptor 0 read error: -22
[   80.121525][   T59] usb 9-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[   80.124499][   T59] usb 9-1: New USB device strings: Mfr=9, Product=2, SerialNumber=3
[   80.131266][   T59] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[   80.170222][  T941] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[   80.190710][  T941] usb 8-1: device descriptor read/8, error -71
[   80.331742][   T59] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   80.335161][   T59] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[   80.337752][   T59] usb 9-1: media controller created
[   80.347469][   T59] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   80.430176][  T941] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[   80.450694][  T941] usb 8-1: device descriptor read/8, error -71
[   80.538539][ T7456] pimreg: entered allmulticast mode
[   80.544627][   T59] dvb-usb: bulk message failed: -71 (6/0)
[   80.549495][   T59] dvb-usb: bulk message failed: -71 (6/0)
[   80.553253][   T59] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[   80.559234][   T59] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb9/9-1/input/input9
[   80.560424][  T941] usb usb8-port1: unable to enumerate USB device
[   80.566929][   T59] dvb-usb: schedule remote query interval to 150 msecs.
[   80.570612][   T59] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[   80.578291][   T59] usb 9-1: USB disconnect, device number 7
[   80.610739][   T59] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[   80.684304][ T7467] FAULT_INJECTION: forcing a failure.
[   80.684304][ T7467] name failslab, interval 1, probability 0, space 0, times 0
[   80.688317][ T7467] CPU: 2 UID: 0 PID: 7467 Comm: syz.1.386 Not tainted syzkaller #0 PREEMPT(full) 
[   80.688332][ T7467] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.688338][ T7467] Call Trace:
[   80.688342][ T7467]  <TASK>
[   80.688347][ T7467]  dump_stack_lvl+0x16c/0x1f0
[   80.688366][ T7467]  should_fail_ex+0x512/0x640
[   80.688380][ T7467]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   80.688398][ T7467]  should_failslab+0xc2/0x120
[   80.688411][ T7467]  kmem_cache_alloc_noprof+0x75/0x6e0
[   80.688426][ T7467]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   80.688442][ T7467]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   80.688460][ T7467]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   80.688475][ T7467]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   80.688494][ T7467]  mmu_topup_memory_caches+0x25/0x170
[   80.688513][ T7467]  kvm_mmu_load+0xd6/0x23c0
[   80.688529][ T7467]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   80.688542][ T7467]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   80.688558][ T7467]  ? __pfx_kvm_mmu_load+0x10/0x10
[   80.688573][ T7467]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   80.688589][ T7467]  ? kvm_check_and_inject_events+0x71c/0x1310
[   80.688617][ T7467]  vcpu_run+0x3779/0x54d0
[   80.688634][ T7467]  ? __pfx_vcpu_run+0x10/0x10
[   80.688647][ T7467]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   80.688661][ T7467]  ? __local_bh_enable_ip+0xa4/0x120
[   80.688677][ T7467]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   80.688688][ T7467]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   80.688703][ T7467]  kvm_vcpu_ioctl+0x5eb/0x1690
[   80.688719][ T7467]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.688733][ T7467]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   80.688749][ T7467]  ? do_vfs_ioctl+0x128/0x14f0
[   80.688764][ T7467]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   80.688782][ T7467]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   80.688800][ T7467]  ? hook_file_ioctl_common+0x145/0x410
[   80.688818][ T7467]  ? selinux_file_ioctl+0x180/0x270
[   80.688828][ T7467]  ? selinux_file_ioctl+0xb4/0x270
[   80.688840][ T7467]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   80.688855][ T7467]  __x64_sys_ioctl+0x18e/0x210
[   80.688871][ T7467]  do_syscall_64+0xcd/0xfa0
[   80.688888][ T7467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.688899][ T7467] RIP: 0033:0x7f41cdf8efc9
[   80.688908][ T7467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.688918][ T7467] RSP: 002b:00007f41cee3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   80.688928][ T7467] RAX: ffffffffffffffda RBX: 00007f41ce1e5fa0 RCX: 00007f41cdf8efc9
[   80.688935][ T7467] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   80.688940][ T7467] RBP: 00007f41cee3e090 R08: 0000000000000000 R09: 0000000000000000
[   80.688946][ T7467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.688952][ T7467] R13: 00007f41ce1e6038 R14: 00007f41ce1e5fa0 R15: 00007ffdc1db4528
[   80.688966][ T7467]  </TASK>
[   80.740559][ T5939] Bluetooth: hci4: command 0x1003 tx timeout
[   80.742971][ T5950] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   80.911457][ T7478] tmpfs: Bad value for 'mpol'
[   81.133378][ T7487] xt_hashlimit: invalid interval
[   81.133651][ T7488] 9pnet: Unknown protocol version 9p2000.u��
[   81.173528][ T7490] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.395' sets config #1
[   81.210348][ T7496] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   81.216422][ T7495] FAULT_INJECTION: forcing a failure.
[   81.216422][ T7495] name failslab, interval 1, probability 0, space 0, times 0
[   81.220953][ T7495] CPU: 0 UID: 0 PID: 7495 Comm: syz.4.397 Not tainted syzkaller #0 PREEMPT(full) 
[   81.220968][ T7495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.220975][ T7495] Call Trace:
[   81.220978][ T7495]  <TASK>
[   81.220983][ T7495]  dump_stack_lvl+0x16c/0x1f0
[   81.221002][ T7495]  should_fail_ex+0x512/0x640
[   81.221014][ T7495]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[   81.221032][ T7495]  should_failslab+0xc2/0x120
[   81.221045][ T7495]  kmem_cache_alloc_noprof+0x75/0x6e0
[   81.221064][ T7495]  ? __kvm_mmu_topup_memory_cache+0x455/0x600
[   81.221085][ T7495]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   81.221113][ T7495]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[   81.221133][ T7495]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[   81.221156][ T7495]  mmu_topup_memory_caches+0x25/0x170
[   81.221174][ T7495]  kvm_mmu_load+0xd6/0x23c0
[   81.221192][ T7495]  ? kvm_apic_has_interrupt+0x106/0x1f0
[   81.221205][ T7495]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[   81.221220][ T7495]  ? __pfx_kvm_mmu_load+0x10/0x10
[   81.221236][ T7495]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[   81.221252][ T7495]  ? kvm_check_and_inject_events+0x71c/0x1310
[   81.221272][ T7495]  vcpu_run+0x3779/0x54d0
[   81.221288][ T7495]  ? __pfx_vcpu_run+0x10/0x10
[   81.221301][ T7495]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[   81.221315][ T7495]  ? __local_bh_enable_ip+0xa4/0x120
[   81.221331][ T7495]  ? kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   81.221342][ T7495]  kvm_arch_vcpu_ioctl_run+0x1023/0x1970
[   81.221357][ T7495]  kvm_vcpu_ioctl+0x5eb/0x1690
[   81.221373][ T7495]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.221388][ T7495]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   81.221403][ T7495]  ? do_vfs_ioctl+0x128/0x14f0
[   81.221418][ T7495]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   81.221433][ T7495]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   81.221450][ T7495]  ? hook_file_ioctl_common+0x145/0x410
[   81.221468][ T7495]  ? selinux_file_ioctl+0x180/0x270
[   81.221479][ T7495]  ? selinux_file_ioctl+0xb4/0x270
[   81.221491][ T7495]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   81.221506][ T7495]  __x64_sys_ioctl+0x18e/0x210
[   81.221521][ T7495]  do_syscall_64+0xcd/0xfa0
[   81.221538][ T7495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.221548][ T7495] RIP: 0033:0x7f630a58efc9
[   81.221557][ T7495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.221567][ T7495] RSP: 002b:00007f630b399038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.221577][ T7495] RAX: ffffffffffffffda RBX: 00007f630a7e5fa0 RCX: 00007f630a58efc9
[   81.221584][ T7495] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[   81.221590][ T7495] RBP: 00007f630b399090 R08: 0000000000000000 R09: 0000000000000000
[   81.221595][ T7495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   81.221601][ T7495] R13: 00007f630a7e6038 R14: 00007f630a7e5fa0 R15: 00007ffc24dc9238
[   81.221615][ T7495]  </TASK>
[   81.286586][ T7502] netlink: 'syz.1.399': attribute type 5 has an invalid length.
[   81.288569][    C0] vkms_vblank_simulate: vblank timer overrun
[   81.329063][    C0] vkms_vblank_simulate: vblank timer overrun
[   81.331013][    C0] hrtimer: interrupt took 100919606 ns
[   81.431059][    C0] vkms_vblank_simulate: vblank timer overrun
[   81.461703][   T24] cfg80211: failed to load regulatory.db
[   81.735518][ T7533] ip6t_srh: unknown srh match flags  4000
[   81.977379][ T7541] qnx4: no qnx4 filesystem (no root dir).
[   81.993687][ T6364] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.996206][ T6364] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.043887][ T7545] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[   82.115627][ T7544] netlink: 8 bytes leftover after parsing attributes in process `syz.1.411'.
[   82.167861][ T7550] bridge_slave_0: left allmulticast mode
[   82.170330][ T7550] bridge_slave_0: left promiscuous mode
[   82.173649][ T7551] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.411'.
[   82.174378][ T7550] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.182458][ T7550] bridge_slave_1: left allmulticast mode
[   82.184910][ T7550] bridge_slave_1: left promiscuous mode
[   82.187191][ T7550] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.199126][ T7550] bond0: (slave bond_slave_0): Releasing backup interface
[   82.205886][ T7550] bond0: (slave bond_slave_1): Releasing backup interface
[   82.215192][ T7552] netlink: 'syz.3.412': attribute type 10 has an invalid length.
[   82.215860][ T7550] team0: Port device team_slave_0 removed
[   82.227152][ T7550] team0: Port device team_slave_1 removed
[   82.230603][ T7550] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   82.233720][ T7550] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.238180][ T7550] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   82.242266][ T7550] batman_adv: batadv0: Removing interface: batadv_slave_1
[   82.247179][ T7550] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   82.255181][  T843] lo speed is unknown, defaulting to 1000
[   82.273906][ T7552] mac80211_hwsim hwsim7 wlan1: left allmulticast mode
[   82.283509][ T7552] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   82.385223][ T7554] netlink: 'syz.1.413': attribute type 13 has an invalid length.
[   82.697906][ T7578] netlink: 12 bytes leftover after parsing attributes in process `syz.2.420'.
[   82.732827][ T7582] netlink: 28 bytes leftover after parsing attributes in process `syz.2.422'.
[   82.738179][ T7585] netlink: 28 bytes leftover after parsing attributes in process `syz.2.422'.
[   82.934255][ T7606] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7606 comm=syz.3.430
[   82.975522][ T7613] Driver unsupported XDP return value 0 on prog  (id 47) dev N/A, expect packet loss!
[   83.146504][   T40] kauditd_printk_skb: 30 callbacks suppressed
[   83.146521][   T40] audit: type=1400 audit(1762015943.601:541): avc:  denied  { read } for  pid=7616 comm="syz.2.434" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   83.158317][   T40] audit: type=1400 audit(1762015943.601:542): avc:  denied  { open } for  pid=7616 comm="syz.2.434" path="/94/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   83.167057][   T40] audit: type=1400 audit(1762015943.601:543): avc:  denied  { ioctl } for  pid=7616 comm="syz.2.434" path="/94/file0/file0" dev="fuse" ino=64 ioctlcmd=0x4d0d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[   83.340684][   T40] audit: type=1400 audit(1762015943.801:544): avc:  denied  { getopt } for  pid=7621 comm="syz.1.435" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   83.415123][   T40] audit: type=1400 audit(1762015943.871:545): avc:  denied  { setattr } for  pid=7625 comm="syz.1.437" name="NETLINK" dev="sockfs" ino=20416 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   83.472524][ T7633] netlink: 28 bytes leftover after parsing attributes in process `syz.1.439'.
[   83.477321][ T7633] netlink: 8 bytes leftover after parsing attributes in process `syz.1.439'.
[   83.482973][ T7633] netlink: 8 bytes leftover after parsing attributes in process `syz.1.439'.
[   83.631277][ T7638] nft_compat: unsupported protocol 0
[   83.823970][ T7661] program syz.4.448 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   83.876783][ T7667] netlink: 'syz.3.450': attribute type 39 has an invalid length.
[   83.905722][ T7675] openvswitch: netlink: Message has 592 unknown bytes.
[   83.907869][ T7675] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   83.913850][   T40] audit: type=1400 audit(1762015944.371:546): avc:  denied  { getopt } for  pid=7672 comm="syz.1.453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   83.921227][   T40] audit: type=1400 audit(1762015944.371:547): avc:  denied  { bind } for  pid=7672 comm="syz.1.453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   83.967159][ T7683] netlink: 'syz.4.457': attribute type 2 has an invalid length.
[   83.971188][ T7683] netlink: 'syz.4.457': attribute type 1 has an invalid length.
[   83.975541][ T7683] netlink: 'syz.4.457': attribute type 1 has an invalid length.
[   83.977266][ T7686] netlink: 16 bytes leftover after parsing attributes in process `syz.2.456'.
[   83.997711][   T40] audit: type=1400 audit(1762015944.451:548): avc:  denied  { firmware_load } for  pid=7684 comm="syz.2.456" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   84.041573][ T7687] syz.2.456 (7687) used greatest stack depth: 19544 bytes left
[   84.193119][ T1128] sr 2:0:0:0: [sr0] tag#6 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[   84.194396][ T7699] netlink: 'syz.3.459': attribute type 1 has an invalid length.
[   84.196867][ T1128] sr 2:0:0:0: [sr0] tag#6 Sense Key : Illegal Request [current] 
[   84.200341][   T59] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[   84.202306][ T1128] sr 2:0:0:0: [sr0] tag#6 Add. Sense: Invalid command operation code
[   84.207510][ T1128] sr 2:0:0:0: [sr0] tag#6 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[   84.212411][ T1128] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[   84.215710][ T1128] Buffer I/O error on dev sr0, logical block 0, lost async page write
[   84.310263][   T40] audit: type=1400 audit(1762015944.761:549): avc:  denied  { write } for  pid=7706 comm="syz.2.462" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   84.317616][   T40] audit: type=1400 audit(1762015944.761:550): avc:  denied  { ioctl } for  pid=7706 comm="syz.2.462" path="/dev/ptp0" dev="devtmpfs" ino=729 ioctlcmd=0x3d05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   84.360037][   T59] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[   84.366184][   T59] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[   84.368184][ T7716] random: crng reseeded on system resumption
[   84.370291][ T7714] FAT-fs (sr0): unable to read boot sector
[   84.371077][   T59] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   84.379638][   T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.386829][ T7681] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   84.389335][ T7681] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   84.395827][   T59] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   84.575025][ T7722] netlink: 4 bytes leftover after parsing attributes in process `syz.2.468'.
[   84.579203][ T7722] netlink: 'syz.2.468': attribute type 32 has an invalid length.
[   84.583183][ T7722] netlink: 8 bytes leftover after parsing attributes in process `syz.2.468'.
[   84.596785][ T5938] usb 6-1: USB disconnect, device number 4
[   84.599526][ T7722] bond2: option coupled_control: invalid value (110)
[   84.617665][ T7722] bond2 (unregistering): Released all slaves
[   84.788213][ T7749] netlink: 8 bytes leftover after parsing attributes in process `syz.2.476'.
[   84.824674][ T7753] sctp: [Deprecated]: syz.2.477 (pid 7753) Use of struct sctp_assoc_value in delayed_ack socket option.
[   84.824674][ T7753] Use struct sctp_sack_info instead
[   84.966631][  T843] usb 8-1: new low-speed USB device number 7 using dummy_hcd
[   85.121925][  T843] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[   85.125246][  T843] usb 8-1: config 0 has no interface number 0
[   85.127794][  T843] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[   85.132493][  T843] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[   85.136913][  T843] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   85.140940][  T843] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.146109][  T843] usb 8-1: config 0 descriptor??
[   85.149066][ T7741] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   85.156278][  T843] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   85.255039][ T7768] bond1: option mode: unable to set because the bond device has slaves
[   85.258246][ T7768] netlink: 8 bytes leftover after parsing attributes in process `syz.2.481'.
[   85.291545][ T7771] capability: warning: `syz.2.482' uses 32-bit capabilities (legacy support in use)
[   85.360892][ T7741] netlink: 8 bytes leftover after parsing attributes in process `syz.3.474'.
[   85.363813][ T7741] netlink: 12 bytes leftover after parsing attributes in process `syz.3.474'.
[   85.371535][ T7779] random: crng reseeded on system resumption
[   85.377310][   T24] usb 8-1: USB disconnect, device number 7
[   85.384757][ T7777] qnx4: unable to read the superblock
[   85.479645][    C3] vcan0: j1939_tp_rxtimer: 0xffff888030b31000: rx timeout, send abort
[   85.483324][    C3] vcan0: j1939_tp_rxtimer: 0xffff888030b30c00: rx timeout, send abort
[   85.487129][    C3] vcan0: j1939_xtp_rx_abort_one: 0xffff888030b31000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   85.493392][    C3] vcan0: j1939_xtp_rx_abort_one: 0xffff888030b30c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   85.598214][ T7798] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=7798 comm=syz.1.490
[   85.714607][ T7800] loop7: detected capacity change from 0 to 7
[   85.844260][ T6039] Dev loop7: unable to read RDB block 7
[   85.846710][ T6039]  loop7: unable to read partition table
[   85.849039][ T6039] loop7: partition table beyond EOD, truncated
[   85.985280][ T7800] Dev loop7: unable to read RDB block 7
[   85.987316][ T7800]  loop7: unable to read partition table
[   85.989169][ T7800] loop7: partition table beyond EOD, truncated
[   85.991782][ T7800] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[   86.371093][ T7829] /dev/sr0: Can't open blockdev
[   86.430013][ T7828] bridge1: left promiscuous mode
[   86.432441][ T7828] bridge1: left allmulticast mode
[   86.435047][ T7828] gretap1: left promiscuous mode
[   86.439994][  T131] lo speed is unknown, defaulting to 1000
[   86.443045][  T131] syz2: Port: 1 Link DOWN
[   86.444545][ T7829] pim6reg: entered allmulticast mode
[   86.447373][ T6356] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   86.451241][ T6356] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   86.455588][ T6356] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   86.459441][ T6356] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   86.479039][ T7842] IPv6: Can't replace route, no match found
[   86.717151][ T7851] exFAT-fs (nbd2): unable to read boot sector
[   86.719190][ T7851] exFAT-fs (nbd2): failed to read boot sector
[   86.721854][ T7851] exFAT-fs (nbd2): failed to recognize exfat type
[   86.756310][ T7857] loop7: detected capacity change from 0 to 7
[   86.761107][ T7853] QAT: Invalid ioctl -2144835806
[   86.891833][ T6039] Dev loop7: unable to read RDB block 7
[   86.893090][    C1] invalid error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[   86.894151][ T6039]  loop7: unable to read partition table
[   86.897159][    C1] Buffer I/O error on dev loop7, logical block 0, lost async page write
[   86.904221][ T6039] loop7: partition table beyond EOD, truncated
[   86.913250][ T7827] pim6reg: left allmulticast mode
[   87.001809][ T7876] hub 8-0:1.0: USB hub found
[   87.004292][ T7876] hub 8-0:1.0: 1 port detected
[   87.206362][ T7910] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7910 comm=syz.4.522
[   87.912282][ T7940] macsec1: entered promiscuous mode
[   87.914643][ T7940] macsec1: entered allmulticast mode
[   88.120322][ T7942] fuse: Bad value for 'fd'
[   88.157473][   T40] kauditd_printk_skb: 28 callbacks suppressed
[   88.157488][   T40] audit: type=1400 audit(1762015948.611:579): avc:  denied  { remount } for  pid=7941 comm="syz.1.535" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   88.198066][ T7945] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   88.235836][ T7947] binfmt_misc: register: failed to install interpreter file ./file0
[   88.274481][ T7949] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   88.276695][ T7949] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   88.555339][   T40] audit: type=1400 audit(1762015949.011:580): avc:  denied  { relabelfrom } for  pid=7972 comm="syz.2.546" name="" dev="pipefs" ino=22773 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   88.608667][ T7980] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   88.658233][ T7984] __nla_validate_parse: 71 callbacks suppressed
[   88.658248][ T7984] netlink: 24 bytes leftover after parsing attributes in process `syz.2.549'.
[   88.722752][   T40] audit: type=1400 audit(1762015949.181:581): avc:  denied  { name_bind } for  pid=7987 comm="syz.3.552" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   88.734585][ T7991] batman_adv: batadv0: Adding interface: gretap1
[   88.737373][ T7991] batman_adv: batadv0: Interface activated: gretap1
[   88.798942][   T40] audit: type=1400 audit(1762015949.251:582): avc:  denied  { setopt } for  pid=7995 comm="syz.2.553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   88.906928][   T40] audit: type=1400 audit(1762015949.361:583): avc:  denied  { read write } for  pid=8004 comm="syz.2.556" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   88.910979][ T8005] ip6gre1: entered promiscuous mode
[   88.914802][   T40] audit: type=1400 audit(1762015949.361:584): avc:  denied  { ioctl open } for  pid=8004 comm="syz.2.556" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   88.916949][ T8005] ip6gre1: entered allmulticast mode
[   88.966632][ T8009] loop5: detected capacity change from 0 to 7
[   88.979356][ T8009]  loop5: [CUMANA/ADFS] p1 [ADFS] p1
[   88.983683][ T8009] loop5: partition table partially beyond EOD, truncated
[   88.986687][ T8009] loop5: p1 size 2989602745 extends beyond EOD, truncated
[   89.007725][ T6039] udevd[6039]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[   89.257793][ T8028] netlink: 'syz.4.563': attribute type 10 has an invalid length.
[   89.260443][ T8028] netlink: 40 bytes leftover after parsing attributes in process `syz.4.563'.
[   89.263995][ T8028] dummy0: entered promiscuous mode
[   89.269614][ T8028] team0: Port device dummy0 removed
[   89.272166][ T8028] bridge0: port 3(dummy0) entered blocking state
[   89.274267][ T8028] bridge0: port 3(dummy0) entered disabled state
[   89.276967][ T8028] dummy0: entered allmulticast mode
[   89.325663][ T8031] trusted_key: encrypted_key: insufficient parameters specified
[   89.410626][ T8037] program syz.3.565 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   89.416469][ T8037] netlink: 20 bytes leftover after parsing attributes in process `syz.3.565'.
[   89.419570][ T8037] netlink: 20 bytes leftover after parsing attributes in process `syz.3.565'.
[   89.437431][ T8039] netlink: 4 bytes leftover after parsing attributes in process `syz.4.566'.
[   89.443586][ T8039] bridge0: entered promiscuous mode
[   89.445560][ T8039] macsec1: entered allmulticast mode
[   89.447551][ T8039] bridge0: entered allmulticast mode
[   89.450649][ T8039] bridge0: port 4(macsec1) entered blocking state
[   89.453520][ T8039] bridge0: port 4(macsec1) entered disabled state
[   89.457358][ T8039] bridge0: left allmulticast mode
[   89.459070][ T8039] bridge0: left promiscuous mode
[   89.560311][ T8041] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=8041 comm=syz.4.567
[   89.725629][   T40] audit: type=1400 audit(1762015950.181:585): avc:  denied  { mount } for  pid=8047 comm="syz.4.570" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[   89.735833][   T40] audit: type=1400 audit(1762015950.181:586): avc:  denied  { mounton } for  pid=8047 comm="syz.4.570" path="/130/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[   89.783735][   T40] audit: type=1400 audit(1762015950.241:587): avc:  denied  { read } for  pid=8047 comm="syz.4.570" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[   89.791487][   T40] audit: type=1400 audit(1762015950.241:588): avc:  denied  { open } for  pid=8047 comm="syz.4.570" path="/130/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[   89.796758][ T8049] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   89.803491][ T8049] block device autoloading is deprecated and will be removed.
[   90.047576][ T8063] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   90.050799][ T8063] netlink: 108 bytes leftover after parsing attributes in process `syz.4.575'.
[   90.085177][ T8063] netlink: 108 bytes leftover after parsing attributes in process `syz.4.575'.
[   90.087975][ T8063] netlink: 84 bytes leftover after parsing attributes in process `syz.4.575'.
[   90.105731][ T8070] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   90.149003][ T8073] 
@0�: renamed from bond_slave_1 (while UP)
[   90.157938][ T8075] qnx6: unable to read the first superblock
[   90.160685][ T8075] qnx6: unable to read the first superblock
[   90.162452][ T8075] qnx6: unable to read the first superblock
[   90.194903][ T8078] binder: BINDER_SET_CONTEXT_MGR already set
[   90.197074][ T8078] binder: 8076:8078 ioctl 4018620d 200000000100 returned -16
[   90.270704][ T8082] IPVS: length: 137 != 24
[   90.439856][ T8084] netlink: 16 bytes leftover after parsing attributes in process `syz.3.582'.
[   90.826818][ T8099] netlink: 36 bytes leftover after parsing attributes in process `syz.3.587'.
[   91.009778][ T8126] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8126 comm=syz.3.594
[   91.021284][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.061346][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.141516][  T941] Process accounting resumed
[   91.154018][ T8135] lo speed is unknown, defaulting to 1000
[   91.203298][ T8144] tmpfs: Cannot change global quota limit on remount
[   91.229641][ T8141] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.233626][ T8141] 8021q: adding VLAN 0 to HW filter on device team0
[   91.238051][ T8141] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   91.243009][ T5938] lo speed is unknown, defaulting to 1000
[   91.244850][ T5938] syz2: Port: 1 Link ACTIVE
[   91.367954][ T8149] hsr_slave_1 (unregistering): left promiscuous mode
[   91.420357][   T24] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[   91.580329][   T24] usb 7-1: Using ep0 maxpacket: 16
[   91.591449][   T24] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[   91.593983][   T24] usb 7-1: config 0 has no interface number 0
[   91.595932][   T24] usb 7-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   91.599606][   T24] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   91.603403][   T24] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   91.608753][   T24] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[   91.611784][   T24] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[   91.614768][   T24] usb 7-1: Product: syz
[   91.616177][   T24] usb 7-1: SerialNumber: syz
[   91.618936][   T24] usb 7-1: config 0 descriptor??
[   91.621284][ T8137] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   91.625609][   T24] cm109 7-1:0.8: invalid payload size 1024, expected 4
[   91.628625][   T24] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.8/input/input13
[   91.632479][ T8169] overlayfs: conflicting options: userxattr,metacopy=on
[   91.846271][ T8187] netlink: 'syz.1.613': attribute type 1 has an invalid length.
[   91.873709][ T8191] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[   91.873806][ T8183] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12321 sclass=netlink_route_socket pid=8183 comm=syz.2.597
[   91.874290][ T8193] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12321 sclass=netlink_route_socket pid=8193 comm=syz.2.597
[   91.897795][    C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71
[   91.897902][  T131] usb 7-1: USB disconnect, device number 10
[   91.899992][    C2] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[   91.906926][  T131] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[   91.909279][ T8196] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8196 comm=syz.1.615
[   92.474551][ T8216] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5137 sclass=netlink_route_socket pid=8216 comm=syz.4.623
[   92.481623][ T8216] veth0_to_team: entered promiscuous mode
[   92.490216][ T8216] qnx4: unable to read the superblock
[   92.494381][ T8218] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5137 sclass=netlink_route_socket pid=8218 comm=syz.4.623
[   92.766895][ T8199] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   92.769126][ T8199] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   92.776236][ T8199] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   92.779156][ T8199] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   92.781245][ T8199] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   92.784602][ T8199] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   92.787324][ T8199] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   92.789752][ T8199] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   92.794493][ T8199] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   92.797165][ T8199] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   92.799799][ T8199] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   92.803486][ T8199] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   92.839917][ T8226] overlayfs: failed to resolve './file0': -2
[   92.879021][ T8232] mmap: syz.4.627 (8232) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   93.000989][ T8250] cgroup: Unknown subsys name 'cpuset'
[   93.060193][ T6277] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[   93.161379][   T40] kauditd_printk_skb: 16 callbacks suppressed
[   93.161389][   T40] audit: type=1400 audit(1762015953.621:605): avc:  denied  { bind } for  pid=8253 comm="syz.3.633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   93.173551][   T40] audit: type=1800 audit(1762015953.631:606): pid=8254 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.633" name="bus" dev="overlay" ino=922 res=0 errno=0
[   93.220430][ T6277] usb 7-1: Using ep0 maxpacket: 32
[   93.230843][   T24] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[   93.233640][ T6277] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[   93.237487][ T6277] usb 7-1: config 0 has no interface number 0
[   93.243879][ T6277] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[   93.247872][ T6277] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.251512][ T6277] usb 7-1: Product: syz
[   93.253604][ T6277] usb 7-1: Manufacturer: syz
[   93.255662][ T6277] usb 7-1: SerialNumber: syz
[   93.259978][ T6277] usb 7-1: config 0 descriptor??
[   93.266001][ T6277] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[   93.269710][ T6277] usb 7-1: selecting invalid altsetting 1
[   93.273878][ T6277] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[   93.279116][ T6277] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[   93.282559][ T6277] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[   93.286086][ T6277] usb 7-1: media controller created
[   93.296072][ T6277] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   93.380425][   T24] usb 9-1: Using ep0 maxpacket: 32
[   93.385366][   T24] usb 9-1: unable to get BOS descriptor or descriptor too short
[   93.389268][   T24] usb 9-1: config 1 has an invalid interface number: 10 but max is 0
[   93.392436][   T24] usb 9-1: config 1 has no interface number 0
[   93.394285][   T24] usb 9-1: too many endpoints for config 1 interface 10 altsetting 68: 123, using maximum allowed: 30
[   93.397665][   T24] usb 9-1: config 1 interface 10 altsetting 68 endpoint 0x81 has an invalid bInterval 249, changing to 11
[   93.401207][   T24] usb 9-1: config 1 interface 10 altsetting 68 has 1 endpoint descriptor, different from the interface descriptor's value: 123
[   93.405665][   T24] usb 9-1: config 1 interface 10 has no altsetting 0
[   93.409335][   T24] usb 9-1: New USB device found, idVendor=05ac, idProduct=029a, bcdDevice= 0.40
[   93.412314][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.414814][   T24] usb 9-1: Product: syz
[   93.416144][   T24] usb 9-1: Manufacturer: syz
[   93.417677][   T24] usb 9-1: SerialNumber: syz
[   93.583722][   T40] audit: type=1400 audit(1762015954.041:607): avc:  denied  { execute } for  pid=8259 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   93.591423][   T40] audit: type=1400 audit(1762015954.041:608): avc:  denied  { execute_no_trans } for  pid=8259 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   93.634401][   T24] usb 9-1: USB disconnect, device number 8
[   93.737653][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   93.749281][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   93.752887][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   93.756680][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   93.759216][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   93.893620][ T6364] bond2 (unregistering): (slave gretap1): Releasing active interface
[   94.050152][   T24] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[   94.220128][   T24] usb 9-1: Using ep0 maxpacket: 8
[   94.228482][ T6364] bond0 (unregistering): (slave veth0_virt_wifi): Releasing backup interface
[   94.231375][   T24] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   94.231392][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   94.231404][   T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   94.231415][   T24] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   94.231434][   T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   94.231446][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.253626][ T6364] bond0 (unregistering): (slave wlan1): Releasing backup interface
[   94.256986][ T6364] bond0 (unregistering): Released all slaves
[   94.265660][ T6364] bond1 (unregistering): Released all slaves
[   94.273835][ T6364] bond2 (unregistering): Released all slaves
[   94.282340][ T6364] bond3 (unregistering): Released all slaves
[   94.294132][ T8267] lo speed is unknown, defaulting to 1000
[   94.294366][ T8277] __nla_validate_parse: 10 callbacks suppressed
[   94.294376][ T8277] netlink: 4 bytes leftover after parsing attributes in process `syz.1.641'.
[   94.356489][ T8287] ipt_REJECT: ECHOREPLY no longer supported.
[   94.369131][ T6277] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[   94.378015][ T6277] zl10353_read_register: readreg error (reg=127, ret==-110)
[   94.380183][ T8217] usb 7-1: dvb_usb_ce6230: I2C read not implemented
[   94.392443][ T8267] chnl_net:caif_netlink_parms(): no params data found
[   94.399258][ T6364] : left promiscuous mode
[   94.440738][ T8271] NILFS (loop4): device size too small
[   94.443534][   T24] usb 9-1: GET_CAPABILITIES returned 0
[   94.445289][   T24] usbtmc 9-1:16.0: can't read capabilities
[   94.474413][  T131] usb 9-1: USB disconnect, device number 9
[   94.545736][ T6364] tipc: Left network mode
[   94.554309][ T8267] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.556776][ T8267] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.559133][ T8267] bridge_slave_0: entered allmulticast mode
[   94.562064][ T8267] bridge_slave_0: entered promiscuous mode
[   94.567282][ T8267] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.570472][ T8267] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.572823][ T8267] bridge_slave_1: entered allmulticast mode
[   94.575476][ T8267] bridge_slave_1: entered promiscuous mode
[   94.633234][ T8267] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   94.652129][ T8267] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.686160][ T8322] netlink: 'syz.1.650': attribute type 1 has an invalid length.
[   94.688712][ T8322] netlink: 228 bytes leftover after parsing attributes in process `syz.1.650'.
[   94.731443][ T8267] team0: Port device team_slave_0 added
[   94.737784][ T8267] team0: Port device team_slave_1 added
[   94.768362][ T8329] netlink: 4 bytes leftover after parsing attributes in process `syz.4.653'.
[   94.791304][ T8267] batman_adv: batadv0: Adding interface: batadv_slave_0
[   94.793601][ T8267] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   94.801833][ T8267] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   94.806104][ T8267] batman_adv: batadv0: Adding interface: batadv_slave_1
[   94.808288][ T8267] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   94.816798][ T8267] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   94.820201][ T5939] Bluetooth: hci3: command 0x041b tx timeout
[   94.820261][ T5939] Bluetooth: hci2: command 0x0c1a tx timeout
[   94.820290][ T5939] Bluetooth: hci1: command 0x0c1a tx timeout
[   94.831682][ T6364] hsr_slave_0: left promiscuous mode
[   95.447663][ T6277] usb 7-1: USB disconnect, device number 11
[   95.470011][ T8342] overlayfs: failed to resolve './file1/file0': -2
[   95.790525][ T5950] Bluetooth: hci0: command tx timeout
[   95.893076][  T131] lo speed is unknown, defaulting to 1000
[   95.895165][  T131] syz2: Port: 1 Link DOWN
[   95.975303][ T8267] hsr_slave_0: entered promiscuous mode
[   95.977745][ T8267] hsr_slave_1: entered promiscuous mode
[   95.980559][ T8267] debugfs: 'hsr0' already exists in 'hsr'
[   95.982507][ T8267] Cannot create hsr debugfs directory
[   95.997979][ T8350] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'.
[   96.089324][ T8355] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   96.152841][ T8359] iommufd_mock iommufd_mock0: Adding to iommu group 9
[   96.161686][ T8359] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[   96.174035][ T8267] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   96.181867][ T8267] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   96.187578][ T8267] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   96.193953][ T8267] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   96.205518][ T6364] IPVS: stop unused estimator thread 0...
[   96.219277][ T8370] netlink: 16 bytes leftover after parsing attributes in process `syz.2.661'.
[   96.254677][ T8267] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.271578][ T8267] 8021q: adding VLAN 0 to HW filter on device team0
[   96.282053][ T6358] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.284287][ T6358] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.292708][ T6356] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.294951][ T6356] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.317226][ T8267] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   96.405757][ T8267] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.535826][   T40] audit: type=1400 audit(1762015956.991:609): avc:  denied  { shutdown } for  pid=8405 comm="syz.4.667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   96.539860][ T8408] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2560 sclass=netlink_route_socket pid=8408 comm=syz.4.667
[   96.546433][ T8408] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2569 sclass=netlink_route_socket pid=8408 comm=syz.4.667
[   96.551363][ T8408] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2572 sclass=netlink_route_socket pid=8408 comm=syz.4.667
[   96.589234][ T8267] veth0_vlan: entered promiscuous mode
[   96.590430][ T8411] exFAT-fs (nbd4): unable to read boot sector
[   96.593552][ T8411] exFAT-fs (nbd4): failed to read boot sector
[   96.596190][ T8411] exFAT-fs (nbd4): failed to recognize exfat type
[   96.597518][ T8267] veth1_vlan: entered promiscuous mode
[   96.627285][ T8267] veth0_macvtap: entered promiscuous mode
[   96.635355][ T8267] veth1_macvtap: entered promiscuous mode
[   96.649196][ T8267] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.651464][ T8414] binder: BINDER_SET_CONTEXT_MGR already set
[   96.651493][ T8414] binder: 8413:8414 ioctl 4018620d 200000004a80 returned -16
[   96.658434][ T8267] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.659146][ T8416] netlink: 8 bytes leftover after parsing attributes in process `syz.2.670'.
[   96.667743][ T6356] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.671184][ T6369] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.678629][ T6369] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.681840][ T6369] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.715910][ T6369] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.719224][ T6369] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.748524][ T6358] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.751294][ T6358] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.758761][   T40] audit: type=1400 audit(1762015957.211:610): avc:  denied  { mounton } for  pid=8267 comm="syz-executor" path="/syzkaller.CSc93L/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   96.773568][   T40] audit: type=1400 audit(1762015957.231:611): avc:  denied  { mounton } for  pid=8267 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   96.910172][ T5950] Bluetooth: hci1: command 0x0c1a tx timeout
[   96.912340][ T5950] Bluetooth: hci2: command 0x0c1a tx timeout
[   96.914679][ T5950] Bluetooth: hci3: command 0x041b tx timeout
[   96.930034][ T8435] netlink: 104 bytes leftover after parsing attributes in process `syz.2.675'.
[   96.935190][ T8435] netlink: 52 bytes leftover after parsing attributes in process `syz.2.675'.
[   96.943072][   T40] audit: type=1400 audit(1762015957.401:612): avc:  denied  { write } for  pid=8434 comm="syz.2.675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   96.968739][   T40] audit: type=1400 audit(1762015957.421:613): avc:  denied  { map } for  pid=8438 comm="syz.4.676" path="/dev/comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   96.979961][   T40] audit: type=1400 audit(1762015957.421:614): avc:  denied  { execute } for  pid=8438 comm="syz.4.676" path="/dev/comedi4" dev="devtmpfs" ino=1306 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   96.994836][ T8444] overlay: ./file0 is not a directory
[   97.071051][ T8452] x_tables: ip_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   97.075489][ T8452] netlink: 284 bytes leftover after parsing attributes in process `syz.2.679'.
[   97.106883][ T8452] x_tables: ip_tables: osf match: only valid for protocol 6
[   97.213234][ T8457] block nbd5: NBD_DISCONNECT
[   97.217098][ T8455] block nbd5: Disconnected due to user request.
[   97.219075][ T8455] block nbd5: shutting down sockets
[   97.298974][ T8476] netlink: 16 bytes leftover after parsing attributes in process `syz.2.687'.
[   97.357679][ T8481] netfs: Couldn't get user pages (rc=-14)
[   97.412950][ T8487] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16702 sclass=netlink_route_socket pid=8487 comm=syz.2.692
[   97.531684][ T8499] netlink: 'syz.2.696': attribute type 10 has an invalid length.
[   97.535156][ T8499] dummy0: entered promiscuous mode
[   97.676392][ T8513] [U] 
[   97.677624][ T8513] [U] 
[   97.678525][ T8513] [U] 
[   97.679479][ T8513] [U] 
[   97.680625][ T8513] [U] 
[   97.681515][ T8513] [U] 
[   97.682393][ T8513] [U] 
[   97.683292][ T8513] [U] 
[   97.684387][ T8513] [U] 
[   97.685299][ T8513] [U] 
[   97.686515][ T8513] [U] 
[   97.687727][ T8513] [U] 
[   97.689583][ T8513] [U] 
[   97.690831][ T8513] [U] 
[   97.691811][ T8513] [U] 
[   97.692710][ T8513] [U] 
[   97.694216][ T8512] [U] 
[   97.761607][ T8524] ubi31: attaching mtd0
[   97.764326][ T8524] ubi31: scanning is finished
[   97.765904][ T8524] ubi31: empty MTD device detected
[   97.809386][ T8529] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[   97.863360][ T5950] Bluetooth: hci0: command tx timeout
[   97.903937][ T8539] Oops: general protection fault, probably for non-canonical address 0xdffffc000000005f: 0000 [#1] SMP KASAN NOPTI
[   97.907731][ T8539] KASAN: null-ptr-deref in range [0x00000000000002f8-0x00000000000002ff]
[   97.911412][ T8539] CPU: 1 UID: 0 PID: 8539 Comm: syz.4.707 Not tainted syzkaller #0 PREEMPT(full) 
[   97.915082][ T8539] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.918516][ T8539] RIP: 0010:h5_recv+0x104/0x950
[   97.920147][ T8539] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 11 ae 7b f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[   97.920386][ T8524] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[   97.926256][ T8539] RSP: 0018:ffffc9000350fbf0 EFLAGS: 00010293
[   97.926269][ T8539] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff88415f4a
[   97.926276][ T8539] RDX: ffff888058edc900 RSI: ffffffff88415f8f RDI: 0000000000000005
[   97.926282][ T8539] RBP: ffffc9000350fd78 R08: 0000000000000005 R09: 0000000000000000
[   97.926288][ T8539] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[   97.926294][ T8539] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8c9079a0
[   97.926301][ T8539] FS:  00007f630b3576c0(0000) GS:ffff8880d6b08000(0000) knlGS:0000000000000000
[   97.929817][ T8524] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   97.930591][ T8539] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   97.930601][ T8539] CR2: 00007f630b356f98 CR3: 00000000444ef000 CR4: 0000000000352ef0
[   97.930608][ T8539] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000042
[   97.930614][ T8539] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[   97.930620][ T8539] Call Trace:
[   97.939685][ T8524] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[   97.940710][ T8539]  <TASK>
[   97.940719][ T8539]  ? __pfx_h5_recv+0x10/0x10
[   97.940739][ T8539]  hci_uart_tty_receive+0x254/0x7e0
[   97.944364][ T8524] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[   97.946324][ T8539]  ? __pfx_hci_uart_tty_receive+0x10/0x10
[   97.946342][ T8539]  tty_ioctl+0x583/0x1680
[   97.950284][ T8524] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   97.950748][ T8539]  ? __pfx_tty_ioctl+0x10/0x10
[   97.974933][ T8539]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   97.977195][ T8539]  ? hook_file_ioctl_common+0x145/0x410
[   97.978993][ T8539]  ? selinux_file_ioctl+0x180/0x270
[   97.980613][ T8539]  ? selinux_file_ioctl+0xb4/0x270
[   97.982260][ T8539]  ? __pfx_tty_ioctl+0x10/0x10
[   97.984062][ T8539]  __x64_sys_ioctl+0x18e/0x210
[   97.985877][ T8539]  do_syscall_64+0xcd/0xfa0
[   97.987546][ T8539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.989475][ T8539] RIP: 0033:0x7f630a58efc9
[   97.990918][ T8539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.997564][ T8539] RSP: 002b:00007f630b357038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   98.000284][ T8539] RAX: ffffffffffffffda RBX: 00007f630a7e6180 RCX: 00007f630a58efc9
[   98.002814][ T8539] RDX: 0000200000000140 RSI: 0000000000005412 RDI: 0000000000000004
[   98.005404][ T8539] RBP: 00007f630a611f91 R08: 0000000000000000 R09: 0000000000000000
[   98.008109][ T8539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   98.010664][ T8539] R13: 00007f630a7e6218 R14: 00007f630a7e6180 R15: 00007ffc24dc9238
[   98.013211][ T8539]  </TASK>
[   98.014226][ T8539] Modules linked in:
[   98.015647][ T8524] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[   98.016191][ T8539] ---[ end trace 0000000000000000 ]---
[   98.018258][ T8524] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2041475782
[   98.023183][ T8524] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   98.026439][ T8540] ubi31: background thread "ubi_bgt31d" started, PID 8540
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   98.058502][ T8539] RIP: 0010:h5_recv+0x104/0x950
[   98.060233][ T8539] Code: c1 e8 03 4c 01 f0 48 89 44 24 08 48 8d 83 08 03 00 00 48 89 44 24 30 48 c1 e8 03 48 89 44 24 10 e8 11 ae 7b f9 48 8b 44 24 08 <80> 38 00 0f 85 ae 01 00 00 48 89 ea 48 89 e9 4c 8b bb f8 02 00 00
[   98.066569][ T8539] RSP: 0018:ffffc9000350fbf0 EFLAGS: 00010293
[   98.068566][ T8539] RAX: dffffc000000005f RBX: 0000000000000000 RCX: ffffffff88415f4a
[   98.071488][ T8539] RDX: ffff888058edc900 RSI: ffffffff88415f8f RDI: 0000000000000005
[   98.074078][ T8539] RBP: ffffc9000350fd78 R08: 0000000000000005 R09: 0000000000000000
[   98.076881][ T8539] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001
[   98.080377][ T8539] R13: 0000000000000001 R14: dffffc0000000000 R15: ffffffff8c9079a0
[   98.082924][ T8539] FS:  00007f630b3576c0(0000) GS:ffff8880d6a08000(0000) knlGS:0000000000000000
[   98.085758][ T8539] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   98.087882][ T8539] CR2: 00005599f6745ad0 CR3: 00000000444ef000 CR4: 0000000000352ef0
[   98.090267][  T131] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[   98.097090][ T8539] Kernel panic - not syncing: Fatal exception
[   98.099749][ T8539] Kernel Offset: disabled
[   98.101117][ T8539] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:52:38  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81ad6bcd RDX=ffffffff8e097a00
RSI=ffffffff81addc10 RDI=0000000000000005 RBP=0000000000000000 RSP=ffffc90000007f00
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=ffffffff9ad48ef0
R12=ffff88806a423a00 R13=0000000000000003 R14=0000000000000000 R15=ffff88806a427c80
RIP=ffffffff81bd0da8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6a08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f630b357d58 CR3=000000002afe0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5b66812fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5b66812fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5b66812fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5b66812ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5b6681307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5b6681315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 31120f5e9db10752 98703bdcad99f09e 7f323017a9e95b68 58fb4e793c799483
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7ffc4111c615904b 1e3b6ca330b82589 21d980add9570004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4685d4d24f62b284 4527de7db061af0c 6a0db9154686a8ef 22ceb49fa3e7edc6
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0109cd8bcd0684c4 9e54bdc5724dccf3 d5877b59f1893e23 83bf4daf04e9cd0a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c3810475a4b7c68 0e4387d72e6e7bb0 b039aeb7d9896aad 1f99ce02d78818bd
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f26c0ecff4b697fa 2c04feda3cd32fa0 f2e06531de4685d4 d24f62b2844527de
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7db061af0c6a0db9 154686a8ef22ceb4 9fa3e7edc67ffc41 11c615904b1e3b6c
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85295fb5 RDI=ffffffff9add8780 RBP=ffffffff9add8740 RSP=ffffc9000350f5f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=000000000000000d R14=ffffffff9add8740 R15=ffffffff85295f50
RIP=ffffffff85295fdf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f630b3576c0 ffffffff 00c00000
GS =0000 ffff8880d6b08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f630b356f98 CR3=00000000444ef000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000042 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a61307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a61315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a7b74a8 00007f630a7b74a0 00007f630a7b7498 00007f630a7b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630b31d100 00007f630a7b7460 00007f630a7b7478 00007f630a7b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a7b74b8 00007f630a7b74b0 00007f630a7b74a8 00007f630a7b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=0000000000000001 RCX=ffffc90004708000 RDX=ffffc90004707901
RSI=ffffc90004707908 RDI=ffffc90004707908 RBP=ffffc90004707828 RSP=ffffc90004707768
R8 =ffffffff911ac200 R9 =0000000000000000 R10=ffffc900047077e0 R11=000000000000a808
R12=ffffc90004707830 R13=ffffc900047077e0 R14=ffffc90004707910 R15=ffffc90004707814
RIP=ffffffff816c0b00 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f41cee1d6c0 ffffffff 00c00000
GS =0000 ffff8880d6c08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f630a7e7dac CR3=00000000644e7000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a612ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a61307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a61315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a7b74a8 00007f630a7b74a0 00007f630a7b7498 00007f630a7b7470
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630b31d100 00007f630a7b7460 00007f630a7b7478 00007f630a7b74c0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f630a7b74b8 00007f630a7b74b0 00007f630a7b74a8 00007f630a7b74a0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88802b5c7180 RCX=ffffffff823796d6 RDX=ffff88802f1ba480
RSI=0000000002000000 RDI=0000000000000005 RBP=0000000004000000 RSP=ffffc90003e9f008
R8 =0000000000000005 R9 =0000000002000000 R10=0000000004000000 R11=0000000000000000
R12=1ffff920007d3e06 R13=0000000000001000 R14=0000000004bfd000 R15=ffffffff81ff6080
RIP=ffffffff81bd07ab RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6d08000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f630a7e7da9 CR3=000000004ca2e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdc1db48b0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ce012fdb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ce012fe8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ce012fe2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ce012ff6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ce01307c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f41ce01315a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000