last executing test programs:

8m26.175083851s ago: executing program 32 (id=768):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x17, &(0x7f0000000000)=0x40, 0x4)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)=@vmx={0x0, 0x0, 0x2080, {0x0, 0x0, {}, 0x0, 0x2}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x840}, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000200), 0x2, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x10)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r7, 0x0, 0x10, &(0x7f0000000140)="170000000200020000ffbe8c5ee17688a2003c000303000afdff02a257fc5ad90200bb6a880000d6c9db0000db00000200df01800a0000ebfc0607bdff59100ac45761547a681f009cee4a5acba400001fb700674f00c88ebbf9315033bf79ac2dfc061f15003901dee2ffffffffe9000000000000000062068f5ee50ce5af9b1c568302ffff02ff0331dd3bab0840024f0298e9e90539062a80e605007f71174ab498a30b3e5a1b47b63a6323ded2aa084cd36276a3afff", 0xb8)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r8)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)={0x20, r9, 0x6a98047402e98331, 0x70bd21, 0xffa1, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x24004040}, 0x4008800)
close_range(r6, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r5, 0x0, 0xb, &(0x7f0000000340)=0x10001, 0x4)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x0, @remote}, 0x10)
sendmmsg(r5, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r5, &(0x7f00000002c0)=[{{0x0, 0x0, 0x0}, 0x4}, {{0x0, 0x0, 0x0}, 0x10003}], 0x2, 0x45833af92e4b39ff, 0x0)
rmdir(&(0x7f0000000240)='./cgroup/../file0\x00')
lseek(r4, 0x93, 0x3)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000180)="660f388084000072baf80c66b860b4498c66efbafc0c66b80e00000066ef64f30fc7b000100f850100f30fc7b1030066b9800000c00f326635000400000f30d2bc0a000f23c80f21f86635040040000f23f8b8f4008ee0", 0x57}], 0x1, 0x48, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[], 0x54}}, 0x24002041)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010063616e"], 0x48}}, 0x0)

8m14.057204783s ago: executing program 33 (id=1171):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000400)=[{&(0x7f00000004c0)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb", 0x5}], 0x2, &(0x7f0000000680)=[@ip_retopts={{0x18, 0x0, 0x7, {[@cipso={0x86, 0x8, 0x3, [{0x2, 0x2}]}]}}}], 0x18}, 0x24048014)

8m2.211763525s ago: executing program 34 (id=1431):
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)=ANY=[], 0x40}], 0x1, 0x0, 0x0, 0x40065}, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24088804)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000600)}, {&(0x7f0000002840)}], 0x2}}], 0x1, 0x4000081)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x44, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000010400b500000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001400001c00128009000100626f6e64000000000c0002800800"], 0x3c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

8m0.259913196s ago: executing program 1 (id=1453):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x7, 0x2)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f0000000100)=r1, 0x4)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r2, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x32}}]}, &(0x7f0000000180)=0x10)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={r4, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xd4}, 0x9c)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000240)={r4, @in={{0x2, 0x4e23, @broadcast}}}, &(0x7f0000000040)=0x84)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0xfeb0, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ZONE={0x6, 0x4, 0x2e4}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x64}}, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000200)='dctcp', 0x5)
r7 = syz_genetlink_get_family_id$gtp(&(0x7f0000000300), r1)
sendmsg$GTP_CMD_GETPDP(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)={0xffffffc9, r7, 0x204, 0x70bd2b, 0x25dfdbfb, {}, [@GTPA_TID={0xc, 0x3, 0x1}, @GTPA_O_TEI={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x880}, 0x4000)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r5, &(0x7f0000000400)="02", 0x1, 0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r8 = getpid()
r9 = syz_pidfd_open(r8, 0x0)
setns(r9, 0x24020000)
syz_clone(0x30288000, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = socket$inet6(0x10, 0x2, 0x4)
sendto$inet6(r10, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0)

7m59.989613794s ago: executing program 1 (id=1454):
bind$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x1, @local, 0x7, 0x4}, 0x20)
getpeername$l2tp6(0xffffffffffffffff, 0x0, &(0x7f0000000240))

7m59.930194715s ago: executing program 1 (id=1456):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0xd, 0x3, 0x0, 'queue0\x00', 0x6})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3, 0x0, 0x7}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000140)={0x1, 0x3, 0x46, 0x0, 0x4})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8)
r3 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r3}, &(0x7f0000000380)=<r4=>0x0)
timer_settime(r4, 0x1, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r5 = gettid()
tkill(r5, 0x16)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0xed, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}, 0x1, 0x0, 0x0, 0x4080}, 0x0)

7m59.880271367s ago: executing program 1 (id=1457):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x115081, 0x42}, 0x18)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000080)={0x6b19, 0x1, 0xffff, 0x400e0a, 0x7f, "203c5e0000ff765e000080fffffffffffffff2", 0x8, 0x5})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x4)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0xff)
ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000180)={0x3, &(0x7f0000000140)=[{}, {}, {}]})

7m59.879924072s ago: executing program 1 (id=1458):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b70800000c000000638af8ff00000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018240000", @ANYRES8, @ANYBLOB="0000000000000000b703"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x800000, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x106, 0x9}}, 0x20)

7m59.498870882s ago: executing program 1 (id=1459):
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x6, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x41000, 0xf72cb191e650caa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x20000000)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000001380), &(0x7f00000013c0)=0xc)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

7m59.385779504s ago: executing program 35 (id=1459):
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x6, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x41000, 0xf72cb191e650caa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x20000000)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000001380), &(0x7f00000013c0)=0xc)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

7m56.98941692s ago: executing program 4 (id=1487):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) (async)
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000000)=0x1) (async)
preadv2(r0, &(0x7f0000000400)=[{&(0x7f00000002c0)=""/160, 0xa0}], 0x1, 0xc, 0x4cd, 0x10) (async)
open$dir(&(0x7f00000001c0)='./file1\x00', 0x340880, 0x11a) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)={0x14, 0x3a, 0x301, 0x270bd24, 0x25dfdbfa, {0x10}}, 0x14}}, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="cf579090634144f65f25211f4f286157f29d89428c350a37d94aebc08d152d0ef8bd20de370dbafc603e"], 0x2c}}, 0x24000801)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff}) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.swap.events\x00', 0x275a, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x2a, &(0x7f0000000100)=r4, 0x4) (async)
mkdirat(r4, &(0x7f0000000200)='./file0\x00', 0x317) (async)
mount$overlay(0x0, &(0x7f0000000100)='./file2\x00', &(0x7f0000000000), 0x0, &(0x7f0000000280)={[{@index_off}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@nfs_export_off}], [], 0x2c}) (async)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r6 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'netdevsim0\x00', <r7=>0x0}) (async)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0xa, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r8, 0x2, 0x1}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, r9, 0x4}, 0x38)
sendmsg$nl_xfrm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="5c0100001000130703000000ffdbdf25e0000001000000000000000000000000ff020000000000000000000000000001000400004e2100000000000021000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32=r7], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2014) (async)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x400, &(0x7f0000000500)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

7m56.908764222s ago: executing program 4 (id=1489):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000080)={@loopback, @empty, <r2=>0x0}, &(0x7f00000000c0)=0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r3=>0x0})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x7, 0x1, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0], 0x0, 0x31, &(0x7f0000000200)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000240), &(0x7f0000000280), 0x8, 0xf9, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000540)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)={0xac, r1, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x38, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x80}, 0x4000041)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
ioctl$RTC_VL_CLR(r5, 0x7014)
r6 = syz_open_dev$loop(&(0x7f00000005c0), 0x2, 0x1)
ioctl$LOOP_SET_FD(r6, 0x4c00, r0) (async)
sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x18, r1, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x1080}, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x4, 0x0) (async)
write$eventfd(0xffffffffffffffff, &(0x7f0000000700)=0xfffffffffffffff9, 0x8)
fallocate(r6, 0x24, 0xfffffffffffffffb, 0x5) (async)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000740)='./file0\x00', 0x800, 0x12a)
r8 = openat(r7, &(0x7f0000000780)='./file0\x00', 0x105440, 0x10) (async)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003040)=[{{&(0x7f00000007c0), 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000840)=""/223, 0xdf}, {&(0x7f0000000940)=""/45, 0x2d}, {&(0x7f0000000980)=""/108, 0x6c}], 0x3, &(0x7f0000000a40)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r9=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}}, {{&(0x7f0000000b00), 0x6e, &(0x7f0000000bc0)=[{&(0x7f0000000b80)=""/39, 0x27}], 0x1, &(0x7f0000000c00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000000c80), 0x6e, &(0x7f00000020c0)=[{&(0x7f0000000d00)=""/146, 0x92}, {&(0x7f0000000dc0)=""/169, 0xa9}, {&(0x7f0000000e80)=""/48, 0x30}, {&(0x7f0000000ec0)=""/11, 0xb}, {&(0x7f0000000f00)=""/71, 0x47}, {&(0x7f0000000f80)=""/4096, 0x1000}, {&(0x7f0000001f80)=""/180, 0xb4}, {&(0x7f0000002040)=""/111, 0x6f}], 0x8}}, {{&(0x7f0000002140)=@abs, 0x6e, &(0x7f0000002380)=[{&(0x7f00000021c0)=""/172, 0xac}, {&(0x7f0000002280)=""/203, 0xcb}], 0x2}}, {{&(0x7f00000023c0), 0x6e, &(0x7f0000002880)=[{&(0x7f0000002440)=""/58, 0x3a}, {&(0x7f0000002480)=""/90, 0x5a}, {&(0x7f0000002500)=""/84, 0x54}, {&(0x7f0000002580)=""/73, 0x49}, {&(0x7f0000002600)=""/105, 0x69}, {&(0x7f0000002680)=""/172, 0xac}, {&(0x7f0000002740)=""/51, 0x33}, {&(0x7f0000002780)=""/139, 0x8b}, {&(0x7f0000002840)=""/1, 0x1}], 0x9}}, {{&(0x7f0000002940), 0x6e, &(0x7f0000002d00)=[{&(0x7f00000029c0)=""/85, 0x55}, {&(0x7f0000002a40)=""/91, 0x5b}, {&(0x7f0000002ac0)=""/223, 0xdf}, {&(0x7f0000002bc0)=""/104, 0x68}, {&(0x7f0000002c40)=""/166, 0xa6}], 0x5, &(0x7f0000002d80)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000002dc0), 0x6e, &(0x7f0000003000)=[{&(0x7f0000002e40)=""/74, 0x4a}, {&(0x7f0000002ec0)=""/251, 0xfb}, {&(0x7f0000002fc0)=""/26, 0x1a}], 0x3}}], 0x7, 0x120, &(0x7f0000003200)={0x77359400})
setsockopt$inet6_buf(r9, 0x29, 0xcc, &(0x7f0000003240)="7441715d2cda586f127e03a3a0e7ce20f1d5ba6f331282e103247f9e47af620c6261a7f14f8902926e586872740eeae2552c377eea5f4b7ebb9487f190477f1eacbe251ad457b55999632673957d244cd4dea821ef983178a7d078a3e7762845edab64001f297f62f00d8cef7d0e9703805f78f2401452ea481357159bd914b7a4d4808786", 0x85) (async)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r8, 0xc04064a0, &(0x7f0000003400)={&(0x7f0000003300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000003340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000003380)=[0x0], &(0x7f00000033c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x9, 0x1, 0x8})
ioctl$CDROMEJECT_SW(r10, 0x530f, 0x0) (async)
r11 = openat$sr(0xffffffffffffff9c, &(0x7f0000003440), 0x202, 0x0)
getpeername$qrtr(r11, &(0x7f0000003480), &(0x7f00000034c0)=0xc) (async)
ioctl$RTC_UIE_ON(r10, 0x7003) (async)
r12 = openat$rtc(0xffffffffffffff9c, &(0x7f0000003500), 0x20000, 0x0)
ioctl$RTC_AIE_ON(r12, 0x7001)
io_setup(0xe, &(0x7f0000003540)=<r13=>0x0)
io_cancel(r13, &(0x7f0000003680)={0x0, 0x0, 0x0, 0x9, 0x400, r9, &(0x7f0000003580)="a7f410802c78dbd1813c74d532a0068a009279664b835fcb67f1f70d050eaf67342bb7b6e80b1f9feac765a394a60b6c459f1a41827c2cb8d70327a690cd2f73d8e898a94224be4b7a9c4c77435414b73b3e5b563f3dfe3cd583263bed995b3706c7745370059a11cf3e2ee56a27f2cd4b1f5b2abe4c7b76f100c276e39f804dee958e242554211a193cdd69da8784c1b77a30bd628967437fcd19cc1d70127d9a21f8ab3c75f97513773fb33aadfc8483a3714912a686ac6618b0b0857f2e568d9a", 0xc2, 0x4, 0x0, 0x3, r9}, &(0x7f00000036c0)) (async)
r14 = landlock_create_ruleset(&(0x7f0000003700)={0x0, 0x3, 0x2}, 0x18, 0x1)
ioctl$FICLONE(r0, 0x40049409, r14)

7m56.678997516s ago: executing program 4 (id=1494):
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000004c0), 0x80200, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r1, 0x3b87, &(0x7f0000000600)={0x18, 0x1, 0x0, 0x0, r2, 0x1})
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f00000001c0)={0x18, r2, 0x7fffffff, 0x2})
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x2000011, 0xffffffffffffffff, 0xd3fc6000)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f00000007c0)={0x28, 0x3, r4, 0x0, &(0x7f0000000000/0x800000)=nil, 0x800000, 0x1004000})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r3, 0x3ba0, &(0x7f0000000280)={0x48, 0x2, r4})

7m56.539314641s ago: executing program 4 (id=1497):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4090}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x130}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x6c}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@delchain={0x24, 0x65, 0x400, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x509d884560ba1ba6, 0xfff3}, {}, {0x8, 0x10}}}, 0x24}}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x10, 0x80000000, 0x4, {0x0, 0x0, 0x0, 0x0, {0xd}, {0xa, 0xfff2}, {0xfff1, 0x9}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x1a}, @TCA_FQ_PIE_ECN={0x8, 0xa, 0x40001}]}}]}, 0x44}}, 0x20004055)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x32, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x80854}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000440)='./file0/../file0/../file0/../file0\x00')
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x9101)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f00000001c0)='./file0/../file0/../file0/../file0\x00', &(0x7f0000000100)='./file0/../file0/../file0/../file0/file0\x00')
r5 = socket$kcm(0x29, 0x0, 0x0)
sendmsg$kcm(r5, &(0x7f0000000640)={&(0x7f0000000180)=@generic={0x15, "ebdd1191baa55ac8e4796c1e68ac680f6ef0434b0aa6a6479a25fcb52d81d8d8b4599ed916142410d2e4dc2c51247a3c45024771ceacefe7603276cf9ffcd0f0c79fff21b329f174912ce55934efb41dd38cf7e87efc2a780e51609763386b59b75fc319bd0e057fd629743378cba0fefbb456bd81284407034813f03cea"}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0xfe}, {&(0x7f0000000540)="6fa17772d635283ddf62fa4ca87d99b64c483f80b5972b71213f4e7173ac53dd669148c11453afc22cd60067fcf94bbd82533486161f13ec5ab0d9247580a1fefb045cf904e5099071c10363f46f0fd25de4591dc4fb8d8ac84a6c98c260b78cf4b24730c45ff9f52e486f12c4d3e904137dffa8686278d875ec60a30371905103cba587b084ff847e1e764838364035b54f43d4f657d2715bd267706f5837fd6184648ff8872acf04cada34bd387df3892bfdf16c7304a5ce737f92e673b1acc5313d14caba9fa757b121265c223faefde671182720c14de47147f7fe04484c5da53f2cedc0c6dd5edfded24c", 0xed}, {&(0x7f0000000200)="7a0e72c80960c426259edd4f92bf2a4008386a67b12ada1ef37d607838a26f38995e88d8a44d05c739b053c2", 0x2c}], 0x3}, 0x200400c1)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x4c, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x20, 0x3, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, '\x00\x00'}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x74}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="40000000210a018800000000000000000a0000010900020073797a31000000000900010073797a310000000014000380100000800c000180060001"], 0x40}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

7m56.430628615s ago: executing program 4 (id=1499):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="2000000053000900fffffffffddbdf250200000004001f00080001800400335172e1f94a818dc5769c88c6b6119b9c1146a0c66a5bc61bd86a045c63907e6ca9bab51b1e59541474ce87ef2db98ba15c0064ed9034302119f29ece68277173b9aa43f9e418f8b5c1d1c608e7c2de96a9d85805905d77d9241438ec79b39abd6d986f13d92df10d1a41201794b057b87a824ad366e4e6"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xe}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x5, 0x7, 0xb3}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000884)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@newqdisc={0x2c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xffffbddc, {0x0, 0x0, 0x0, r4, {0xfff2}, {0x0, 0xfff1}, {0xe, 0xb}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040098}, 0x0)

7m56.349833755s ago: executing program 4 (id=1503):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x9)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r4=>0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)

7m56.24361024s ago: executing program 36 (id=1503):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x9)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0)=<r4=>0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r4], 0x1c}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)

7m56.189797403s ago: executing program 7 (id=1460):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fc, &(0x7f0000001300)={0x2, 0x4e23, @local}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000002040)='net/tcp\x00')
read$FUSE(r1, &(0x7f0000004340)={0x2020}, 0x2020)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2003, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000000)="0f30c40a5c3eecae663cfafa38800a0ab80c0f01c43646d87213460f09420fae01f2f2328b8b9d0f01c12e644c0fc72f", 0x30}], 0x1, 0x2c, 0x0, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000000)="0f30c40a5c3eecae663cfafa38800a0ab80c0f01c43646d87213460f09420fae01f2f2328b8b9d0f01c12e644c0fc72f", 0x30}], 0x1, 0x2c, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) (async)
bind$alg(r10, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r10, 0x117, 0x1, &(0x7f0000000100)="6507060082762422f9a30250a90def79e5ddb933b83b8f8f1a0daad170478560f60eb8dc258ded60aee45b04b15db386", 0x30)
r11 = accept$alg(r10, 0x0, 0x0)
sendmmsg$alg(r11, &(0x7f0000002940)=[{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002b40)="fb1add96eb5c4cee3df251747b4c22fa", 0x10}], 0x1, 0x0, 0x0, 0x20000800}], 0x1, 0x91) (async)
sendmmsg$alg(r11, &(0x7f0000002940)=[{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002b40)="fb1add96eb5c4cee3df251747b4c22fa", 0x10}], 0x1, 0x0, 0x0, 0x20000800}], 0x1, 0x91)
recvmsg(r11, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000016c0)=""/4117, 0x1015}], 0x1}, 0x20f2)
bind$netlink(r9, &(0x7f0000514ff4)={0x10, 0x0, 0x3, 0x2ffffffff}, 0xc) (async)
bind$netlink(r9, &(0x7f0000514ff4)={0x10, 0x0, 0x3, 0x2ffffffff}, 0xc)
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40004}, 0x4000) (async)
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r8, {0x0, 0x1}, {0xffff, 0xffff}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40004}, 0x4000)
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0xfff1, 0xfff3}, {}, {0x3, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8100}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000810}, 0x20084084)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000001440)={[0x9, 0xfffffffffffffff8, 0x40000000000, 0x8, 0x7f7f, 0x6, 0xc8, 0x5, 0x88, 0x4000000002, 0x401, 0x7, 0xce4, 0x7, 0x77e, 0x2], 0x7000, 0x285d40})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

7m55.859927079s ago: executing program 7 (id=1511):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x8b7c, 0x40, 0x200007, 0x22}, &(0x7f0000000380)=<r1=>0x0, &(0x7f00000003c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x40, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000001c0)='./file0\x00', 0x8, 0x28a202, 0x23456})
io_uring_enter(r0, 0x47f9, 0x4db, 0x60, 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x141842, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="b400000000000000631150e43300000004000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0x3e0, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76}, 0x48)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, &(0x7f00000000c0)=0x2, 0x4)
close_range(r5, r5, 0x0)
ioctl$BSG_GET_VERSION_NUM(r4, 0x2282, &(0x7f0000000240))
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000340), 0x4)
open(&(0x7f00000002c0)='./file0\x00', 0x40, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f0000006300)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_INIT(r6, &(0x7f0000000040)={0x50, 0x0, r7, {0x7, 0x1f, 0x3, 0x74414c48, 0x0, 0x0, 0x20, 0x5b, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(r6, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r9, 0x2000009)
sendfile(r8, r9, 0x0, 0x7ffff000)

7m52.700733939s ago: executing program 7 (id=1524):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r0, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="2000000053000900fffffffffddbdf250200000004001f00080001800400335172e1f94a818dc5769c88c6b6119b9c1146a0c66a5bc61bd86a045c63907e6ca9bab51b1e59541474ce87ef2db98ba15c0064ed9034302119f29ece68277173b9aa43f9e418f8b5c1d1c608e7c2de96a9d85805905d77d9241438ec79b39abd6d986f13d92df10d1a41201794b057b87a824ad366e4e6"], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xe}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x5, 0x7, 0xb3}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000884)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@newqdisc={0x2c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xffffbddc, {0x0, 0x0, 0x0, r4, {0xfff2}, {0x0, 0xfff1}, {0xe, 0xb}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040098}, 0x0)

7m52.362875344s ago: executing program 7 (id=1533):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8917, &(0x7f0000000000)={'veth0_to_bond\x00', {0x2, 0x4e24, @rand_addr=0xac14141d}})
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8)
r3 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r3}, &(0x7f0000000380)=<r4=>0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')
timer_settime(r4, 0x1, &(0x7f0000000280)={{}, {0x0, 0x989680}}, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r0, 0x641f)
pselect6(0x40, &(0x7f0000000100)={0x10, 0x8001, 0x2, 0x80, 0x7f, 0xf6de, 0x1ff, 0x2}, &(0x7f0000000200)={0x9, 0x1ff, 0x3, 0x3, 0x1, 0x3, 0xffffffff}, &(0x7f00000002c0)={0xffffffff, 0x30, 0x100000001, 0x16a9, 0x9, 0x9, 0x3, 0x100000001}, &(0x7f0000000300)={0x0, 0x3938700}, &(0x7f0000000400)={&(0x7f00000003c0)={[0xfd59]}, 0x8})
r5 = gettid()
tkill(r5, 0x16)
move_pages(0x0, 0x1, &(0x7f0000000180)=[&(0x7f00002b3000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2)
userfaultfd(0x80001) (async)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) (async)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) (async)
socket$xdp(0x2c, 0x3, 0x0) (async)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8917, &(0x7f0000000000)={'veth0_to_bond\x00', {0x2, 0x4e24, @rand_addr=0xac14141d}}) (async)
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8) (async)
gettid() (async)
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r3}, &(0x7f0000000380)) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0) (async)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w') (async)
timer_settime(r4, 0x1, &(0x7f0000000280)={{}, {0x0, 0x989680}}, 0x0) (async)
ioctl$DRM_IOCTL_DROP_MASTER(r0, 0x641f) (async)
pselect6(0x40, &(0x7f0000000100)={0x10, 0x8001, 0x2, 0x80, 0x7f, 0xf6de, 0x1ff, 0x2}, &(0x7f0000000200)={0x9, 0x1ff, 0x3, 0x3, 0x1, 0x3, 0xffffffff}, &(0x7f00000002c0)={0xffffffff, 0x30, 0x100000001, 0x16a9, 0x9, 0x9, 0x3, 0x100000001}, &(0x7f0000000300)={0x0, 0x3938700}, &(0x7f0000000400)={&(0x7f00000003c0)={[0xfd59]}, 0x8}) (async)
gettid() (async)
tkill(r5, 0x16) (async)
move_pages(0x0, 0x1, &(0x7f0000000180)=[&(0x7f00002b3000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2) (async)

7m52.254637909s ago: executing program 37 (id=1533):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8917, &(0x7f0000000000)={'veth0_to_bond\x00', {0x2, 0x4e24, @rand_addr=0xac14141d}})
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8)
r3 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r3}, &(0x7f0000000380)=<r4=>0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')
timer_settime(r4, 0x1, &(0x7f0000000280)={{}, {0x0, 0x989680}}, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r0, 0x641f)
pselect6(0x40, &(0x7f0000000100)={0x10, 0x8001, 0x2, 0x80, 0x7f, 0xf6de, 0x1ff, 0x2}, &(0x7f0000000200)={0x9, 0x1ff, 0x3, 0x3, 0x1, 0x3, 0xffffffff}, &(0x7f00000002c0)={0xffffffff, 0x30, 0x100000001, 0x16a9, 0x9, 0x9, 0x3, 0x100000001}, &(0x7f0000000300)={0x0, 0x3938700}, &(0x7f0000000400)={&(0x7f00000003c0)={[0xfd59]}, 0x8})
r5 = gettid()
tkill(r5, 0x16)
move_pages(0x0, 0x1, &(0x7f0000000180)=[&(0x7f00002b3000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2)
userfaultfd(0x80001) (async)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) (async)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) (async)
socket$xdp(0x2c, 0x3, 0x0) (async)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8917, &(0x7f0000000000)={'veth0_to_bond\x00', {0x2, 0x4e24, @rand_addr=0xac14141d}}) (async)
rt_sigprocmask(0x0, &(0x7f00000000c0)={[0xfffffeffffffffff]}, 0x0, 0x8) (async)
gettid() (async)
timer_create(0x1, &(0x7f0000000800)={0x0, 0x12, 0x4, @tid=r3}, &(0x7f0000000380)) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0) (async)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb:\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w') (async)
timer_settime(r4, 0x1, &(0x7f0000000280)={{}, {0x0, 0x989680}}, 0x0) (async)
ioctl$DRM_IOCTL_DROP_MASTER(r0, 0x641f) (async)
pselect6(0x40, &(0x7f0000000100)={0x10, 0x8001, 0x2, 0x80, 0x7f, 0xf6de, 0x1ff, 0x2}, &(0x7f0000000200)={0x9, 0x1ff, 0x3, 0x3, 0x1, 0x3, 0xffffffff}, &(0x7f00000002c0)={0xffffffff, 0x30, 0x100000001, 0x16a9, 0x9, 0x9, 0x3, 0x100000001}, &(0x7f0000000300)={0x0, 0x3938700}, &(0x7f0000000400)={&(0x7f00000003c0)={[0xfd59]}, 0x8}) (async)
gettid() (async)
tkill(r5, 0x16) (async)
move_pages(0x0, 0x1, &(0x7f0000000180)=[&(0x7f00002b3000/0x2000)=nil], &(0x7f0000000140)=[0x1], 0x0, 0x2) (async)

7m49.073721679s ago: executing program 9 (id=1534):
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000004c0), 0x80200, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f0000000600)={0x18, 0x1, 0x0, 0x0, r1, 0x1})
r2 = open(&(0x7f0000000000)='./file1\x00', 0x10f0c2, 0x0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x2000011, r2, 0xd3fc6000)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r3, 0x3b85, &(0x7f00000007c0)={0x28, 0x3, r4, 0x0, &(0x7f0000000000/0x800000)=nil, 0x800000, 0x1004000})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r3, 0x3ba0, &(0x7f0000000280)={0x48, 0x2, r4})

7m48.974756058s ago: executing program 9 (id=1570):
renameat2(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', 0x3)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="020000000104000000000000040000000000000010000000000000002000000000000000662b707278"], 0x24, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
write$char_usb(r0, &(0x7f00000008c0)='-0', 0x2)
syz_emit_ethernet(0x4e, &(0x7f0000000000)=ANY=[@ANYBLOB="bbbbbbbbbbbb04000000aaaa86dd6012000800183a"], 0x0)
r1 = socket(0x10, 0x80002, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8b24, &(0x7f0000000000)={'wlan0\x00'})
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000740), 0x400, 0x0)
ioctl$SNDCTL_SEQ_RESET(r2, 0x5100)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
llistxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000fc0)=@can_delroute={0x264, 0x19, 0x8, 0x70bd27, 0x25dfdbfb, {}, [@CGW_CS_CRC8={0x11e, 0x6, {0x7, 0x53, 0x4c, 0x5, 0xf2, "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", 0x2, "e6bea230a561096e824a819a0e6b53c7cfc8c39a"}}, @CGW_CS_CRC8={0x11e, 0x6, {0x9, 0x66, 0x1e, 0x0, 0x0, "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", 0x2, "f3835161e386dc8171180dd4faf13979a354d5b4"}}, @CGW_DST_IF={0x8}, @CGW_DST_IF={0x8}]}, 0x264}}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="66b8a9000f00d866b81b010f00d0b9800000c00f3235000400000f30c4c17571e5f766b8cb000f00d8660f38802ef6d2670fc71a8fe99892f166baf80cb85801ae8def66bafc0c66ed", 0x49}], 0x1, 0x34, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000007c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000080)=0x4000)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

7m48.676461778s ago: executing program 9 (id=1579):
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000004c0), 0x80200, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc})
r1 = open(&(0x7f0000000000)='./file1\x00', 0x10f0c2, 0x0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x2000011, r1, 0xd3fc6000)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f00000007c0)={0x28, 0x3, r3, 0x0, &(0x7f0000000000/0x800000)=nil, 0x800000, 0x1004000})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r2, 0x3ba0, &(0x7f0000000280)={0x48, 0x2, r3})

7m48.594697939s ago: executing program 9 (id=1581):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x8b7c, 0x40, 0x200007, 0x22}, &(0x7f0000000380)=<r1=>0x0, &(0x7f00000003c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x40, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000001c0)='./file0\x00', 0x8, 0x28a202, 0x23456})
io_uring_enter(r0, 0x47f9, 0x4db, 0x60, 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
open(&(0x7f00000002c0)='./file0\x00', 0x40, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000006300)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x3, 0x74414c48, 0x0, 0x0, 0x20, 0x5b, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
sendfile(r5, r6, 0x0, 0x7ffff000)

7m45.398937545s ago: executing program 9 (id=1618):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x0, 0x1}, 0x9)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1})

7m43.81994529s ago: executing program 9 (id=1627):
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00')
lseek(r0, 0x2004, 0x300)

7m43.714815625s ago: executing program 38 (id=1627):
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00')
lseek(r0, 0x2004, 0x300)

3m8.117052886s ago: executing program 3 (id=5848):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000800030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc4}, 0x890)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="14000000100001e456b8aa00000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440080000000900010073797a3000000000080003400000000114000000110001"], 0x64}}, 0x4000010)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r2, 0x4008af30, &(0x7f0000000000)={0x2})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000130a0103000000000000000002000000080003400c000001"], 0x1c}}, 0x4000040)
connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adff012255f674412d02000000880b5f04596a5e99fce658be2f200c699223886d8be4b50000005ab527ee3697f98125f30e6326996a3cfee33025a30b45bdcf2c69d105e5e55a1d273683623f1a5dc6e3c7e20eb7a98ecf3bd2cf898e924abe26ac296f660e69ba982fd76e00dcff7f0000ca6b78ad833488cfe4109eaf009eddcf21f5c63cde2f00150200000001000000520a0000151d010000000100bf00000000cc587424363da52001a3cdf2000000db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de406e89dcbb7677e65a88a8407a9e7f9c0e91028b0856eb1ed9474480737a55ebb0bd701f7fb21135c6172eba7eb8a341f07e5a2d1e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d93a433f50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56dbe37551b870b2851c3f0a1a9ebfcba105a6ccdd01b0f04edb256c0200000073f6db43661bd7f0e2536ffbfe5ca31b4083145531458b7d1e341c6b351ebc5223f54d6bec93f4ef088e5d1be2515226988d664709ff03f1aa3dc7f1580ace9bf2afd28d0700000000000000d6eb372713255012e028cb2654d493a0b43bf21375709f348f5eda2967199cc936859a538100070000000000dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0c6ef9dd2b6bb700000000000000000c586272c3f4d79bc36315745cb149f3cb385e6add14652003c7cdd3324f07d134d3a6c718bbd1aafe1140cff0be4c6f8df084c5e9734ae30aa9af030025f01ab03a9b1074407136bc506031f0916a39d3057d55183612b39e73ae8e6dc30356886a831836469e2051d937eb85f3f2d5ae2c1dca476b97419a3b76ed62409d004d7fbe362145d19605d760df4c5124ca325d374b371867a79b35c6617fc3327191fbf514573f0e30d1d60be2168fffc2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc9110971b749ccd74089ed6b86f81ca3ba47d8f71d290ed1b1a11f7a67125170c88c3b6a50692cc0064fc6bbd312536ac15016c85c6332226401b110da9c786eeca22debc99335587b54c13c3107008fa069af8223b38ced735c2d906551004d8dc10d88738488da01ffa4add56474573c964a270000f2f16625c0c10200000000c7a5ca60fdad159f2e44171f39638410020000004825d081f2d987f05c534187738655d7dc958f2046fa0c1619a6554b82d9c162eb61ca74f1ffdaccf0ea5f06e0fca8b27ff3983ab74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb27f88dba816020be760f7b45e001efada8000000000000fdaf4660402f7b3b79a433e08074ea2462974a00040000eb01352638f56dae0249d15ba8767259658878b7492cfbacde9b57cf4de00788adce638190f3570e0b4c80ef682df22201270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433e866665b98ca2002c804c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc76d7a23d06acb1d2d4c58faea84158bb440df2a694f4cdcaa4f65c22efffffffffffdd00000000d503d79986958115ae07b70f991430b7fb475d77b869ee02000000000000000000001ffff0ef89b2a68d2b05c995445d8a7700bcdfbec74fb2dd163e863315e84498dfb52bb93f6c9084659ce777ddac563c8596c2b1d8180289a61faa95a82bf1cfb7f2fd7252e9322abe282c33445d443a67467893b9bf0d1c8130ae6b226900000635376413c29f7c6f7b7e29b9a0c64e68328661f0c06e21f7d7dc22174ea4447a6f60edef3a4168d40200fbc71104512efe8e5d7d934aa289b4bd2b870000000000000000000007000000002000000000009b777883a02f0593dfc4cb4114b9f9cf4ad155110cc6ace2b322ac31bfa27847c799c8009a1ea5b98e525e6383ad7fd9795170e7b11e247603c2ff49a11459c7f606d729d3979676bffb3049166bb84a0f061991bd57c2566c10c282352aba05b6164ef876915a3f2491e4793e590dcc71de10da96366c1e992c0068c940dd4422c9882d3aa0f8a797b8fea6efcfb5276b7679f15559edaa977504cc0b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd04000000de17e1e13b93669b79556abb722d9c085b189b5fd1f30e8dc813f608830b110001732135e8e7262f290000923bfb6b41ff3792cee2fc37eee739c3e36a4bc80112968ec0d8902eced1fe552018014a463abbbf7ccd6a92a5734e3ebfca9b6e88e031f31de2183652e77c164c646a1cfd3710aa4205d8d4d4f974133ccb1e49feb42664eccd809c0ba8917eda87489e8946d5c8156197bcb66fd5606c63e3389ee9e8552381646365066ef9a36a449c96485c22ad1aa423b7b89efbc6cd54000bb0ea5f4f1e8773144fb6ac9a44d43593d77e66aa7ed7f3d4e7b211590c738888d02b2dbb0b2ba73ec72e1d8d7360a128499dd19e1e7b9b0671f4f58515b45ecb9964f3c4ddb8234391d514f8d996d8d6dd7f8fadfee2d7a0035638ce27c2936cb04b30a0eb0cde0000000000000040000000ec3c12ecee8fc3a40000000000000000e215b00ce2570b930723cbadb4033d1b8aaa2cfb3fb89e4a6e89737fd6232218a9e0c099d1eb59d60b3cca089785642f327139bc4394fb6d547a9b3c22599e780c1da7433fb47615d372e3fffe9703e37d5c87d513165278650738efcc04d27b766cf7f60066edd292f6c8a2174f391ed164bb1816819ceb3e378e776d422bc946cd9501accebeac3a5b31d8abc68ae537cd44a04e6bc21c35a7beab2610c51e593676bf635a20f597f4631b91454d182f826071f5210bd6d93173589929b23801e63c2266fde13b5a04b8d48be057c752bc415a756ea9b4d34156c4f73dd5e5924ef101a5fcdaf37c7ba2c4a9de9b000000000000000000000000000000a73b862e4b63c245616b522345587d0ee65a6902bdd0abd941e8aba37510b222ae544f395edd1b92ad53fc68f08ea00edc5e10d768836169dd296d56b306e8b75778c37571792a6c3d8b02ef378ebd59422cdd008bef6f80a80a68641ea5ed4f1126bb676098c10bf663eb3fb8c839364d28fd046dc64b35f9c3397ce6f4ad357b0000000000090000000088c7a8e2638f650a6f04a6f33a090f59414d6ebcbc687e66d600000000bd0a58ea6d36fc2cf9b9a71c137a2a22adb1006f371d4faf47285fd66fe0389afb96854bb360edcdf11b4ff6dd578bba93e949d240cde9b5836cb46032484dc19c93db7b6e5afa10547c78e76a3111557346e52566df196fd630561bb908fff4d2e19562aabd43742a26a43799f8636fa04ceb40c9e4ca1cfbbc7b949cd245a3ee118fd0d4f639444539af8766028d4ac4d4c548e290199e0dacbb4f6796b39bf32934d941ba2f88e3ebd0cf8e24f99eca86e4ca9b2cd2b54044a7fc4631572a6378a32df288785f146275c1f548e2a0c1016744e05f9de5044373d7650125027547eefe7b2d8c8871bb65395fae99d8456883705bfdfb00001854b2e5efa8aaf25827d659f592b1575281ec125de7fb91cd81d91dcb19f5cdf1e1e2b4a8a1389753a09110538689e38e07fb2dc72bd4fd11d7bc16aac5d85c6101bb722895248e463a5fb45ce0e564e90cb19d5993b471687ae4165e29cf2f58082115f5f8569896eedfd798733223e6d6584997510c374912ab798bd4af4654c01bb2c411bc36468ddd62b4eba5cfc8953526e0e5b1359797956152d0098ce47c62c3fe5a23219389622b7f65bf03527d25c3941b9cf1ffeedf6d99082bb57ea871c12213cc40900f83033bc18c529171fae324c315bc6ce358831d0230412212acfd5fc8d5cb0d028cf568e8bb40e27befe2ff01f7c6674a4d86d900633ea36641e0a781ea0ea7f2d928b8b22e2f97dd13348927375baea6863bef4acf4299096ada5cdd2a0eaafaa760a79d102d1e0c0000000000000000007926653b8d79ce16a432f124786a0bc3c5b7d196822492ae1ccf91aeac16406ad6f9cd3d96d57fceba8360ae49f73351814c9c2972f11064aaf3739d9100f9c0e4d0cb17d50c82e305ba7d62cf1cc6da26e34982a8c74dd8122cf5b5e7c34fd2712a0cef05e4d8ec7dd363219676bd9b19943185b132eb35a695e208dfa5cecdb1d6425c8879063c0f11bd64291a4209ee6dc1d9e9010013f6148c603e6a335e298efd6ab5cccc47a2c568c6afec54f8251bd840752addf200371361c9eedf05ed98585cf6d99e9e56055064bda2d373369761238c278147cd0eb7799f6b9c9fcaa3fd282154994f5b25420c86db9b6401e885de1c615a719a1c83e8fbbb181282dbaf3313a4e4a4877e9f37607e2cd6da0cf6371ec06a75f5a4206b2418ad8897ae149085d63f01f22eca44033234b3930b4d5da756669a1d59d69e7de54abf439988ed7ec33c2d0a901bb0985a24878984d8a4340fa9a356d100926fb5f2ef9976366a61b8cc2bcb1c072b0e9c564852388e1edff10d75b3832792e471cc15b40380f94d834243080158603fbc9134d6983c540525447478984611c0d9666941bfc0a30db47a8828b6e5c51aee2094599b4ce52795750e1764f1657ca8c5633c71287239dddf5c651496f7bbd148c937f083d2e4e0197dbc6ff0649c749707b17399b1d7efad23abb8b40b38704737e15662ae4913a4a001cd3b71c7af75b5ffad9780650c800a40ca80ddc41987919142fd28dbf22db5f4c435415a03455e1d55d1783ccef97d7e4655cf839d06f06e137bbe462a03b3100231914b19739dd57b4f12d026ad0c7fd3"], &(0x7f00002bf000)='GPL\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffc95}, 0x48)
r4 = socket$kcm(0x29, 0x2, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0x8842, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x5452, &(0x7f0000000a00)={'geneve1\x00', @remote})
close(r5)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r7, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0xfffffed4, 0x1}}, 0x20)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x89e0, &(0x7f0000000280)={r1, r8})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x103, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r10, r11, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000140)="36650f380ae20f21ddba6100ed6766c7442400695e00006766c7442402a5c9f6dd6766c744240600000000670f011424f20f78d200c3c54c090f20d90fc79e4a6bda302e260fc43d00", 0x49}], 0x1, 0x49, 0x0, 0x0)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000001380)={<r12=>0xffffffffffffffff})
sendmsg$TCPDIAG_GETSOCK(r12, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000002e40)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x40080}, 0x4000)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r12)

3m7.056134429s ago: executing program 3 (id=5862):
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xe157, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c)
r0 = openat$nmem0(0xffffffffffffff9c, &(0x7f0000000040), 0x446900, 0x0)
ioctl$SNDCTL_TMR_METRONOME(r0, 0x40045407)
ioctl(r0, 0x1, &(0x7f0000000080)="d5e0bb9a31043c05ab32e818ec671cdb89f932e97af79396863482713dee041392736562492a046fca4bc3f08e8f")
r1 = pidfd_getfd(r0, r0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f00000000c0)=0x7402)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x400040, 0x0)
ioctl$TUNGETFEATURES(r2, 0x800454cf, &(0x7f0000000140))
ioctl$HIDIOCGRDESCSIZE(r1, 0x80044801, &(0x7f0000000180))
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, &(0x7f00000001c0)={0x0, 0x3, 0x14})
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000240)={<r3=>0x0, 0x2c, &(0x7f0000000200)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e21, 0xc, @local, 0x5}]}, &(0x7f0000000280)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000002c0)={r3, @in6={{0xa, 0x4e21, 0x7, @remote, 0x2}}}, &(0x7f0000000380)=0x84)
fspick(r0, &(0x7f00000003c0)='./file0\x00', 0x1)
r4 = syz_open_dev$radio(&(0x7f0000000400), 0x2, 0x2)
ioctl$VIDIOC_S_DV_TIMINGS(r4, 0xc0845657, &(0x7f0000000440)={0x0, @reserved})
ioctl$BLKGETSIZE(r0, 0x1260, &(0x7f0000000500))
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000540)={0x9, 0x5, 0x2b, 0x56, 0xf, "cea5379747f4d4d91c18dc9974a4619a35f3da"})
write$FUSE_NOTIFY_DELETE(r1, &(0x7f0000000580)={0x2a, 0x6, 0x0, {0x4, 0x0, 0x1, 0x0, '\x00'}}, 0x2a)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000005c0), 0x161000, 0x0)
ioctl$TUNGETVNETHDRSZ(r5, 0x800454d7, &(0x7f0000000600))
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0xfffffffc, '\x00', 0x0, r1, 0x0, 0x0, 0x5}, 0x50)
ioctl$IMCLEAR_L2(r1, 0x80044946, &(0x7f00000006c0)=0xff)
r6 = getpgrp(0x0)
fcntl$lock(r1, 0x7, &(0x7f0000000700)={0x1, 0x4, 0x7, 0xfffffffffffff800, r6})
newfstatat(0xffffffffffffff9c, &(0x7f0000000800)='./file0\x00', &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x0)
r8 = getuid()
mount$afs(&(0x7f0000000740)=@cell={0x25, 'syz1:', 'syz0', '.readonly'}, &(0x7f0000000780)='./file0\x00', &(0x7f00000007c0), 0x400, &(0x7f00000008c0)={[{@flock_strict}, {}, {@flock_write}, {@dyn}, {@flock_strict}, {}], [{@uid_lt={'uid<', r7}}, {@subj_role={'subj_role', 0x3d, '^'}}, {@subj_type={'subj_type', 0x3d, '):'}}, {@uid_eq={'uid', 0x3d, r8}}, {@flag='lazytime'}]})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000a00)={r0, 0x58, &(0x7f0000000980)}, 0x10)
stat(&(0x7f0000000a40)='./file0\x00', &(0x7f0000000a80))
mkdirat(0xffffffffffffff9c, &(0x7f0000000b00)='./file0\x00', 0x10)

3m7.055799372s ago: executing program 3 (id=5864):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000a80)=@raw={'raw\x00', 0x8, 0x3, 0x4d8, 0x340, 0x11, 0x148, 0x340, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x20000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x538)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000800)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_PMKSA(r4, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010028bd7000fedbdf253400000008000300", @ANYRES32=r6], 0x1c}, 0x1, 0x0, 0x0, 0x20004000}, 0x4044014)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r2, 0x89f5, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000040)={@loopback, 0x1, 0x0, 0x20, 0x0, [{@loopback}, {@broadcast}]}})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRESOCT=r2, @ANYRES32=r1], 0x44}, 0x1, 0x0, 0x0, 0x20000080}, 0x40000000)

3m6.983618641s ago: executing program 3 (id=5868):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1d, 0xf, &(0x7f0000000a40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x39}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lsm=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8)
add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000140)="030fa6dedd7edc82a8bd9b1fcdd5f834f7f7f4ea05a8c8000ee89b70e69d", 0x1e, r1)
r2 = socket(0x10, 0x3, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r3, &(0x7f0000000300))
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x20, 0x52, 0x1, 0x70bd26, 0x200, {0x2}, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x1}]}, 0x20}}, 0x0)

3m6.983239755s ago: executing program 3 (id=5870):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000200), 0x500, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffaf, 0x10, &(0x7f0000000040)}, 0x3c)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c40)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
shmget(0x0, 0x3000, 0x2c000661, &(0x7f000032d000/0x3000)=nil)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)

3m6.157227583s ago: executing program 3 (id=5891):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000080)=0x8, 0x4)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0xe22, 0x3, @empty, 0xffffffff}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b45602117fffffff81000e22d991000005000000a80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000003000000090001"], 0x2c}}, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0xa00965, 0x1})
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000000640)=@vmx={0x9, 0x0, 0x2080, {0x4000, 0x50000, {}, 0x1, 0x3}, {"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", "f25a83bf728b338acf82f9ed7bbe36f9425856ce0fe5cbe3776723abe8554c41be9c9a35682ffccb000c1b01766b98baffe8c4328f4fc489699bdc3fdf7fbcc748f9c720280a7cd8815d3296fa7faebb924b2faac7c9b21c8fa1e3b5d8ac3631449daadb91890a922a78903711c6b8a7d2763824ac03dc05b49df6f271e06600bd765f3c085329774a504722260c0145a762b64d3fb474bcb2326ece4280dcc7bcfc92f619e5e4f56bcbd0d4442fac726a88bf342ffcc99dfd2109fb157a672ddf1a00b2e7af2ac5606acc110b1e3047ca8bf101159960082145712fe71334afee199e30a527d9f5da7f23658d28b07208fa191d455f0952860a96edb5e71fcc16a416b54459eaa6dcf8a60d0f6c8360994284748839c7370cfb4d8388ada06445bcdb8930ed1b08ecde00dd86fdcb254952d865e293719838b782e4b238edd9d19c8c42e569536667ea0b80abee84d2ce21abba99f2ef3afff1003dd445d911f9e7b97b7da6cfdc45499382f4a575473deb41533ed28d922a25ffe69ea2c463dbd631b5bcddfdd6130bf0cea1ce75761513183dc8a137403fdac711a6cea4115d91d594133f0d3af8c9b60207fcc3551c95349b7418d6fdd5d6c744d9f3edc25eba145cf0be712734051947abc0a1fcbc2f81207da2d1c28b7ab602d01b2fceaa12d784ecccd27001457c15933e2a12404a3d0de39ba756158dd9a5b53d194ee1ed0d35d336f8e516d5bb0e4df46eaa38ab15a10910000000a92fc76d454b378cc2e4e4ab054027d05809b62bc82ea6654af416242e709a585f5259095885265d8a1a7b11857c9176c819a58cd2ae18829e4a90f0b76462834091158dbc6e772c51e11e45cc7cbfbcf8df7cfb0b3e1b694fb5c9604889474369f57cd841e733e4d821aa823a9e8e9f45277551375dc44b9f08c10480666771f04bcf4e5e96bd70dc3440474479b99e7171c1905589365d8d3c9c5dc65b9cdbdb7f8fae3d2d07f2c670c6247eaa0175650ed90a919bbf3897dec15fccc325c42af78a2711c15e731c6c8a73a7191c13d29cdc0fd161d73060601738618884a26f13bf966f06e70fd34056f3c7911322e5621dd462b084d7a0223c329dd4f5071fd0d088b4214ec4395efc5133b62ba8a1ba3be59e8c16c27ec3fa7e0b0d626c4187f1ca5f781dbf047a9a3dfe244a1a7cc4e081b9ca8e2176a85fdb1bd8039b0db6ce8dab9fc4bc99548fe9da5e415a2a4da081101d07bab0c669580d0489bb097b67299b7084d844d8e5b77c51762543467b7aa4673186bc3d033df4d3d645212ad9ad3f102e60d8e2ee2a57e6ce527d71f6bed33064df1b96ce33367ec3009eae45076a66831d1709ba432ca2a1e66f5e733423856bf33319af98b211d426744cac7bcff576966a4c9a9e5da2d730b5f999599c88d6728b59342babe758f6dbe343aab3e3bf6905f47456469b804e59721abb59c4227c436eb46ec9c566eae9293c10c1240e3eecfd12faa3c408fa20667b912ab1de7d455adb9f23f642a55fa48a56156c37289a02afc6507b0fa7e9561b2ff572b967fc115d36e55539d8f3217a1d9a08ab7b2eac7c96d300eed8571b04c2fb55d870d23b5d80b51833ea8af1bbe5cd47a9ca9e95716f9835d4e1c5bfa7305841d5cecc5afd132717a9d6789d4fd3ffcac4bba0384f89ba854a9f5fc7b6ac5b5893cdab68d2a58fb96a0ee392ffb32c4b5cb6c13adc9ab0f63a718a1aa9514585cfd3d2e06a02cd73e60adcec36b51c57694314de9cea3641b01a4ee99de3d99441169f2b511b05c413c87b8548f7ef5af8b2a7cca078a46586ca679d749834ea404ca6a2523ab2e3775ccde82158e861b7e9ed09933219cb3accf8c334ceac815da61dae5cdebec88932f2ab8e8d528925fae9d0cd82b93f0a14423cb35cb7ec9c9789b13b114fd51e7ebba8ed8a35dc818ca7520525c7f8771e3a10f5dcce1fe04c9d6bde196bc9070ea928a4b9e4491a12cecf8d9137e0c1d4a5c5d75972e30a278d98137c7dfba11669b68a06a97501da496798fc377131259b581e099e8eeb3a6400146a61bd2157552d54624b20152c223b52ad04d014945c84140fd034050d7c2b92ea9f39b244edf24445c1ca5d14abb897e65443992a515866db1c4ddd2680181b90be0d87d2442797ddf407f419f88d56a802d417903971431b27543a14497500d7f71c102478ada4dfffb808575560e57fdc54c9e7ba411d44de5354eb029da24644eef2af18a43f03c32217c8f3b84db98196f93f2c8b042b1528fbb0531efb796a1135e5f885e7663f7656a28cfd0881acd02477f0d663464f5859c5fb5bc1ceea2de361487721b701dd5dcc49b06681dd74c3287425b9ce6bc2c7606caa6fb08879862178301cedc6aa0ba42a3d5f64f88ca38a6d84e67f7862ddfdeca69d7d51714924471576b9114a091ae6e097e76b509679725af04fb82490e86780bc07c638bb9e86176ae1577afea4a3ed9a2b1f731a770494229c8797992a6ea9ccbefdfd1911c7a02c66a5e0097e5ed0a1d61608ace699fbd4f33587d5a082cb33e5626ce2fa2338257066840afb4e2610b0ce328e9a3f22feea64ce8bdb38bf63b2f2c35fa6d3f1f73a9c479768c99f87d987f5094098b68818970539b7f344d3537e945f74c47482f3850ddba27df4979fdef0db9c826d1e1c5180c3fc44de37ba64242cf160112f4ca7064146cf8e8edb9a24fadb247c45cd385f837a7ba68e244a67a6b5d303b20b5790bdb1303a2d28f0938ec85d2b8cd4da62419456654eae39160a5e335a0f1c5bfaef8450f1cc6476c98f84353df244d8f196a785c5f902b0735e40a11713d499d2365fb7f511f3e8880c60645d71dcc462a28c3cb66a1726c18a842d8e9acc128871e29107a504302e23b46ae5a9caf5911b6d7e723b0394385f0213ed5e20134ab4f7dbd47938b676013e7e3748f5a56c918726e111afea80767b8c8468c0b4c2e33793cfa6b7f58cedb0fe3acd13877a6d1880e52f45e60ec74d6830937d208c1e324449ecd627952599e6088fa947c02225187dcc8ebcee155449264c1dd459d8195c295d140f2e0ce7337d560d9ffbf144e471d4d3c98dd31280647f09f050277732c8600fbb43a6d341d82ec733534011cf2bb3973a2578874e4492cc4b3004ce925ee6fb7e5d8efb3496a05f74b4bfeae011c0b692592ad7fb56f4f32136bee057eb46d776749cd2655ae57e976032a20927a59a6d6fa98590814a3786cf06ccca9b1a62a3c94cf708130e132eef865d892f84f77579536ac9e09ebb14feab024d155aa6532ab1d25c033d1644a4321c7797dc407071158756e818a070a3103475c00c312305f77b10af20f0574ded51e05f8ea4b40f9eb4512aa172f491f8cce822bb464d92f461493c23c804f52ca0fe782f4f430a9049d20b79f62d52bb714c292d9ac04a8955764810b1eb5f3410d9bfdb50d86ed4e0d92ab7f3543764bbe36b4b5cc8d2cd6cc8097c170e29071abb061bdfa41bb86b47c3cbb4d50ff6be0566ca928816c2fbf46c60e34d0f2c48acc9194b20ab4fee0d63e24866b6fb8f796fed5adb8c354f5341242d52a5b03986e610913e1d2a70d518663d0e541262dc364f952efb3706b01d55259ac8645d31184a5479ae287f511830690e1d74d64f5593fbc104fd88a7bc2577adaba631c747180a1ab16b53e96fd8d7e97a03ea11898bc5c87cd27ae5c8c5dc02122f4cebdfd833f2ad89250aab7b3378c92f7f598664bed2d8c3089afaf4960410fe763e23254f7ead94084fa75c3713b9ed087577b0e5c644490f801b011e62bfd9e1525dd9171a37c615d9df08c574ce96c7e07f77d1dcc51ed21aa63e3f6dc24fe5a013b1316a9020359d5c869ca42d5b4c64a8dc4374cab49e73d76c1374f8340e3bd1f587819e6a0c224189343c252889720ade28792c92836b6471824457fae0004e42b6e7af9fb6b3d34b147d791ce302e6f6ccd4e5f06b4804e099904f65e18e90ce89bba683864b43eaa1559f96f6bb1814c9b207aa5d15f277a41ecd0855e80f0c2655ebdcf8de9caf47ad6b8cfe1d0e1e8e7fb684d0aecfed70381c1d0d11b724f834710162fb30ff4cac09dff9e806427cfc3ea5923918bea923ff27b9aedd7ed93825438de839b60995af124c8c98ca787a3080f00c8cbda1dc46d565a051b72057dbcc9ff899bb72c172f44ea15e8efd1c11b3d7c4facf5f12622077276f231fed7a7a6ffcbb1933d0668e37075b5affc45ff16972c1248b92d0ce59c594f71f4d051386aaeccd9a652f698037696bb5d10af3e15433f37594713601494e5bb6964d0d6cae2357c5b9a913de4c4caa0a89b51c68bf2feb5a3e8594d8ea1ec59be78c50382e13b8b6a8860d6b475822569f7ea278f2ab2737b082e743c0d463357402f6b8c1f73add5b1a5d81c4d56ae7b38a3a303a02c902ec5da512e52e9f5daca9275ae9140dfcc44a7ff943614c52f46c78b2805055991411661112335abc2a25bdf6aa6981cdc798d5760e42d93fde35aeeb490db063b53be1d993a4a3e52ae5836a60e463a71be031e7ef2b17809d2955b167bd76be84f1bfdf2d7a9181aba637bd823f2e482942e17afd8b2ef604a483156af1521d43cfddcc5b2cabd8ad59674011cef8384480d843d1757abd64961494a2ac0a30593e10bcde118086ed981fcdc05df867442a391781c01f377cb4202712ec62c587098eb3f1fd7d149baaebb9c445cc8f879ad2f880c6613a669b2bc40f9b262daedd95483d3cdfa3f40a8ac4b97be0635dd80b5a4e9ffcdc620785611c327a7f3556fa5ecf078c51975340ee048517477b0941a8f9dbfa73439d156f5ec9ae9d4b2a2b0d8a12eb08f978f2c3f56af2ab38ab08222927fc0dc4d582d2e8220ea09bd0edbd851a692e2aba2e8d87f9545dcf413afee7b233239caeb631394e549cc339ed439e13244bf1ff0300000000000064eba8e570f68ebf503870d541e9514750fb90587c65661c48326b4e20fbe7cd551b696525a525092d4973cdcf70d57e1ae579958996d19930360d2d5d1ecca34d8cb21b6d0e9d97a06fe4c790bd0ac964a26087a5ed00b2f6241ce32b20332b1640960f4bfd42738c145d7ae9d15e6056f3978d78e6af407a22d5b0dd358c5c185dcdb1a8f2b1aee8ebdff7adf075d594da55a8a955932a6f73338574f83328483447aa7a121607b3bbff1defdf55cc10e22bc6bf77e20093d54382177f562459967365ac688a869cf0e46f1ca1a22d20efc9f78d5c700fba8d43ca23ff69bbf851b293ef021cb865ea698f50fb41bb75541f2c870fe0cdc3099f45464a19e6423231a4eb6619b76a510ca238011e342f75fedb402c21b37d46e2d9570eb1e91cc70ad231bb439cca337c79fe84b023ae2faf0e090acf0a8d97aa5831768bb5b001d5a4ac0933fbefe29dcaa31ca3be632dba2cadeeb944cf5ef223f6d8e64dabdf9fecb59bf1a5360b8f0e3549630209e29cc2ba24aa9bdbcd252c732216df399ac50d07354a45550ec482bb0e8eca6dd43cde322ee04acdb5ac3cf014349f0eab5b16c8e1d1484a978620e73a803cb6fc2644278eadc0f26d8045ea7f67ef9f0962f228fadd7e2b57e5dfa9442e34b9a2d3b045505d941161aa605080ff7a397b3d68f36abb77941ca97544a335bfb65621b91f419a6ff953efeea798774bfc1d4efb27fb527de2326868f3e49644114fbc438ff46091aa2d477794e33aca3c519e25d74ef0f6364f2f05e8f8a981d7da4c243c5fe6fdcb57ba75ce5b54f25dad"}})
r6 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0xc0c00, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000100)={0x8, 0x0, [{0x400000b1, 0x0, 0x4}, {0xa9d, 0x0, 0x7}, {0x332}, {0x365, 0x0, 0x2}, {0x871, 0x0, 0x7}, {0x2f0, 0x0, 0x5}, {0x850, 0x0, 0xff}, {0xb98, 0x0, 0xb44}]})
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f00003bc000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="66baa000ed0f2058650f01dfb9590b0000b806000000ba000000000f308fe878c24515002ef30f70a97c6d79fe00c4e279186a310f8d8a6c3b0c0fd9570cb8de0000000f23c80f21f8350c00c0000f23f8", 0x51}], 0x1, 0x2c, &(0x7f0000000100), 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)

3m6.048470285s ago: executing program 39 (id=5891):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000080)=0x8, 0x4)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0xe22, 0x3, @empty, 0xffffffff}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b45602117fffffff81000e22d991000005000000a80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000003000000090001"], 0x2c}}, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0xa00965, 0x1})
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000000640)=@vmx={0x9, 0x0, 0x2080, {0x4000, 0x50000, {}, 0x1, 0x3}, {"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", "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"}})
r6 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0xc0c00, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000100)={0x8, 0x0, [{0x400000b1, 0x0, 0x4}, {0xa9d, 0x0, 0x7}, {0x332}, {0x365, 0x0, 0x2}, {0x871, 0x0, 0x7}, {0x2f0, 0x0, 0x5}, {0x850, 0x0, 0xff}, {0xb98, 0x0, 0xb44}]})
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f00003bc000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="66baa000ed0f2058650f01dfb9590b0000b806000000ba000000000f308fe878c24515002ef30f70a97c6d79fe00c4e279186a310f8d8a6c3b0c0fd9570cb8de0000000f23c80f21f8350c00c0000f23f8", 0x51}], 0x1, 0x2c, &(0x7f0000000100), 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)

2m22.421668762s ago: executing program 2 (id=6673):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) (async)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f00000006c0)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0xfffffffc}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="aa", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000300)="307ddfb9", 0x4}, {&(0x7f0000000340)="ced98c1a5f5a93258dfa9a8c31878af8d7be921a531da9e6c50efdba96722424d55ce610a4d9b534b3aa09618dfc04f5504e30a263ad3fedf0a7381a8a", 0x3d}], 0x2}}], 0x3, 0x2000c8c0) (async)
sendmmsg$inet6(r1, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000280)="93503d", 0x3}], 0x1}}], 0x1, 0x40) (async)
recvmmsg(r0, &(0x7f00000046c0)=[{{0x0, 0x0, 0x0}, 0xc8b}], 0x1, 0x120, 0x0) (async)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000140)='bond0\x00', 0x10) (async)
sendto$inet(r2, 0x0, 0x0, 0x804, &(0x7f0000000080)={0x2, 0x4ea2, @multicast1}, 0x10) (async)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x105140, 0x0)
ioctl$PPPIOCBRIDGECHAN(r3, 0x40047435, &(0x7f0000000040)=0x1)

2m22.420938846s ago: executing program 2 (id=6674):
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)=ANY=[@ANYBLOB="40000000180015"], 0x40}], 0x1, 0x0, 0x0, 0x40065}, 0x0)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001740)=[{{&(0x7f0000000480)={0xa, 0x4e23, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, &(0x7f0000000100)=[{0x0}], 0x1}}], 0x1, 0x24088804)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000ec0)='\n', 0x1, 0x44000, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000300)=[{{&(0x7f0000000280)={0xa, 0x4e20, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000600)="6a9ee35872dedd3fa3577ce3d64d437abb6e906ee0d0354bcc7edf38e105d37f635fbb3b9c00a3d3bc61866fb3389eff2a0443cf6c38450ce2732419a8329bbe26f4eb1c9edcbf53fb1b0df9c77d6864e90753e3800dff58b9950616473ea1e55b947db3de3ebb8f63edf11ebec9eef2da6b9f545e28273d239534a4682dc23c44a85f64d17bbf41e291f3e3092626f045d8b2b5df6e478729cc88a79aa5f7fe99e374f09c34fe5b63b6dffd256f4ab6ec553520f191", 0xb6}], 0x1, &(0x7f0000000b40)}}], 0x1, 0x4000081)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x3f00000000000000)

2m22.236897216s ago: executing program 2 (id=6677):
write(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

2m22.236483103s ago: executing program 2 (id=6678):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000016c0)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {}, {0x8, 0xe}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x8, 0x6, 0x20000000, 0x101}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000480), 0x800, 0x0)
close(r4)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r5 = socket$kcm(0x11, 0x3, 0x0)
socket(0x400000000010, 0x3, 0x0)
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r5, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r3, 0xc}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf", 0x22}, {&(0x7f0000000c00)="4307ed", 0x3}], 0x2}, 0x4)

2m22.090528929s ago: executing program 2 (id=6679):
syz_open_dev$usbfs(0x0, 0xfffffffffffffffb, 0x48b01)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, 0x0, 0x0)
syz_fuse_handle_req(r0, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x40049366, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=@newtaction={0x84, 0x30, 0xffff, 0x2, 0x0, {}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x1, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x100}, 0x9}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x84}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001100010025bd7000ffdbdf2500000000", @ANYRES32=r4], 0x20}}, 0x8080)

2m21.91930354s ago: executing program 2 (id=6681):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8983, &(0x7f0000000000)={0x2, 'wlan0\x00', {0x5}, 0x6})
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000140)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@deltfilter={0x24, 0x2d, 0x1, 0x78bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x3, 0x1f}, {0xffff, 0xc}, {0x9, 0xf}}}, 0x24}}, 0x20044000)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback, @empty=0xe0000001}, {0x0, 0x17c1, 0x8}}}}}, 0x0)

2m5.881124008s ago: executing program 40 (id=6681):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8983, &(0x7f0000000000)={0x2, 'wlan0\x00', {0x5}, 0x6})
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000140)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@deltfilter={0x24, 0x2d, 0x1, 0x78bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x3, 0x1f}, {0xffff, 0xc}, {0x9, 0xf}}}, 0x24}}, 0x20044000)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback, @empty=0xe0000001}, {0x0, 0x17c1, 0x8}}}}}, 0x0)

1.262650078s ago: executing program 0 (id=9004):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@rdmsr={0x66, 0x18, {0x400000f5}}], 0x18})
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x40000001, 0x4, 0x2, 0x31237648, 0x6, 0x2, 0x80}]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.090375033s ago: executing program 0 (id=9008):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [], 0x0, [0x1, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x8000, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {0x3, 0xd}, {}, {0x3, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000001480)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000004c0)=""/207, 0xcf}, {&(0x7f0000002ac0)=""/4091, 0xffb}, {&(0x7f0000000080)=""/61, 0x3d}, {&(0x7f00000014c0)=""/4096, 0x1000}], 0x4}, 0x5d}], 0x1, 0x10022, 0x0)

1.037774513s ago: executing program 8 (id=9009):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
syz_io_uring_setup(0x78ae, 0x0, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)

1.037227087s ago: executing program 6 (id=9010):
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x0, 0x2}}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000880)={@link_local, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "01044a", 0x20, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @remote, [{0x2, 0x1, '\x00\x00\x00\x00\x00\x00'}]}}}}}}, 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000100), 0x1, 0x0)
syz_emit_ethernet(0xae, &(0x7f0000000000)={@link_local, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010120", 0x78, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, [{0x4, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96489269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x19, 0x1, "000000000400260004000000"}, {0x1, 0x1, "fe906d17efe3"}]}}}}}}, 0x0)

962.78398ms ago: executing program 6 (id=9011):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000100)='proc\x00', 0x40, 0x0)
r1 = gettid()
r2 = syz_open_procfs(r1, &(0x7f0000000040)='timerslack_ns\x00')
write$binfmt_format(r2, &(0x7f0000000180)='1\x00', 0x2)

962.604517ms ago: executing program 0 (id=9012):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x9e)
acct(&(0x7f0000000100)='./file1\x00')
mount$bind(0x0, &(0x7f00000004c0)='./file0\x00', 0x0, 0x8021, 0x0)

962.471801ms ago: executing program 6 (id=9013):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000002e00)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400c0}], 0x1, 0x8100)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x1c, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0xfe, "0062ba7d82000000160000000000f738096304"})
r0 = syz_open_pts(0xffffffffffffffff, 0x80)
r1 = dup3(r0, 0xffffffffffffffff, 0x80000)
read$watch_queue(r1, &(0x7f0000001d40)=""/4095, 0xfff)

962.356101ms ago: executing program 0 (id=9014):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x53)
close(r1)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, 0x0, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f00000001c0)=0xa3, 0x4)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000040)='bbr', 0x3)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0x6, 0x7, 0x0, 0x8001}]}, 0x10)
recvfrom$inet(r2, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
sendfile(r1, r0, 0x0, 0x578410ed)

962.299687ms ago: executing program 6 (id=9015):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, &(0x7f0000000380)})
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, &(0x7f0000000100)={0x4, <r2=>r0})
ioctl$DMA_BUF_SET_NAME_A(r2, 0x40046201, &(0x7f0000000180)='/dev/dma_heap/system\x00')
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00')
pread64(r3, &(0x7f0000002140)=""/17, 0x11, 0x0)

898.725362ms ago: executing program 6 (id=9016):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe1000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0x2, &(0x7f0000000140)=[@cr4={0x1, 0x10008}], 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f0000000180)="f30f090f21aa2664660f7e63ffc4e22593145b48b80dae0000000000000f23d00f21f835000000060f23f8490fc71c2cc4a1b9f903400f780266baf80cb8266c118cef66bafc0cb0cfee66b802008ed0", 0x50}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

777.13116ms ago: executing program 6 (id=9017):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x4d, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
sendmsg$nl_route_sched(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001300)=@newqdisc={0x434, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0x10}, {}, {0x2, 0x3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x1, 0xffffffff, 0x0, 0x9, 0x1, 0x800, 0x9c3, 0x4, 0x0, 0x8, 0xffffffff, 0x3, 0x8, 0x8, 0xfffffffd, 0x8, 0x8001, 0x100, 0x3, 0x0, 0x588e, 0x1, 0x1e00, 0x101, 0x7, 0x80000000, 0xf8f1, 0x0, 0x401, 0x10, 0x1, 0xc00000, 0xfffffff7, 0x400, 0x7f, 0x80000000, 0x3, 0x6ade, 0x0, 0x4, 0x401, 0x1, 0x5, 0x8, 0x1, 0x7, 0x3, 0x80, 0x7fffffff, 0x2, 0x9, 0x3, 0x80, 0x8, 0xe, 0x20001c9, 0x0, 0x2, 0x4, 0xfffffffa, 0x4, 0x1, 0x800, 0x3, 0x1, 0x8, 0x2, 0xe757, 0xfffffff7, 0x8001, 0x45f, 0x1ff, 0xe, 0xd, 0x7d3, 0x4, 0xb, 0x58c4637b, 0x5, 0x0, 0x1, 0x3, 0x6, 0xb90, 0x203, 0x6, 0x200, 0x7, 0x10000, 0x4, 0xffffff25, 0xa05, 0x78da, 0x0, 0x0, 0xffffffff, 0x80000001, 0x0, 0x5, 0x465, 0x7, 0xcd17, 0x9, 0x6, 0x6, 0xfffffffc, 0xfffffff7, 0x7f, 0x2, 0x6, 0x1, 0x40000, 0x6, 0x6, 0x0, 0x40, 0x8, 0x3, 0x23, 0x0, 0x6, 0x1, 0x2fe, 0x96, 0x54af3c00, 0x2, 0x5, 0x2, 0x9, 0x8, 0x0, 0x0, 0x7, 0x6, 0x80, 0x100, 0x7, 0x7f, 0x2, 0x200, 0x8, 0xe330fdc7, 0xa, 0x5, 0x7e, 0x2, 0x0, 0x5, 0xffff0000, 0x2, 0x81, 0x401, 0x7, 0x8, 0xffff669d, 0xffffff94, 0x7, 0x40000005, 0x10001, 0x7, 0x7, 0x4, 0x5, 0xb2fb, 0x1, 0x7ff, 0x85, 0xffffffff, 0x4ac, 0xfc9, 0x80000000, 0x1, 0xfb, 0x6, 0xb, 0x3, 0x40, 0x3, 0x2, 0x83, 0x6, 0x56a, 0x0, 0x9, 0x9, 0x1, 0x7, 0x9, 0x4, 0xe, 0x6, 0x6, 0x40000006, 0x0, 0xfffffffe, 0x5, 0x44, 0x4, 0x2, 0x1, 0xfffffff1, 0x6, 0x80000000, 0x4, 0x100, 0xfffffff7, 0x2a8, 0x2, 0x9, 0x7f, 0x4, 0x8, 0xffffffff, 0x6ed916d9, 0xfffffff8, 0x38, 0x3, 0x2, 0xd0, 0x36a0, 0xc, 0x3, 0x2, 0x1, 0x7df0, 0x9, 0x9, 0x5, 0xfff, 0xc, 0x87, 0x8, 0x8, 0x80000000, 0x5, 0x3, 0x7fe, 0x1c43, 0x7, 0xa66, 0x6, 0x18000, 0x6, 0x4, 0x86f9, 0x6, 0x80, 0x200, 0x28000, 0x401, 0xffff, 0x4d, 0x2, 0xfc, 0x7, 0x2]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x40098}, 0x24008044)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
r8 = socket$packet(0x11, 0x2, 0x300)
sendto$packet(r8, 0x0, 0x0, 0x440040c4, &(0x7f00000001c0)={0x11, 0xf8, r7, 0x1, 0xd8, 0x6, @remote}, 0x14)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
r10 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r10, &(0x7f0000000240)="800000800000210ee7decd7a0000", 0xe, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r9, 0x1, 0xd8, 0x6, @broadcast}, 0x14)

776.942474ms ago: executing program 5 (id=9018):
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r1 = memfd_create(&(0x7f0000000700)='y\x105\xfb\xf7u\x83%\x1f\xe09@:r\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\xde\xa3\x89\xc2%/u\x17\xdaM\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d_\v\xfc\xad\x0f\xa8\xc5\xad\x00\xc2\x12\xff\xff\xff\xff\xff\xff\x00\x00\x00\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad1\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc3Gj+kV$\x80\x8aJ$\x81\xc0\x16\xf5\x9cz\x10\x97\xdb\x12H\xee/\xe3sY\x02D;L~\xd0\xb44\x01*\xfb\xa4 \xb2b\x90H$\xb2\xad\xbf\x8aM\xb6\x81\x81^\x02\xa0\xa7t\xfbHb\xa5=\xdd+$\xc06J\xb4\xf0\xab\x85Xz\x9f\xb2D$\xbe\xd9\x7f-\r\x9aj9r\n_\x11\xd4\x19\xb0\xa0G\xb7\x94\xf7\xfd~\xe9\xb6G\xbfE\xbb\x15\x15\xa6\xca2\xd0\xd3\x8c\xf7nO\xf9\xa8\xfd\x8a\xd2\xb2\xab\xff\xe4\xb0;\xd9\xa8\f\x03R\xbd%\x9fF\xee\x05\x06.3(QF?\f\x05\xa4uY\xee\xab\x8a\xeb~\xed\xcb0\xb7\xe7\xe6?8g\x8aN\xda\x8f\x9d\xde\x1eNaS\x8fLk\xf1\x965N\x18\x8c\xb9=5\x991\xae\x89N\x13\xd1\xf7\xf0\x13\xb2\xaeS\xa1\x97\x18j\xea\x9f\xde\xb6\xd4\xdc\xe6*\x9c\xfdV\x82\x05', 0x2)
ftruncate(r1, 0xffff)
fcntl$addseals(r1, 0x409, 0x3)
ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000000)={r1, 0x1, 0x0, 0x2000})
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, 0x0)

776.86776ms ago: executing program 8 (id=9019):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = memfd_create(&(0x7f0000000080)='%\x00', 0x3)
fsetxattr$system_posix_acl(r0, &(0x7f0000000180)='system.posix_acl_access\x00', 0x0, 0x24, 0x3)

704.640439ms ago: executing program 8 (id=9020):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f00000002c0)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
syz_clone(0x40000, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
fchmod(0xffffffffffffffff, 0x180)

704.390074ms ago: executing program 5 (id=9021):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, 0xfffffffffffffffe, 0x0)

704.346137ms ago: executing program 5 (id=9022):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='task\x00')
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000100)='proc\x00', 0x40, 0x0)
r1 = gettid()
r2 = syz_open_procfs(r1, &(0x7f0000000040)='timerslack_ns\x00')
write$binfmt_format(r2, &(0x7f0000000180)='1\x00', 0x2)

642.176362ms ago: executing program 5 (id=9023):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, '\x00', 0x1c}, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='bridge0\x00', 0x10)
write$P9_RLERRORu(r1, &(0x7f0000000140)=ANY=[], 0xd)

642.012822ms ago: executing program 8 (id=9024):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = openat$dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, &(0x7f0000000100)={0x4, <r2=>r0})
ioctl$DMA_BUF_SET_NAME_A(r2, 0x40046201, &(0x7f0000000180)='/dev/dma_heap/system\x00')
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fdinfo/4\x00')
pread64(r3, &(0x7f0000002140)=""/17, 0x11, 0x0)

641.925484ms ago: executing program 5 (id=9025):
set_mempolicy(0x3, &(0x7f0000000240)=0x1020fff, 0x6)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x80000)
socket$unix(0x1, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2003, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, 0x0}], 0x1, 0x6d, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

578.140189ms ago: executing program 8 (id=9026):
r0 = inotify_init()
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
r2 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)={0x8000000a})
write$binfmt_aout(r1, &(0x7f00000003c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)={0x0, 0x7, 0x0, 0x0, 0x83, "00000000000000000000ffff00"})
r3 = syz_open_pts(r1, 0x0)
r4 = dup3(r3, r1, 0x80000)
ioctl$TIOCSETD(r1, 0x5423, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000000)={0x80000001})
close_range(r0, 0xffffffffffffffff, 0x0)

409.574195ms ago: executing program 5 (id=9027):
r0 = socket(0x2a, 0x5, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
close(r1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x10, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_TSC_KHZ_vm(r3, 0xaea2, 0x5)
ioctl$KVM_CAP_EXIT_HYPERCALL(r3, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0xc})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000bc0)={"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"})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0xd6)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x557}, 0x0, 0x0, 0x0, 0x0)
r6 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0x3cb3, 0x1c080, 0xa, 0x20002f7})
io_uring_enter(r6, 0x2219, 0x7721, 0x16, 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_TSC_KHZ_vm(r8, 0xaea2, 0x7f)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r9, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0x10}]})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x1, 0x6, "fbddf0", 0x8, 0x3a, 0xff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local, {[], @echo_reply={0x81, 0x0, 0x0, 0x2, 0x4}}}}}}, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000040)={0x0, 0x8}, 0x8)
ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000001000/0x1000)=nil)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x8)

332.070787ms ago: executing program 8 (id=9028):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x5, 0x10}, 0xc)
r2 = dup(r0)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c)
pipe2$9p(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000840)={{0x7f, 0x45, 0x4c, 0x46, 0xcd, 0xd, 0x5, 0xc, 0x4, 0x1, 0x3e, 0x7, 0x1de, 0x40, 0x2d9, 0x3c8, 0x1, 0x38, 0x1, 0x9, 0x80, 0x6}, [{0x7, 0xa, 0xc5e, 0xb, 0x5, 0x6, 0x9, 0x9}]}, 0x78)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a)
splice(r3, 0x0, r0, 0x0, 0xffff, 0x2)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xeffffff2, @empty, 0x5}}, 0x10001fc, 0x6, 0xffff1896, 0x3, 0x26, 0xffffffb9, 0x1a}, 0x9c)

375.587µs ago: executing program 0 (id=9029):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x9e)
acct(&(0x7f0000000100)='./file1\x00')
mount$bind(0x0, &(0x7f00000004c0)='./file0\x00', 0x0, 0x8021, 0x0)

0s ago: executing program 0 (id=9030):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000003c0)="0f326635004000000f300f00d636808a0d0001ba4300b80b00eb66b88c5000000f23d02a3ff866352000000e0f23f80f01c30f789deb32660f3a21cf220f2bb00058660f1bde", 0x46}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000080))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

5875] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  527.577922][T25875] batman_adv: batadv0: Adding interface: batadv_slave_1
[  527.580852][T25875] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  527.591790][T25875] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  527.626549][T25875] hsr_slave_0: entered promiscuous mode
[  527.629984][T25875] hsr_slave_1: entered promiscuous mode
[  527.632962][T25875] debugfs: 'hsr0' already exists in 'hsr'
[  527.635324][T25875] Cannot create hsr debugfs directory
[  527.700381][T10458] netdevsim netdevsim8 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  527.704246][T10458] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  527.773016][T10458] netdevsim netdevsim8 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  527.776378][T10458] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  527.857385][T10458] netdevsim netdevsim8 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  527.860739][T10458] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  527.972921][T10458] netdevsim netdevsim8 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  527.976277][T10458] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.165179][T10458] batman_adv: batadv0: Interface deactivated: gretap2
[  528.443052][T10458] gretap0 (unregistering): left promiscuous mode
[  528.461871][T10458] bond1 (unregistering): (slave gretap1): Releasing active interface
[  528.476370][T10458] batman_adv: batadv0: Removing interface: gretap2
[  528.656638][T10458] bond2 (unregistering): (slave bridge2): Releasing backup interface
[  528.659855][T10458] bridge2 (unregistering): left promiscuous mode
[  529.035642][T10458] bond0 (unregistering): left promiscuous mode
[  529.037958][T10458] bond_slave_0: left promiscuous mode
[  529.040321][T10458] bond_slave_1: left promiscuous mode
[  529.043749][T10458] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  529.048981][T10458] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  529.053750][T10458] bond0 (unregistering): Released all slaves
[  529.144155][T10458] bond1 (unregistering): Released all slaves
[  529.264381][T10458] bond2 (unregistering): Released all slaves
[  529.285778][   T64] Bluetooth: hci4: command tx timeout
[  529.398537][T10458] bond3 (unregistering): Released all slaves
[  529.494768][T10458] bond4 (unregistering): (slave veth3): Releasing active interface
[  529.498446][T10458] bond4 (unregistering): Released all slaves
[  529.631751][T10458] tipc: Left network mode
[  529.680654][T10458] IPVS: stopping backup sync thread 14408 ...
[  530.035185][T25875] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  530.045133][T25875] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  530.055954][T25875] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  530.065337][T25875] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  530.155257][T25875] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.173306][T25875] 8021q: adding VLAN 0 to HW filter on device team0
[  530.195683][T10454] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.198474][T10454] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.207877][ T7260] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.210982][ T7260] bridge0: port 2(bridge_slave_1) entered forwarding state
[  530.242135][T10458] veth0: left promiscuous mode
[  530.248575][T10458] hsr_slave_0: left promiscuous mode
[  530.251063][T10458] hsr_slave_1: left promiscuous mode
[  530.253313][T10458] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  530.255748][T10458] batman_adv: batadv0: Removing interface: batadv_slave_0
[  530.259010][T10458] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  530.261585][T10458] batman_adv: batadv0: Removing interface: batadv_slave_1
[  530.272191][T10458] veth1_to_batadv: left promiscuous mode
[  530.274166][T10458] veth1_macvtap: left promiscuous mode
[  530.276214][T10458] veth1_vlan: left promiscuous mode
[  530.278033][T10458] veth0_vlan: left promiscuous mode
[  530.810375][T10458] team0 (unregistering): Port device team_slave_1 removed
[  531.140040][T10458] team0 (unregistering): Port device dummy0 removed
[  531.295880][T25875] 8021q: adding VLAN 0 to HW filter on device batadv0
[  531.469991][T25875] veth0_vlan: entered promiscuous mode
[  531.477373][T25875] veth1_vlan: entered promiscuous mode
[  531.497275][T25875] veth0_macvtap: entered promiscuous mode
[  531.504005][T25875] veth1_macvtap: entered promiscuous mode
[  531.509959][   T64] Bluetooth: hci4: command tx timeout
[  531.518177][T25875] batman_adv: batadv0: Interface activated: batadv_slave_0
[  531.524593][T25875] batman_adv: batadv0: Interface activated: batadv_slave_1
[  531.530835][ T1148] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  531.538902][ T1148] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  531.549226][ T1148] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  531.553796][ T1148] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  531.558789][T10458] IPVS: stop unused estimator thread 0...
[  531.609833][ T7260] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.612995][ T7260] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  531.630320][ T7260] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.632960][ T7260] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  533.723306][   T64] Bluetooth: hci4: command tx timeout
[  533.749302][T25946] openvswitch: netlink: Duplicate key (type 6).
[  533.749534][T25947] openvswitch: netlink: Duplicate key (type 6).
[  533.754696][T25947] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6719'.
[  533.759056][T25946] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6719'.
[  533.824062][   T40] audit: type=1400 audit(1770064173.138:26578): avc:  denied  { map } for  pid=25953 comm="syz.6.6723" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  533.841219][T25954] binder_alloc: binder_alloc_mmap_handler: 25953 200000ffc000-200000ffd000 already mapped failed -16
[  533.852971][T20752] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  533.859589][T20752] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  533.865021][T20752] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  533.875610][T20752] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  533.879224][T20752] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  533.910184][T25955] lo speed is unknown, defaulting to 1000
[  534.013689][T25970] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6727'.
[  534.068462][T25955] chnl_net:caif_netlink_parms(): no params data found
[  534.116995][T25955] bridge0: port 1(bridge_slave_0) entered blocking state
[  534.120841][T25955] bridge0: port 1(bridge_slave_0) entered disabled state
[  534.123337][T25955] bridge_slave_0: entered allmulticast mode
[  534.126038][T25955] bridge_slave_0: entered promiscuous mode
[  534.129437][T25955] bridge0: port 2(bridge_slave_1) entered blocking state
[  534.131912][T25955] bridge0: port 2(bridge_slave_1) entered disabled state
[  534.134369][T25955] bridge_slave_1: entered allmulticast mode
[  534.137191][T25955] bridge_slave_1: entered promiscuous mode
[  534.145962][T25983] smc: net device bond0 applied user defined pnetid SYZ0
[  534.151885][T25983] 9pnet_virtio: no channels available for device syz
[  534.153758][T25955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  534.158681][T25955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  534.179244][T25955] team0: Port device team_slave_0 added
[  534.184141][T25955] team0: Port device team_slave_1 added
[  534.212719][T25955] batman_adv: batadv0: Adding interface: batadv_slave_0
[  534.215341][T25955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  534.223274][T25955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  534.228040][T25955] batman_adv: batadv0: Adding interface: batadv_slave_1
[  534.230281][T25955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  534.238985][T25955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  534.278480][T25955] hsr_slave_0: entered promiscuous mode
[  534.281319][T25955] hsr_slave_1: entered promiscuous mode
[  534.283533][T25955] debugfs: 'hsr0' already exists in 'hsr'
[  534.285390][T25955] Cannot create hsr debugfs directory
[  534.297144][T25990] /dev/sg0: Can't lookup blockdev
[  534.418225][T11050] usb 11-1: new high-speed USB device number 52 using dummy_hcd
[  534.431933][T25955] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  534.435571][T25955] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.531004][T25955] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  534.535470][T25955] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.543797][T25997] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6736'.
[  534.589447][T11050] usb 11-1: Using ep0 maxpacket: 8
[  534.593438][T11050] usb 11-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  534.597316][T11050] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  534.620615][T25955] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  534.621509][T11050] pvrusb2: Hardware description: Terratec Grabster AV400
[  534.627892][T11050] pvrusb2: **********
[  534.630630][T25955] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.632182][T11050] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  534.642904][T11050] pvrusb2: Important functionality might not be entirely working.
[  534.646141][T11050] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  534.650660][T11050] pvrusb2: **********
[  534.667624][T26002] netlink: 'syz.8.6738': attribute type 1 has an invalid length.
[  534.728528][T26003] btrfs: Unknown parameter 'norecovery‡d—Zš%ÀN×Tú.Šþ2@0ÿUP¥Š­ïkµÜ~Óì+§RBÔ©wUzí»c2Ĥ{ôöL./file0'
[  534.735146][T26003] netlink: 44 bytes leftover after parsing attributes in process `syz.8.6738'.
[  534.837640][ T2492] pvrusb2: Invalid write control endpoint
[  534.879881][ T2492] pvrusb2: Invalid write control endpoint
[  534.882477][ T2492] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  534.888947][ T2492] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  534.892333][ T2492] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  534.896382][ T2492] pvrusb2: Device being rendered inoperable
[  534.903032][ T2492] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  534.917732][ T2492] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_b)
[  534.932360][ T2492] pvrusb2: Attached sub-driver cx25840
[  534.935509][ T2492] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  534.939844][ T2492] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  534.953093][T25955] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  534.966536][T25955] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  534.976048][T25955] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  534.980503][T25955] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  534.998193][T25955] bridge0: port 2(bridge_slave_1) entered blocking state
[  535.000547][T25955] bridge0: port 2(bridge_slave_1) entered forwarding state
[  535.002972][T25955] bridge0: port 1(bridge_slave_0) entered blocking state
[  535.005229][T25955] bridge0: port 1(bridge_slave_0) entered forwarding state
[  535.033655][T25955] 8021q: adding VLAN 0 to HW filter on device bond0
[  535.042605][ T7262] bridge0: port 1(bridge_slave_0) entered disabled state
[  535.046129][ T7262] bridge0: port 2(bridge_slave_1) entered disabled state
[  535.058237][   T53] usb 11-1: USB disconnect, device number 52
[  535.058813][T25955] 8021q: adding VLAN 0 to HW filter on device team0
[  535.070153][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  535.073070][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  535.091467][ T7262] bridge0: port 2(bridge_slave_1) entered blocking state
[  535.094484][ T7262] bridge0: port 2(bridge_slave_1) entered forwarding state
[  535.256964][T25955] 8021q: adding VLAN 0 to HW filter on device batadv0
[  535.291853][T25955] veth0_vlan: entered promiscuous mode
[  535.299801][T25955] veth1_vlan: entered promiscuous mode
[  535.322443][T25955] veth0_macvtap: entered promiscuous mode
[  535.328964][T25955] veth1_macvtap: entered promiscuous mode
[  535.344255][T25955] batman_adv: batadv0: Interface activated: batadv_slave_0
[  535.352525][T25955] batman_adv: batadv0: Interface activated: batadv_slave_1
[  535.361512][ T7260] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  535.365234][ T7260] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  535.369687][ T7260] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  535.374553][ T7260] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  535.415281][ T7260] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  535.418666][ T7260] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  535.436299][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  535.438988][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  535.554173][   T40] audit: type=1400 audit(1770588462.753:26579): avc:  denied  { read } for  pid=26023 comm="syz.0.6720" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  535.725886][   T64] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  535.730286][   T64] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  535.735768][   T64] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  535.739678][   T64] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  535.743227][   T64] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  535.772692][T26027] lo speed is unknown, defaulting to 1000
[  535.853141][T26027] chnl_net:caif_netlink_parms(): no params data found
[  535.944188][T26027] bridge0: port 1(bridge_slave_0) entered blocking state
[  535.946874][T26027] bridge0: port 1(bridge_slave_0) entered disabled state
[  535.950381][T26027] bridge_slave_0: entered allmulticast mode
[  535.953284][T26027] bridge_slave_0: entered promiscuous mode
[  535.957462][T26027] bridge0: port 2(bridge_slave_1) entered blocking state
[  535.958899][T20752] Bluetooth: hci4: command tx timeout
[  535.960291][T26027] bridge0: port 2(bridge_slave_1) entered disabled state
[  535.964873][T26027] bridge_slave_1: entered allmulticast mode
[  535.968344][T26027] bridge_slave_1: entered promiscuous mode
[  535.986327][T26027] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  535.991350][T26027] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  536.010222][T26027] team0: Port device team_slave_0 added
[  536.014589][T26027] team0: Port device team_slave_1 added
[  536.036770][T26027] batman_adv: batadv0: Adding interface: batadv_slave_0
[  536.039737][T26027] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  536.050767][T26027] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  536.057380][T26027] batman_adv: batadv0: Adding interface: batadv_slave_1
[  536.060307][T26027] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  536.071950][T26027] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  536.119411][T20752] Bluetooth: hci3: command tx timeout
[  536.123351][T26027] hsr_slave_0: entered promiscuous mode
[  536.126708][T26027] hsr_slave_1: entered promiscuous mode
[  536.134024][T26027] debugfs: 'hsr0' already exists in 'hsr'
[  536.136481][T26027] Cannot create hsr debugfs directory
[  536.302824][T26027] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.386008][T26045] netlink: 'syz.8.6748': attribute type 2 has an invalid length.
[  536.388883][T26045] netlink: 244 bytes leftover after parsing attributes in process `syz.8.6748'.
[  536.499215][T26027] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.514438][T26050] syzkaller0: entered promiscuous mode
[  536.517016][T26050] syzkaller0: entered allmulticast mode
[  536.627287][T26027] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.725397][T26027] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.938439][T26027] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  536.955834][T26027] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  536.960137][T26027] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  536.971573][T26027] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  537.031423][T26027] 8021q: adding VLAN 0 to HW filter on device bond0
[  537.044912][T26027] 8021q: adding VLAN 0 to HW filter on device team0
[  537.056202][ T7263] bridge0: port 1(bridge_slave_0) entered blocking state
[  537.059033][ T7263] bridge0: port 1(bridge_slave_0) entered forwarding state
[  537.066830][ T7263] bridge0: port 2(bridge_slave_1) entered blocking state
[  537.069260][ T7263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  537.178830][T26085] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6752'.
[  537.195087][T26027] 8021q: adding VLAN 0 to HW filter on device batadv0
[  537.387683][T26027] veth0_vlan: entered promiscuous mode
[  537.396089][T26027] veth1_vlan: entered promiscuous mode
[  537.419613][T26027] veth0_macvtap: entered promiscuous mode
[  537.425912][T26027] veth1_macvtap: entered promiscuous mode
[  537.449141][T26027] batman_adv: batadv0: Interface activated: batadv_slave_0
[  537.460246][T26027] batman_adv: batadv0: Interface activated: batadv_slave_1
[  537.466523][ T7263] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  537.473359][ T7263] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  537.477128][ T7263] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  537.481948][ T7263] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  537.557987][ T7263] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  537.561268][ T7263] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  537.588377][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  537.591703][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  537.665348][T26108] netlink: 'syz.6.6743': attribute type 4 has an invalid length.
[  537.780546][T26116] FAULT_INJECTION: forcing a failure.
[  537.780546][T26116] name failslab, interval 1, probability 0, space 0, times 0
[  537.786009][T26116] CPU: 0 UID: 0 PID: 26116 Comm: syz.6.6761 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  537.786028][T26116] Tainted: [L]=SOFTLOCKUP
[  537.786032][T26116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  537.786038][T26116] Call Trace:
[  537.786043][T26116]  <TASK>
[  537.786047][T26116]  dump_stack_lvl+0x100/0x190
[  537.786066][T26116]  should_fail_ex.cold+0x5/0xa
[  537.786078][T26116]  ? __pfx_cgroup_show_path+0x10/0x10
[  537.786089][T26116]  should_failslab+0xc2/0x120
[  537.786103][T26116]  ? __pfx_cgroup_show_path+0x10/0x10
[  537.786113][T26116]  __kmalloc_cache_noprof+0x80/0x810
[  537.786124][T26116]  ? cgroup_show_path+0xb2/0x730
[  537.786134][T26116]  ? find_held_lock+0x2b/0x80
[  537.786152][T26116]  ? __pfx_cgroup_show_path+0x10/0x10
[  537.786166][T26116]  ? cgroup_show_path+0xb2/0x730
[  537.786180][T26116]  cgroup_show_path+0xb2/0x730
[  537.786199][T26116]  ? __pfx_cgroup_show_path+0x10/0x10
[  537.786214][T26116]  kernfs_sop_show_path+0xe9/0x160
[  537.786240][T26116]  ? __pfx_kernfs_sop_show_path+0x10/0x10
[  537.786264][T26116]  show_path+0x9e/0x100
[  537.786287][T26116]  show_mountinfo+0x1d8/0x820
[  537.786300][T26116]  ? __kvmalloc_node_noprof+0x36a/0xac0
[  537.786312][T26116]  ? __pfx_show_mountinfo+0x10/0x10
[  537.786329][T26116]  traverse.part.0.constprop.0+0x107/0x650
[  537.786346][T26116]  seq_lseek+0x2fb/0x430
[  537.786361][T26116]  ksys_lseek+0xf3/0x1b0
[  537.786373][T26116]  do_syscall_64+0xc9/0xf80
[  537.786386][T26116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.786397][T26116] RIP: 0033:0x7f0c17d9aeb9
[  537.786408][T26116] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  537.786419][T26116] RSP: 002b:00007f0c18d33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[  537.786430][T26116] RAX: ffffffffffffffda RBX: 00007f0c18015fa0 RCX: 00007f0c17d9aeb9
[  537.786437][T26116] RDX: 0000000000000000 RSI: 0000000000010001 RDI: 0000000000000003
[  537.786443][T26116] RBP: 00007f0c18d33090 R08: 0000000000000000 R09: 0000000000000000
[  537.786449][T26116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  537.786456][T26116] R13: 00007f0c18016038 R14: 00007f0c18015fa0 R15: 00007ffd1c5da1d8
[  537.786470][T26116]  </TASK>
[  537.890846][   T40] audit: type=1400 audit(1770588464.921:26580): avc:  denied  { unmount } for  pid=26027 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  537.910606][T26118] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  537.918199][T20752] Bluetooth: hci2: command tx timeout
[  537.979595][T26125] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6763'.
[  537.986130][T26125] netlink: 56 bytes leftover after parsing attributes in process `syz.6.6763'.
[  538.102653][T26129] netlink: 372 bytes leftover after parsing attributes in process `syz.6.6765'.
[  538.116155][T26129] policy can only be matched on NF_INET_PRE_ROUTING
[  538.116174][T26129] unable to load match
[  538.296458][T26133] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  538.355243][T20752] Bluetooth: hci3: command tx timeout
[  538.596266][T26147] FAULT_INJECTION: forcing a failure.
[  538.596266][T26147] name failslab, interval 1, probability 0, space 0, times 0
[  538.600231][T26147] CPU: 3 UID: 0 PID: 26147 Comm: syz.8.6772 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  538.600250][T26147] Tainted: [L]=SOFTLOCKUP
[  538.600254][T26147] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  538.600260][T26147] Call Trace:
[  538.600275][T26147]  <TASK>
[  538.600281][T26147]  dump_stack_lvl+0x100/0x190
[  538.600311][T26147]  should_fail_ex.cold+0x5/0xa
[  538.600323][T26147]  ? __pfx_cgroup_show_path+0x10/0x10
[  538.600334][T26147]  should_failslab+0xc2/0x120
[  538.600348][T26147]  ? __pfx_cgroup_show_path+0x10/0x10
[  538.600359][T26147]  __kmalloc_cache_noprof+0x80/0x810
[  538.600370][T26147]  ? cgroup_show_path+0xb2/0x730
[  538.600380][T26147]  ? find_held_lock+0x2b/0x80
[  538.600395][T26147]  ? __pfx_cgroup_show_path+0x10/0x10
[  538.600406][T26147]  ? cgroup_show_path+0xb2/0x730
[  538.600416][T26147]  cgroup_show_path+0xb2/0x730
[  538.600428][T26147]  ? __pfx_cgroup_show_path+0x10/0x10
[  538.600438][T26147]  kernfs_sop_show_path+0xe9/0x160
[  538.600454][T26147]  ? __pfx_kernfs_sop_show_path+0x10/0x10
[  538.600469][T26147]  show_path+0x9e/0x100
[  538.600486][T26147]  show_mountinfo+0x1d8/0x820
[  538.600499][T26147]  ? __kvmalloc_node_noprof+0x36a/0xac0
[  538.600511][T26147]  ? __pfx_show_mountinfo+0x10/0x10
[  538.600528][T26147]  traverse.part.0.constprop.0+0x107/0x650
[  538.600546][T26147]  seq_lseek+0x2fb/0x430
[  538.600561][T26147]  ksys_lseek+0xf3/0x1b0
[  538.600572][T26147]  do_syscall_64+0xc9/0xf80
[  538.600591][T26147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.600619][T26147] RIP: 0033:0x7fb9b899aeb9
[  538.600630][T26147] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  538.600640][T26147] RSP: 002b:00007fb9b98b0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000008
[  538.600651][T26147] RAX: ffffffffffffffda RBX: 00007fb9b8c15fa0 RCX: 00007fb9b899aeb9
[  538.600658][T26147] RDX: 0000000000000000 RSI: 0000000000010001 RDI: 0000000000000003
[  538.600664][T26147] RBP: 00007fb9b98b0090 R08: 0000000000000000 R09: 0000000000000000
[  538.600671][T26147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  538.600677][T26147] R13: 00007fb9b8c16038 R14: 00007fb9b8c15fa0 R15: 00007ffc484f0758
[  538.600691][T26147]  </TASK>
[  538.678221][ T6031] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  538.698278][T26152] FAULT_INJECTION: forcing a failure.
[  538.698278][T26152] name failslab, interval 1, probability 0, space 0, times 0
[  538.703603][T26152] CPU: 0 UID: 0 PID: 26152 Comm: syz.6.6774 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  538.703621][T26152] Tainted: [L]=SOFTLOCKUP
[  538.703625][T26152] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  538.703632][T26152] Call Trace:
[  538.703637][T26152]  <TASK>
[  538.703642][T26152]  dump_stack_lvl+0x100/0x190
[  538.703661][T26152]  should_fail_ex.cold+0x5/0xa
[  538.703673][T26152]  should_failslab+0xc2/0x120
[  538.703688][T26152]  ? tomoyo_encode2+0xfb/0x3c0
[  538.703713][T26152]  __kmalloc_noprof+0xf6/0x9c0
[  538.703728][T26152]  ? tomoyo_encode2+0xfb/0x3c0
[  538.703738][T26152]  tomoyo_encode2+0xfb/0x3c0
[  538.703753][T26152]  tomoyo_encode+0x29/0x50
[  538.703764][T26152]  tomoyo_realpath_from_path+0x18c/0x690
[  538.703780][T26152]  tomoyo_path_number_perm+0x23c/0x580
[  538.703796][T26152]  ? tomoyo_path_number_perm+0x22e/0x580
[  538.703815][T26152]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  538.703846][T26152]  ? find_held_lock+0x2b/0x80
[  538.703860][T26152]  ? hook_file_ioctl_common+0x146/0x410
[  538.703874][T26152]  ? __fget_files+0x215/0x3d0
[  538.703890][T26152]  ? __fget_files+0x21f/0x3d0
[  538.703905][T26152]  security_file_ioctl+0xd3/0x230
[  538.703918][T26152]  __x64_sys_ioctl+0xb7/0x210
[  538.703930][T26152]  do_syscall_64+0xc9/0xf80
[  538.703947][T26152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.703958][T26152] RIP: 0033:0x7f0c17d9aeb9
[  538.703968][T26152] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  538.703979][T26152] RSP: 002b:00007f0c18d33028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  538.703990][T26152] RAX: ffffffffffffffda RBX: 00007f0c18015fa0 RCX: 00007f0c17d9aeb9
[  538.703997][T26152] RDX: 00002000000002c0 RSI: 00000000c058560f RDI: 0000000000000003
[  538.704004][T26152] RBP: 00007f0c18d33090 R08: 0000000000000000 R09: 0000000000000000
[  538.704010][T26152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  538.704016][T26152] R13: 00007f0c18016038 R14: 00007f0c18015fa0 R15: 00007ffd1c5da1d8
[  538.704031][T26152]  </TASK>
[  538.704044][T26152] ERROR: Out of memory at tomoyo_realpath_from_path.
[  538.862412][ T6031] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  538.867181][ T6031] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  538.874928][ T6031] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  538.880752][ T6031] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  538.887691][ T6031] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  538.892273][ T6031] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  538.895632][ T6031] usb 5-1: Manufacturer: syz
[  538.898654][T26165] FAULT_INJECTION: forcing a failure.
[  538.898654][T26165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  538.900179][ T6031] usb 5-1: config 0 descriptor??
[  538.903150][T26165] CPU: 3 UID: 0 PID: 26165 Comm: syz.6.6779 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  538.903169][T26165] Tainted: [L]=SOFTLOCKUP
[  538.903173][T26165] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  538.903180][T26165] Call Trace:
[  538.903184][T26165]  <TASK>
[  538.903188][T26165]  dump_stack_lvl+0x100/0x190
[  538.903206][T26165]  should_fail_ex.cold+0x5/0xa
[  538.903219][T26165]  _copy_to_user+0x32/0xd0
[  538.903235][T26165]  simple_read_from_buffer+0xcb/0x170
[  538.903250][T26165]  proc_fail_nth_read+0x1af/0x230
[  538.903266][T26165]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  538.903281][T26165]  ? rw_verify_area+0xce/0x6d0
[  538.903291][T26165]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  538.903306][T26165]  vfs_read+0x1e4/0xb30
[  538.903319][T26165]  ? __pfx_vfs_read+0x10/0x10
[  538.903330][T26165]  ? find_held_lock+0x2b/0x80
[  538.903345][T26165]  ? __fget_files+0x215/0x3d0
[  538.903360][T26165]  ? __fget_files+0x21f/0x3d0
[  538.903377][T26165]  ksys_read+0x12a/0x250
[  538.903388][T26165]  ? __pfx_ksys_read+0x10/0x10
[  538.903404][T26165]  do_syscall_64+0xc9/0xf80
[  538.903418][T26165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.903429][T26165] RIP: 0033:0x7f0c17d5b78e
[  538.903438][T26165] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  538.903449][T26165] RSP: 002b:00007f0c18d32fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  538.903460][T26165] RAX: ffffffffffffffda RBX: 00007f0c18d336c0 RCX: 00007f0c17d5b78e
[  538.903467][T26165] RDX: 000000000000000f RSI: 00007f0c18d330a0 RDI: 0000000000000003
[  538.903473][T26165] RBP: 00007f0c18d33090 R08: 0000000000000000 R09: 0000000000000000
[  538.903479][T26165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  538.903486][T26165] R13: 00007f0c18016038 R14: 00007f0c18015fa0 R15: 00007ffd1c5da1d8
[  538.903500][T26165]  </TASK>
[  539.067404][T26166] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  539.421158][ T6031] appleir 0003:05AC:8243.000E: unknown main item tag 0x0
[  539.429466][ T6031] appleir 0003:05AC:8243.000E: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  539.693787][ T6031] usb 5-1: USB disconnect, device number 14
[  539.717695][T26188] veth1_to_batadv: entered promiscuous mode
[  539.726741][   T40] audit: type=1400 audit(1770588466.650:26581): avc:  denied  { link } for  pid=26187 comm="syz.8.6786" name="#1f" dev="tmpfs" ino=229 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  539.737081][   T40] audit: type=1400 audit(1770588466.660:26582): avc:  denied  { rename } for  pid=26187 comm="syz.8.6786" name="#20" dev="tmpfs" ino=229 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  540.123107][T26203] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  540.152691][T20752] Bluetooth: hci2: command tx timeout
[  540.504884][T26215] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  540.511498][T26217] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6796'.
[  540.525254][T26217] l2tp_ppp: sess 2/0: no socket in recv
[  540.571098][T20752] Bluetooth: hci3: command tx timeout
[  540.613588][T26221] openvswitch: netlink: EtherType 50a is less than min 600
[  540.923510][T26240] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  540.928741][T26241] netem: change failed
[  540.965578][   T29] usb 13-1: new high-speed USB device number 43 using dummy_hcd
[  541.026955][T26250] fuse: Unknown parameter 'IÙ^>B'
[  541.128607][   T29] usb 13-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  541.133260][   T29] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  541.153966][   T29] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  541.160389][   T29] usb 13-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  541.166907][   T29] usb 13-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  541.177182][   T29] usb 13-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  541.185767][   T29] usb 13-1: Manufacturer: syz
[  541.195792][   T29] usb 13-1: config 0 descriptor??
[  541.637759][   T29] appleir 0003:05AC:8243.000F: unknown main item tag 0x0
[  541.644494][   T29] appleir 0003:05AC:8243.000F: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.8-1/input0
[  541.736559][   T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  541.741741][   T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  541.747763][   T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  541.751899][   T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  541.755259][   T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  541.785994][T26281] lo speed is unknown, defaulting to 1000
[  541.920236][ T5941] usb 13-1: USB disconnect, device number 43
[  541.930227][T26281] chnl_net:caif_netlink_parms(): no params data found
[  542.101879][T26281] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.104417][T26281] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.106833][T26281] bridge_slave_0: entered allmulticast mode
[  542.109665][T26281] bridge_slave_0: entered promiscuous mode
[  542.114350][T26281] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.116786][T26281] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.119189][T26281] bridge_slave_1: entered allmulticast mode
[  542.124123][T26281] bridge_slave_1: entered promiscuous mode
[  542.141392][T26281] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.173230][T26281] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.189344][T26281] team0: Port device team_slave_0 added
[  542.192744][T26281] team0: Port device team_slave_1 added
[  542.208246][T26281] batman_adv: batadv0: Adding interface: batadv_slave_0
[  542.210476][T26281] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  542.219275][T26281] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  542.225436][T26281] batman_adv: batadv0: Adding interface: batadv_slave_1
[  542.227624][T26281] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  542.237012][T26281] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  542.283343][T26281] hsr_slave_0: entered promiscuous mode
[  542.285999][T26281] hsr_slave_1: entered promiscuous mode
[  542.288713][T26281] debugfs: 'hsr0' already exists in 'hsr'
[  542.291091][T26281] Cannot create hsr debugfs directory
[  542.367404][   T64] Bluetooth: hci2: command tx timeout
[  542.460549][   T40] audit: type=1326 audit(1770588469.202:26583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26307 comm="syz.6.6829" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x0
[  542.502762][ T1148] bridge_slave_1: left allmulticast mode
[  542.504677][ T1148] bridge_slave_1: left promiscuous mode
[  542.508487][ T1148] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.511984][ T1148] bridge_slave_0: left allmulticast mode
[  542.513813][ T1148] bridge_slave_0: left promiscuous mode
[  542.515887][ T1148] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.559972][   T10] SELinux: failure in sel_netif_sid_slow(), invalid network interface (13)
[  542.795433][T26327] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  542.806065][   T64] Bluetooth: hci3: command tx timeout
[  542.923099][ T1148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  542.940443][ T1148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  542.945142][ T1148] bond0 (unregistering): Released all slaves
[  543.049104][T26344] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  543.218676][T26357] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  543.456856][ T1148] hsr_slave_0: left promiscuous mode
[  543.459999][ T1148] hsr_slave_1: left promiscuous mode
[  543.462320][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_0
[  543.914973][   T64] Bluetooth: hci0: command tx timeout
[  543.929418][ T1148] team0 (unregistering): Port device team_slave_1 removed
[  543.981201][ T1148] team0 (unregistering): Port device team_slave_0 removed
[  544.592489][   T64] Bluetooth: hci2: command tx timeout
[  545.030878][   T64] Bluetooth: hci3: command tx timeout
[  545.284789][T26281] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  545.297273][T26281] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  545.308025][T26281] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  545.328470][T26281] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  545.468049][T26281] 8021q: adding VLAN 0 to HW filter on device bond0
[  545.483989][T26281] 8021q: adding VLAN 0 to HW filter on device team0
[  545.495943][ T7263] bridge0: port 1(bridge_slave_0) entered blocking state
[  545.498698][ T7263] bridge0: port 1(bridge_slave_0) entered forwarding state
[  545.518235][   T76] bridge0: port 2(bridge_slave_1) entered blocking state
[  545.521192][   T76] bridge0: port 2(bridge_slave_1) entered forwarding state
[  545.784832][T26281] 8021q: adding VLAN 0 to HW filter on device batadv0
[  545.945786][   T40] audit: type=1400 audit(1770588472.464:26584): avc:  denied  { nlmsg_tty_audit } for  pid=26501 comm="syz.6.6874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  546.011414][T26281] veth0_vlan: entered promiscuous mode
[  546.020127][T26281] veth1_vlan: entered promiscuous mode
[  546.053997][T26281] veth0_macvtap: entered promiscuous mode
[  546.062201][T26281] veth1_macvtap: entered promiscuous mode
[  546.073693][T26281] batman_adv: batadv0: Interface activated: batadv_slave_0
[  546.096157][T26281] batman_adv: batadv0: Interface activated: batadv_slave_1
[  546.110931][   T76] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  546.117186][   T76] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  546.120821][   T76] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  546.140672][   T76] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  546.143681][   T64] Bluetooth: hci0: command tx timeout
[  546.205477][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.214539][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.245824][ T7262] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  546.248329][ T7262] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.409039][T26544] IPv6: addrconf: prefix option has invalid lifetime
[  546.827082][   T40] audit: type=1400 audit(1770588473.287:26585): avc:  denied  { setattr } for  pid=26585 comm="syz.0.6898" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  547.245736][   T64] Bluetooth: hci3: command tx timeout
[  547.406104][   T40] audit: type=1326 audit(1770588473.820:26586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  547.413672][   T40] audit: type=1326 audit(1770588473.820:26587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  547.427516][   T40] audit: type=1326 audit(1770588473.820:26588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  547.435383][   T40] audit: type=1326 audit(1770588473.820:26589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  547.456007][   T40] audit: type=1326 audit(1770588473.820:26590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  547.472597][   T40] audit: type=1326 audit(1770588473.820:26591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  547.491556][   T40] audit: type=1326 audit(1770588473.820:26592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  547.503971][   T40] audit: type=1326 audit(1770588473.820:26593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26619 comm="syz.5.6911" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a8f9aeb9 code=0x7ffc0000
[  548.118127][T26645] kvm: kvm [26644]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0xc1) = 0xfa01
[  548.121349][T26645] kvm: kvm [26644]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0xc2) = 0xf9ff
[  548.140342][T26645] kvm: kvm [26644]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0xf801
[  548.165732][T26645] kvm: kvm [26644]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x186) = 0xf301
[  548.170444][T26645] kvm: kvm [26644]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x187) = 0xf2ff
[  548.196471][T26645] kvm_intel: kvm [26644]: vcpu0, guest rIP: 0x9131 Unhandled WRMSR(0x1d9) = 0xf101
[  548.358105][   T64] Bluetooth: hci0: command tx timeout
[  549.480087][   T64] Bluetooth: hci3: command tx timeout
[  549.884816][T26748] dummy0: entered allmulticast mode
[  549.890925][T26746] dummy0: left allmulticast mode
[  550.584260][   T64] Bluetooth: hci0: command tx timeout
[  550.785851][T26774] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  551.680368][T26799] kvm: kvm [26798]: vcpu2, guest rIP: 0x9133 Unhandled WRMSR(0x11e) = 0xbe702111
[  552.334688][   T40] kauditd_printk_skb: 564 callbacks suppressed
[  552.334703][   T40] audit: type=1400 audit(1770588478.437:27158): avc:  denied  { open } for  pid=26827 comm="syz.8.6989" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=130372 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  552.348953][   T40] audit: type=1400 audit(1770588478.456:27159): avc:  denied  { watch } for  pid=26827 comm="syz.8.6989" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=130372 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  552.546050][T26830] kvm: pic: non byte write
[  553.682847][T26905] kvm: kvm [26903]: vcpu4, guest rIP: 0x9131 Unhandled WRMSR(0x11e) = 0x0
[  554.357439][T26956] IPv6: addrconf: prefix option has invalid lifetime
[  554.470069][   T40] audit: type=1326 audit(1770588480.438:27160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.483214][   T40] audit: type=1326 audit(1770588480.438:27161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.497598][   T40] audit: type=1326 audit(1770588480.438:27162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.505027][   T40] audit: type=1326 audit(1770588480.438:27163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.517502][   T40] audit: type=1326 audit(1770588480.438:27164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.526810][   T40] audit: type=1326 audit(1770588480.438:27165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.535704][   T40] audit: type=1326 audit(1770588480.438:27166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.543654][   T40] audit: type=1326 audit(1770588480.438:27167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26964 comm="syz.0.7039" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  554.582024][T26974] ip6_vti0: entered promiscuous mode
[  554.585321][T26974] ip6_vti0: left promiscuous mode
[  555.046112][T27000] IPv6: addrconf: prefix option has invalid lifetime
[  555.783535][T27042] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (200000 ns). Using initial count to start timer.
[  555.972694][T27062] IPv6: addrconf: prefix option has invalid lifetime
[  556.995084][T27124] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  557.341482][T27132] kvm: kvm [27131]: vcpu0, guest rIP: 0x540a3 Unhandled RDMSR(0x40000057)
[  557.926028][T27161] kvm: pic: non byte write
[  558.011728][T27169] IPv6: addrconf: prefix option has invalid lifetime
[  558.516079][T27200] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  558.601786][T27209] IPv6: addrconf: prefix option has invalid lifetime
[  558.936326][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  558.936341][   T40] audit: type=1326 audit(1770588484.607:27187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  558.949051][   T40] audit: type=1326 audit(1770588484.607:27188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  558.962257][   T40] audit: type=1326 audit(1770588484.616:27189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  558.976160][   T40] audit: type=1326 audit(1770588484.616:27190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  558.985062][   T40] audit: type=1326 audit(1770588484.616:27191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  558.992974][   T40] audit: type=1326 audit(1770588484.625:27192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  559.003658][   T40] audit: type=1326 audit(1770588484.625:27193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  559.011027][   T40] audit: type=1326 audit(1770588484.625:27194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  559.018565][   T40] audit: type=1326 audit(1770588484.625:27195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  559.026129][   T40] audit: type=1326 audit(1770588484.625:27196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27238 comm="syz.0.7146" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  559.971435][T27296] IPv6: addrconf: prefix option has invalid lifetime
[  560.495154][T27322] loop2: detected capacity change from 0 to 7
[  560.504257][T19994] Dev loop2: unable to read RDB block 7
[  560.506705][T19994]  loop2: unable to read partition table
[  560.509328][T19994] loop2: partition table beyond EOD, truncated
[  560.515897][T27322] Dev loop2: unable to read RDB block 7
[  560.518240][T27322]  loop2: unable to read partition table
[  560.520705][T27322] loop2: partition table beyond EOD, truncated
[  560.523475][T27322] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  560.751399][T27331] IPv6: addrconf: prefix option has invalid lifetime
[  560.793926][T27333] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7175'.
[  562.278468][T27423] kvm: kvm [27421]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  562.329138][T27432] loop2: detected capacity change from 0 to 7
[  562.333396][T27432] Dev loop2: unable to read RDB block 7
[  562.335819][T27432]  loop2: AHDI p1 p2 p3
[  562.337588][T27432] loop2: partition table partially beyond EOD, truncated
[  562.340825][T27432] loop2: p1 start 1601398130 is beyond EOD, truncated
[  562.342970][T27432] loop2: p2 start 1702059890 is beyond EOD, truncated
[  562.533393][T27444] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7219'.
[  563.023921][T27466] kvm: kvm [27465]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  563.535632][T27487] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  564.426389][T27523] kvm: kvm [27522]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  564.818035][T27533] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  565.418868][T27556] kvm: kvm [27555]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  565.617062][   T40] kauditd_printk_skb: 1974 callbacks suppressed
[  565.617075][   T40] audit: type=1400 audit(1770588490.851:29171): avc:  denied  { write } for  pid=27562 comm="syz.0.7268" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  565.707413][T27573] netlink: 'syz.0.7273': attribute type 7 has an invalid length.
[  565.710110][T27573] netlink: 'syz.0.7273': attribute type 8 has an invalid length.
[  566.459723][T27593] kvm: kvm [27592]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  566.747387][T27602] syzkaller0: entered promiscuous mode
[  566.749795][T27602] syzkaller0: entered allmulticast mode
[  567.310912][T27623] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7292'.
[  567.415726][T27628] 9p: Could not find request transport: f}
[  567.709904][T27652] kvm: kvm [27651]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  567.731950][T27661] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=27661 comm=syz.5.7308
[  567.976920][T27682] loop2: detected capacity change from 0 to 7
[  567.982606][T27682] Dev loop2: unable to read RDB block 7
[  567.984314][   T40] audit: type=1326 audit(1770588493.066:29172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  567.984521][T27682]  loop2: unable to read partition table
[  567.992506][   T40] audit: type=1326 audit(1770588493.066:29173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  567.993733][T27682] loop2: partition table beyond EOD, 
[  568.000965][   T40] audit: type=1326 audit(1770588493.075:29174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  568.000990][   T40] audit: type=1326 audit(1770588493.075:29175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  568.001013][   T40] audit: type=1326 audit(1770588493.075:29176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  568.002798][T27682] truncated
[  568.009992][   T40] audit: type=1326 audit(1770588493.075:29177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  568.018250][T27682] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  568.026098][   T40] audit: type=1326 audit(1770588493.075:29178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  568.043193][   T40] audit: type=1326 audit(1770588493.075:29179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  568.049547][   T40] audit: type=1326 audit(1770588493.075:29180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27683 comm="syz.6.7318" exe="/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  569.158608][T27739] kvm: kvm [27738]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  569.384651][T27748] loop2: detected capacity change from 0 to 7
[  569.387600][T27748] Dev loop2: unable to read RDB block 7
[  569.389529][T27748]  loop2: AHDI p1 p2 p3
[  569.391002][T27748] loop2: partition table partially beyond EOD, truncated
[  569.400366][T27748] loop2: p1 start 1601398130 is beyond EOD, truncated
[  569.402858][T27748] loop2: p2 start 1702059890 is beyond EOD, truncated
[  569.453758][T27752] netlink: 'syz.6.7345': attribute type 4 has an invalid length.
[  569.543871][T27758] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  570.991818][   T40] kauditd_printk_skb: 35 callbacks suppressed
[  570.991834][   T40] audit: type=1400 audit(1770588495.870:29216): avc:  denied  { mounton } for  pid=27808 comm="syz.5.7366" path="/101/file0" dev="tmpfs" ino=535 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  571.668731][T27831] netlink: 'syz.6.7375': attribute type 3 has an invalid length.
[  572.253753][T27846] syzkaller0: entered promiscuous mode
[  572.256234][T27846] syzkaller0: entered allmulticast mode
[  572.301665][T27844] kvm: pic: non byte write
[  572.403059][T27855] loop2: detected capacity change from 0 to 7
[  572.408485][T27855] Dev loop2: unable to read RDB block 7
[  572.410407][T27855]  loop2: AHDI p1 p2 p3
[  572.411962][T27855] loop2: partition table partially beyond EOD, truncated
[  572.421280][T27855] loop2: p1 start 1601398130 is beyond EOD, truncated
[  572.423483][T27855] loop2: p2 start 1702059890 is beyond EOD, truncated
[  573.182754][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  573.188938][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  573.477497][T27892] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  573.515363][T27901] loop2: detected capacity change from 0 to 7
[  573.518405][T27901] Dev loop2: unable to read RDB block 7
[  573.520323][T27901]  loop2: AHDI p1 p2 p3
[  573.523213][T27901] loop2: partition table partially beyond EOD, truncated
[  573.528184][T27901] loop2: p1 start 1601398130 is beyond EOD, truncated
[  573.530396][T27901] loop2: p2 start 1702059890 is beyond EOD, truncated
[  574.902188][   T40] audit: type=1326 audit(1770588499.534:29217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.911939][   T40] audit: type=1326 audit(1770588499.534:29218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.927362][   T40] audit: type=1326 audit(1770588499.534:29219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.937547][   T40] audit: type=1326 audit(1770588499.534:29220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.948579][   T40] audit: type=1326 audit(1770588499.534:29221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.958480][   T40] audit: type=1326 audit(1770588499.534:29222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.968231][   T40] audit: type=1326 audit(1770588499.534:29223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.979982][   T40] audit: type=1326 audit(1770588499.534:29224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.981317][T27957] loop2: detected capacity change from 0 to 7
[  574.990032][   T40] audit: type=1326 audit(1770588499.534:29225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27950 comm="syz.0.7423" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  574.994662][T19994] Dev loop2: unable to read RDB block 7
[  575.005459][T19994]  loop2: AHDI p1 p2 p3
[  575.007286][T19994] loop2: partition table partially beyond EOD, truncated
[  575.012039][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  575.014302][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  575.017572][T27957] Dev loop2: unable to read RDB block 7
[  575.027261][T27957]  loop2: AHDI p1 p2 p3
[  575.028925][T27957] loop2: partition table partially beyond EOD, truncated
[  575.032021][T27957] loop2: p1 start 1601398130 is beyond EOD, truncated
[  575.034211][T27957] loop2: p2 start 1702059890 is beyond EOD, truncated
[  576.495260][T28021] loop2: detected capacity change from 0 to 7
[  576.498481][T19994] Dev loop2: unable to read RDB block 7
[  576.500617][T19994]  loop2: AHDI p1 p2 p3
[  576.502548][T19994] loop2: partition table partially beyond EOD, truncated
[  576.506060][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  576.509099][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  576.513116][T28021] Dev loop2: unable to read RDB block 7
[  576.515525][T28021]  loop2: AHDI p1 p2 p3
[  576.517383][T28021] loop2: partition table partially beyond EOD, truncated
[  576.521967][T28021] loop2: p1 start 1601398130 is beyond EOD, truncated
[  576.524632][T28021] loop2: p2 start 1702059890 is beyond EOD, truncated
[  576.557463][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  576.557474][   T40] audit: type=1400 audit(1770588501.076:29229): avc:  denied  { getattr } for  pid=28022 comm="syz.8.7451" lport=38010 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  576.647056][T28027] syzkaller0: entered promiscuous mode
[  576.649672][T28027] syzkaller0: entered allmulticast mode
[  576.945257][T28043] loop2: detected capacity change from 0 to 7
[  576.949390][T19994] Dev loop2: unable to read RDB block 7
[  576.951793][T19994]  loop2: AHDI p1 p2 p3
[  576.953582][T19994] loop2: partition table partially beyond EOD, truncated
[  576.957222][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  576.960111][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  576.976226][T28043] Dev loop2: unable to read RDB block 7
[  576.978122][T28043]  loop2: AHDI p1 p2 p3
[  576.979632][T28043] loop2: partition table partially beyond EOD, truncated
[  576.982135][T28043] loop2: p1 start 1601398130 is beyond EOD, truncated
[  576.984355][T28043] loop2: p2 start 1702059890 is beyond EOD, truncated
[  577.017600][T28046] kvm: kvm [28045]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000006e) = 0x941f
[  577.121548][T28054] syzkaller0: entered promiscuous mode
[  577.123424][T28054] syzkaller0: entered allmulticast mode
[  577.149235][   T40] audit: type=1800 audit(1770588501.637:29230): pid=28055 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.8.7464" name="bus" dev="overlay" ino=1169 res=0 errno=0
[  577.238331][T28060] netlink: 'syz.8.7466': attribute type 16 has an invalid length.
[  577.644272][T28080] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7474'.
[  577.655871][T28080] gretap0: entered promiscuous mode
[  577.658228][T28080] macvtap1: entered promiscuous mode
[  577.660157][T28080] macvtap1: entered allmulticast mode
[  577.662284][T28080] gretap0: entered allmulticast mode
[  577.777453][T28086] syzkaller0: entered promiscuous mode
[  577.780730][T28086] syzkaller0: entered allmulticast mode
[  578.672997][T28133] loop2: detected capacity change from 0 to 7
[  578.682250][T28133] Dev loop2: unable to read RDB block 7
[  578.687728][T28133]  loop2: AHDI p1 p2 p3
[  578.689148][T28133] loop2: partition table partially beyond EOD, truncated
[  578.691539][T28133] loop2: p1 start 1601398130 is beyond EOD, truncated
[  578.693738][T28133] loop2: p2 start 1702059890 is beyond EOD, truncated
[  578.931203][   T40] audit: type=1400 audit(1770588503.292:29231): avc:  denied  { remount } for  pid=28154 comm="syz.6.7506" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  578.959013][   T40] audit: type=1400 audit(1770588503.320:29232): avc:  denied  { unmount } for  pid=26027 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  579.000337][T28159] loop2: detected capacity change from 0 to 7
[  579.010153][T28159] Dev loop2: unable to read RDB block 7
[  579.012519][T28159]  loop2: AHDI p1 p2 p3
[  579.014321][T28159] loop2: partition table partially beyond EOD, truncated
[  579.017820][T28159] loop2: p1 start 1601398130 is beyond EOD, truncated
[  579.024151][T28159] loop2: p2 start 1702059890 is beyond EOD, truncated
[  579.088601][T28166] syzkaller0: entered promiscuous mode
[  579.091154][T28166] syzkaller0: entered allmulticast mode
[  579.434217][T28187] loop2: detected capacity change from 0 to 7
[  579.437889][T19994] Dev loop2: unable to read RDB block 7
[  579.440169][T19994]  loop2: AHDI p1 p2 p3
[  579.442020][T19994] loop2: partition table partially beyond EOD, truncated
[  579.445109][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  579.446974][T28181] kvm: pic: non byte write
[  579.448284][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  579.454539][T28187] Dev loop2: unable to read RDB block 7
[  579.456802][T28187]  loop2: AHDI p1 p2 p3
[  579.459776][T28187] loop2: partition table partially beyond EOD, truncated
[  579.462876][T28187] loop2: p1 start 1601398130 is beyond EOD, truncated
[  579.465552][T28187] loop2: p2 start 1702059890 is beyond EOD, truncated
[  579.655130][T28194] netlink: 'syz.8.7522': attribute type 16 has an invalid length.
[  579.657757][T28194] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7522'.
[  579.723299][T28198] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7524'.
[  581.061987][T28252] netlink: 40 bytes leftover after parsing attributes in process `syz.0.7546'.
[  581.092806][T28254] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7547'.
[  582.658985][T28320] netlink: 'syz.0.7575': attribute type 3 has an invalid length.
[  582.662023][T28320] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7575'.
[  582.747586][T28330] dummy0: entered promiscuous mode
[  582.750065][T28329] dummy0: left promiscuous mode
[  582.784246][T28332] netlink: 60 bytes leftover after parsing attributes in process `syz.8.7580'.
[  582.803084][T28332] bond2: Removing last ns target with arp_interval on
[  582.929555][T28348] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  582.934567][T28348] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  582.980185][   T40] audit: type=1400 audit(1770588507.087:29233): avc:  denied  { unmount } for  pid=25955 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  583.364800][T28378] kvm: kvm [28377]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  583.445524][T28387] program syz.5.7602 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  583.567219][T28402] netlink: 'syz.6.7609': attribute type 3 has an invalid length.
[  583.593982][T28406] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7612'.
[  583.848811][T28434] syzkaller0: entered promiscuous mode
[  583.851085][T28434] syzkaller0: entered allmulticast mode
[  586.569799][T28553] overlay: Unknown parameter 'obj_role'
[  586.773783][T28568] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7675'.
[  586.778004][T28568] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7675'.
[  587.165477][   T40] audit: type=1400 audit(1770588510.994:29234): avc:  denied  { read write } for  pid=28584 comm="syz.5.7682" name="file0" dev="fuse" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  587.172926][   T40] audit: type=1400 audit(1770588510.994:29235): avc:  denied  { open } for  pid=28584 comm="syz.5.7682" path="/134/file0/file0" dev="fuse" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  587.498158][T28596] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7686'.
[  587.501953][T28596] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7686'.
[  587.938199][T28625] syzkaller0: entered promiscuous mode
[  587.939999][T28625] syzkaller0: entered allmulticast mode
[  587.988645][T28619] kvm: kvm [28618]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000057) = 0x5
[  588.231187][T28653] netlink: 32 bytes leftover after parsing attributes in process `syz.8.7712'.
[  589.510527][T28722] overlayfs: failed to resolve './file0': -2
[  590.348343][T28760] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7750'.
[  590.646934][T28777] 8021q: adding VLAN 0 to HW filter on device bond1
[  591.591168][T28844] bridge0: port 2(bridge_slave_1) entered disabled state
[  591.594176][T28844] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.640625][T28844] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  591.648593][T28844] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  591.801707][   T13] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.807015][   T13] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.809987][   T13] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  591.813698][   T13] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  592.454937][   T40] audit: type=1400 audit(1770588515.939:29236): avc:  denied  { cmd } for  pid=28895 comm="syz.8.7806" path="/329/file0" dev="tmpfs" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=io_uring permissive=1
[  592.977447][T28924] kvm: pic: single mode not supported
[  592.977788][T28924] kvm: pic: level sensitive irq not supported
[  592.982270][T28924] kvm: pic: non byte read
[  592.989223][T28924] kvm: pic: non byte read
[  592.992898][T28924] kvm: pic: single mode not supported
[  592.993223][T28924] kvm: pic: non byte read
[  593.000159][T28924] kvm: pic: non byte read
[  593.003862][T28924] kvm: pic: single mode not supported
[  593.004198][T28924] kvm: pic: non byte read
[  593.009213][T28924] kvm: pic: non byte read
[  593.012440][T28924] kvm: pic: non byte read
[  593.015956][T28924] kvm: pic: non byte read
[  593.019133][T28924] kvm: pic: non byte read
[  593.083931][T28930] overlayfs: failed to resolve './file1': -2
[  593.450610][T28957] overlayfs: failed to resolve './file0': -2
[  593.693855][   T40] audit: type=1326 audit(1770588517.098:29237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.705518][   T40] audit: type=1326 audit(1770588517.098:29238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.714176][   T40] audit: type=1326 audit(1770588517.098:29239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.722180][   T40] audit: type=1326 audit(1770588517.098:29240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.723343][T28979] overlayfs: failed to resolve './file0': -2
[  593.730186][   T40] audit: type=1326 audit(1770588517.098:29241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.739576][   T40] audit: type=1326 audit(1770588517.098:29242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.747745][   T40] audit: type=1326 audit(1770588517.098:29243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.756280][   T40] audit: type=1326 audit(1770588517.098:29244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.763951][   T40] audit: type=1326 audit(1770588517.098:29245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28976 comm="syz.6.7840" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f0c17d9aeb9 code=0x7ffc0000
[  593.780968][T28983] fuse: Bad value for 'fd'
[  594.090294][T29003] syzkaller0: entered promiscuous mode
[  594.092835][T29003] syzkaller0: entered allmulticast mode
[  594.847640][T29025] netlink: 40 bytes leftover after parsing attributes in process `syz.6.7861'.
[  595.386606][T29044] kvm: pic: non byte write
[  595.606853][T29068] FAT-fs (loop17): unable to read boot sector
[  595.997610][T29099] bridge0: port 1(bridge_slave_0) entered forwarding state
[  596.085568][T29106] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29106 comm=syz.6.7894
[  596.093313][T29106] netlink: 'syz.6.7894': attribute type 1 has an invalid length.
[  596.212684][T29106] 8021q: adding VLAN 0 to HW filter on device bond1
[  596.244993][T29107] bond1: (slave dummy0): making interface the new active one
[  596.249251][T29107] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  596.954122][T29149] kvm: pic: non byte write
[  597.334242][T29166] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7919'.
[  597.342290][T29166] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7919'.
[  598.087949][T29191] netlink: 'syz.5.7928': attribute type 4 has an invalid length.
[  598.621216][T29216] overlayfs: missing 'lowerdir'
[  598.874005][   T40] audit: type=1400 audit(1770588521.930:29246): avc:  denied  { remount } for  pid=29233 comm="syz.0.7949" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  598.882318][T29232] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7948'.
[  599.489481][T29272] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29272 comm=syz.5.7964
[  599.498891][T29272] netlink: 'syz.5.7964': attribute type 1 has an invalid length.
[  599.524683][T29272] 8021q: adding VLAN 0 to HW filter on device bond1
[  599.535423][T29275] xt_hashlimit: max too large, truncated to 1048576
[  599.537815][T29272] bond1: (slave dummy0): making interface the new active one
[  599.541961][T29272] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  599.747387][T29287] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7971'.
[  599.753470][T29287] bond0: option lp_interval: invalid value (0)
[  599.758043][T29287] bond0: option lp_interval: allowed values 1 - 2147483647
[  599.986077][   T40] audit: type=1400 audit(1770588522.977:29247): avc:  denied  { rename } for  pid=29290 comm="syz.8.7973" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  600.100822][T29307] syzkaller0: entered promiscuous mode
[  600.103101][T29307] syzkaller0: entered allmulticast mode
[  600.108260][T10454] syzkaller0: tun_net_xmit 48
[  600.122037][T29314] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29314 comm=syz.0.7982
[  600.124897][T29315] fuse: Bad value for 'fd'
[  600.130570][T29314] netlink: 'syz.0.7982': attribute type 1 has an invalid length.
[  600.165048][   T40] audit: type=1400 audit(1770588523.136:29248): avc:  denied  { append } for  pid=29316 comm="syz.8.7984" name="file0" dev="tmpfs" ino=2013 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  601.197929][   T40] audit: type=1400 audit(1770588524.118:29249): avc:  denied  { append } for  pid=29351 comm="syz.6.7996" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  602.030097][T29314] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  602.282188][T29365] kvm: pic: non byte write
[  602.628697][T29382] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29382 comm=syz.5.8007
[  602.636907][T29382] netlink: 'syz.5.8007': attribute type 1 has an invalid length.
[  602.652283][T29382] 8021q: adding VLAN 0 to HW filter on device bond2
[  602.663482][T29385] syzkaller0: entered promiscuous mode
[  602.665702][T29385] syzkaller0: entered allmulticast mode
[  602.732126][T29391] fuse: Bad value for 'group_id'
[  602.734345][T29391] fuse: Bad value for 'group_id'
[  602.790491][T29392] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  602.794843][T29392] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  602.928274][T29405] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29405 comm=syz.5.8017
[  602.950074][T29405] netlink: 'syz.5.8017': attribute type 1 has an invalid length.
[  602.972379][T29405] 8021q: adding VLAN 0 to HW filter on device bond3
[  603.060801][T29415] syzkaller0: entered promiscuous mode
[  603.062591][T29415] syzkaller0: entered allmulticast mode
[  603.196708][T29420] fuse: Bad value for 'group_id'
[  603.206384][T29420] fuse: Bad value for 'group_id'
[  603.328371][T29424] bridge0: port 2(bridge_slave_1) entered disabled state
[  603.332078][T29424] bridge0: port 1(bridge_slave_0) entered disabled state
[  603.418700][T29424] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  603.426461][T29424] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  603.509627][ T7263] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  603.512935][ T7263] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  603.516330][ T7262] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  603.520248][ T7262] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  603.748933][T29445] syzkaller0: entered promiscuous mode
[  603.750817][T29445] syzkaller0: entered allmulticast mode
[  604.381130][T29466] syzkaller0: entered promiscuous mode
[  604.383613][T29466] syzkaller0: entered allmulticast mode
[  604.561867][T29468] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29468 comm=syz.8.8041
[  604.578265][T29468] netlink: 'syz.8.8041': attribute type 1 has an invalid length.
[  604.592457][T29468] 8021q: adding VLAN 0 to HW filter on device bond3
[  604.935632][T29491] syzkaller0: entered promiscuous mode
[  604.937471][T29491] syzkaller0: entered allmulticast mode
[  605.072450][T29495] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29495 comm=syz.6.8052
[  605.079496][T29495] netlink: 'syz.6.8052': attribute type 1 has an invalid length.
[  605.101311][T29495] 8021q: adding VLAN 0 to HW filter on device bond2
[  605.611091][T29524] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29524 comm=syz.8.8066
[  605.684861][T29532] fuse: Bad value for 'group_id'
[  605.686651][T29532] fuse: Bad value for 'group_id'
[  606.022766][T29550] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29550 comm=syz.0.8076
[  607.854121][T29629] kvm: pic: non byte write
[  608.533153][T29671] fuse: Unknown parameter 'grou00000000000000000000'
[  608.803908][T29699] fuse: Unknown parameter 'grou00000000000000000000'
[  609.067294][T29720] fuse: Unknown parameter 'group_i00000000000000000000'
[  609.268771][T29735] syzkaller0: entered promiscuous mode
[  609.270739][T29735] syzkaller0: entered allmulticast mode
[  609.274146][ T1148] syzkaller0: tun_net_xmit 48
[  609.859202][T29746] fuse: Unknown parameter 'group_i00000000000000000000'
[  610.398809][T29772] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29772 comm=syz.8.8167
[  610.423817][T29772] netlink: 'syz.8.8167': attribute type 1 has an invalid length.
[  610.522845][T29777] fuse: Bad value for 'user_id'
[  610.524629][T29777] fuse: Bad value for 'user_id'
[  610.609182][T29784] fuse: Unknown parameter 'group_id00000000000000000000'
[  611.954134][T29772] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR
[  612.357510][T29822] syzkaller0: entered promiscuous mode
[  612.362073][T29822] syzkaller0: entered allmulticast mode
[  612.400717][T29828] fuse: Bad value for 'fd'
[  612.435126][T29832] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  612.597297][T29849] fuse: Bad value for 'fd'
[  612.635819][T10821] kernel write not supported for file [eventfd] (pid: 10821 comm: kworker/3:5)
[  612.885540][   T40] audit: type=1400 audit(1770588535.035:29250): avc:  denied  { write } for  pid=29869 comm="syz.8.8210" name="urandom" dev="devtmpfs" ino=9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[  613.391116][T29889] syzkaller0: entered promiscuous mode
[  613.393497][T29889] syzkaller0: entered allmulticast mode
[  613.777525][T29903] fuse: Unknown parameter 'grou00000000000000000000'
[  613.868559][T29907] fuse: Bad value for 'fd'
[  613.871878][T29905] syzkaller0: entered promiscuous mode
[  613.874738][T29905] syzkaller0: entered allmulticast mode
[  614.455078][T29934] fuse: Bad value for 'fd'
[  614.974739][T29961] fuse: Unknown parameter 'group_i00000000000000000000'
[  615.094076][T29972] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=29972 comm=syz.8.8253
[  615.101645][T29972] netlink: 'syz.8.8253': attribute type 1 has an invalid length.
[  615.117231][T29972] 8021q: adding VLAN 0 to HW filter on device bond4
[  615.124663][T29972] bond4: (slave dummy0): making interface the new active one
[  615.128335][T29972] bond4: (slave dummy0): Enslaving as an active interface with an up link
[  615.196676][T29981] syzkaller0: entered promiscuous mode
[  615.198564][T29981] syzkaller0: entered allmulticast mode
[  615.561277][T30004] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=30004 comm=syz.8.8265
[  615.575032][T30004] netlink: 'syz.8.8265': attribute type 1 has an invalid length.
[  615.604973][T30004] 8021q: adding VLAN 0 to HW filter on device bond5
[  615.615329][T30004] bond4: (slave dummy0): Releasing active interface
[  615.625513][T30004] bond5: (slave dummy0): making interface the new active one
[  615.631980][T30004] bond5: (slave dummy0): Enslaving as an active interface with an up link
[  615.935723][   T40] audit: type=1400 audit(1770588537.886:29251): avc:  denied  { mounton } for  pid=30011 comm="syz.0.8268" path="/372/file0" dev="tmpfs" ino=1975 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  616.282056][T30018] fuse: Unknown parameter 'group_id00000000000000000000'
[  616.707356][T30040] fuse: Bad value for 'rootmode'
[  616.741891][T30042] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  616.744522][T30042] overlayfs: failed to set xattr on upper
[  616.746665][T30042] overlayfs: ...falling back to redirect_dir=nofollow.
[  616.749075][T30042] overlayfs: ...falling back to index=off.
[  616.750853][T30042] overlayfs: ...falling back to uuid=null.
[  616.777838][   T40] audit: type=1400 audit(1770588538.671:29252): avc:  denied  { unmount } for  pid=26281 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  616.817419][T30044] syzkaller0: entered promiscuous mode
[  616.819481][T30044] syzkaller0: entered allmulticast mode
[  616.958829][   T40] audit: type=1400 audit(1770588538.840:29253): avc:  denied  { watch } for  pid=30048 comm="syz.5.8283" path="/sys/power/sync_on_suspend" dev="sysfs" ino=866 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  616.967054][   T40] audit: type=1400 audit(1770588538.840:29254): avc:  denied  { watch_sb watch_reads } for  pid=30048 comm="syz.5.8283" path="/sys/power/sync_on_suspend" dev="sysfs" ino=866 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=file permissive=1
[  617.883287][T30078] fuse: Bad value for 'user_id'
[  617.885426][T30078] fuse: Bad value for 'user_id'
[  618.208654][T30093] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8300'.
[  618.245712][T30098] loop2: detected capacity change from 0 to 7
[  618.248285][T30098] Dev loop2: unable to read RDB block 7
[  618.250467][T30098]  loop2: AHDI p1 p2 p3
[  618.252479][T30098] loop2: partition table partially beyond EOD, truncated
[  618.254996][T30098] loop2: p1 start 1601398130 is beyond EOD, truncated
[  618.257207][T30098] loop2: p2 start 1702059890 is beyond EOD, truncated
[  618.394555][T30102] fuse: Bad value for 'user_id'
[  618.396842][T30102] fuse: Bad value for 'user_id'
[  618.471668][T30108] syzkaller0: entered promiscuous mode
[  618.474059][T30108] syzkaller0: entered allmulticast mode
[  618.492128][T30111] fuse: Unknown parameter 'use00000000000000000000'
[  618.951631][T30129] loop2: detected capacity change from 0 to 7
[  618.954797][T30129] Dev loop2: unable to read RDB block 7
[  618.957743][T30129]  loop2: AHDI p1 p2 p3
[  618.959277][T30129] loop2: partition table partially beyond EOD, truncated
[  618.961922][T30129] loop2: p1 start 1601398130 is beyond EOD, truncated
[  618.964399][T30129] loop2: p2 start 1702059890 is beyond EOD, truncated
[  619.048563][   T40] audit: type=1400 audit(1770588540.793:29255): avc:  denied  { watch watch_reads } for  pid=30135 comm="syz.6.8315" path="/437/file0" dev="tmpfs" ino=2360 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  619.080283][T30138] fuse: Bad value for 'user_id'
[  619.082469][T30138] fuse: Bad value for 'user_id'
[  619.165697][T30145] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  619.168125][T30145] overlayfs: failed to set xattr on upper
[  619.170683][T30145] overlayfs: ...falling back to redirect_dir=nofollow.
[  619.172955][T30145] overlayfs: ...falling back to index=off.
[  619.174860][T30145] overlayfs: ...falling back to uuid=null.
[  619.200715][T30149] loop2: detected capacity change from 0 to 7
[  619.205635][T19994] Dev loop2: unable to read RDB block 7
[  619.207532][T19994]  loop2: AHDI p1 p2 p3
[  619.209098][T19994] loop2: partition table partially beyond EOD, truncated
[  619.211978][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  619.216201][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  619.219522][T30149] Dev loop2: unable to read RDB block 7
[  619.221578][T30149]  loop2: AHDI p1 p2 p3
[  619.223225][T30149] loop2: partition table partially beyond EOD, truncated
[  619.227464][T30149] loop2: p1 start 1601398130 is beyond EOD, truncated
[  619.230238][T30149] loop2: p2 start 1702059890 is beyond EOD, truncated
[  619.306986][T30159] fuse: Bad value for 'fd'
[  619.427724][   T40] audit: type=1400 audit(1770588541.158:29256): avc:  denied  { map } for  pid=30166 comm="syz.5.8330" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  619.485394][T30169] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8331'.
[  619.734438][   T40] audit: type=1400 audit(1770588541.438:29257): avc:  denied  { mount } for  pid=30176 comm="syz.8.8334" name="/" dev="bdev" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bdev_t tclass=filesystem permissive=1
[  619.811362][T30189] syzkaller0: entered promiscuous mode
[  619.813987][T30189] syzkaller0: entered allmulticast mode
[  619.843727][   T40] audit: type=1326 audit(1770588541.532:29258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30192 comm="syz.8.8342" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb9b899aeb9 code=0x0
[  620.106622][T30213] syzkaller0: entered promiscuous mode
[  620.108526][T30213] syzkaller0: entered allmulticast mode
[  620.623946][   T40] audit: type=1400 audit(1770588542.261:29259): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=fe80::2 daddr=ff02::1 netif=eth0 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  620.749737][T30227] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  620.752048][T30227] overlayfs: failed to set xattr on upper
[  620.755142][T30227] overlayfs: ...falling back to redirect_dir=nofollow.
[  620.757348][T30227] overlayfs: ...falling back to index=off.
[  620.759708][T30227] overlayfs: ...falling back to uuid=null.
[  621.108074][T30244] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=30244 comm=syz.6.8361
[  621.115212][T30244] netlink: 'syz.6.8361': attribute type 1 has an invalid length.
[  621.132883][T30244] 8021q: adding VLAN 0 to HW filter on device bond3
[  621.138917][T30244] bond1: (slave dummy0): Releasing active interface
[  621.144210][T30244] bond3: (slave dummy0): making interface the new active one
[  621.147217][T30244] bond3: (slave dummy0): Enslaving as an active interface with an up link
[  622.128170][T30264] syzkaller0: entered promiscuous mode
[  622.130590][T30264] syzkaller0: entered allmulticast mode
[  622.885495][T30284] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=30284 comm=syz.0.8376
[  622.894699][T30284] netlink: 'syz.0.8376': attribute type 1 has an invalid length.
[  622.913879][T30284] 8021q: adding VLAN 0 to HW filter on device bond2
[  622.923331][T30284] bond2: (slave dummy0): making interface the new active one
[  622.928403][T30284] bond2: (slave dummy0): Enslaving as an active interface with an up link
[  623.131338][T30294] fuse: Unknown parameter 'use00000000000000000000'
[  623.290307][T30302] netlink: 'syz.6.8383': attribute type 1 has an invalid length.
[  623.321479][T30302] bond4: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  623.329489][T30302] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  623.345723][T30307] fuse: Invalid rootmode
[  623.354460][T30302] veth3: entered promiscuous mode
[  623.358946][T30302] bond4: (slave veth3): Enslaving as a backup interface with a down link
[  623.552968][T30320] fuse: Unknown parameter 'use00000000000000000000'
[  624.125664][T30331] fuse: Invalid rootmode
[  624.620590][T30345] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=30345 comm=syz.8.8400
[  624.628886][T30345] netlink: 'syz.8.8400': attribute type 1 has an invalid length.
[  624.665308][T30345] 8021q: adding VLAN 0 to HW filter on device bond6
[  624.697773][T30345] bond5: (slave dummy0): Releasing active interface
[  624.847265][T30345] bond6: (slave dummy0): making interface the new active one
[  624.852195][T30345] bond6: (slave dummy0): Enslaving as an active interface with an up link
[  625.069640][T30371] syzkaller0: entered promiscuous mode
[  625.071594][T30371] syzkaller0: entered allmulticast mode
[  625.378299][T30385] overlayfs: failed to resolve './file1': -2
[  625.618864][T30398] syzkaller0: entered promiscuous mode
[  625.622239][T30398] syzkaller0: entered allmulticast mode
[  625.765563][T30400] overlayfs: failed to resolve './file0': -2
[  625.824964][T30402] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  625.934333][T30406] fuse: Bad value for 'rootmode'
[  627.167555][T30435] fuse: Unknown parameter 'user_id00000000000000000000'
[  627.260699][T30439] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=30439 comm=syz.8.8439
[  627.277218][T30439] netlink: 'syz.8.8439': attribute type 1 has an invalid length.
[  627.288389][T30442] fuse: Unknown parameter 'use00000000000000000000'
[  627.298743][T30439] 8021q: adding VLAN 0 to HW filter on device bond7
[  627.356977][T30439] bond6: (slave dummy0): Releasing active interface
[  627.380572][T30439] bond7: (slave dummy0): making interface the new active one
[  627.402644][T30439] bond7: (slave dummy0): Enslaving as an active interface with an up link
[  627.444801][T30451] overlayfs: failed to resolve './file0': -2
[  627.891870][T30464] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  628.696115][T30481] fuse: Unknown parameter '0x0000000000000003'
[  628.767941][T30485] syzkaller0: entered promiscuous mode
[  628.769759][T30485] syzkaller0: entered allmulticast mode
[  628.977439][T30489] kvm: pic: non byte write
[  629.131869][T30506] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=30506 comm=syz.0.8466
[  629.141240][T30506] netlink: 'syz.0.8466': attribute type 1 has an invalid length.
[  629.161924][T30506] 8021q: adding VLAN 0 to HW filter on device bond3
[  629.170176][T30506] bond2: (slave dummy0): Releasing active interface
[  629.181546][T30511] fuse: Unknown parameter 'user_i00000000000000000000'
[  629.226481][T30515] syzkaller0: entered promiscuous mode
[  629.228775][T30515] syzkaller0: entered allmulticast mode
[  629.355886][T30520] loop2: detected capacity change from 0 to 7
[  629.360440][T19994] Dev loop2: unable to read RDB block 7
[  629.362409][T19994]  loop2: AHDI p1 p2 p3
[  629.365191][T19994] loop2: partition table partially beyond EOD, truncated
[  629.367919][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  629.370129][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  629.373418][T30520] Dev loop2: unable to read RDB block 7
[  629.375809][T30520]  loop2: AHDI p1 p2 p3
[  629.377334][T30520] loop2: partition table partially beyond EOD, truncated
[  629.380035][T30520] loop2: p1 start 1601398130 is beyond EOD, truncated
[  629.382305][T30520] loop2: p2 start 1702059890 is beyond EOD, truncated
[  629.863104][T30529] fuse: Bad value for 'fd'
[  629.904976][T30531] syzkaller0: entered promiscuous mode
[  629.906761][T30531] syzkaller0: entered allmulticast mode
[  630.010447][T30534] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=30534 comm=syz.5.8478
[  630.017042][T30534] netlink: 'syz.5.8478': attribute type 1 has an invalid length.
[  630.033787][T30534] 8021q: adding VLAN 0 to HW filter on device bond4
[  630.040903][T30534] bond1: (slave dummy0): Releasing active interface
[  631.035973][T30573] loop2: detected capacity change from 0 to 7
[  631.043038][T19994] Dev loop2: unable to read RDB block 7
[  631.045761][T19994]  loop2: AHDI p1 p2 p3
[  631.047751][T19994] loop2: partition table partially beyond EOD, truncated
[  631.051009][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  631.054878][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  631.059964][T30573] Dev loop2: unable to read RDB block 7
[  631.061810][T30573]  loop2: AHDI p1 p2 p3
[  631.063395][T30573] loop2: partition table partially beyond EOD, truncated
[  631.066490][T30573] loop2: p1 start 1601398130 is beyond EOD, truncated
[  631.076614][T30573] loop2: p2 start 1702059890 is beyond EOD, truncated
[  632.202635][T30615] fuse: Unknown parameter '0x0000000000000004'
[  632.422573][   T40] audit: type=1400 audit(1770588553.293:29260): avc:  denied  { mount } for  pid=30611 comm="syz.8.8512" name="/" dev="pstore" ino=5404 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  633.127680][   T40] audit: type=1400 audit(1770588553.957:29261): avc:  denied  { unmount } for  pid=25875 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  633.134493][T30640] fuse: Unknown parameter '0x0000000000000004'
[  633.686554][T30658] syzkaller0: entered promiscuous mode
[  633.688519][T30658] syzkaller0: entered allmulticast mode
[  634.528089][T30700] syzkaller0: entered promiscuous mode
[  634.530081][T30700] syzkaller0: entered allmulticast mode
[  634.592671][T30701] 9p: Bad value for 'wfdno'
[  635.187170][T30732] fuse: Unknown parameter 'fd0x0000000000000004'
[  635.233786][T30738] loop2: detected capacity change from 0 to 7
[  635.237335][T30738] Dev loop2: unable to read RDB block 7
[  635.239780][T30738]  loop2: AHDI p1 p2 p3
[  635.241575][T30738] loop2: partition table partially beyond EOD, truncated
[  635.244725][T30738] loop2: p1 start 1601398130 is beyond EOD, truncated
[  635.248722][T30738] loop2: p2 start 1702059890 is beyond EOD, truncated
[  635.410720][T30750] netlink: 'syz.8.8572': attribute type 58 has an invalid length.
[  635.496434][T30759] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8576'.
[  635.966322][T30783] netlink: 36 bytes leftover after parsing attributes in process `syz.8.8587'.
[  636.365529][T30805] fuse: Unknown parameter 'fd0x0000000000000003'
[  636.901317][T30826] loop2: detected capacity change from 0 to 7
[  636.905254][T30826] Dev loop2: unable to read RDB block 7
[  636.907092][T30826]  loop2: AHDI p1 p2 p3
[  636.908535][T30826] loop2: partition table partially beyond EOD, truncated
[  636.910920][T30826] loop2: p1 start 1601398130 is beyond EOD, truncated
[  636.913171][T30826] loop2: p2 start 1702059890 is beyond EOD, truncated
[  637.364471][T30854] 8021q: adding VLAN 0 to HW filter on device bond0
[  637.367932][T30854] 8021q: adding VLAN 0 to HW filter on device team0
[  637.375658][T30854] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  637.392036][T30851] kvm: pic: non byte write
[  637.454302][T30861] overlayfs: failed to resolve './file0': -2
[  637.530383][T30869] 9pnet_fd: Insufficient options for proto=fd
[  637.598456][   T40] audit: type=1804 audit(1770588558.136:29262): pid=30865 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.5.8622" name="/newroot/363/file0" dev="fuse" ino=1 res=1 errno=0
[  637.813640][T30886] overlayfs: failed to resolve './file0': -2
[  638.560088][T30916] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  638.615910][T30919] ip6tnl2: entered promiscuous mode
[  638.617891][T30919] ip6tnl2: entered allmulticast mode
[  638.741533][T30923] ./file0: Can't lookup blockdev
[  638.907545][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  638.910471][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  639.821211][T30959] overlayfs: failed to resolve './file1': -2
[  640.185201][T30979] kvm: pic: non byte write
[  641.090847][T30995] loop2: detected capacity change from 0 to 7
[  641.096407][T19994] Dev loop2: unable to read RDB block 7
[  641.098383][T19994]  loop2: AHDI p1 p2 p3
[  641.100105][T19994] loop2: partition table partially beyond EOD, truncated
[  641.102880][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  641.105752][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  641.115937][T30995] Dev loop2: unable to read RDB block 7
[  641.120508][T30995]  loop2: AHDI p1 p2 p3
[  641.122046][T30995] loop2: partition table partially beyond EOD, truncated
[  641.125288][T30995] loop2: p1 start 1601398130 is beyond EOD, truncated
[  641.127914][T30995] loop2: p2 start 1702059890 is beyond EOD, truncated
[  641.176173][T31000] overlayfs: failed to resolve './file0': -2
[  641.307999][T31010] syzkaller0: entered promiscuous mode
[  641.309793][T31010] syzkaller0: entered allmulticast mode
[  641.958369][T31036] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.961952][T31036] bridge0: port 1(bridge_slave_0) entered disabled state
[  642.019380][T31046] 9p: Bad value for 'wfdno'
[  642.314923][T31036] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  642.321288][T31036] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  642.439445][T31036] veth3: left promiscuous mode
[  642.449346][   T76] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  642.454742][   T76] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  642.459002][   T76] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  642.465395][   T76] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  642.957587][T31086] overlayfs: failed to resolve './file0': -2
[  643.602817][T31099] loop2: detected capacity change from 0 to 7
[  643.606099][T31099] Dev loop2: unable to read RDB block 7
[  643.608517][T31099]  loop2: AHDI p1 p2 p3
[  643.610493][T31099] loop2: partition table partially beyond EOD, truncated
[  643.612874][T31099] loop2: p1 start 1601398130 is beyond EOD, truncated
[  643.615121][T31099] loop2: p2 start 1702059890 is beyond EOD, truncated
[  643.716438][   T40] audit: type=1400 audit(1770588563.858:29263): avc:  denied  { unmount } for  pid=25875 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  643.884344][   T40] audit: type=1400 audit(1770588564.017:29264): avc:  denied  { mounton } for  pid=31120 comm="syz.6.8725" path="/syzcgroup/net/syz6/devices.allow" dev="cgroup" ino=450 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  643.918492][   T40] audit: type=1400 audit(1770588564.045:29265): avc:  denied  { watch watch_reads } for  pid=31122 comm="syz.0.8726" path="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=dir permissive=1
[  643.968330][T31126] ªªªªªª: renamed from vlan0
[  644.004067][T31128] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8728'.
[  644.803824][T31159] bridge0: port 2(bridge_slave_1) entered disabled state
[  644.807396][T31159] bridge0: port 1(bridge_slave_0) entered disabled state
[  644.904616][T31159] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  644.914216][T31159] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  645.015843][T31159] gretap0: left allmulticast mode
[  645.018380][T31159] macvtap1: left promiscuous mode
[  645.020797][T31159] macvtap1: left allmulticast mode
[  645.044281][ T7263] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  645.054105][ T7263] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  645.058667][ T7263] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  645.062405][ T7263] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  645.099379][T31179] overlayfs: missing 'lowerdir'
[  645.329052][T31194] overlayfs: failed to resolve './bus': -2
[  645.499502][T31196] ptrace attach of "/syz-executor exec"[31198] was attempted by "/syz-executor exec"[31196]
[  645.586279][T31204] overlayfs: missing 'lowerdir'
[  645.704908][T31214] 8021q: adding VLAN 0 to HW filter on device bond4
[  645.709783][T31214] bond0: (slave bond4): Enslaving as an active interface with an up link
[  645.814849][T31220] overlayfs: failed to resolve './bus': -2
[  646.110129][   T40] audit: type=1400 audit(1770588566.093:29266): avc:  denied  { watch watch_reads } for  pid=31226 comm="syz.6.8768" path="/proc/1335/net/vlan/vlan1" dev="proc" ino=4026534609 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  646.306511][T31243] syzkaller0: entered promiscuous mode
[  646.309018][T31243] syzkaller0: entered allmulticast mode
[  646.831911][T31267] syzkaller0: entered promiscuous mode
[  646.833831][T31267] syzkaller0: entered allmulticast mode
[  647.061105][T31275] netlink: 'syz.6.8790': attribute type 12 has an invalid length.
[  647.063693][T31275] netlink: 'syz.6.8790': attribute type 29 has an invalid length.
[  647.066931][T31275] netlink: 148 bytes leftover after parsing attributes in process `syz.6.8790'.
[  647.221399][T31287] 9p: Bad value for 'wfdno'
[  647.273345][T31291] syzkaller0: entered promiscuous mode
[  647.275804][T31291] syzkaller0: entered allmulticast mode
[  647.279989][ T7262] syzkaller0: tun_net_xmit 48
[  648.176311][T31303] netlink: 12 bytes leftover after parsing attributes in process `syz.8.8800'.
[  648.935654][T31303] bond8: entered promiscuous mode
[  648.937954][T31303] 8021q: adding VLAN 0 to HW filter on device bond8
[  649.385329][T31336] syzkaller0: entered promiscuous mode
[  649.387901][T31336] syzkaller0: entered allmulticast mode
[  649.391715][ T7263] syzkaller0: tun_net_xmit 48
[  649.453827][T31344] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8817'.
[  649.508269][T31348] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8817'.
[  649.621988][T31352] netlink: 63 bytes leftover after parsing attributes in process `syz.5.8817'.
[  651.001133][T31344] workqueue: Failed to create a rescuer kthread for wq "bond5": -EINTR
[  651.137568][T31368] bond8: left promiscuous mode
[  651.431443][T31388] syzkaller0: entered promiscuous mode
[  651.433631][T31388] syzkaller0: entered allmulticast mode
[  651.437217][   T13] syzkaller0: tun_net_xmit 48
[  652.120068][T31391] overlayfs: failed to resolve './file1/file0': -2
[  653.147448][T31397] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  653.184690][T31410] syzkaller0: entered promiscuous mode
[  653.186469][T31410] syzkaller0: entered allmulticast mode
[  653.403767][T31435] 9p: Bad value for 'wfdno'
[  654.214170][T20752] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  654.222371][T20752] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  654.226514][T20752] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  654.229854][T20752] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  654.234104][T20752] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  654.379258][T31453] chnl_net:caif_netlink_parms(): no params data found
[  654.427124][T31453] bridge0: port 1(bridge_slave_0) entered blocking state
[  654.430995][T31453] bridge0: port 1(bridge_slave_0) entered disabled state
[  654.434882][T31453] bridge_slave_0: entered allmulticast mode
[  654.437676][T31453] bridge_slave_0: entered promiscuous mode
[  654.440986][T31453] bridge0: port 2(bridge_slave_1) entered blocking state
[  654.443635][T31453] bridge0: port 2(bridge_slave_1) entered disabled state
[  654.447883][T31453] bridge_slave_1: entered allmulticast mode
[  654.451611][T31453] bridge_slave_1: entered promiscuous mode
[  654.474296][T31453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  654.479299][T31453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  654.516144][T31453] team0: Port device team_slave_0 added
[  654.522425][T31453] team0: Port device team_slave_1 added
[  654.542498][T31453] batman_adv: batadv0: Adding interface: batadv_slave_0
[  654.544906][T31453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  654.554445][T31453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  654.559173][T31453] batman_adv: batadv0: Adding interface: batadv_slave_1
[  654.561475][T31453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  654.573161][T31453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  654.613874][T31453] hsr_slave_0: entered promiscuous mode
[  654.625841][T31453] hsr_slave_1: entered promiscuous mode
[  654.628528][T31453] debugfs: 'hsr0' already exists in 'hsr'
[  654.630339][T31453] Cannot create hsr debugfs directory
[  654.651375][T31476] loop2: detected capacity change from 0 to 7
[  654.658824][T31476] Dev loop2: unable to read RDB block 7
[  654.661261][T31476]  loop2: AHDI p1 p2 p3
[  654.663072][T31476] loop2: partition table partially beyond EOD, truncated
[  654.666485][T31476] loop2: p1 start 1601398130 is beyond EOD, truncated
[  654.672513][T31476] loop2: p2 start 1702059890 is beyond EOD, truncated
[  654.988922][T31486] syzkaller0: entered promiscuous mode
[  654.991638][T31486] syzkaller0: entered allmulticast mode
[  656.455744][T20752] Bluetooth: hci1: command tx timeout
[  656.512778][T31514] loop2: detected capacity change from 0 to 7
[  656.517389][T19994] Dev loop2: unable to read RDB block 7
[  656.520648][T19994]  loop2: AHDI p1 p2 p3
[  656.522456][T19994] loop2: partition table partially beyond EOD, truncated
[  656.527177][T19994] loop2: p1 start 1601398130 is beyond EOD, truncated
[  656.530321][T19994] loop2: p2 start 1702059890 is beyond EOD, truncated
[  656.540193][T31514] Dev loop2: unable to read RDB block 7
[  656.543807][T31514]  loop2: AHDI p1 p2 p3
[  656.545643][T31514] loop2: partition table partially beyond EOD, truncated
[  656.549201][T31514] loop2: p1 start 1601398130 is beyond EOD, truncated
[  656.552119][T31514] loop2: p2 start 1702059890 is beyond EOD, truncated
[  657.179394][T27257] Process accounting resumed
[  657.208695][T31528] overlayfs: failed to resolve './bus': -2
[  657.250486][T31533] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  657.253542][T31533] overlayfs: failed to set xattr on upper
[  657.255982][T31533] overlayfs: ...falling back to redirect_dir=nofollow.
[  657.259070][T31533] overlayfs: ...falling back to index=off.
[  657.261594][T31533] overlayfs: ...falling back to uuid=null.
[  657.470101][ T7262] bridge_slave_1: left allmulticast mode
[  657.472735][ T7262] bridge_slave_1: left promiscuous mode
[  657.475476][ T7262] bridge0: port 2(bridge_slave_1) entered disabled state
[  657.485914][ T7262] bridge_slave_0: left allmulticast mode
[  657.488441][ T7262] bridge_slave_0: left promiscuous mode
[  657.491142][ T7262] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.661581][T31546] 9p: Bad value for 'wfdno'
[  657.852933][ T7262] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  657.856719][ T7262] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  657.860722][ T7262] bond0 (unregistering): Released all slaves
[  657.865692][ T7262] bond1 (unregistering): Released all slaves
[  657.874334][ T7262] bond2 (unregistering): Released all slaves
[  658.010583][ T7262] bond3 (unregistering): Released all slaves
[  658.144190][ T7262] bond4 (unregistering): Released all slaves
[  658.257625][ T7262] bond5 (unregistering): Released all slaves
[  658.359785][ T7262] bond6 (unregistering): Released all slaves
[  658.490549][ T7262] bond7 (unregistering): (slave dummy0): Releasing active interface
[  658.495701][ T7262] bond7 (unregistering): Released all slaves
[  658.621178][ T7262] bond8 (unregistering): Released all slaves
[  658.668403][T31578] syzkaller0: entered promiscuous mode
[  658.669511][T20752] Bluetooth: hci1: command tx timeout
[  658.670298][T31578] syzkaller0: entered allmulticast mode
[  658.677126][T10458] syzkaller0: tun_net_xmit 48
[  658.844591][T31588] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8903'.
[  660.070548][   T40] audit: type=1326 audit(1770588579.145:29267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.081499][   T40] audit: type=1326 audit(1770588579.145:29268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.090453][   T40] audit: type=1326 audit(1770588579.145:29269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.098795][   T40] audit: type=1326 audit(1770588579.145:29271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.107062][   T40] audit: type=1326 audit(1770588579.145:29270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.116696][   T40] audit: type=1326 audit(1770588579.145:29272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.132453][   T40] audit: type=1326 audit(1770588579.145:29274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.141486][   T40] audit: type=1326 audit(1770588579.145:29273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.149857][   T40] audit: type=1326 audit(1770588579.145:29275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31601 comm="syz.0.8910" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  660.522100][T31615] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=31615 comm=syz.0.8916
[  660.693828][T31453] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  660.699685][T31453] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  660.707712][T31453] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  660.715911][T31453] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  660.790894][ T7262] hsr_slave_0: left promiscuous mode
[  660.794209][ T7262] hsr_slave_1: left promiscuous mode
[  660.797008][ T7262] batman_adv: batadv0: Removing interface: batadv_slave_0
[  660.802054][ T7262] batman_adv: batadv0: Removing interface: batadv_slave_1
[  660.904775][T20752] Bluetooth: hci1: command tx timeout
[  660.972229][T31643] 9p: Bad value for 'wfdno'
[  660.995810][T31645] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=31645 comm=syz.6.8926
[  661.213928][ T7262] team0 (unregistering): Port device team_slave_1 removed
[  661.260859][ T7262] team0 (unregistering): Port device team_slave_0 removed
[  661.628054][T31645] bond3: (slave dummy0): Releasing active interface
[  661.641936][T31453] 8021q: adding VLAN 0 to HW filter on device bond0
[  661.653032][T31453] 8021q: adding VLAN 0 to HW filter on device team0
[  661.666428][ T7265] bridge0: port 1(bridge_slave_0) entered blocking state
[  661.668763][ T7265] bridge0: port 1(bridge_slave_0) entered forwarding state
[  661.677289][ T7263] bridge0: port 2(bridge_slave_1) entered blocking state
[  661.679609][ T7263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  661.882002][T31453] 8021q: adding VLAN 0 to HW filter on device batadv0
[  662.070952][T31453] veth0_vlan: entered promiscuous mode
[  662.077036][T31453] veth1_vlan: entered promiscuous mode
[  662.097939][T31453] veth0_macvtap: entered promiscuous mode
[  662.104325][T31453] veth1_macvtap: entered promiscuous mode
[  662.115039][T31453] batman_adv: batadv0: Interface activated: batadv_slave_0
[  662.122915][T31453] batman_adv: batadv0: Interface activated: batadv_slave_1
[  662.132643][T10458] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  662.136738][T10458] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  662.141273][T10458] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  662.145103][T10458] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  662.236328][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  662.239208][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  662.257971][ T7263] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  662.261373][ T7263] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  662.416003][   T64] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  662.422081][   T64] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  662.427843][   T64] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  662.431828][   T64] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  662.435986][   T64] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  662.679684][T31712] chnl_net:caif_netlink_parms(): no params data found
[  662.739607][T31712] bridge0: port 1(bridge_slave_0) entered blocking state
[  662.741875][T31712] bridge0: port 1(bridge_slave_0) entered disabled state
[  662.744389][T31712] bridge_slave_0: entered allmulticast mode
[  662.747169][T31712] bridge_slave_0: entered promiscuous mode
[  662.749657][T31730] Process accounting resumed
[  662.751612][T31712] bridge0: port 2(bridge_slave_1) entered blocking state
[  662.755047][T31712] bridge0: port 2(bridge_slave_1) entered disabled state
[  662.757825][T31712] bridge_slave_1: entered allmulticast mode
[  662.761323][T31712] bridge_slave_1: entered promiscuous mode
[  662.787962][T31737] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=31737 comm=syz.8.8953
[  662.804674][T31737] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  662.810149][T31712] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  662.821295][T31712] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  662.860458][T31712] team0: Port device team_slave_0 added
[  662.866246][T31712] team0: Port device team_slave_1 added
[  662.894440][T31712] batman_adv: batadv0: Adding interface: batadv_slave_0
[  662.897413][T31712] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  662.907741][T31712] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  662.921712][T31712] batman_adv: batadv0: Adding interface: batadv_slave_1
[  662.923979][T31712] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  662.933473][T31712] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  662.988987][T31712] hsr_slave_0: entered promiscuous mode
[  662.992563][T31712] hsr_slave_1: entered promiscuous mode
[  662.996063][T31712] debugfs: 'hsr0' already exists in 'hsr'
[  662.998547][T31712] Cannot create hsr debugfs directory
[  663.080465][T31753] syzkaller0: entered promiscuous mode
[  663.083042][T31753] syzkaller0: entered allmulticast mode
[  663.104053][T10454] syzkaller0: tun_net_xmit 48
[  663.129736][   T64] Bluetooth: hci1: command tx timeout
[  664.143981][T31765] kvm: user requested TSC rate below hardware speed
[  664.170468][T31765] kvm: kvm [31764]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  664.175222][T31765] kvm: kvm [31764]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  664.659198][   T64] Bluetooth: hci4: command tx timeout
[  665.209423][T31788] fuse: Unknown parameter 'grou00000000000000000000'
[  665.299648][T31802] fuse: Bad value for 'group_id'
[  665.302429][T31802] fuse: Bad value for 'group_id'
[  665.445108][T31817] fuse: Unknown parameter 'group_i00000000000000000000'
[  665.648117][T31712] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  665.656218][T31712] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  665.662552][T31712] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  665.670527][T31712] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  665.702171][T31836] fuse: Unknown parameter 'group_i00000000000000000000'
[  665.753655][T31712] 8021q: adding VLAN 0 to HW filter on device bond0
[  665.775053][T31712] 8021q: adding VLAN 0 to HW filter on device team0
[  665.780994][ T7265] bridge0: port 1(bridge_slave_0) entered blocking state
[  665.783882][ T7265] bridge0: port 1(bridge_slave_0) entered forwarding state
[  665.806534][T10454] bridge0: port 2(bridge_slave_1) entered blocking state
[  665.808621][T10454] bridge0: port 2(bridge_slave_1) entered forwarding state
[  665.940472][T31712] 8021q: adding VLAN 0 to HW filter on device batadv0
[  666.154722][T31712] veth0_vlan: entered promiscuous mode
[  666.162024][T31712] veth1_vlan: entered promiscuous mode
[  666.199902][T31712] veth0_macvtap: entered promiscuous mode
[  666.204781][T31712] veth1_macvtap: entered promiscuous mode
[  666.215165][T31712] batman_adv: batadv0: Interface activated: batadv_slave_0
[  666.222218][T31712] batman_adv: batadv0: Interface activated: batadv_slave_1
[  666.229013][ T7265] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  666.233432][ T7265] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  666.235373][   T40] audit: type=1326 audit(1770588584.914:29276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.237145][ T7265] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  666.248049][   T40] audit: type=1326 audit(1770588584.914:29277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.259200][ T7265] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  666.262558][   T40] audit: type=1326 audit(1770588584.923:29278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.274097][   T40] audit: type=1326 audit(1770588584.923:29279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.283961][   T40] audit: type=1326 audit(1770588584.923:29280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.309048][   T40] audit: type=1326 audit(1770588584.923:29281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.319580][   T40] audit: type=1326 audit(1770588584.923:29282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.331800][   T40] audit: type=1326 audit(1770588584.923:29283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31871 comm="syz.0.9002" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f7200b9aeb9 code=0x7ffc0000
[  666.382343][T10454] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  666.385469][T10454] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  666.405648][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  666.408348][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  666.472595][   T40] audit: type=1400 audit(1770588585.138:29284): avc:  denied  { bind } for  pid=31884 comm="syz.8.9007" lport=43163 faddr=::ffff:100.1.1.0 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  666.483198][   T40] audit: type=1400 audit(1770588585.138:29285): avc:  denied  { name_bind } for  pid=31884 comm="syz.8.9007" src=20003 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[  666.593402][T31896] Process accounting resumed
[  666.769160][T31910] syzkaller0: entered promiscuous mode
[  666.771028][T31910] syzkaller0: entered allmulticast mode
[  666.883711][T20752] Bluetooth: hci4: command tx timeout
[  667.195484][T31933] kvm: user requested TSC rate below hardware speed
[  667.199700][T31933] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  667.294541][T31936] kvm: user requested TSC rate below hardware speed
[  667.568078][T31940] Process accounting resumed
[  667.689751][T31942] ------------[ cut here ]------------
[  667.691767][T31942] !allow_smaller_maxphyaddr
[  667.691775][T31942] WARNING: arch/x86/kvm/vmx/vmx.c:5393 at handle_exception_nmi+0x1893/0x1ae0, CPU#1: syz.0.9030/31942
[  667.697347][T31942] Modules linked in:
[  667.700156][T31942] CPU: 1 UID: 0 PID: 31942 Comm: syz.0.9030 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  667.704107][T31942] Tainted: [L]=SOFTLOCKUP
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  667.705626][T31942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  667.709581][T31942] RIP: 0010:handle_exception_nmi+0x1893/0x1ae0
[  667.711753][T31942] Code: 01 00 00 00 89 c5 89 c6 e8 7a 5d 68 00 83 fd 01 0f 84 9e fc ff ff e8 bc 62 68 00 90 0f 0b 90 e9 90 fc ff ff e8 ae 62 68 00 90 <0f> 0b 90 e9 ca f1 ff ff 4c 89 f7 e8 9d b5 d2 00 e9 94 e7 ff ff e8
[  667.719553][T31942] RSP: 0018:ffffc9000cccf9e8 EFLAGS: 00010287
[  667.721695][T31942] RAX: 0000000000015e00 RBX: ffff888054fd8000 RCX: ffffc90032904000
[  667.724486][T31942] RDX: 0000000000080000 RSI: ffffffff819e98f2 RDI: ffff88805c7ac980
[  667.727482][T31942] RBP: 000000000f6632eb R08: 0000000000000001 R09: 0000000000000000
[  667.730287][T31942] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  667.733042][T31942] R13: 0000000080000b0e R14: ffff888054fd80d8 R15: ffff88802b436000
[  667.735830][T31942] FS:  00007f72019a46c0(0000) GS:ffff8880d66d9000(0000) knlGS:0000000000000000
[  667.739009][T31942] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  667.741610][T31942] CR2: 000000000f6632eb CR3: 000000001380b000 CR4: 0000000000352ef0
[  667.744404][T31942] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000036
[  667.747140][T31942] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  667.749881][T31942] Call Trace:
[  667.751063][T31942]  <TASK>
[  667.752149][T31942]  ? __pfx_handle_exception_nmi+0x10/0x10
[  667.754192][T31942]  vmx_handle_exit+0x720/0x1de0
[  667.755929][T31942]  vcpu_run+0x34c8/0x5ca0
[  667.757489][T31942]  ? __lock_acquire+0x4a5/0x2630
[  667.759249][T31942]  ? __pfx_vcpu_run+0x10/0x10
[  667.760977][T31942]  ? rcu_is_watching+0x12/0xc0
[  667.762668][T31942]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  667.765190][T31942]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  667.767748][T31942]  kvm_vcpu_ioctl+0x730/0x16d0
[  667.769900][T31942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  667.772876][T31942]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  667.775734][T31942]  ? do_vfs_ioctl+0x226/0x13e0
[  667.777961][T31942]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  667.780222][T31942]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  667.783547][T31942]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  667.786604][T31942]  ? selinux_file_ioctl+0x139/0x290
[  667.788469][T31942]  ? selinux_file_ioctl+0xb4/0x290
[  667.790282][T31942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  667.792149][T31942]  __x64_sys_ioctl+0x18e/0x210
[  667.793918][T31942]  do_syscall_64+0xc9/0xf80
[  667.797077][T31942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.799884][T31942] RIP: 0033:0x7f7200b9aeb9
[  667.802019][T31942] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  667.811208][T31942] RSP: 002b:00007f72019a4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  667.815161][T31942] RAX: ffffffffffffffda RBX: 00007f7200e15fa0 RCX: 00007f7200b9aeb9
[  667.818026][T31942] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  667.820886][T31942] RBP: 00007f7200c08c1f R08: 0000000000000000 R09: 0000000000000000
[  667.823650][T31942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.826675][T31942] R13: 00007f7200e16038 R14: 00007f7200e15fa0 R15: 00007ffda444d868
[  667.829474][T31942]  </TASK>
[  667.830611][T31942] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  667.833106][T31942] CPU: 1 UID: 0 PID: 31942 Comm: syz.0.9030 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  667.836894][T31942] Tainted: [L]=SOFTLOCKUP
[  667.838402][T31942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  667.841861][T31942] Call Trace:
[  667.843044][T31942]  <TASK>
[  667.844107][T31942]  dump_stack_lvl+0x100/0x190
[  667.845768][T31942]  vpanic+0x20d/0x630
[  667.847178][T31942]  panic+0xd1/0xd1
[  667.848524][T31942]  ? __pfx_panic+0x10/0x10
[  667.850111][T31942]  check_panic_on_warn.cold+0x19/0x34
[  667.851977][T31942]  ? handle_exception_nmi+0x1893/0x1ae0
[  667.853890][T31942]  __warn.cold+0x191/0x2f8
[  667.855485][T31942]  __report_bug+0x296/0x3d0
[  667.857078][T31942]  ? handle_exception_nmi+0x1893/0x1ae0
[  667.859004][T31942]  ? __pfx___report_bug+0x10/0x10
[  667.860707][T31942]  ? kvm_sched_in+0x9a/0xf0
[  667.862312][T31942]  ? finish_task_switch.isra.0+0x4b5/0xb70
[  667.864358][T31942]  ? rcu_is_watching+0x12/0xc0
[  667.866050][T31942]  ? handle_exception_nmi+0x1893/0x1ae0
[  667.868024][T31942]  report_bug+0xb2/0x220
[  667.869529][T31942]  ? handle_exception_nmi+0x1893/0x1ae0
[  667.871497][T31942]  handle_bug+0x166/0x2a0
[  667.873006][T31942]  exc_invalid_op+0x17/0x50
[  667.874617][T31942]  asm_exc_invalid_op+0x1a/0x20
[  667.876334][T31942] RIP: 0010:handle_exception_nmi+0x1893/0x1ae0
[  667.878607][T31942] Code: 01 00 00 00 89 c5 89 c6 e8 7a 5d 68 00 83 fd 01 0f 84 9e fc ff ff e8 bc 62 68 00 90 0f 0b 90 e9 90 fc ff ff e8 ae 62 68 00 90 <0f> 0b 90 e9 ca f1 ff ff 4c 89 f7 e8 9d b5 d2 00 e9 94 e7 ff ff e8
[  667.885106][T31942] RSP: 0018:ffffc9000cccf9e8 EFLAGS: 00010287
[  667.887266][T31942] RAX: 0000000000015e00 RBX: ffff888054fd8000 RCX: ffffc90032904000
[  667.890010][T31942] RDX: 0000000000080000 RSI: ffffffff819e98f2 RDI: ffff88805c7ac980
[  667.892747][T31942] RBP: 000000000f6632eb R08: 0000000000000001 R09: 0000000000000000
[  667.895487][T31942] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  667.898207][T31942] R13: 0000000080000b0e R14: ffff888054fd80d8 R15: ffff88802b436000
[  667.900945][T31942]  ? handle_exception_nmi+0x1892/0x1ae0
[  667.902864][T31942]  ? handle_exception_nmi+0x1892/0x1ae0
[  667.904813][T31942]  ? __pfx_handle_exception_nmi+0x10/0x10
[  667.906851][T31942]  vmx_handle_exit+0x720/0x1de0
[  667.908580][T31942]  vcpu_run+0x34c8/0x5ca0
[  667.910098][T31942]  ? __lock_acquire+0x4a5/0x2630
[  667.912089][T31942]  ? __pfx_vcpu_run+0x10/0x10
[  667.913745][T31942]  ? rcu_is_watching+0x12/0xc0
[  667.915430][T31942]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  667.917847][T31942]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  667.920571][T31942]  kvm_vcpu_ioctl+0x730/0x16d0
[  667.922436][T31942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  667.924385][T31942]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  667.926696][T31942]  ? do_vfs_ioctl+0x226/0x13e0
[  667.928878][T31942]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  667.931147][T31942]  ? ioctl_has_perm.constprop.0.isra.0+0x380/0x540
[  667.933807][T31942]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  667.936183][T31942]  ? selinux_file_ioctl+0x139/0x290
[  667.937994][T31942]  ? selinux_file_ioctl+0xb4/0x290
[  667.939812][T31942]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  667.941661][T31942]  __x64_sys_ioctl+0x18e/0x210
[  667.943357][T31942]  do_syscall_64+0xc9/0xf80
[  667.945013][T31942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.947094][T31942] RIP: 0033:0x7f7200b9aeb9
[  667.948698][T31942] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  667.955252][T31942] RSP: 002b:00007f72019a4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  667.958138][T31942] RAX: ffffffffffffffda RBX: 00007f7200e15fa0 RCX: 00007f7200b9aeb9
[  667.960962][T31942] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008
[  667.963702][T31942] RBP: 00007f7200c08c1f R08: 0000000000000000 R09: 0000000000000000
[  667.966448][T31942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  667.969229][T31942] R13: 00007f7200e16038 R14: 00007f7200e15fa0 R15: 00007ffda444d868
[  667.971996][T31942]  </TASK>
[  667.973780][T31942] Kernel Offset: disabled
[  667.975315][T31942] Rebooting in 86400 seconds..