last executing test programs:

44.877398533s ago: executing program 0 (id=835):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x2e}, 0xfffffffe}], 0x1c)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000140), &(0x7f0000000240)=0x8)
io_uring_enter(r1, 0x13a4, 0xbbda, 0x48, &(0x7f0000000040)={[0xe]}, 0x8)

44.87711234s ago: executing program 0 (id=836):
syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=0xb00, @broadcast}}}}}}, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7be", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x810}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/235, 0xeb}], 0x1}, 0x0)

44.789202562s ago: executing program 0 (id=838):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x408001, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$XFS_IOC_ATTRMULTI_BY_HANDLE(r0, 0x4048587b, &(0x7f0000001a40)={{<r2=>0xffffffffffffffff, &(0x7f0000000000)='/dev/kvm\x00', 0x10000, &(0x7f0000000080)={@_ha_fsid={[0x5, 0x40]}, {0x9, 0x1000, 0x4, 0x7fffffffffffffff}}, 0x2, &(0x7f00000000c0), &(0x7f0000000180)=0x10}, 0xa, &(0x7f0000001900)=[{0x1, 0x0, &(0x7f00000001c0)='xfrm\x00', &(0x7f0000000200)="c26077c9ccdfd405490cbc260c8e3c127319678c08aceab8e6285c5a5d2827d7ec1581d85108d8097188516bf0e619e2b60860f683e1a3cb7416be7cf6086e6e5681dd2b964153dedbca4f54f83355ce373cfd104c986885b3dcbf56e005b88e40921d21f6a34654880e2fd0c6ca330de27ba2c06de4884a49007e", 0x7b, 0x32}, {0x3, 0x2, &(0x7f0000000280)=':]A,)\x01{:\'/#[\\#\\:9\'\x00', &(0x7f00000002c0)="7ea5ae19a0024c2e7086e0b9fe92dd9da5de149e40a9abe04269bb87cd19adf2cf4e", 0x22, 0x5a}, {0x3, 0x40, &(0x7f0000000300)='xfrm\x00', &(0x7f0000000340)="e0ff9711b16e6e45d029a8287bd237ed7d239e3eabe045065b92450058cc3a7a82d4", 0x22, 0x10}, {0x3, 0x2, &(0x7f0000000380)='xfrm\x00', &(0x7f00000003c0)="8dbbb0451763b4e5f7a98fabe100418fe9bbfa7a0c86837ddb46fb570dbca558a1beeed4ac846cf49f1e85b1216e99e251e32d5843fff62689cdbe5f0344e34c59b3b566fad7b1daeab607ddf698b7026287cd9417bc7ec92d02fc809c7606aa97df3a8d0cc4103ae1a6f214de46e6eb838ba1bfd3c719bee7060c785916c4801fd8be0a565092bd97d8827cb16b9cfa5b881b09fed16fdcded83f5e48b126a6b7a5b140aa6254e3a456f806043492c30dac96ed3c81824c29d4273d272127632a54a249ee2e37e0b4dfa167bca3c6f00a", 0xd1, 0x674ec3d75dadb318}, {0x2, 0x10001, &(0x7f00000004c0)='xfrm\x00', &(0x7f0000000500)="c25bf61bc56ec1e1a7ab374fd5a94014457b531ff63971af0d6c0f0e4f006f565fd231514c864d068fd9a0c99a599b844b6070710b0438cbbd5519a81cf1", 0x3e, 0x20}, {0x3, 0x0, &(0x7f0000000540)='/dev/kvm\x00', &(0x7f0000000580)="0dbe608f049f93d776fad9d4c5d124b716b5a280d62ccd5ac6c078eff408", 0x1e, 0x8}, {0x3, 0x17, &(0x7f00000005c0)='][\x00', &(0x7f0000000600)="8d8380e195d2400ba7712622c1c288acf16f29091cc7988348b88143380a389f476345419c9a9e4a7c54b42c262aa27481b305d716ddeb41f040a763b54ca8595b6e87826401fbf4401ef4b60549b0b20b3d4a690c630b297a47194e50bc49d6b97b11b893c37a3bc288d0b269dce01dd9737bfe0abae9ca000fb9d6b4048e7697b609d0a0f89cfad90c018b528b79b890300e2ef26e226ecb2c0af6233dab6a6839c301c7dbaad74dd999a02ded0e06959eb9b346db4593eb03cfdd6e4387eeec1a100eafc6e6cd555d0d60", 0xcc, 0x1}, {0x1, 0xb7, &(0x7f0000000700)='\x00', &(0x7f0000000740)="350b6cf9bb99aabe8ecb5ceebdbd700e292dbb9d4874841b651470b436a9e1ba612f044e8a725f90", 0x28}, {0x1, 0x5, &(0x7f0000000780)='\x00', &(0x7f00000007c0)="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", 0x1000, 0x2}, {0x3, 0x1000, &(0x7f00000017c0)=',\x00', &(0x7f0000001800)="9226415f75221a390da8b7acf7d5f3efc26885a252b5d030898293ae00b9dac267a3a024483dec9ffee11bfb5819d5ae2f006dc6b40446e1edbe40287938d60bc20da378070a480b3dc009eafc5f8416a7431e325a0de4a903e9281711038e5544561e6375324de490fc7ffe8028d5a190aa4369665b34dccc467cf11451b9a3e29bcaac0c6cfceb789d7900d58129376a57b180019f1c0daf027f79e997fd7d09953105e492bb0ea8e5aebb1ce18bf8b4bc75de01ca715cc769f26f25d4ab20be528b611e933fcbc7b8364dabf401381d511c341ddf7ce63be2951d1c701a7770b9bfae5def60a3a841", 0xea}]})
ioctl$VIDIOC_S_JPEGCOMP(0xffffffffffffffff, 0x408c563e, &(0x7f0000001c00)={0x3, 0x4, 0x1d, "6b6871b7703df802730318a12d107ccc15f93e92f99593df70bd413d6d079c0ca88ceb5431463c40bfa2c3e3f44a58158e82ca533f93b787369aabe5", 0x20, "cea32885e67a991bfbe4c186fb46b65d11979801620af897518f900f2ad73507adcbb231ea11957e10d9c9b10cddee01475b3f817abb2dd4862e85a7", 0x30})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001b80)=ANY=[@ANYBLOB="3c00000010f20004ee000107000000000000005f94a17dfba9254ce07ed10000000000000000", @ANYRESDEC=r1, @ANYBLOB="00000000000000001c001280090001007866726d000000000c00028008000200ea000000"], 0x3c}}, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$inet6(0xa, 0xa, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01010000000000000000010000020900010073797a3100000000080002400000000248000000030a010400000000000000000100ffff0900030073797a310000000014000480080002400000000008000140000000030900010073797a3100000000080007"], 0x98}, 0x1, 0x0, 0x0, 0x2000c091}, 0x800)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xc}, 0x10)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r6, &(0x7f0000003240), 0x4000000000000e4, 0x101d0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000001b40)=@x86={0x8, 0x7, 0x2, 0x0, 0x4, 0xa5, 0x5, 0xc0, 0xf0, 0x8, 0x22, 0x7, 0x0, 0x1, 0x3, 0x9, 0xf, 0x2, 0x4, '\x00', 0x9, 0x1})
r8 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000280)={'gretap0\x00'})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r4, 0x4018aee3, &(0x7f0000000140)=@attr_pmu_init)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000001cc0)={"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"})
r9 = syz_open_dev$admmidi(&(0x7f0000000000), 0x2, 0x1a9882)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r9, 0xc0305710, &(0x7f0000000040)={0x1, 0x7ff, 0x4, 0x0, 0x1})
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000001b00)={0xb1}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000020c0)={@map=0x1, r10, 0x2f, 0x0, 0xffffffffffffffff, @void, @value=r10}, 0x20)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

44.610666193s ago: executing program 0 (id=840):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='net/igmp6\x00')
preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000000440)=""/83, 0x53}], 0x1, 0xfffffffe, 0x5)
socket$nl_rdma(0x10, 0x3, 0x14)
syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_ext_features={{0x23, 0xd}, {0x0, 0xc9, 0x1, 0x2, "fcd1ca9a0967216a"}}}, 0x10)

44.549719883s ago: executing program 0 (id=841):
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$l2tp6(0xa, 0x2, 0x73)
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
sendmsg$inet6(r0, &(0x7f0000002c80)={&(0x7f0000000000)={0xa, 0x4e27, 0x10000000, @local, 0xfffffffb}, 0x1c, 0x0, 0x0, 0x0, 0xffffffffffffff6f}, 0x8890)

44.546379767s ago: executing program 0 (id=842):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='xfs\x00', 0x0, &(0x7f0000000140)='grpquota')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
wait4(r0, 0x0, 0x0, &(0x7f0000000500))
r1 = getpgid(0xffffffffffffffff)
setpgid(r0, r1)

29.167572267s ago: executing program 32 (id=842):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='xfs\x00', 0x0, &(0x7f0000000140)='grpquota')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
wait4(r0, 0x0, 0x0, &(0x7f0000000500))
r1 = getpgid(0xffffffffffffffff)
setpgid(r0, r1)

3.609223844s ago: executing program 4 (id=1235):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x129642, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_GET_EXTENDED_ERROR(r4, 0xc00c6211, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="440000004ec6"})

3.448090621s ago: executing program 4 (id=1237):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x14, 0x16, 0xa, 0x201, 0xb00, 0x0, {0x1}}], {0x14, 0x10}}, 0x5c}}, 0x0)

3.390425097s ago: executing program 4 (id=1238):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='nv', 0x2)
sendmmsg$inet6(r0, &(0x7f0000003180)=[{{0x0, 0x0, &(0x7f0000002680)}}], 0x1, 0x0)

3.329641961s ago: executing program 4 (id=1239):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000400)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000f0000000008000000180001801400020073797a5f7475040001001068b7d1b5538aec7200010000090000"], 0x44}, 0x1, 0x0, 0x0, 0x200c4011}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
close(r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x57, 0x10, &(0x7f0000000000), 0xffffffffffffffc9}, 0x48)
ioctl$TUNSETSTEERINGEBPF(r4, 0x800454e0, &(0x7f0000000180)=r6)
write$cgroup_devices(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1e0306003c5c980128846360864666702c1ffe800000000000"], 0xffdd)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x0, 0x8, 0x70bd27, 0x25dfdbff, {}, [@L2TP_ATTR_IP_SADDR={0x8, 0x18, @multicast2}, @L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x2}, 0x4000000)

1.729271784s ago: executing program 1 (id=1250):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)

1.728790879s ago: executing program 1 (id=1251):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='veth0_to_bond\x00', 0x10)
setsockopt$inet_mtu(r0, 0x0, 0xa, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x200080c0, &(0x7f00000001c0)={0xa, 0x2, 0x8000, @loopback, 0x8}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000140)='cdg', 0x3)
shutdown(r1, 0x1)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000040)={0x0, 'veth1_to_batadv\x00', {0x3}, 0xff00})

1.056607501s ago: executing program 1 (id=1253):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
getsockopt$inet6_opts(r0, 0x29, 0x39, 0x0, &(0x7f0000000080))
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
setsockopt$inet_tcp_int(r1, 0x6, 0x22, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet(r1, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1}}], 0x1, 0x2400c042)
pipe(&(0x7f0000000100)={<r2=>0xffffffffffffffff})
read$msr(r2, &(0x7f0000000180)=""/186, 0xba)
openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000002580), 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r3, 0x0)
migrate_pages(0x0, 0x5, &(0x7f0000000000)=0x9, &(0x7f0000000080)=0x272)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0xffffffffffffffff, 0x1}, 0x6)
syz_emit_ethernet(0x5e, &(0x7f0000000300)=ANY=[@ANYBLOB="e33110495bfdaaaaaaaaaa0086dd60cb653e00283afffe800000000000000001000000000000fe800000000000000000000000000006000090780000000000020000000000000000ffff64010102fc010000000000000000000000000000fada22bcc348"], 0x0)
r5 = syz_open_pts(0xffffffffffffffff, 0x19b000)
ioctl$TIOCGPTPEER(r5, 0x5441, 0x0)

1.056426422s ago: executing program 4 (id=1254):
r0 = gettid()
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
syz_open_procfs$namespace(r0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x8ac41, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000080)={@val={0x0, 0x6003}, @void, @eth={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x4000, 0x0, 0x0, 0x2f, 0x0, @private=0x1fe1, @multicast1}, {0xa000, 0x6558, 0xc, 0x0, @gue={{0x1, 0x0, 0x1, 0x9, 0x0, @void}}}}}}}}, 0x32)

962.194969ms ago: executing program 3 (id=1256):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x16, 0xa, 0x201, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x74}}, 0x0)

958.885156ms ago: executing program 2 (id=1257):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='nv', 0x2)
sendmmsg$inet6(r0, &(0x7f0000003180)=[{{0x0, 0x0, &(0x7f0000002680)}}], 0x1, 0x0)

868.12246ms ago: executing program 2 (id=1258):
ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000001240)={0x0, &(0x7f0000000240)="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", 0x1000})
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f00000000c0)={'comedi_test\x00', [0x83fb, 0x789b1c25, 0x29, 0x4, 0x10000000, 0xcc7, 0x8, 0x90, 0x9, 0x0, 0x2, 0x1, 0x1, 0x1, 0x6, 0x81, 0x6, 0x1a449, 0x23, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e5c, 0xb, 0xffc00004, 0x725bd8a9, 0x8, 0x100006, 0xf7fffff7, 0xfffffff8]})
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000280)=0x1, 0xffffff63)
sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311e", 0x52, 0x840, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000001400)=[{0x0}, {&(0x7f0000000d00)}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774c32d3427", 0x10}, {0x0}], 0x4}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0205647, &(0x7f0000000940)={0xf010000, @vbi={0x0, 0x9, 0x6, 0x32435750, [0x1, 0x4bf], [0x1, 0x2], 0x13a}})
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x18, 0x40, 0x107, 0xfffffefe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x2}]}, 0x18}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412b", 0xf}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

609.357908ms ago: executing program 3 (id=1259):
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="dc00000000010104000000000000000002000000240002801400018008000100e000000108000200e00000010c000280050001000000000008000480"], 0xdc}}, 0x0)
bind$alg(r0, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r3 = accept4(r0, 0x0, 0x0, 0x80800)
msgrcv(0x0, 0x0, 0x0, 0xd3ee73c716b4091b, 0x2000)
msgsnd(0x0, &(0x7f0000000240)={0x2}, 0x8, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f00000005c0), r3)
r4 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x180)
ioctl$CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f00000000c0)={"218ff100", 0x8, 0x6, 0x2, 0x0, 0x8, "f700", '\x00\x00G\x00', "030600", "fcffffff", ["50d59404000100", "808e88e2e9ffffffffff00", "0c436d743c97c443084000", '5\x00']})
r5 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r5, &(0x7f0000000300)={{0x6, @rose, 0xffffffff}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
sendto$netrom(r5, 0x0, 0x2c, 0x0, &(0x7f0000000000)={{0x6, @rose, 0x2}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @default, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x48)

549.594438ms ago: executing program 2 (id=1260):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x200)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003b40)=[{{&(0x7f0000000240)=@generic={0x21, "1aee2c4f6843c6782466293e62d4f664c2efa8906f0d97822ac0d88ecdd9d47e182b3b523c6243022c1be9fd662325c023ac48a28ae996c41561bb7e9903c408613b4d29da0b9d5af499caa7759c17c667af8acea6dc52148f1233494efd8f08aaab6382d5e33471a107ec47df5b5312764e134c68842fd1a2078151812e"}, 0x80, &(0x7f00000009c0)=[{&(0x7f00000002c0)}, {&(0x7f0000000380)="82f294054d05973abfac6a6f31050418457d017c5fd68b034cf51b9f6a6d71daa5c776bca90037bc7c3d88b151fbf856f69ebd05e750f13f02af646b284953b6640a08c827c6f2ff4ad8e84077f9f03f94792aa17c4743cba3f355bb9c5b04b91ed70d253db68e17cdd561fab504479f723388dda974e2a9fb1bcda474c08d6222179b19e902009ea3cb3e42408bab6c1f29cb62d05805063967de38327e", 0x9e}, {&(0x7f0000000480)="4ce09043b6aa2ae5946f67306c7f73ed469dfcfc5e1f4d8123a4a8a7b9be82f67f89605cd9bbf7254c156b00437f753a248daf68c5ebdc4a6346d336a6502e98eae72777956d1ebeeb855fae46b3ccb9fb3d593651b95ee00afe0816b3c6e7f3cb3b18fb5198643daa6b9cafde584957dd72ba27cef6604f5df59f0bee60bca63d75a9d812eb699c2d665b7179b22027cf748ac63bcc212703d44cb083e962eee9b5d212523c162b42377ebd0bc624bf9425f6f4772e36c6c2fd4f69b65cc435f93c1a490cb75162", 0xc8}, {&(0x7f0000000780)}, {&(0x7f0000000800)="5193f0b40db29d9ce06f429ed3c2c6405967f1e559f08c35f5e63ad64c2746967cca1bbeaf6206a79c42badb4fb453f294c2932cb5552a5f9c1d633207a53c2f54d98c2f9e4323eac6c20c56e7607d212b210a0325f7c289d1a2552d7a3f2176a47e95bc46471fae9167768d58f22ff10ba3cc2050b1ee838ce9e4ac5a1544fec3e291272cfaaa4817539972fb8bb2ede331", 0x92}, {&(0x7f00000000c0)}], 0x6}}], 0x1, 0x20000044)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vlan1\x00'})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
preadv2(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xffe00}], 0x5, 0x2000, 0x0, 0x1f)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000600)={<r3=>0x0, 0x1, 0x0, 0x98f, 0x4}, &(0x7f0000000640)=0x18)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000700)={r3, 0x68, &(0x7f0000000680)=[@in={0x2, 0x4e21, @remote}, @in6={0xa, 0x4e21, 0x10, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x6}, @in={0x2, 0x4e23, @private=0xa010102}, @in={0x2, 0x4e20, @loopback}, @in6={0xa, 0x4e24, 0xc, @private1, 0x3ff}]}, &(0x7f0000000740)=0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@setlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r5 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
ioctl$sock_netrom_SIOCADDRT(r1, 0x890b, &(0x7f0000000300)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={'rose', 0x0}, 0x9, 'syz0\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x86, 0x6, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]})
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r7, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r8, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000001fe1ffff19cf3e0e2a96134e60ff5f4674341df1976bbec418b083bb00b709ec6039b59066a20b07bd3aba14a5a6fa3e70225b2b3bb27f96586c4e6779000000000000", @ANYRESHEX=0x0, @ANYRES64=r0, @ANYRESOCT])

460.079918ms ago: executing program 2 (id=1261):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f0000000300)=0x8) (fail_nth: 1)

395.667469ms ago: executing program 2 (id=1262):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
r3 = syz_open_dev$loop(&(0x7f0000000280), 0x80010a, 0x1cb600)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x82803, 0x8e)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f00000002c0)=0x1, 0x4)
setsockopt$inet_tcp_int(r5, 0x6, 0x22, &(0x7f0000000000)=0x1, 0x4)
sendmmsg$inet(r5, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1}}], 0x1, 0x2400c042)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000080)={r4, 0xffffffff, {0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x13, 0x14, "faf98317e5a1149989fc8dbe43ea6acc9663a2503dc3bd3fe37d58328bbad0099cebf225f5d69098c8b534464c512bdd8a0f1901000100", "32d8cc263d9e234b02000000000000004a6783cdd3dfe7800b2d7b6aa54cc5001fcaed1e831fa79a000000020000000000000400", "6704dae4901802c4dae4162e43ac61b7ad3300", [0x7, 0x6]}})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xb7, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x90}, [@ldst={0x6, 0x0, 0x1}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc6, &(0x7f00000003c0)=""/198, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
getdents64(r2, &(0x7f00000000c0)=""/55, 0x37)
r6 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x101, 0x202000)
getsockopt$WPAN_WANTLQI(r6, 0x0, 0x3, &(0x7f0000000200), &(0x7f0000000240)=0x4)
getdents64(r2, &(0x7f0000002f40)=""/4098, 0x1002)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f0000000300)=0x8)

297.938758ms ago: executing program 3 (id=1263):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r1, 0x29, 0xc8, 0x0, 0xc000000)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000002c00ef5f"], 0x14}, 0x1, 0x0, 0x0, 0x20008081}, 0x800)

297.425931ms ago: executing program 2 (id=1264):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r1, 0x8914, &(0x7f0000000000))
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612)
r2 = socket$inet(0x2, 0x4000000805, 0x0)
sendmmsg(r2, 0x0, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r3, 0x0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x800000001fe, 0x82)
r5 = dup(r4)
ioctl$USBDEVFS_CONTROL(r5, 0xc0185500, &(0x7f0000000400)={0x23, 0x3, 0x1c, 0x6, 0x0, 0xfdffffff, 0x0})
r6 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100), 0x12000, 0x0)
openat$cgroup_ro(r6, 0x0, 0x275a, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, 0x0, 0x20000000)
ioctl$sock_rose_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x7, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
r7 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6}]})
socket$netlink(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000780)={0x0, 0x4, 0x0, [0x806f, 0x0, 0x2d5, 0x2, 0x6], [0x6, 0x7, 0xffffffffffffff31, 0x9, 0x8002, 0x0, 0x5, 0x2, 0x0, 0x802, 0x9, 0x200000100, 0xffffffffffffffff, 0x70000000, 0x4a, 0x5, 0x100, 0xd, 0xdd, 0x5, 0x1, 0x2a9, 0x2000000003, 0xc39, 0x8000003, 0x8, 0x100000000, 0x2, 0xa51, 0x8, 0x6, 0x800000000000001, 0x7, 0xfffffffffffffffb, 0x81, 0x100, 0x5, 0x931, 0x101, 0x3, 0xf, 0x8000000000000000, 0x7, 0x1, 0x8, 0x8, 0x6a8, 0x102, 0x1, 0x83, 0x538a, 0x9, 0xfffffffffffffffb, 0x4, 0x3, 0x8000000000000000, 0x5, 0x9, 0x80008000, 0x8000000000000000, 0x40000000000004, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x5bf, 0x1, 0x0, 0x4, 0x8000, 0xc9, 0x7, 0x6, 0x9, 0x82c, 0x8000, 0xe000000000000, 0xe4, 0x11, 0x0, 0x8, 0x26, 0xffffffffffffffff, 0x7, 0xbfa, 0x8000000000000000, 0x2000000009, 0x8, 0x0, 0x6, 0x6, 0x7, 0x100000002, 0x4, 0x3, 0x7, 0x7, 0x7, 0x9, 0x1, 0x16d, 0x6, 0x68d, 0xffffffffffff43b0, 0x8, 0x50000000000000, 0xe, 0x0, 0x1, 0x300000003, 0x5, 0x7, 0x406, 0x3, 0x6, 0x5, 0x1, 0x3, 0x10000, 0x7fffffff, 0x7, 0x3, 0x1]})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000fe4000/0x11000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004084)
r8 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
io_uring_enter(r8, 0x2219, 0x7721, 0x16, 0x0, 0x0)
ioctl$sock_rose_SIOCADDRT(r7, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @null, @bcast, @bcast]})

297.275841ms ago: executing program 3 (id=1265):
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x82000, 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000a00)='.\x00', &(0x7f0000000040)='hpfs\x00', 0x800, 0x0)
mount(&(0x7f0000000000)=@nullb, &(0x7f0000000a00)='.\x00', &(0x7f0000000040)='hpfs\x00', 0x800, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f0000002a40)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r0, @ANYRES16=r1], 0x44}, 0x1, 0x0, 0x0, 0x40085}, 0xc090)

200.093377ms ago: executing program 3 (id=1266):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x39}, 0x3e}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='nv', 0x2)
sendmmsg$inet6(r0, &(0x7f0000003180)=[{{0x0, 0x0, &(0x7f0000002680)=[{0x0}], 0x1}}], 0x1, 0x0)

199.210412ms ago: executing program 1 (id=1267):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2c, 0x16, 0xa, 0x201, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x74}}, 0x0)

176.083869ms ago: executing program 3 (id=1268):
ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(0xffffffffffffffff, 0x80184151, &(0x7f0000001240)={0x0, &(0x7f0000000240)="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", 0x1000})
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f00000000c0)={'comedi_test\x00', [0x83fb, 0x789b1c25, 0x29, 0x4, 0x10000000, 0xcc7, 0x8, 0x90, 0x9, 0x0, 0x2, 0x1, 0x1, 0x1, 0x6, 0x81, 0x6, 0x1a449, 0x23, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e5c, 0xb, 0xffc00004, 0x725bd8a9, 0x8, 0x100006, 0xf7fffff7, 0xfffffff8]})
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000280)=0x1, 0xffffff63)
sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311e", 0x52, 0x840, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000001400)=[{0x0}, {&(0x7f0000000d00)}, {&(0x7f0000000fc0)="c6eae69212ba50dd664af774c32d3427", 0x10}, {0x0}], 0x4}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0205647, &(0x7f0000000940)={0xf010000, @vbi={0x0, 0x9, 0x6, 0x32435750, [0x1, 0x4bf], [0x1, 0x2], 0x13a}})
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x18, 0x40, 0x107, 0xfffffefe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x2}]}, 0x18}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412b", 0xf}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

119.068011ms ago: executing program 1 (id=1269):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001600010325bd70000019000015"], 0x14}, 0x1, 0x0, 0x0, 0x4010050}, 0x24000001)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002, 0x0, 0xc000980}, 0x40080d4)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000380)}, 0x20)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
close(r2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f0000000400), &(0x7f0000000480)=r2}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r3 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0xbe, 0x0, 0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000004"], 0x50)
io_uring_enter(r3, 0x2219, 0x7721, 0x33, 0x0, 0x0)
ioctl$XFS_IOC_START_COMMIT(0xffffffffffffffff, 0x80585882, &(0x7f0000000280)={<r4=>0xffffffffffffffff})
getsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000300)=@assoc_value, &(0x7f0000000340)=0x8)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x34, r6, 0x305, 0x0, 0x0, {0x7}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x3ff}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0xf0}, 0x24044080)

118.848506ms ago: executing program 1 (id=1270):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x7, 0x7f, 0xa9, 0x4d, 0x6, 0x5f, 0x9, 0x15, 0xffff2d37, 0xff7fff01, 0x6, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x20, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x6, 0x7, 0x5, 0x8, 0x4c74, 0x10000, 0x0, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0xffffffff, 0x6, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x0, 0x8, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432f6, 0xc8, 0xf1, 0xe, 0x2bf, 0x6c7, 0x7, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x1007, 0x7fff, 0xfffffffe, 0x400, 0x401, 0x6, 0x1, 0xff, 0x7, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x4, 0x9, 0x8, 0x40, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x200009, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93690, 0x8000042, 0x3], [0x4, 0x408, 0x3ff, 0x5, 0xfffffffd, 0x100, 0x4, 0x9, 0x5, 0x7fff, 0x2b8, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d02, 0x6, 0x38, 0x200, 0x1fd, 0x80, 0x3, 0x4, 0x2950bfaf, 0x8, 0xa4, 0x4, 0xa9, 0x5, 0x6, 0x2, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x7ff, 0x2006, 0x80a2ed, 0x5, 0x25], [0xc, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xfffc, 0xa620, 0x1, 0x5, 0x801, 0x2000002, 0x150, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff000, 0x10000, 0x3, 0x7e, 0x9, 0x5, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0xe, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x7ff, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000003280)={0x73622a85, 0xa, 0x4})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000180)=[@acquire], 0xffffffffffffff47, 0x0, 0x0})
dup3(r1, r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0xfffffffffffffffd})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xffffffffffffff67, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000000)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x70, 0x28, &(0x7f0000000800)={@ptr={0x66642a85, 0x0, 0x0, 0x0, 0x2, 0x3e}, @ptr={0x70742a85, 0x20000000, &(0x7f0000000580)=""/236, 0xec, 0x1, 0x26}, @fda={0x66646185, 0x9, 0x1, 0xb8}}, &(0x7f0000000240)={0x0, 0x28, 0x50}}, 0x1040}], 0x0, 0x0, 0x0}) (fail_nth: 11)

0s ago: executing program 4 (id=1271):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000000)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8}, @NFTA_PAYLOAD_SREG={0x8, 0x5, 0x1, 0x0, 0x1}, @NFTA_PAYLOAD_OFFSET={0x8}, @NFTA_PAYLOAD_BASE={0x8}, @NFTA_PAYLOAD_CSUM_OFFSET={0x8, 0x7, 0x1, 0x0, 0x4}, @NFTA_PAYLOAD_CSUM_FLAGS={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x4000)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x400240, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x440040, 0x0)
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x74, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$char_usb(r3, &(0x7f0000000780)="2b51c4b9", 0x4)
r6 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000740)=[0x2], 0x0, 0x0, 0x1}}, 0x40)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r6, 0xc0c89425, &(0x7f00000004c0)={"a8fe2196a15eddff18e6502527ff7636", <r7=>0x0, 0x0, {0x0, 0x4}, {0x2, 0x400}, 0x1, [0xffffffff7fffffff, 0xcb, 0xb9, 0x0, 0x7, 0x7fffffffffffffff, 0x2, 0x4, 0x2, 0xfffffffffffffffc, 0x100000001, 0x7, 0x9, 0x1c, 0x502cb50f, 0x549a]})
ioctl$BTRFS_IOC_BALANCE_V2(r3, 0xc4009420, &(0x7f0000000b40)={0x8, 0x2, {0x100, @struct={0xbf0, 0x62}, <r8=>0x0, 0xfffffffffffffff8, 0x27, 0x7, 0x7fff, 0x9, 0x444, @usage=0x2e3, 0xfff, 0x4, [0x100000000, 0x7fffffffffffffff, 0x5, 0x8, 0x50, 0x4]}, {0x7fffffffffffffff, @usage=0x2, 0x0, 0x8, 0x10, 0x6, 0x8, 0xd71, 0xdc, @usage, 0x8, 0x5e36, [0x5, 0xf, 0x0, 0xfffffffffffffeff, 0xfffffffffffffffa, 0x401]}, {0x9, @struct={0x200, 0x80}, 0x0, 0x1, 0x9, 0x3, 0x3, 0x3, 0x4, @struct={0x0, 0xffff}, 0x11c6, 0x400, [0x0, 0x7, 0x6, 0x8e3, 0x2, 0x3]}, {0x9, 0x4, 0xffff}})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000000f40)={{r0}, r7, 0xe, @inherit={0x80, &(0x7f00000006c0)={0x1, 0x7, 0x6, 0x6, {0x8, 0x855, 0x1000, 0xc9, 0xf}, [0x5, 0x7, 0x3, 0x6, 0xfffffffffffffffa, 0x4, 0x3]}}, @devid=r8})
write$fb(r2, &(0x7f00000000c0)="47dab22a2d73d1e339538ff3ae3adb7f18ee295d1e57df879330b69186eb9899d5907f3d8a7695f6cbd2df15e59f3036ada98c567f01a61f7d29583734aba1a19501cb36468174168091d69647ab4ad6090be3b9b336cc641a3690e101154289c451313c0d2908d595961c9adc6669936015d7f32dde1685dccfcebc42fcc1fc7f324e24e68cdb7ba1b9ac3ac1b36251663dafdade62344f94b7836056e8f579dc04536a268d4be8dbd3a80a477f004ca98225898fa5feefc7ed7733642407ad3eb93efac3744ea1f01d2e5b1d3421c6ac1ddb65db06abeb38b32633c6c7bc74419c18a4b8df90824880794f85bd0281ee45313760d12716", 0xf8)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r3, &(0x7f0000000240)="6c77f988659711e740a303a3886a5ad1548bb440dea6708ec97ad69300077d48819d771718201bf7955626d6595d550aa4dbf2d3ccae1421f6d127e31923f5e05040996af62b75883510472b4ec14b", &(0x7f0000000300)=""/82}, 0x20)
writev(r1, &(0x7f0000002440)=[{&(0x7f0000000040)="b631b8", 0x3}], 0x1)

kernel console output (not intermixed with test programs):

79] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.464'.
[  171.306880][ T7479] overlayfs: conflicting lowerdir path
[  171.503872][   T39] usb 5-1: new low-speed USB device number 7 using dummy_hcd
[  171.520897][   T39] usb 5-1: Invalid ep0 maxpacket: 64
[  171.655335][   T39] usb 5-1: new low-speed USB device number 8 using dummy_hcd
[  171.679607][   T39] usb 5-1: Invalid ep0 maxpacket: 64
[  171.683391][   T39] usb usb5-port1: unable to enumerate USB device
[  171.931636][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  172.162819][ T6040] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  172.592701][ T7482] smbdirect: ib_dev[syz1]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[  172.602865][ T7482] smbdirect: ib_dev[syz1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[  172.614077][ T7482] smbdirect: ib_dev[syz1]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[  172.634756][ T7482] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  172.640231][ T5967] Bluetooth: hci3: command 0x0406 tx timeout
[  172.658790][ T7482] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  172.921494][ T7502] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  172.925174][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  172.961054][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.472460][ T7505] netlink: 'syz.0.473': attribute type 1 has an invalid length.
[  173.510620][ T7505] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  173.526807][ T7505] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  173.591632][ T7507] bond1: (slave gretap1): making interface the new active one
[  173.598408][ T7507] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  173.920925][ T7516] netlink: 4 bytes leftover after parsing attributes in process `syz.1.476'.
[  173.949710][ T7523] netlink: 16 bytes leftover after parsing attributes in process `syz.3.478'.
[  173.956046][ T7523] netlink: 16 bytes leftover after parsing attributes in process `syz.3.478'.
[  174.000406][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.015637][ T7527] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  174.073246][   T40] kauditd_printk_skb: 53 callbacks suppressed
[  174.073264][   T40] audit: type=1400 audit(1776797893.913:534): avc:  denied  { ioctl } for  pid=7529 comm="syz.0.481" path="socket:[17233]" dev="sockfs" ino=17233 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  174.360679][ T7536] xt_cgroup: invalid path, errno=-2
[  174.366419][ T7536] netlink: 45 bytes leftover after parsing attributes in process `syz.1.483'.
[  174.530643][ T7539] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.534190][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.560711][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  174.764447][   T40] audit: type=1400 audit(1776797894.603:535): avc:  denied  { append } for  pid=7541 comm="syz.0.485" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  175.059417][   T34] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  175.217461][ T6040] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  175.271804][   T40] audit: type=1400 audit(1776797895.113:536): avc:  denied  { create } for  pid=7549 comm="syz.0.488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  175.281193][   T40] audit: type=1400 audit(1776797895.113:537): avc:  denied  { ioctl } for  pid=7549 comm="syz.0.488" path="socket:[20175]" dev="sockfs" ino=20175 ioctlcmd=0x6f04 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  175.334124][   T40] audit: type=1400 audit(1776797895.173:538): avc:  denied  { create } for  pid=7554 comm="syz.0.489" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  175.342311][   T40] audit: type=1400 audit(1776797895.173:539): avc:  denied  { bind } for  pid=7554 comm="syz.0.489" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  175.351390][   T40] audit: type=1400 audit(1776797895.173:540): avc:  denied  { listen } for  pid=7554 comm="syz.0.489" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  175.358172][   T40] audit: type=1400 audit(1776797895.173:541): avc:  denied  { watch } for  pid=7554 comm="syz.0.489" path="/127/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=697 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  175.374351][   T40] audit: type=1400 audit(1776797895.173:542): avc:  denied  { watch_sb watch_reads } for  pid=7554 comm="syz.0.489" path="/127/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=697 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  175.413894][ T7557] FAULT_INJECTION: forcing a failure.
[  175.413894][ T7557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.418892][ T7557] CPU: 2 UID: 0 PID: 7557 Comm: syz.1.490 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  175.418912][ T7557] Tainted: [L]=SOFTLOCKUP
[  175.418916][ T7557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  175.419066][ T7557] Call Trace:
[  175.419134][ T7557]  <TASK>
[  175.419139][ T7557]  dump_stack_lvl+0x100/0x190
[  175.419625][ T7557]  should_fail_ex.cold+0x5/0xa
[  175.419853][ T7557]  _copy_from_iter+0x43a/0x1690
[  175.420063][ T7557]  ? __pfx__copy_from_iter+0x10/0x10
[  175.420077][ T7557]  ? __pfx___alloc_skb+0x10/0x10
[  175.420374][ T7557]  netlink_sendmsg+0x808/0xda0
[  175.420489][ T7557]  ? __pfx_netlink_sendmsg+0x10/0x10
[  175.420506][ T7557]  ____sys_sendmsg+0x9e1/0xb70
[  175.420518][ T7557]  ? __pfx_netlink_sendmsg+0x10/0x10
[  175.420531][ T7557]  ? __pfx_____sys_sendmsg+0x10/0x10
[  175.420548][ T7557]  ___sys_sendmsg+0x190/0x1e0
[  175.420562][ T7557]  ? __pfx____sys_sendmsg+0x10/0x10
[  175.420591][ T7557]  __sys_sendmsg+0x170/0x220
[  175.420608][ T7557]  ? __pfx___sys_sendmsg+0x10/0x10
[  175.420630][ T7557]  ? rcu_is_watching+0x12/0xc0
[  175.420775][ T7557]  do_syscall_64+0x10b/0xf80
[  175.421192][ T7557]  ? clear_bhb_loop+0x40/0x90
[  175.421213][ T7557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.421229][ T7557] RIP: 0033:0x7f45a6d9c819
[  175.421294][ T7557] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  175.421310][ T7557] RSP: 002b:00007f45a7b6e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  175.421386][ T7557] RAX: ffffffffffffffda RBX: 00007f45a7015fa0 RCX: 00007f45a6d9c819
[  175.421421][ T7557] RDX: 00000000000480a6 RSI: 0000200000000200 RDI: 0000000000000004
[  175.421431][ T7557] RBP: 00007f45a7b6e090 R08: 0000000000000000 R09: 0000000000000000
[  175.421441][ T7557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.421451][ T7557] R13: 00007f45a7016038 R14: 00007f45a7015fa0 R15: 00007ffe9ecb9518
[  175.421477][ T7557]  </TASK>
[  175.550830][ T7559] netlink: 'syz.1.491': attribute type 13 has an invalid length.
[  175.554013][   T40] audit: type=1400 audit(1776797895.393:543): avc:  denied  { create } for  pid=7558 comm="syz.1.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  175.586546][ T7559] syzkaller0: entered promiscuous mode
[  175.588318][ T7559] syzkaller0: entered allmulticast mode
[  175.739635][ T7490] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  176.085342][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  176.158481][ T7555] Bluetooth: hci2: Opcode 0x0401 failed: -4
[  176.254836][ T7578] comedi comedi3: comedi_config --init_data is deprecated
[  176.312034][ T6040] IPVS: starting estimator thread 0...
[  176.412636][ T7585] IPVS: using max 44 ests per chain, 105600 per kthread
[  177.663148][ T7621] 9p: Bad value for 'rfdno'
[  178.111766][ T7643] netlink: 207952 bytes leftover after parsing attributes in process `syz.1.518'.
[  178.164594][ T5635] net_ratelimit: 7 callbacks suppressed
[  178.164617][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.244990][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.358888][ T7658] usb usb8: usbfs: process 7658 (syz.3.521) did not claim interface 0 before use
[  178.374120][ T7658] netlink: 8 bytes leftover after parsing attributes in process `syz.3.521'.
[  178.411979][ T7658] : entered promiscuous mode
[  178.515748][ T7667] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  178.566103][ T7669] netlink: 4 bytes leftover after parsing attributes in process `syz.1.527'.
[  178.573534][ T7669] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  179.053474][ T7702] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  179.119646][   T40] kauditd_printk_skb: 40 callbacks suppressed
[  179.119771][   T40] audit: type=1400 audit(1776797898.953:582): avc:  denied  { set_context_mgr } for  pid=7704 comm="syz.2.539" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  179.137602][   T40] audit: type=1400 audit(1776797898.973:583): avc:  denied  { map } for  pid=7704 comm="syz.2.539" path="/dev/binderfs/binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  179.211025][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.229699][   T40] audit: type=1400 audit(1776797899.063:584): avc:  denied  { read } for  pid=5659 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  179.266220][   T40] audit: type=1400 audit(1776797899.103:585): avc:  denied  { search } for  pid=5659 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  179.277414][   T40] audit: type=1400 audit(1776797899.103:586): avc:  denied  { search } for  pid=5659 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  179.289083][   T40] audit: type=1400 audit(1776797899.103:587): avc:  denied  { search } for  pid=5659 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  179.299541][   T40] audit: type=1400 audit(1776797899.103:588): avc:  denied  { read } for  pid=5659 comm="dhcpcd" name="n105" dev="tmpfs" ino=3764 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  179.309186][   T40] audit: type=1400 audit(1776797899.103:589): avc:  denied  { open } for  pid=5659 comm="dhcpcd" path="/run/udev/data/n105" dev="tmpfs" ino=3764 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  179.319380][   T40] audit: type=1400 audit(1776797899.103:590): avc:  denied  { getattr } for  pid=5659 comm="dhcpcd" path="/run/udev/data/n105" dev="tmpfs" ino=3764 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  179.339814][   T40] audit: type=1400 audit(1776797899.173:591): avc:  denied  { getopt } for  pid=7707 comm="syz.2.540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  179.474002][ T7719] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.478153][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.488185][ T7719] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.491733][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.494863][ T7719] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.497689][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.500769][ T7719] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  179.511840][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.516668][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.519760][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.523381][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.532819][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.541204][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.549025][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.552547][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.555736][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.558872][ T6022] hid-generic 0005:00B6:0009.0004: unknown main item tag 0x0
[  179.601007][ T6022] hid-generic 0005:00B6:0009.0004: hidraw1: BLUETOOTH HID v1ade12.f3 Device [syz0] on syz1
[  179.716614][ T7729] fido_id[7729]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  179.997060][ T7756] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[  180.464475][ T7764] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  180.468446][ T7764] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock
[  180.472495][ T7764] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  180.475272][ T7764] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock
[  180.516748][ T7766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.553'.
[  180.521317][ T7766] netlink: 52 bytes leftover after parsing attributes in process `syz.0.553'.
[  180.636410][ T7774] Cannot find del_set index 4 as target
[  180.644068][ T7772] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  180.649405][ T7774] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  180.827969][ T7785] binder: 7784:7785 unknown command 0
[  180.830644][ T7785] binder: 7784:7785 ioctl c0306201 2000000001c0 returned -22
[  181.117660][ T7808] netlink: 8 bytes leftover after parsing attributes in process `syz.3.569'.
[  181.121724][ T7808] netlink: 24 bytes leftover after parsing attributes in process `syz.3.569'.
[  181.251020][ T7815] netlink: 8 bytes leftover after parsing attributes in process `syz.3.572'.
[  181.254194][ T7815] netlink: 4 bytes leftover after parsing attributes in process `syz.3.572'.
[  181.257438][ T7815] netlink: 'syz.3.572': attribute type 15 has an invalid length.
[  181.665036][ T7833] atomic_op ffff88805ec96998 conn xmit_atomic 0000000000000000
[  181.725341][ T7835] tmpfs: Unknown parameter 'verity'
[  181.884127][ T7837] kvm: kvm [7836]: vcpu0, guest rIP: 0x5408d Unhandled WRMSR(0x40000005) = 0x3
[  181.923043][ T7851] netlink: 'syz.0.586': attribute type 5 has an invalid length.
[  181.937402][ T7853] program syz.3.587 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  182.038896][ T7863] netlink: 8 bytes leftover after parsing attributes in process `syz.2.591'.
[  182.190233][   T54] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  182.217957][ T5967] Bluetooth: hci3: adv larger than maximum supported
[  182.218061][ T5967] Bluetooth: hci3: Malformed LE Event: 0x0d
[  182.359990][   T54] usb 8-1: Using ep0 maxpacket: 32
[  182.367210][   T54] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  182.373225][   T54] usb 8-1: config 0 has no interface number 0
[  182.377745][   T54] usb 8-1: config 0 interface 12 has no altsetting 0
[  182.383005][   T54] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  182.386022][   T54] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.389144][ T7883] trusted_key: encrypted_key: hex blob is missing
[  182.389162][   T54] usb 8-1: Product: syz
[  182.392042][   T54] usb 8-1: Manufacturer: syz
[  182.399061][   T54] usb 8-1: SerialNumber: syz
[  182.409293][ T7883] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1545 sclass=netlink_route_socket pid=7883 comm=syz.0.598
[  182.411227][   T54] usb 8-1: config 0 descriptor??
[  182.844482][   T54] f81534 8-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  182.848282][   T54] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  182.852144][   T54] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  182.855483][   T54] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  182.911091][   T54] usb 8-1: USB disconnect, device number 8
[  183.102093][ T7892] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  183.210259][ T7903] netlink: 'syz.0.604': attribute type 1 has an invalid length.
[  183.242761][ T7906] __nla_validate_parse: 2 callbacks suppressed
[  183.242781][ T7906] netlink: 4 bytes leftover after parsing attributes in process `syz.1.605'.
[  183.252947][ T7903] 8021q: adding VLAN 0 to HW filter on device bond2
[  183.281936][ T7909] bond2: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms
[  183.300896][ T7909] bond2: entered allmulticast mode
[  183.350102][ T7903] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  183.361351][ T5635] net_ratelimit: 24 callbacks suppressed
[  183.361393][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.571808][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.865725][ T7926] netlink: 'syz.0.611': attribute type 30 has an invalid length.
[  184.113317][ T7935] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  184.148108][ T7937] netlink: 48 bytes leftover after parsing attributes in process `syz.2.617'.
[  184.167608][   T40] kauditd_printk_skb: 60 callbacks suppressed
[  184.167708][   T40] audit: type=1400 audit(1776798159.997:649): avc:  denied  { ioctl } for  pid=7938 comm="syz.0.618" path="socket:[24014]" dev="sockfs" ino=24014 ioctlcmd=0x4942 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  184.174866][ T6022] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.180296][ T5967] Bluetooth: hci3: command 0x0406 tx timeout
[  184.203737][   T40] audit: type=1400 audit(1776798160.037:650): avc:  denied  { create } for  pid=7938 comm="syz.0.618" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  184.211134][   T40] audit: type=1400 audit(1776798160.037:651): avc:  denied  { getopt } for  pid=7938 comm="syz.0.618" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  184.292270][ T7938] delete_channel: no stack
[  184.338246][    C1] hpet: Lost 1 RTC interrupts
[  184.408886][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.412425][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.540920][ T7949] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.545282][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.603976][   T40] audit: type=1400 audit(1776798160.437:652): avc:  denied  { ioctl } for  pid=7950 comm="syz.2.622" path="socket:[23017]" dev="sockfs" ino=23017 ioctlcmd=0x9440 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  184.608910][ T7951] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  184.644582][   T40] audit: type=1400 audit(1776798160.467:653): avc:  denied  { ioctl } for  pid=7953 comm="syz.1.623" path="socket:[23021]" dev="sockfs" ino=23021 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  184.649423][ T7951] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  184.666659][   T71] Bluetooth: hci4: Frame reassembly failed (-84)
[  184.668957][   T71] Bluetooth: hci4: Frame reassembly failed (-84)
[  184.724316][ T7956] tipc: Started in network mode
[  184.726333][ T7956] tipc: Node identity bbbbbb01, cluster identity 4711
[  184.733121][ T7956] tipc: Enabled bearer <eth:rose0>, priority 10
[  184.747702][   T40] audit: type=1400 audit(1776798160.577:654): avc:  denied  { mounton } for  pid=7958 comm="syz.3.624" path="/179/file0" dev="tmpfs" ino=951 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  184.779947][ T7960] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  184.823938][ T7959] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  184.839368][ T7959] iommufd_mock iommufd_mock1: Adding to iommu group 10
[  185.229327][   T40] audit: type=1400 audit(1776798161.057:655): avc:  denied  { create } for  pid=7964 comm="syz.3.626" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  185.240001][   T40] audit: type=1400 audit(1776798161.067:656): avc:  denied  { getopt } for  pid=7964 comm="syz.3.626" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  185.444177][ T6040] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  185.450253][ T6040] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  185.516377][ T7970] mmap: syz.1.627 (7970) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  185.522023][ T7970] sctp: [Deprecated]: syz.1.627 (pid 7970) Use of struct sctp_assoc_value in delayed_ack socket option.
[  185.522023][ T7970] Use struct sctp_sack_info instead
[  185.530911][ T7970] netlink: 16 bytes leftover after parsing attributes in process `syz.1.627'.
[  185.580110][   T40] audit: type=1400 audit(1776798161.407:657): avc:  denied  { read } for  pid=7971 comm="syz.0.628" name="usbmon0" dev="devtmpfs" ino=737 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  185.892176][   T39] tipc: Node number set to 3149642497
[  186.096124][ T5356] block nbd0: Possible stuck request ffff888028865080: control (read@0,1024B). Runtime 30 seconds
[  186.102622][ T5356] block nbd0: Possible stuck request ffff888028865240: control (read@1024,1024B). Runtime 30 seconds
[  186.108057][ T5356] block nbd0: Possible stuck request ffff888028865400: control (read@2048,1024B). Runtime 30 seconds
[  186.112141][ T5356] block nbd0: Possible stuck request ffff8880288655c0: control (read@3072,1024B). Runtime 30 seconds
[  186.162278][ T7987] netlink: 'syz.0.633': attribute type 1 has an invalid length.
[  186.185984][ T7987] 8021q: adding VLAN 0 to HW filter on device bond3
[  186.221713][ T7987] bond3: (slave geneve2): making interface the new active one
[  186.229047][ T7987] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  186.265065][ T7992] sit1: entered promiscuous mode
[  186.272309][ T7992] sit1: entered allmulticast mode
[  186.645087][ T5965] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  187.557798][ T8073] netlink: 'syz.3.662': attribute type 2 has an invalid length.
[  187.565461][ T8073] netlink: 'syz.3.662': attribute type 1 has an invalid length.
[  187.640337][ T8082] FAULT_INJECTION: forcing a failure.
[  187.640337][ T8082] name failslab, interval 1, probability 0, space 0, times 0
[  187.646198][ T8082] CPU: 0 UID: 0 PID: 8082 Comm: syz.0.665 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  187.646232][ T8082] Tainted: [L]=SOFTLOCKUP
[  187.646239][ T8082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  187.646349][ T8082] Call Trace:
[  187.646360][ T8082]  <TASK>
[  187.646370][ T8082]  dump_stack_lvl+0x100/0x190
[  187.647105][ T8082]  should_fail_ex.cold+0x5/0xa
[  187.647314][ T8082]  should_failslab+0xc2/0x120
[  187.647610][ T8082]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  187.647700][ T8082]  ? __alloc_skb+0x140/0x710
[  187.648134][ T8082]  ? __alloc_skb+0x5b7/0x710
[  187.648162][ T8082]  __alloc_skb+0x140/0x710
[  187.648184][ T8082]  ? __alloc_skb+0x5b7/0x710
[  187.648207][ T8082]  ? __pfx___alloc_skb+0x10/0x10
[  187.648233][ T8082]  ? find_held_lock+0x2b/0x80
[  187.648368][ T8082]  alloc_skb_with_frags+0xdd/0x760
[  187.648394][ T8082]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  187.648502][ T8082]  sock_alloc_send_pskb+0x801/0x980
[  187.648527][ T8082]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  187.648815][ T8082]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  187.648838][ T8082]  ? find_held_lock+0x2b/0x80
[  187.648854][ T8082]  ? dev_get_by_index+0x180/0x380
[  187.648944][ T8082]  ? dev_get_by_index+0x180/0x380
[  187.648973][ T8082]  packet_sendmsg+0x20b8/0x51c0
[  187.649156][ T8082]  ? __lock_acquire+0x4a5/0x2630
[  187.649185][ T8082]  ? sock_has_perm+0x258/0x2f0
[  187.649288][ T8082]  ? __pfx_sock_has_perm+0x10/0x10
[  187.649318][ T8082]  ? __pfx_packet_sendmsg+0x10/0x10
[  187.649375][ T8082]  __sys_sendto+0x468/0x4b0
[  187.649400][ T8082]  ? __pfx_packet_sendmsg+0x10/0x10
[  187.649418][ T8082]  ? __pfx___sys_sendto+0x10/0x10
[  187.649459][ T8082]  ? ksys_write+0x1ac/0x250
[  187.649538][ T8082]  ? __pfx_ksys_write+0x10/0x10
[  187.649559][ T8082]  __x64_sys_sendto+0xe0/0x1c0
[  187.649581][ T8082]  ? do_syscall_64+0x90/0xf80
[  187.650161][ T8082]  ? lockdep_hardirqs_on+0x78/0x100
[  187.650270][ T8082]  do_syscall_64+0x10b/0xf80
[  187.650291][ T8082]  ? clear_bhb_loop+0x40/0x90
[  187.650315][ T8082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.650334][ T8082] RIP: 0033:0x7f031d19c819
[  187.650352][ T8082] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  187.650370][ T8082] RSP: 002b:00007f031dfa4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  187.650476][ T8082] RAX: ffffffffffffffda RBX: 00007f031d415fa0 RCX: 00007f031d19c819
[  187.650486][ T8082] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  187.650497][ T8082] RBP: 00007f031dfa4090 R08: 0000200000000400 R09: 000000000000006e
[  187.650508][ T8082] R10: 0000000000000015 R11: 0000000000000246 R12: 0000000000000001
[  187.650518][ T8082] R13: 00007f031d416038 R14: 00007f031d415fa0 R15: 00007ffd748b3708
[  187.650541][ T8082]  </TASK>
[  188.498184][   T60] net_ratelimit: 241 callbacks suppressed
[  188.498307][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.573944][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.578440][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.580599][ T8105] netlink: 27 bytes leftover after parsing attributes in process `syz.2.672'.
[  188.740539][   T54] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  188.853247][ T8117] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.856347][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.921906][   T54] usb 8-1: Using ep0 maxpacket: 8
[  188.932512][   T54] usb 8-1: config 1 interface 0 altsetting 9 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  188.938080][   T54] usb 8-1: config 1 interface 0 has no altsetting 0
[  188.946754][   T54] usb 8-1: New USB device found, idVendor=056a, idProduct=0333, bcdDevice= 0.40
[  188.951081][   T54] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.954764][   T54] usb 8-1: Product: 뙄霧ﶮ㖺缇䉇ꖗᣚ㉃呄ￌ悬⟊�䥧ᖤ짰缤秧纫㚶ᇧ饻ꂷ⣰��澩掓薑ࡒ᦯���㨪䑪注ጽꈄ둗횺�Ⓠ튉幼�湈䳄敆�⇀蹲敺劉�⧀욢氰ｳ规�ᨡ埸ᆲ櫌쫳葔닱繹䥣⹤责
[  188.965999][   T54] usb 8-1: Manufacturer: �
[  188.968249][   T54] usb 8-1: SerialNumber: בֿ￸◳㮚闚唳蘈你䱟퉀酫ꔗ첸饣⼴�軕꞉��툘둻䯔簵�佼鸋㈓艓糴៎੕挥麔弌脩��㧴뮜麴���텧螶䠗ﳊ쳷ゖ៶寶왠�胉�ᩰ�ᇀ輓ଛ�˴ժḠ時雥㠺㭩戃�﷨帊ￛ㌠�뮤龶剟ꤚ䖹쭡
[  188.999747][ T8119] netlink: 40 bytes leftover after parsing attributes in process `syz.1.677'.
[  189.285166][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.392567][ T8142] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  189.600241][ T5635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.764241][ T8155] netlink: 'syz.1.688': attribute type 4 has an invalid length.
[  189.780525][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  189.780622][   T40] audit: type=1400 audit(1776798165.617:678): avc:  denied  { setopt } for  pid=8158 comm="syz.0.689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  189.819798][   T40] audit: type=1400 audit(1776798165.647:679): avc:  denied  { ioctl } for  pid=8160 comm="syz.1.690" path="socket:[24395]" dev="sockfs" ino=24395 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  189.828843][   T40] audit: type=1400 audit(1776798165.657:680): avc:  denied  { watch watch_reads } for  pid=8160 comm="syz.1.690" path="pipe:[24392]" dev="pipefs" ino=24392 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  189.839362][   T40] audit: type=1400 audit(1776798165.657:681): avc:  denied  { relabelfrom } for  pid=8160 comm="syz.1.690" name="" dev="pipefs" ino=25715 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  189.885644][ T8165] netlink: 4 bytes leftover after parsing attributes in process `syz.1.692'.
[  189.892778][ T8165] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  190.651968][ T3446] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  190.753843][   T40] audit: type=1400 audit(1776798166.587:682): avc:  denied  { create } for  pid=8178 comm="syz.1.695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  190.769398][   T40] audit: type=1400 audit(1776798166.587:683): avc:  denied  { ioctl } for  pid=8178 comm="syz.1.695" path="socket:[25097]" dev="sockfs" ino=25097 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  191.464795][   T54] usbhid 8-1:1.0: can't add hid device: -71
[  191.467077][   T54] usbhid 8-1:1.0: probe with driver usbhid failed with error -71
[  191.483308][   T54] usb 8-1: USB disconnect, device number 9
[  191.520281][   T60] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  191.528753][   T40] audit: type=1400 audit(1776798167.357:684): avc:  denied  { map } for  pid=8198 comm="syz.1.700" path="/dev/bus/usb/007/001" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  191.541919][   T40] audit: type=1400 audit(1776798167.367:685): avc:  denied  { accept } for  pid=8200 comm="syz.3.701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  191.558880][ T8199] openvswitch: netlink: Key type 61 is out of range max 32
[  191.566829][ T8205] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  191.626742][ T8210] netlink: 4 bytes leftover after parsing attributes in process `syz.3.704'.
[  191.632613][ T8210] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  191.860784][   T40] audit: type=1400 audit(1776798167.697:686): avc:  denied  { connect } for  pid=8218 comm="syz.1.707" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  191.947960][   T40] audit: type=1400 audit(1776798167.777:687): avc:  denied  { write } for  pid=8221 comm="syz.1.708" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  192.076813][ T8229] FAULT_INJECTION: forcing a failure.
[  192.076813][ T8229] name failslab, interval 1, probability 0, space 0, times 0
[  192.087510][ T8229] CPU: 3 UID: 0 PID: 8229 Comm: syz.1.710 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  192.087544][ T8229] Tainted: [L]=SOFTLOCKUP
[  192.087551][ T8229] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  192.087772][ T8229] Call Trace:
[  192.087780][ T8229]  <TASK>
[  192.087788][ T8229]  dump_stack_lvl+0x100/0x190
[  192.089159][ T8229]  should_fail_ex.cold+0x5/0xa
[  192.089480][ T8229]  ? tomoyo_encode2+0xfb/0x3c0
[  192.090034][ T8229]  should_failslab+0xc2/0x120
[  192.090635][ T8229]  __kmalloc_noprof+0xe0/0x850
[  192.090829][ T8229]  ? d_absolute_path+0x136/0x1b0
[  192.090962][ T8229]  tomoyo_encode2+0xfb/0x3c0
[  192.090985][ T8229]  tomoyo_encode+0x29/0x50
[  192.091003][ T8229]  tomoyo_realpath_from_path+0x18c/0x690
[  192.091027][ T8229]  tomoyo_path_number_perm+0x23c/0x580
[  192.091044][ T8229]  ? tomoyo_path_number_perm+0x22e/0x580
[  192.091062][ T8229]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  192.091100][ T8229]  ? find_held_lock+0x2b/0x80
[  192.091398][ T8229]  ? __fget_files+0x215/0x3d0
[  192.091418][ T8229]  ? hook_file_ioctl_common+0x149/0x410
[  192.091439][ T8229]  ? __fget_files+0x215/0x3d0
[  192.091462][ T8229]  ? __fget_files+0x21f/0x3d0
[  192.091484][ T8229]  security_file_ioctl+0xd3/0x230
[  192.091504][ T8229]  __x64_sys_ioctl+0xb7/0x210
[  192.091524][ T8229]  do_syscall_64+0x10b/0xf80
[  192.092365][ T8229]  ? clear_bhb_loop+0x40/0x90
[  192.092386][ T8229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.092403][ T8229] RIP: 0033:0x7f45a6d9c819
[  192.092421][ T8229] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  192.092437][ T8229] RSP: 002b:00007f45a7b6e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  192.092601][ T8229] RAX: ffffffffffffffda RBX: 00007f45a7015fa0 RCX: 00007f45a6d9c819
[  192.092611][ T8229] RDX: 0000200000000300 RSI: 00000000c03064b7 RDI: 0000000000000003
[  192.092621][ T8229] RBP: 00007f45a7b6e090 R08: 0000000000000000 R09: 0000000000000000
[  192.092631][ T8229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.092640][ T8229] R13: 00007f45a7016038 R14: 00007f45a7015fa0 R15: 00007ffe9ecb9518
[  192.092662][ T8229]  </TASK>
[  192.199174][ T8229] ERROR: Out of memory at tomoyo_realpath_from_path.
[  192.706861][ T8248] SELinux:  policydb magic number 0x24002f does not match expected magic number 0xf97cff8c
[  192.711727][ T8248] SELinux: failed to load policy
[  192.851390][ T8259] netlink: 4 bytes leftover after parsing attributes in process `syz.2.723'.
[  192.855825][ T8259] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  193.020346][ T8270] netlink: 32 bytes leftover after parsing attributes in process `syz.3.727'.
[  193.024806][ T8270] tmpfs: Unknown parameter 'mpoUa^Èl'
[  193.261188][ T8284] syz.0.732 uses old SIOCAX25GETINFO
[  193.765852][ T8305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.739'.
[  193.822534][ T8313] ªªªªªª: renamed from vlan0 (while UP)
[  193.865136][ T8320] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  193.919361][ T8323] netlink: 4 bytes leftover after parsing attributes in process `syz.0.747'.
[  194.208424][ T8332] netlink: 20 bytes leftover after parsing attributes in process `syz.3.748'.
[  194.321525][ T8337] loop6: detected capacity change from 0 to 2640
[  194.348197][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.352872][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.359002][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.364363][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.369382][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.374473][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.378241][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.383011][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.387919][ T8337] ldm_validate_partition_table(): Disk read failed.
[  194.396286][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.400434][ T8337] Buffer I/O error on dev loop6, logical block 0, async page read
[  194.404033][ T8337] Dev loop6: unable to read RDB block 0
[  194.406843][ T8337]  loop6: unable to read partition table
[  194.409453][ T8337] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  194.936660][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  194.936991][   T40] audit: type=1400 audit(1776798170.767:701): avc:  denied  { ioctl } for  pid=8374 comm="syz.2.761" path="/dev/fb0" dev="devtmpfs" ino=637 ioctlcmd=0x4610 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  195.107617][   T40] audit: type=1400 audit(1776798170.937:702): avc:  denied  { bind } for  pid=8381 comm="syz.2.763" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  195.116938][   T40] audit: type=1400 audit(1776798170.947:703): avc:  denied  { name_bind } for  pid=8381 comm="syz.2.763" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  195.128311][   T40] audit: type=1400 audit(1776798170.947:704): avc:  denied  { node_bind } for  pid=8381 comm="syz.2.763" saddr=ff01::1 src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  195.237084][ T8383] netlink: 'syz.2.763': attribute type 1 has an invalid length.
[  195.258931][ T8383] 8021q: adding VLAN 0 to HW filter on device bond1
[  195.289767][ T8383] bond1: (slave veth0_to_bond): making interface the new active one
[  195.294070][ T8383] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  195.425369][   T40] audit: type=1400 audit(1776798171.257:705): avc:  denied  { module_load } for  pid=8393 comm="syz.1.766" path="/sys/kernel/hardlockup_count" dev="sysfs" ino=71261 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  195.772412][    C1] hpet: Lost 1 RTC interrupts
[  196.026893][ T8409] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  196.928538][   T40] audit: type=1400 audit(1776798172.757:706): avc:  denied  { getopt } for  pid=8439 comm="syz.1.781" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  197.149973][ T8449] fuse: Bad value for 'fd'
[  197.458024][ T8473] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.790'.
[  198.009503][ T8503] bond4: Unable to set up delay as MII monitoring is disabled
[  198.009760][ T8506] netlink: 'syz.2.795': attribute type 7 has an invalid length.
[  198.016733][ T8503] bond4 (unregistering): Released all slaves
[  198.035907][ T8506] macsec1: entered promiscuous mode
[  198.038618][ T8506] macsec1: entered allmulticast mode
[  198.068017][ T8509] netlink: 52 bytes leftover after parsing attributes in process `syz.2.796'.
[  198.073401][   T40] audit: type=1400 audit(1776798173.907:707): avc:  denied  { read } for  pid=8508 comm="syz.2.796" name="loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  198.087116][   T40] audit: type=1400 audit(1776798173.907:708): avc:  denied  { open } for  pid=8508 comm="syz.2.796" path="/dev/loop-control" dev="devtmpfs" ino=657 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  198.095607][   T40] audit: type=1400 audit(1776798173.917:709): avc:  denied  { ioctl } for  pid=8508 comm="syz.2.796" path="/dev/loop-control" dev="devtmpfs" ino=657 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  199.036327][ T8536] mkiss: ax0: crc mode is auto.
[  199.045410][ T8536] netlink: 100 bytes leftover after parsing attributes in process `syz.2.805'.
[  199.410880][ T8569] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  199.413785][ T8569] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  199.418922][ T8569] vhci_hcd vhci_hcd.0: Device attached
[  199.427082][ T8570] vhci_hcd vhci_hcd.0: port 0 already used
[  199.608516][ T8571] vhci_hcd: connection closed
[  199.614727][  T272] vhci_hcd vhci_hcd.1: stop threads
[  199.619998][  T272] vhci_hcd vhci_hcd.1: release socket
[  199.625501][  T272] vhci_hcd vhci_hcd.1: disconnect device
[  199.656466][ T8582] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  199.672227][ T8588] net_ratelimit: 3 callbacks suppressed
[  199.672245][ T8588] openvswitch: netlink: Invalid VLAN frame
[  200.048228][ T8601] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  200.146997][ T8610] netlink: 60 bytes leftover after parsing attributes in process `syz.1.833'.
[  200.157095][ T8610] netlink: 12 bytes leftover after parsing attributes in process `syz.1.833'.
[  200.170342][ T8610] netlink: 60 bytes leftover after parsing attributes in process `syz.1.833'.
[  200.272201][ T8621] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61968 sclass=netlink_route_socket pid=8621 comm=syz.0.838
[  200.382538][ T8617] syzkaller0: entered promiscuous mode
[  200.385052][ T8617] syzkaller0: entered allmulticast mode
[  201.029699][ T8638] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  202.383225][ T8651] netlink: 12 bytes leftover after parsing attributes in process `syz.1.848'.
[  202.469262][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  202.469423][   T40] audit: type=1400 audit(1776798178.297:714): avc:  denied  { create } for  pid=8652 comm="syz.2.849" name="#19" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  202.473479][ T8651] syzkaller0: entered promiscuous mode
[  202.479960][   T40] audit: type=1400 audit(1776798178.297:715): avc:  denied  { link } for  pid=8652 comm="syz.2.849" name="#19" dev="tmpfs" ino=977 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  202.482213][ T8651] syzkaller0: entered allmulticast mode
[  202.488236][   T40] audit: type=1400 audit(1776798178.297:716): avc:  denied  { rename } for  pid=8652 comm="syz.2.849" name="#1a" dev="tmpfs" ino=977 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  202.628414][ T8662] FAULT_INJECTION: forcing a failure.
[  202.628414][ T8662] name failslab, interval 1, probability 0, space 0, times 0
[  202.635291][ T8662] CPU: 3 UID: 0 PID: 8662 Comm: syz.2.851 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  202.635321][ T8662] Tainted: [L]=SOFTLOCKUP
[  202.635327][ T8662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  202.635420][ T8662] Call Trace:
[  202.635430][ T8662]  <TASK>
[  202.635439][ T8662]  dump_stack_lvl+0x100/0x190
[  202.635803][ T8662]  should_fail_ex.cold+0x5/0xa
[  202.635890][ T8662]  ? constrain_params_by_rules+0x175/0xcc0
[  202.636284][ T8662]  should_failslab+0xc2/0x120
[  202.636423][ T8662]  __kmalloc_noprof+0xe0/0x850
[  202.636508][ T8662]  ? kfree+0x223/0x6c0
[  202.636536][ T8662]  constrain_params_by_rules+0x175/0xcc0
[  202.636569][ T8662]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  202.636593][ T8662]  ? __pfx_constrain_params_by_rules+0x10/0x10
[  202.636612][ T8662]  ? stack_depot_save_flags+0x27/0x9d0
[  202.636803][ T8662]  ? snd_interval_refine+0x2d0/0x580
[  202.636832][ T8662]  snd_pcm_hw_refine+0x7e7/0xad0
[  202.636855][ T8662]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  202.636883][ T8662]  ? __pfx_snd_pcm_hw_refine+0x10/0x10
[  202.636910][ T8662]  ? snd_pcm_hw_param_value+0x27b/0x5b0
[  202.636934][ T8662]  snd_pcm_hw_param_first+0x2b0/0x680
[  202.636959][ T8662]  snd_pcm_hw_params+0x458/0x1bf0
[  202.636984][ T8662]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  202.637007][ T8662]  ? snd_pcm_hw_param_near.constprop.0+0x578/0x850
[  202.637033][ T8662]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  202.637058][ T8662]  snd_pcm_kernel_ioctl+0x167/0x2e0
[  202.637083][ T8662]  snd_pcm_oss_change_params_locked+0x1973/0x39f0
[  202.637111][ T8662]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  202.637164][ T8662]  ? get_pid_task+0xfc/0x250
[  202.637298][ T8662]  ? get_pid_task+0xfc/0x250
[  202.637321][ T8662]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  202.637343][ T8662]  snd_pcm_oss_write+0x4bb/0xa30
[  202.637362][ T8662]  ? bpf_lsm_file_permission+0x9/0x10
[  202.637440][ T8662]  ? security_file_permission+0x76/0x210
[  202.637540][ T8662]  vfs_write+0x2aa/0x1070
[  202.637561][ T8662]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  202.637584][ T8662]  ? __pfx_vfs_write+0x10/0x10
[  202.637600][ T8662]  ? find_held_lock+0x2b/0x80
[  202.637677][ T8662]  ? __fget_files+0x215/0x3d0
[  202.637698][ T8662]  ? __fget_files+0x215/0x3d0
[  202.637721][ T8662]  ? __fget_files+0x21f/0x3d0
[  202.637748][ T8662]  ksys_write+0x12a/0x250
[  202.637765][ T8662]  ? __pfx_ksys_write+0x10/0x10
[  202.637786][ T8662]  ? rcu_is_watching+0x12/0xc0
[  202.637877][ T8662]  do_syscall_64+0x10b/0xf80
[  202.637901][ T8662]  ? clear_bhb_loop+0x40/0x90
[  202.637924][ T8662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.637943][ T8662] RIP: 0033:0x7efce099c819
[  202.637960][ T8662] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  202.637977][ T8662] RSP: 002b:00007efce187c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  202.638054][ T8662] RAX: ffffffffffffffda RBX: 00007efce0c16090 RCX: 00007efce099c819
[  202.638065][ T8662] RDX: 000000000000ff51 RSI: 00002000000012c0 RDI: 0000000000000004
[  202.638074][ T8662] RBP: 00007efce187c090 R08: 0000000000000000 R09: 0000000000000000
[  202.638083][ T8662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  202.638093][ T8662] R13: 00007efce0c16128 R14: 00007efce0c16090 R15: 00007ffccbed3af8
[  202.638118][ T8662]  </TASK>
[  203.359776][ T8664] fuse: Bad value for 'group_id'
[  203.363746][ T8664] fuse: Bad value for 'group_id'
[  203.498010][ T8674] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8674 comm=syz.2.855
[  203.508800][ T8674] syzkaller1: entered promiscuous mode
[  203.515403][ T8674] syzkaller1: entered allmulticast mode
[  203.968355][   T40] audit: type=1400 audit(1776798179.797:717): avc:  denied  { watch watch_reads } for  pid=8690 comm="syz.2.860" path="/191" dev="tmpfs" ino=1009 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  204.022591][ T8693] netlink: 68 bytes leftover after parsing attributes in process `syz.2.861'.
[  204.163979][ T8703] netlink: 'syz.1.863': attribute type 10 has an invalid length.
[  204.170881][ T8703] macvlan0: entered promiscuous mode
[  204.173219][ T8703] macvlan0: entered allmulticast mode
[  204.185477][ T8703] veth1_vlan: entered allmulticast mode
[  204.195208][ T8703] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  204.371130][ T8712] netlink: 8 bytes leftover after parsing attributes in process `syz.2.867'.
[  204.551569][ T8717] tipc: Can't bind to reserved service type 2
[  204.560137][   T39] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  204.585992][ T8714] fuse: Unknown parameter 'η<0x0000000000000006'
[  204.585992][   T40] audit: type=1400 audit(1776798180.417:718): avc:  denied  { mounton } for  pid=8713 comm="syz.2.868" path="/196/file0/file0" dev="9p" ino=72876095 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  204.598825][   T40] audit: type=1400 audit(1776798180.427:719): avc:  denied  { remount } for  pid=8713 comm="syz.2.868" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  204.621716][ T8717] netlink: 48 bytes leftover after parsing attributes in process `syz.3.869'.
[  204.722106][   T39] usb 6-1: config 0 has no interfaces?
[  204.726382][   T39] usb 6-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  204.730109][   T39] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.734106][   T39] usb 6-1: Product: syz
[  204.735842][   T39] usb 6-1: Manufacturer: syz
[  204.737496][   T39] usb 6-1: SerialNumber: syz
[  204.745821][   T39] usb 6-1: config 0 descriptor??
[  204.952681][   T40] audit: type=1400 audit(1776798180.787:720): avc:  denied  { getopt } for  pid=8709 comm="syz.1.866" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  204.961510][ T8710] 9p: Bad value for 'wfdno'
[  204.975880][   T34] usb 6-1: USB disconnect, device number 7
[  205.341244][   T40] audit: type=1400 audit(1776798181.177:721): avc:  denied  { bind } for  pid=8722 comm="syz.3.871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  205.351420][   T40] audit: type=1400 audit(1776798181.177:722): avc:  denied  { listen } for  pid=8722 comm="syz.3.871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  205.378861][   T40] audit: type=1400 audit(1776798181.207:723): avc:  denied  { connect } for  pid=8722 comm="syz.3.871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  205.517236][ T8729] nbd: couldn't find device at index -2127233020
[  205.571964][ T8733] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  205.591482][ T8738] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_team, syncid = 3, id = 0
[  205.738011][ T8745] netlink: 'syz.2.872': attribute type 10 has an invalid length.
[  205.742420][ T8745] macvlan0: entered promiscuous mode
[  205.744970][ T8745] macvlan0: entered allmulticast mode
[  205.753290][ T8745] veth1_vlan: entered allmulticast mode
[  205.760965][ T8745] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  205.901429][ T8749] netlink: 'syz.2.879': attribute type 30 has an invalid length.
[  205.990521][ T8751] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8751 comm=syz.2.879
[  206.006552][ T8749] netlink: 'syz.2.879': attribute type 32 has an invalid length.
[  206.023827][ T8749] bond3: option coupled_control: invalid value (112)
[  206.027590][ T8749] bond3 (unregistering): Released all slaves
[  206.057028][ T8751] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=8751 comm=syz.2.879
[  206.090090][ T5967] Bluetooth: hci0: command 0x0401 tx timeout
[  206.097840][ T5965] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  206.204283][ T8754] netlink: 'syz.2.880': attribute type 16 has an invalid length.
[  206.208762][ T8754] netlink: 'syz.2.880': attribute type 17 has an invalid length.
[  206.234668][ T8754] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  206.456038][ T8765] veth1_to_team: entered promiscuous mode
[  206.459595][ T8764] veth1_to_team: left promiscuous mode
[  206.748525][ T8775] netlink: 4 bytes leftover after parsing attributes in process `syz.1.888'.
[  207.086771][ T8788] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  207.100824][ T8788] comedi comedi0: Cannot bond this driver to itself!
[  207.139997][ T8790] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  207.232083][ T8797] netlink: 4 bytes leftover after parsing attributes in process `syz.3.897'.
[  207.249193][ T8797] bridge0: port 1(macvlan2) entered blocking state
[  207.255083][ T8797] bridge0: port 1(macvlan2) entered disabled state
[  207.258806][ T8797] macvlan2: entered allmulticast mode
[  207.266157][ T8797] macvlan2: left allmulticast mode
[  207.522463][ T8813] tipc: Enabling <eth:lo> not permitted
[  207.525217][ T8813] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  207.575155][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  207.575175][   T40] audit: type=1400 audit(1776798183.407:729): avc:  denied  { write } for  pid=8814 comm="syz.2.905" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  207.682961][   T40] audit: type=1400 audit(1776798183.517:730): avc:  denied  { ioctl } for  pid=8818 comm="syz.2.907" path="socket:[29375]" dev="sockfs" ino=29375 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  207.984729][ T8837] netlink: 'syz.3.912': attribute type 4 has an invalid length.
[  208.187795][ T8847] syzkaller0: entered promiscuous mode
[  208.192426][ T8847] syzkaller0: entered allmulticast mode
[  208.205235][ T8846] netem: change failed
[  208.208196][ T8848] netem: change failed
[  208.212252][ T8846] netem: change failed
[  208.215484][ T8846] netem: change failed
[  208.218612][ T8846] netem: change failed
[  208.221949][ T8846] netem: change failed
[  208.384495][ T8856] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  208.442149][    C1] hpet: Lost 1 RTC interrupts
[  209.269764][ T8874] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  209.273040][ T8874] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  209.278784][ T8874] vhci_hcd vhci_hcd.0: Device attached
[  209.296287][ T8875] vhci_hcd: connection closed
[  209.296829][   T71] vhci_hcd vhci_hcd.2: stop threads
[  209.302062][   T71] vhci_hcd vhci_hcd.2: release socket
[  209.306006][   T71] vhci_hcd vhci_hcd.2: disconnect device
[  209.616730][   T40] audit: type=1400 audit(1776798185.447:731): avc:  denied  { read } for  pid=8883 comm="syz.3.925" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  209.626384][   T40] audit: type=1400 audit(1776798185.447:732): avc:  denied  { open } for  pid=8883 comm="syz.3.925" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  209.742547][ T5635] IPVS: starting estimator thread 0...
[  209.847042][ T8886] IPVS: using max 41 ests per chain, 98400 per kthread
[  210.250895][ T8897] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.929'.
[  210.849118][ T8909] netlink: 196 bytes leftover after parsing attributes in process `syz.2.933'.
[  210.852573][ T8909] netlink: 68 bytes leftover after parsing attributes in process `syz.2.933'.
[  210.962221][   T40] audit: type=1400 audit(1776798186.797:733): avc:  denied  { getopt } for  pid=8912 comm="syz.2.934" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  211.118276][   T40] audit: type=1400 audit(1776798186.947:734): avc:  denied  { setopt } for  pid=8919 comm="syz.1.937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  211.345716][    C1] hpet: Lost 2 RTC interrupts
[  211.629473][ T8923] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  211.653383][ T8925] tmpfs: Bad value for 'mpol'
[  211.719303][ T8927] netlink: 'syz.1.940': attribute type 1 has an invalid length.
[  211.973135][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  212.032205][   T40] audit: type=1400 audit(1776798187.867:735): avc:  denied  { write } for  pid=8937 comm="syz.2.946" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  212.086361][   T40] audit: type=1400 audit(1776798187.917:736): avc:  denied  { bind } for  pid=8942 comm="syz.2.947" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  212.096003][ T8943] tmpfs: Unknown parameter 'nr_inodes?e'
[  212.583742][ T8948] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  212.741281][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  212.741427][   T40] audit: type=1400 audit(1776798188.577:738): avc:  denied  { read } for  pid=8953 comm="syz.3.951" path="socket:[31112]" dev="sockfs" ino=31112 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  212.930382][ T6049] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[  213.111806][ T6049] usb 7-1: config 0 has no interfaces?
[  213.116940][ T6049] usb 7-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  213.120865][ T6049] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.124164][ T6049] usb 7-1: Product: syz
[  213.125993][ T6049] usb 7-1: Manufacturer: syz
[  213.127975][ T6049] usb 7-1: SerialNumber: syz
[  213.137054][ T6049] usb 7-1: config 0 descriptor??
[  213.281734][   T39] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  213.359537][ T8951] 9p: Bad value for 'wfdno'
[  213.374390][ T8951] blktrace: Concurrent blktraces are not allowed on loop9
[  213.382789][ T6008] usb 7-1: USB disconnect, device number 8
[  213.450270][   T39] usb 8-1: Using ep0 maxpacket: 8
[  213.453526][   T39] usb 8-1: config 0 has an invalid interface number: 55 but max is 0
[  213.457181][   T39] usb 8-1: config 0 has no interface number 0
[  213.460267][   T39] usb 8-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  213.465563][   T39] usb 8-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  213.470967][   T39] usb 8-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  213.475754][   T39] usb 8-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  213.481047][   T39] usb 8-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  213.485188][   T39] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.492558][   T39] usb 8-1: config 0 descriptor??
[  213.506616][   T39] ldusb 8-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  214.020402][ T5967] Bluetooth: hci4: command 0xfc11 tx timeout
[  214.028855][ T5965] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  214.102214][    C1] hpet: Lost 1 RTC interrupts
[  214.367140][ T8973] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  214.474168][   T40] audit: type=1400 audit(1776798190.297:739): avc:  denied  { write } for  pid=8974 comm="syz.1.958" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  214.661305][ T8981] FAULT_INJECTION: forcing a failure.
[  214.661305][ T8981] name failslab, interval 1, probability 0, space 0, times 0
[  214.671620][ T8981] CPU: 1 UID: 0 PID: 8981 Comm: syz.2.960 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  214.671644][ T8981] Tainted: [L]=SOFTLOCKUP
[  214.671649][ T8981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  214.671733][ T8981] Call Trace:
[  214.671738][ T8981]  <TASK>
[  214.671744][ T8981]  dump_stack_lvl+0x100/0x190
[  214.672971][ T8981]  should_fail_ex.cold+0x5/0xa
[  214.673281][ T8981]  should_failslab+0xc2/0x120
[  214.673689][ T8981]  __kmalloc_cache_noprof+0x7a/0x6f0
[  214.673952][ T8981]  ? p9_fid_create+0x45/0x460
[  214.675012][ T8981]  ? __pfx_v9fs_fid_find_inode+0x10/0x10
[  214.675502][ T8981]  ? v9fs_fid_find+0x1d7/0x380
[  214.675519][ T8981]  p9_fid_create+0x45/0x460
[  214.675537][ T8981]  p9_client_attach+0x91/0x2b0
[  214.675556][ T8981]  ? __pfx_p9_client_attach+0x10/0x10
[  214.675573][ T8981]  ? v9fs_fid_lookup+0x4cb/0xec0
[  214.675592][ T8981]  v9fs_fid_lookup+0x96f/0xec0
[  214.675610][ T8981]  v9fs_vfs_lookup+0x1a1/0x5b0
[  214.675630][ T8981]  ? __pfx_v9fs_vfs_lookup+0x10/0x10
[  214.675650][ T8981]  ? do_raw_spin_unlock+0x145/0x1e0
[  214.675787][ T8981]  ? _raw_spin_unlock+0x28/0x50
[  214.675910][ T8981]  lookup_one_qstr_excl+0x1cd/0x250
[  214.676031][ T8981]  ? mnt_want_write+0x161/0x450
[  214.676132][ T8981]  filename_create+0x1cf/0x400
[  214.676146][ T8981]  ? __pfx_filename_create+0x10/0x10
[  214.676165][ T8981]  filename_mknodat+0x190/0x7f0
[  214.676183][ T8981]  ? __pfx_filename_mknodat+0x10/0x10
[  214.676198][ T8981]  ? strncpy_from_user+0x19d/0x2d0
[  214.676372][ T8981]  ? do_getname+0x191/0x390
[  214.676391][ T8981]  __x64_sys_mknod+0x8f/0xc0
[  214.676407][ T8981]  do_syscall_64+0x10b/0xf80
[  214.676519][ T8981]  ? clear_bhb_loop+0x40/0x90
[  214.676536][ T8981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.676549][ T8981] RIP: 0033:0x7efce099c819
[  214.676563][ T8981] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  214.676576][ T8981] RSP: 002b:00007efce189d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  214.676671][ T8981] RAX: ffffffffffffffda RBX: 00007efce0c15fa0 RCX: 00007efce099c819
[  214.676679][ T8981] RDX: 0000000000000705 RSI: 0000000000000000 RDI: 0000200000001b80
[  214.676685][ T8981] RBP: 00007efce189d090 R08: 0000000000000000 R09: 0000000000000000
[  214.676692][ T8981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.676699][ T8981] R13: 00007efce0c16038 R14: 00007efce0c15fa0 R15: 00007ffccbed3af8
[  214.676715][ T8981]  </TASK>
[  214.792992][    C1] hpet: Lost 6 RTC interrupts
[  214.811639][ T8986] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  214.982587][   T40] audit: type=1400 audit(1776798190.817:740): avc:  denied  { append } for  pid=8988 comm="syz.1.964" name="hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  215.092894][ T8995] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  215.504273][ T9002] FAULT_INJECTION: forcing a failure.
[  215.504273][ T9002] name failslab, interval 1, probability 0, space 0, times 0
[  215.510735][ T9002] CPU: 3 UID: 0 PID: 9002 Comm: syz.2.968 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  215.510773][ T9002] Tainted: [L]=SOFTLOCKUP
[  215.510781][ T9002] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  215.510794][ T9002] Call Trace:
[  215.510803][ T9002]  <TASK>
[  215.510815][ T9002]  dump_stack_lvl+0x100/0x190
[  215.510868][ T9002]  should_fail_ex.cold+0x5/0xa
[  215.510902][ T9002]  should_failslab+0xc2/0x120
[  215.510927][ T9002]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  215.510961][ T9002]  ? __alloc_skb+0x140/0x710
[  215.511519][ T9002]  __alloc_skb+0x140/0x710
[  215.511545][ T9002]  ? __alloc_skb+0x5b7/0x710
[  215.511572][ T9002]  ? __pfx___alloc_skb+0x10/0x10
[  215.511617][ T9002]  alloc_skb_with_frags+0xdd/0x760
[  215.511654][ T9002]  ? find_held_lock+0x2b/0x80
[  215.511680][ T9002]  sock_alloc_send_pskb+0x801/0x980
[  215.511720][ T9002]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  215.511744][ T9002]  ? selinux_socket_getpeersec_dgram+0x1a4/0x380
[  215.511850][ T9002]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  215.511886][ T9002]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  215.511989][ T9002]  unix_dgram_sendmsg+0x3c7/0x1810
[  215.512225][ T9002]  ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10
[  215.512254][ T9002]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  215.512279][ T9002]  ? stack_trace_save+0x8e/0xc0
[  215.512311][ T9002]  sock_sendmsg+0x35b/0x3d0
[  215.512333][ T9002]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[  215.512357][ T9002]  ? __pfx_sock_sendmsg+0x10/0x10
[  215.512375][ T9002]  ? io_submit_sqes+0x9ea/0x24b0
[  215.512419][ T9002]  ? __lock_acquire+0x4a5/0x2630
[  215.512448][ T9002]  io_send+0x2fa/0x1250
[  215.512477][ T9002]  ? __pfx_io_send+0x10/0x10
[  215.512497][ T9002]  ? __fget_files+0x215/0x3d0
[  215.512528][ T9002]  ? __fget_files+0x21f/0x3d0
[  215.512556][ T9002]  __io_issue_sqe+0xe8/0x7a0
[  215.512580][ T9002]  ? io_file_get_normal+0xc3/0x300
[  215.512617][ T9002]  io_issue_sqe+0x88/0x13e0
[  215.512646][ T9002]  ? io_sendmsg_prep+0x450/0x540
[  215.512668][ T9002]  io_submit_sqes+0xafe/0x24b0
[  215.512711][ T9002]  __do_sys_io_uring_enter+0xa88/0x1b50
[  215.512747][ T9002]  ? __fget_files+0x21f/0x3d0
[  215.512770][ T9002]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  215.512804][ T9002]  ? fput+0x79/0x100
[  215.512831][ T9002]  ? ksys_write+0x1ac/0x250
[  215.512852][ T9002]  ? __pfx_ksys_write+0x10/0x10
[  215.512875][ T9002]  ? rcu_is_watching+0x12/0xc0
[  215.512988][ T9002]  do_syscall_64+0x10b/0xf80
[  215.513018][ T9002]  ? clear_bhb_loop+0x40/0x90
[  215.513044][ T9002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.513066][ T9002] RIP: 0033:0x7efce099c819
[  215.513086][ T9002] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  215.513106][ T9002] RSP: 002b:00007efce187c028 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  215.513128][ T9002] RAX: ffffffffffffffda RBX: 00007efce0c16090 RCX: 00007efce099c819
[  215.513145][ T9002] RDX: 000000000000771f RSI: 0000000000003215 RDI: 0000000000000000
[  215.513161][ T9002] RBP: 00007efce187c090 R08: 0000000000000000 R09: 0000000000000000
[  215.513174][ T9002] R10: 0000000000000016 R11: 0000000000000246 R12: 0000000000000001
[  215.513186][ T9002] R13: 00007efce0c16128 R14: 00007efce0c16090 R15: 00007ffccbed3af8
[  215.513246][ T9002]  </TASK>
[  215.926609][   T40] audit: type=1400 audit(1776798191.757:741): avc:  denied  { execute } for  pid=9005 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  215.936058][   T40] audit: type=1400 audit(1776798191.777:742): avc:  denied  { execute_no_trans } for  pid=9005 comm="syz-executor" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  216.033171][ T9009] netlink: 96 bytes leftover after parsing attributes in process `syz.2.971'.
[  216.090504][ T9016] netlink: 16 bytes leftover after parsing attributes in process `syz.2.973'.
[  216.120139][   T39] usb 8-1: USB disconnect, device number 10
[  216.128190][   T39] ldusb 8-1:0.55: LD USB Device #0 now disconnected
[  216.149508][ T5967] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  216.157411][ T5967] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  216.162208][ T5356] block nbd0: Possible stuck request ffff888028865080: control (read@0,1024B). Runtime 60 seconds
[  216.166943][ T5967] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  216.167516][ T5356] block nbd0: Possible stuck request ffff888028865240: control (read@1024,1024B). Runtime 60 seconds
[  216.175769][ T5356] block nbd0: Possible stuck request ffff888028865400: control (read@2048,1024B). Runtime 60 seconds
[  216.179833][ T5356] block nbd0: Possible stuck request ffff8880288655c0: control (read@3072,1024B). Runtime 60 seconds
[  216.187530][ T5967] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  216.199074][ T5967] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  216.210068][   T40] audit: type=1400 audit(1776798192.037:743): avc:  denied  { mounton } for  pid=9017 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  216.242939][ T9024] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  216.278109][ T9028] tmpfs: Unknown parameter ']ode'
[  216.313136][ T9033] SELinux: ebitmap start bit (1157628288) is beyond the end of the bitmap (1088)
[  216.324341][ T9033] SELinux: failed to load policy
[  216.398976][   T40] audit: type=1400 audit(1776798192.227:744): avc:  denied  { open } for  pid=9031 comm="syz.2.980" path="/dev/ptyq8" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  216.408987][   T40] audit: type=1400 audit(1776798192.247:745): avc:  denied  { ioctl } for  pid=9031 comm="syz.2.980" path="/dev/ptyq8" dev="devtmpfs" ino=135 ioctlcmd=0x5420 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  216.410934][ T9017] chnl_net:caif_netlink_parms(): no params data found
[  216.411414][ T9028] netlink: 16 bytes leftover after parsing attributes in process `syz.3.977'.
[  216.411429][ T9028] netlink: 12 bytes leftover after parsing attributes in process `syz.3.977'.
[  216.432959][ T9033] netlink: 56 bytes leftover after parsing attributes in process `syz.2.980'.
[  216.526843][ T9017] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.530362][ T9017] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.533636][ T9017] bridge_slave_0: entered allmulticast mode
[  216.538390][ T9017] bridge_slave_0: entered promiscuous mode
[  216.545427][ T9017] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.548228][ T9017] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.551870][ T9017] bridge_slave_1: entered allmulticast mode
[  216.556200][ T9017] bridge_slave_1: entered promiscuous mode
[  216.622464][ T9017] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  216.646054][ T9017] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  216.671464][ T9017] team0: Port device team_slave_0 added
[  216.675314][ T9017] team0: Port device team_slave_1 added
[  216.705266][ T9017] batman_adv: batadv0: Adding interface: batadv_slave_0
[  216.708497][ T9017] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  216.717793][ T9017] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  216.723657][ T9017] batman_adv: batadv0: Adding interface: batadv_slave_1
[  216.726277][ T9017] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  216.735740][ T9017] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  216.781977][ T9017] hsr_slave_0: entered promiscuous mode
[  216.785622][ T9017] hsr_slave_1: entered promiscuous mode
[  216.789426][ T9017] debugfs: 'hsr0' already exists in 'hsr'
[  216.793341][ T9017] Cannot create hsr debugfs directory
[  216.955118][ T9017] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  216.961704][ T9017] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  216.965382][ T9017] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  216.970581][ T9017] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  216.973779][ T9017] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  216.984330][ T9017] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  216.987640][ T9017] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  216.993184][ T9017] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  217.013947][ T9017] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.016305][ T9017] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.018785][ T9017] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.021401][ T9017] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.064306][ T9017] 8021q: adding VLAN 0 to HW filter on device bond0
[  217.076727][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.081724][ T9091] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  217.085404][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.104408][ T9017] 8021q: adding VLAN 0 to HW filter on device team0
[  217.126076][ T7191] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.129095][ T7191] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.134141][ T7191] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.137591][ T7191] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.319290][ T9017] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.326462][ T9103] netlink: 8 bytes leftover after parsing attributes in process `syz.3.989'.
[  217.334984][ T9103] netlink: 8 bytes leftover after parsing attributes in process `syz.3.989'.
[  217.505047][ T9017] veth0_vlan: entered promiscuous mode
[  217.513396][ T9017] veth1_vlan: entered promiscuous mode
[  217.533511][ T9017] veth0_macvtap: entered promiscuous mode
[  217.538811][ T9017] veth1_macvtap: entered promiscuous mode
[  217.549728][ T9017] batman_adv: batadv0: Interface activated: batadv_slave_0
[  217.556451][ T9017] batman_adv: batadv0: Interface activated: batadv_slave_1
[  217.565604][   T71] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  217.568966][   T71] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  217.573036][   T71] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  217.577619][   T71] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  217.626243][  T378] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  217.642207][  T378] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  217.684921][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  217.690060][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  217.814141][ T9118] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR
[  217.857348][   T40] kauditd_printk_skb: 22 callbacks suppressed
[  217.857369][   T40] audit: type=1400 audit(1776798193.687:768): avc:  denied  { read } for  pid=9121 comm="syz.4.969" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  217.880066][   T40] audit: type=1400 audit(1776798193.697:769): avc:  denied  { setattr } for  pid=9121 comm="syz.4.969" name="file0" dev="tmpfs" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  217.967898][ T9135] netlink: 8 bytes leftover after parsing attributes in process `syz.2.998'.
[  217.971431][ T9135] netlink: 8 bytes leftover after parsing attributes in process `syz.2.998'.
[  218.101757][ T9126] FAULT_INJECTION: forcing a failure.
[  218.101757][ T9126] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  218.110811][ T9126] CPU: 1 UID: 0 PID: 9126 Comm: syz.1.997 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  218.110834][ T9126] Tainted: [L]=SOFTLOCKUP
[  218.110840][ T9126] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  218.110848][ T9126] Call Trace:
[  218.110853][ T9126]  <TASK>
[  218.110858][ T9126]  dump_stack_lvl+0x100/0x190
[  218.110880][ T9126]  should_fail_ex.cold+0x5/0xa
[  218.110898][ T9126]  _copy_to_user+0x32/0xd0
[  218.110915][ T9126]  put_timespec64+0xb5/0x130
[  218.110930][ T9126]  ? __pfx_put_timespec64+0x10/0x10
[  218.110943][ T9126]  ? lockdep_hardirqs_on+0x78/0x100
[  218.110959][ T9126]  ? ktime_get_with_offset+0x2b6/0x3d0
[  218.110974][ T9126]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  218.111076][ T9126]  nanosleep_copyout+0xe3/0x130
[  218.111087][ T9126]  alarmtimer_do_nsleep+0x4a2/0x630
[  218.111103][ T9126]  ? __pfx_alarmtimer_do_nsleep+0x10/0x10
[  218.111117][ T9126]  ? ktime_get_with_offset+0x2b6/0x3d0
[  218.111129][ T9126]  ? ktime_get_with_offset+0x20d/0x3d0
[  218.111144][ T9126]  alarm_timer_nsleep+0x2d1/0x5c0
[  218.111159][ T9126]  ? __pfx_alarm_timer_nsleep+0x10/0x10
[  218.111176][ T9126]  ? __pfx_alarmtimer_fired+0x10/0x10
[  218.111188][ T9126]  ? __pfx_alarmtimer_nsleep_wakeup+0x10/0x10
[  218.111204][ T9126]  ? get_timespec64+0x147/0x240
[  218.111215][ T9126]  ? __pfx_get_timespec64+0x10/0x10
[  218.111230][ T9126]  __x64_sys_clock_nanosleep+0x336/0x480
[  218.111244][ T9126]  ? __pfx___x64_sys_clock_nanosleep+0x10/0x10
[  218.111257][ T9126]  ? rcu_is_watching+0x12/0xc0
[  218.111277][ T9126]  do_syscall_64+0x10b/0xf80
[  218.111290][ T9126]  ? clear_bhb_loop+0x40/0x90
[  218.111303][ T9126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.111314][ T9126] RIP: 0033:0x7f45a6d9c819
[  218.111324][ T9126] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  218.111335][ T9126] RSP: 002b:00007f45a7b6e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[  218.111346][ T9126] RAX: ffffffffffffffda RBX: 00007f45a7015fa0 RCX: 00007f45a6d9c819
[  218.111353][ T9126] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000000000000008
[  218.111360][ T9126] RBP: 00007f45a7b6e090 R08: 0000000000000000 R09: 0000000000000000
[  218.111366][ T9126] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001
[  218.111372][ T9126] R13: 00007f45a7016038 R14: 00007f45a7015fa0 R15: 00007ffe9ecb9518
[  218.111386][ T9126]  </TASK>
[  218.117113][   T40] audit: type=1800 audit(1776798193.947:770): pid=9148 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.999" name="bus" dev="overlay" ino=1306 res=0 errno=0
[  218.236137][   T40] audit: type=1400 audit(1776798194.067:771): avc:  denied  { append } for  pid=9155 comm="syz.1.1002" path="/255/file0/memory.events" dev="9p" ino=72876407 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  218.240771][ T5967] Bluetooth: hci4: command tx timeout
[  218.248367][   T40] audit: type=1400 audit(1776798194.067:772): avc:  denied  { map } for  pid=9155 comm="syz.1.1002" path="/255/file0/memory.events" dev="9p" ino=72876407 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  218.248408][   T40] audit: type=1400 audit(1776798194.077:773): avc:  denied  { lock } for  pid=9155 comm="syz.1.1002" path="/255/file0/file0" dev="9p" ino=72876095 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  218.478035][ T9177] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1005'.
[  218.488801][ T9177] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  218.740726][ T1432] ieee802154 phy0 wpan0: encryption failed: -22
[  218.743685][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  218.783448][    C1] hpet: Lost 1 RTC interrupts
[  219.176010][ T9191] serio: Serial port ptm2
[  219.237283][   T40] audit: type=1400 audit(1776798195.067:774): avc:  denied  { bind } for  pid=9190 comm="syz.2.1009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  219.271354][   T40] audit: type=1400 audit(1776798195.107:775): avc:  denied  { connect } for  pid=9190 comm="syz.2.1009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  219.375430][   T40] audit: type=1400 audit(1776798195.207:776): avc:  denied  { shutdown } for  pid=9196 comm="syz.3.1010" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  219.378181][ T9197] program syz.3.1010 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  219.598479][ T9197] syzkaller0: entered promiscuous mode
[  219.603112][ T9197] syzkaller0: entered allmulticast mode
[  220.245049][ T5967] Bluetooth: hci0: command 0x0401 tx timeout
[  220.329987][ T5967] Bluetooth: hci4: command tx timeout
[  222.134046][ T9219] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1018'.
[  222.141808][ T9219] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  222.220775][ T3446] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  222.380008][ T3446] usb 6-1: Using ep0 maxpacket: 8
[  222.384534][ T3446] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  222.388346][ T3446] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  222.393844][ T3446] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  222.398437][ T3446] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  222.400304][ T5967] Bluetooth: hci4: command tx timeout
[  222.404401][ T3446] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  222.412547][ T3446] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  222.416654][ T3446] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.647539][ T5967] Bluetooth: hci3: unexpected event 0x2f length: 509 > 260
[  222.647668][ T3446] usb 6-1: usb_control_msg returned -32
[  222.654756][ T3446] usbtmc 6-1:16.0: can't read capabilities
[  223.048221][ T9235] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  223.165492][ T9238] cgroup: Unknown subsys name 'cpuset'
[  223.511716][ T9241] usbtmc 6-1:16.0: usb_control_msg returned -32
[  224.479995][ T5967] Bluetooth: hci4: command tx timeout
[  225.114885][ T5635] usb 6-1: USB disconnect, device number 8
[  225.229335][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  225.229358][   T40] audit: type=1400 audit(1776798201.067:778): avc:  denied  { watch } for  pid=9251 comm="syz.4.1024" path="/syzcgroup/unified/syz4" dev="cgroup2" ino=208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  225.337745][ T9264] FAULT_INJECTION: forcing a failure.
[  225.337745][ T9264] name failslab, interval 1, probability 0, space 0, times 0
[  225.345430][ T9264] CPU: 3 UID: 0 PID: 9264 Comm: syz.4.1026 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  225.345464][ T9264] Tainted: [L]=SOFTLOCKUP
[  225.345471][ T9264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  225.345694][ T9264] Call Trace:
[  225.345704][ T9264]  <TASK>
[  225.345713][ T9264]  dump_stack_lvl+0x100/0x190
[  225.347435][ T9264]  should_fail_ex.cold+0x5/0xa
[  225.347907][ T9264]  should_failslab+0xc2/0x120
[  225.348484][ T9264]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  225.348597][ T9264]  ? __d_alloc+0x34/0xa40
[  225.348708][ T9264]  ? __pfx_stack_trace_save+0x10/0x10
[  225.348919][ T9264]  __d_alloc+0x34/0xa40
[  225.348949][ T9264]  d_alloc_parallel+0x111/0x14e0
[  225.348977][ T9264]  ? find_held_lock+0x2b/0x80
[  225.349099][ T9264]  ? __d_lookup+0x25c/0x4a0
[  225.349117][ T9264]  ? __pfx_d_alloc_parallel+0x10/0x10
[  225.349144][ T9264]  ? __d_lookup+0x266/0x4a0
[  225.349197][ T9264]  lookup_open.isra.0+0x57c/0x11b0
[  225.349227][ T9264]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  225.349252][ T9264]  ? __pfx___might_resched+0x10/0x10
[  225.349397][ T9264]  ? mnt_get_write_access+0x52/0x2f0
[  225.349434][ T9264]  ? __pfx_down_write+0x10/0x10
[  225.350046][ T9264]  ? mnt_get_write_access+0x1e9/0x2f0
[  225.350082][ T9264]  path_openat+0x2291/0x31a0
[  225.350114][ T9264]  ? kasan_save_stack+0x30/0x50
[  225.350144][ T9264]  ? __pfx_path_openat+0x10/0x10
[  225.350166][ T9264]  ? do_sys_openat2+0xc5/0x1e0
[  225.350268][ T9264]  ? do_syscall_64+0x10b/0xf80
[  225.350354][ T9264]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.350385][ T9264]  do_file_open+0x20e/0x430
[  225.350413][ T9264]  ? __pfx_do_file_open+0x10/0x10
[  225.350458][ T9264]  ? alloc_fd+0x476/0x790
[  225.350487][ T9264]  ? do_getname+0x191/0x390
[  225.350517][ T9264]  do_sys_openat2+0x10d/0x1e0
[  225.350549][ T9264]  ? __pfx_do_sys_openat2+0x10/0x10
[  225.350577][ T9264]  ? __fget_files+0x21f/0x3d0
[  225.350609][ T9264]  __x64_sys_creat+0xcc/0x120
[  225.350637][ T9264]  ? __pfx___x64_sys_creat+0x10/0x10
[  225.350663][ T9264]  ? __pfx_ksys_write+0x10/0x10
[  225.350681][ T9264]  ? rcu_is_watching+0x12/0xc0
[  225.350786][ T9264]  ? do_syscall_64+0x90/0xf80
[  225.350809][ T9264]  do_syscall_64+0x10b/0xf80
[  225.350832][ T9264]  ? clear_bhb_loop+0x40/0x90
[  225.350857][ T9264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.350878][ T9264] RIP: 0033:0x7fe90b59c819
[  225.350898][ T9264] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  225.350918][ T9264] RSP: 002b:00007fe90c461028 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  225.351016][ T9264] RAX: ffffffffffffffda RBX: 00007fe90b815fa0 RCX: 00007fe90b59c819
[  225.351028][ T9264] RDX: 0000000000000000 RSI: 0000000000000093 RDI: 0000200000000580
[  225.351040][ T9264] RBP: 00007fe90c461090 R08: 0000000000000000 R09: 0000000000000000
[  225.351051][ T9264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.351061][ T9264] R13: 00007fe90b816038 R14: 00007fe90b815fa0 R15: 00007fff186c2f78
[  225.351089][ T9264]  </TASK>
[  225.369047][ T9266] 9pnet_virtio: no channels available for device syz
[  225.491595][   T40] audit: type=1400 audit(1776798201.327:779): avc:  denied  { lock } for  pid=9265 comm="syz.3.1028" path="socket:[34870]" dev="sockfs" ino=34870 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  225.684453][   T40] audit: type=1400 audit(1776798201.517:780): avc:  denied  { connect } for  pid=9279 comm="syz.2.1032" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  225.693009][   T40] audit: type=1400 audit(1776798201.527:781): avc:  denied  { write } for  pid=9277 comm="syz.1.1031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  225.948215][ T9289] ksmbd: Unknown IPC event: 1, ignore.
[  225.952072][   T40] audit: type=1400 audit(1776798201.787:782): avc:  denied  { mount } for  pid=9290 comm="syz.4.1033" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  225.959479][ T9291] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  225.963085][   T40] audit: type=1400 audit(1776798201.787:783): avc:  denied  { mounton } for  pid=9290 comm="syz.4.1033" path="/8/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  225.968993][ T9291] tipc: Started in network mode
[  225.970552][   T40] audit: type=1400 audit(1776798201.807:784): avc:  denied  { read } for  pid=9290 comm="syz.4.1033" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  225.970580][   T40] audit: type=1400 audit(1776798201.807:785): avc:  denied  { read } for  pid=9290 comm="syz.4.1033" name="/" dev="overlay" ino=4611686018427387905 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  225.970602][   T40] audit: type=1400 audit(1776798201.807:786): avc:  denied  { open } for  pid=9290 comm="syz.4.1033" path="/8/file0" dev="overlay" ino=4611686018427387905 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  225.970626][   T40] audit: type=1400 audit(1776798201.807:787): avc:  denied  { read } for  pid=9290 comm="syz.4.1033" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  226.012988][ T9291] tipc: Node identity fff, cluster identity 4711
[  226.016022][ T9291] tipc: Node number set to 4095
[  226.029311][ T9291] tipc: Cannot configure node identity twice
[  226.047881][ T9291] kernel profiling enabled (shift: 5)
[  226.290293][ T9302] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1038'.
[  226.796872][ T9319] /dev/sr0: Can't open blockdev
[  226.925666][ T9328] ubi31: detaching mtd0
[  226.966423][ T9328] ubi31: mtd0 is detached
[  227.068418][ T9335] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  227.106753][ T9326] syz.1.1045: attempt to access beyond end of device
[  227.106753][ T9326] sr0: rw=6144, sector=128, nr_sectors = 8 limit=128
[  227.112619][ T9326] gfs2: error -5 reading superblock
[  227.342002][ T9344] FAULT_INJECTION: forcing a failure.
[  227.342002][ T9344] name failslab, interval 1, probability 0, space 0, times 0
[  227.348978][ T9344] CPU: 2 UID: 0 PID: 9344 Comm: syz.1.1049 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  227.349027][ T9344] Tainted: [L]=SOFTLOCKUP
[  227.349034][ T9344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  227.349130][ T9344] Call Trace:
[  227.349268][ T9344]  <TASK>
[  227.349278][ T9344]  dump_stack_lvl+0x100/0x190
[  227.349820][ T9344]  should_fail_ex.cold+0x5/0xa
[  227.350048][ T9344]  ? tomoyo_encode2+0xfb/0x3c0
[  227.350216][ T9344]  should_failslab+0xc2/0x120
[  227.350421][ T9344]  __kmalloc_noprof+0xe0/0x850
[  227.350502][ T9344]  tomoyo_encode2+0xfb/0x3c0
[  227.350526][ T9344]  tomoyo_encode+0x29/0x50
[  227.350546][ T9344]  tomoyo_realpath_from_path+0x18c/0x690
[  227.350576][ T9344]  tomoyo_path_number_perm+0x23c/0x580
[  227.350593][ T9344]  ? tomoyo_path_number_perm+0x22e/0x580
[  227.350610][ T9344]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  227.350648][ T9344]  ? find_held_lock+0x2b/0x80
[  227.350777][ T9344]  ? __fget_files+0x215/0x3d0
[  227.350844][ T9344]  ? hook_file_ioctl_common+0x149/0x410
[  227.350869][ T9344]  ? __fget_files+0x215/0x3d0
[  227.350894][ T9344]  ? __fget_files+0x21f/0x3d0
[  227.350919][ T9344]  security_file_ioctl+0xd3/0x230
[  227.350940][ T9344]  __x64_sys_ioctl+0xb7/0x210
[  227.350963][ T9344]  do_syscall_64+0x10b/0xf80
[  227.351316][ T9344]  ? clear_bhb_loop+0x40/0x90
[  227.351340][ T9344]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.351355][ T9344] RIP: 0033:0x7f45a6d9c819
[  227.351427][ T9344] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  227.351443][ T9344] RSP: 002b:00007f45a7b6e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  227.351515][ T9344] RAX: ffffffffffffffda RBX: 00007f45a7015fa0 RCX: 00007f45a6d9c819
[  227.351526][ T9344] RDX: 00002000000005c0 RSI: 000000000000890c RDI: 0000000000000004
[  227.351536][ T9344] RBP: 00007f45a7b6e090 R08: 0000000000000000 R09: 0000000000000000
[  227.351546][ T9344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.351563][ T9344] R13: 00007f45a7016038 R14: 00007f45a7015fa0 R15: 00007ffe9ecb9518
[  227.351588][ T9344]  </TASK>
[  227.439404][ T9344] ERROR: Out of memory at tomoyo_realpath_from_path.
[  227.721727][ T9351] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1051'.
[  227.960920][ T9358] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  227.963778][ T9358] IPv6: NLM_F_CREATE should be set when creating new route
[  228.627572][ T9387] FAULT_INJECTION: forcing a failure.
[  228.627572][ T9387] name failslab, interval 1, probability 0, space 0, times 0
[  228.633300][ T9387] CPU: 2 UID: 0 PID: 9387 Comm: syz.2.1065 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  228.633322][ T9387] Tainted: [L]=SOFTLOCKUP
[  228.633326][ T9387] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  228.633402][ T9387] Call Trace:
[  228.633523][ T9387]  <TASK>
[  228.633528][ T9387]  dump_stack_lvl+0x100/0x190
[  228.634073][ T9387]  should_fail_ex.cold+0x5/0xa
[  228.634210][ T9387]  should_failslab+0xc2/0x120
[  228.634493][ T9387]  __kmalloc_cache_noprof+0x7a/0x6f0
[  228.634602][ T9387]  ? vkms_plane_duplicate_state+0x87/0x130
[  228.634992][ T9387]  vkms_plane_duplicate_state+0x87/0x130
[  228.635013][ T9387]  drm_atomic_get_plane_state+0x279/0x760
[  228.635096][ T9387]  ? __lock_acquire+0x4a5/0x2630
[  228.635201][ T9387]  drm_atomic_set_property+0x72f/0x3db0
[  228.635217][ T9387]  ? __pfx_drm_atomic_set_property+0x10/0x10
[  228.635230][ T9387]  ? find_held_lock+0x2b/0x80
[  228.635239][ T9387]  ? __might_fault+0xc5/0x140
[  228.635256][ T9387]  ? __might_fault+0xc5/0x140
[  228.635276][ T9387]  drm_mode_atomic_ioctl+0x6c5/0x2680
[  228.635295][ T9387]  ? avc_has_extended_perms+0x484/0x1080
[  228.635448][ T9387]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  228.635461][ T9387]  ? __lock_acquire+0x4a5/0x2630
[  228.635483][ T9387]  ? drm_is_current_master+0x2c/0x40
[  228.635496][ T9387]  ? drm_is_current_master+0x2c/0x40
[  228.635509][ T9387]  ? do_raw_spin_unlock+0x145/0x1e0
[  228.635526][ T9387]  drm_ioctl_kernel+0x1f3/0x3e0
[  228.635538][ T9387]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  228.635551][ T9387]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  228.635566][ T9387]  drm_ioctl+0x5e6/0xc60
[  228.635579][ T9387]  ? __pfx_drm_mode_atomic_ioctl+0x10/0x10
[  228.635592][ T9387]  ? __pfx_drm_ioctl+0x10/0x10
[  228.635663][ T9387]  ? selinux_file_ioctl+0x13b/0x290
[  228.635676][ T9387]  ? selinux_file_ioctl+0xb6/0x290
[  228.635688][ T9387]  ? __pfx_drm_ioctl+0x10/0x10
[  228.635700][ T9387]  __x64_sys_ioctl+0x18e/0x210
[  228.635817][ T9387]  do_syscall_64+0x10b/0xf80
[  228.636540][ T9387]  ? clear_bhb_loop+0x40/0x90
[  228.636556][ T9387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.636567][ T9387] RIP: 0033:0x7efce099c819
[  228.636677][ T9387] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  228.636688][ T9387] RSP: 002b:00007efce189d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  228.636851][ T9387] RAX: ffffffffffffffda RBX: 00007efce0c15fa0 RCX: 00007efce099c819
[  228.636860][ T9387] RDX: 0000200000000180 RSI: 00000000c03864bc RDI: 0000000000000010
[  228.636869][ T9387] RBP: 00007efce189d090 R08: 0000000000000000 R09: 0000000000000000
[  228.636878][ T9387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  228.636887][ T9387] R13: 00007efce0c16038 R14: 00007efce0c15fa0 R15: 00007ffccbed3af8
[  228.636911][ T9387]  </TASK>
[  229.060518][ T9402] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1069'.
[  229.063982][ T9402] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1069'.
[  229.280204][  T846] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  229.449544][  T846] usb 8-1: Using ep0 maxpacket: 8
[  229.453007][  T846] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  229.456886][  T846] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  229.463433][  T846] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  229.467930][  T846] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  229.472986][  T846] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  229.479088][  T846] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  229.483138][  T846] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.723548][  T846] usb 8-1: usb_control_msg returned -32
[  229.730984][  T846] usbtmc 8-1:16.0: can't read capabilities
[  230.223565][ T9447] libceph: resolve '½@½Ée2²âOAq§¨­cz' (ret=-3): failed
[  230.258592][ T9450] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1083'.
[  230.263933][ T9450] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  230.310555][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  230.310670][   T40] audit: type=1400 audit(1776798206.137:798): avc:  denied  { mount } for  pid=9452 comm="syz.2.1084" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  230.513391][ T9459] usbtmc 8-1:16.0: usb_control_msg returned -32
[  230.811833][ T9475] syzkaller0: entered promiscuous mode
[  230.813817][ T9475] syzkaller0: entered allmulticast mode
[  231.218195][   T39] usb 8-1: USB disconnect, device number 11
[  231.400054][ T6049] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  231.525533][ T9502] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1102'.
[  231.528708][   T40] audit: type=1400 audit(1776798207.357:799): avc:  denied  { connect } for  pid=9503 comm="syz.1.1101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  231.539158][ T9502] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  231.545060][ T9504] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1101'.
[  231.548983][ T9504] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1101'.
[  231.558527][ T9504] overlayfs: conflicting options: nfs_export=on,index=off
[  231.570015][ T6049] usb 9-1: Using ep0 maxpacket: 8
[  231.574711][ T6049] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  231.580476][ T6049] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  231.584501][ T6049] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  231.589209][ T6049] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  231.593226][ T6049] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  231.598706][ T6049] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  231.609762][ T6049] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.826127][ T6049] usb 9-1: usb_control_msg returned -32
[  231.828171][ T6049] usbtmc 9-1:16.0: can't read capabilities
[  231.840248][ T6049] usb 9-1: USB disconnect, device number 2
[  232.392135][   T40] audit: type=1400 audit(1776798208.227:800): avc:  denied  { shutdown } for  pid=9524 comm="syz.1.1114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  232.487240][   T40] audit: type=1400 audit(1776798208.317:801): avc:  denied  { accept } for  pid=9526 comm="syz.1.1107" lport=37230 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  232.498256][   T40] audit: type=1400 audit(1776798208.317:802): avc:  denied  { getopt } for  pid=9526 comm="syz.1.1107" lport=37230 faddr=255.255.255.254 fport=4096 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  232.517224][ T9523] syz.2.1106: attempt to access beyond end of device
[  232.517224][ T9523] sr0: rw=6144, sector=128, nr_sectors = 8 limit=128
[  232.527337][ T9523] gfs2: error -5 reading superblock
[  232.661211][   T40] audit: type=1400 audit(1776798208.497:803): avc:  denied  { read } for  pid=9540 comm="syz.4.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  232.749806][    C1] hpet: Lost 1 RTC interrupts
[  232.862783][ T9544] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1113'.
[  232.983112][ T9546] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1115'.
[  232.989193][ T9546] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  233.972162][   T40] audit: type=1400 audit(1776798209.807:804): avc:  denied  { name_bind 0x1000000 } for  pid=9590 comm="syz.4.1134" path="socket:[36139]" dev="sockfs" ino=36139 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  234.043654][ T9601] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1139'.
[  234.048546][ T9601] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  234.240271][ T6040] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  234.391151][ T9614] io-wq is not configured for unbound workers
[  234.392130][   T40] audit: type=1400 audit(1776798210.227:805): avc:  denied  { write } for  pid=9611 comm="syz.3.1140" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  234.392774][ T6040] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  234.406614][ T6040] usb 6-1: config 0 has no interfaces?
[  234.409819][ T6040] usb 6-1: New USB device found, idVendor=0471, idProduct=0307, bcdDevice=e4.df
[  234.415580][ T6040] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.425346][ T6040] usb 6-1: config 0 descriptor??
[  234.440011][ T9614] ªªªªª5gæ¹Q[Ô: renamed from lo (while UP)
[  234.446143][   T40] audit: type=1400 audit(1776798210.277:806): avc:  denied  { accept } for  pid=9613 comm="syz.2.1142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  234.876162][ T9595] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.898661][ T9595] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.914715][ T3446] usb 6-1: USB disconnect, device number 9
[  234.953302][ T9639] overlayfs: failed to set uuid (315/file1, err=-1); falling back to uuid=null.
[  234.961846][ T9639] overlayfs: failed to verify upper root origin
[  235.049091][ T9643] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1152'.
[  235.204023][ T5967] Bluetooth: hci0: command 0x0401 tx timeout
[  235.306221][ T9657] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1159'.
[  235.315045][ T9657] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  235.478027][ T9668] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1162'.
[  235.534483][ T9670] openvswitch: netlink: Invalid VLAN frame
[  235.681208][ T6040] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  235.844213][ T6040] usb 7-1: config index 0 descriptor too short (expected 45, got 36)
[  235.848289][ T6040] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  235.853951][ T6040] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  235.858372][ T6040] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  235.864231][ T6040] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  235.868722][ T6040] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.877149][ T6040] usb 7-1: config 0 descriptor??
[  236.101153][ T6040] hid_parser_main: 4086 callbacks suppressed
[  236.101182][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.107312][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.111017][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.114575][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.117942][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.121305][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.124512][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.128598][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.133612][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.136848][ T6040] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  236.186401][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  236.186515][   T40] audit: type=1400 audit(1776798212.017:812): avc:  denied  { read } for  pid=9674 comm="syz.4.1164" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  236.201076][   T40] audit: type=1400 audit(1776798212.037:813): avc:  denied  { ioctl } for  pid=9674 comm="syz.4.1164" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  236.204055][ T6040] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  236.295833][ T5304] Bluetooth: hci5: sending frame failed (-49)
[  236.306181][ T5967] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  236.317399][ T9677] batadv_slave_1: entered promiscuous mode
[  236.325523][ T9676] batadv_slave_1: left promiscuous mode
[  236.402165][ T9673] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1161'.
[  236.406108][ T9673] Failed to get privilege flags for destination (handle=0x2:0x80)
[  236.408919][ T9687] Failed to get privilege flags for destination (handle=0x2:0x80)
[  236.448561][ T6049] usb 7-1: USB disconnect, device number 9
[  236.478449][ T9693] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1168'.
[  236.478996][ T9694] binder: 9692:9694 ioctl c0306201 200000000080 returned -14
[  236.489616][ T9694] binder: 9692:9694 ioctl c0306201 2000000003c0 returned -14
[  236.493699][   T40] audit: type=1400 audit(1776798212.337:814): avc:  denied  { call } for  pid=9692 comm="syz.3.1169" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  236.496042][ T9694] binder: 9692:9694 ioctl c0186e87 2000000001c0 returned -22
[  236.531679][   T40] audit: type=1400 audit(1776798212.357:815): avc:  denied  { ioctl } for  pid=9691 comm="syz.1.1168" path="socket:[35832]" dev="sockfs" ino=35832 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  236.635873][ T9706] FAULT_INJECTION: forcing a failure.
[  236.635873][ T9706] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  236.640750][ T9706] CPU: 3 UID: 0 PID: 9706 Comm: syz.1.1173 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  236.640771][ T9706] Tainted: [L]=SOFTLOCKUP
[  236.640775][ T9706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  236.640879][ T9706] Call Trace:
[  236.640886][ T9706]  <TASK>
[  236.640894][ T9706]  dump_stack_lvl+0x100/0x190
[  236.641652][ T9706]  should_fail_ex.cold+0x5/0xa
[  236.641820][ T9706]  _copy_from_user+0x2e/0xd0
[  236.642048][ T9706]  get_user_ifreq+0xe7/0x250
[  236.642485][ T9706]  sock_ioctl+0x467/0x6b0
[  236.642499][ T9706]  ? __pfx_sock_ioctl+0x10/0x10
[  236.642511][ T9706]  ? hook_file_ioctl_common+0x149/0x410
[  236.642746][ T9706]  ? selinux_file_ioctl+0x13b/0x290
[  236.642766][ T9706]  ? selinux_file_ioctl+0xb6/0x290
[  236.642784][ T9706]  ? __pfx_sock_ioctl+0x10/0x10
[  236.642807][ T9706]  __x64_sys_ioctl+0x18e/0x210
[  236.643102][ T9706]  do_syscall_64+0x10b/0xf80
[  236.643729][ T9706]  ? clear_bhb_loop+0x40/0x90
[  236.643746][ T9706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  236.643758][ T9706] RIP: 0033:0x7f45a6d9c819
[  236.643771][ T9706] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  236.643782][ T9706] RSP: 002b:00007f45a4ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  236.643863][ T9706] RAX: ffffffffffffffda RBX: 00007f45a7016090 RCX: 00007f45a6d9c819
[  236.643870][ T9706] RDX: 00002000000005c0 RSI: 00000000000089f3 RDI: 0000000000000003
[  236.643877][ T9706] RBP: 00007f45a4ff6090 R08: 0000000000000000 R09: 0000000000000000
[  236.643884][ T9706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  236.643890][ T9706] R13: 00007f45a7016128 R14: 00007f45a7016090 R15: 00007ffe9ecb9518
[  236.643905][ T9706]  </TASK>
[  236.800379][  T846] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  236.950138][  T846] usb 8-1: Using ep0 maxpacket: 8
[  236.957684][  T846] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  236.962182][  T846] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  236.966239][  T846] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  236.969469][  T846] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  236.973223][  T846] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  236.978676][  T846] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  236.986365][  T846] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.166874][   T40] audit: type=1400 audit(1776798212.997:816): avc:  denied  { bind } for  pid=9723 comm="syz.2.1181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  237.201070][   T40] audit: type=1400 audit(1776798213.037:817): avc:  denied  { write } for  pid=9698 comm="syz.3.1171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  237.208136][  T846] usb 8-1: usb_control_msg returned -32
[  237.211270][  T846] usbtmc 8-1:16.0: can't read capabilities
[  237.217642][   T40] audit: type=1400 audit(1776798213.047:818): avc:  denied  { firmware_load } for  pid=9718 comm="syz.4.1179" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  237.282732][ T5967] Bluetooth: hci0: command 0x0401 tx timeout
[  237.551669][   T40] audit: type=1400 audit(1776798213.387:819): avc:  denied  { connect } for  pid=9738 comm="syz.2.1186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  237.908741][ T9722] syz.4.1179 (9722) used greatest stack depth: 18984 bytes left
[  238.304269][    C1] hpet: Lost 1 RTC interrupts
[  238.362999][ T9761] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1193'.
[  238.378871][ T9761] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  238.381768][ T9764] FAULT_INJECTION: forcing a failure.
[  238.381768][ T9764] name failslab, interval 1, probability 0, space 0, times 0
[  238.382519][ T9764] CPU: 1 UID: 0 PID: 9764 Comm: syz.4.1192 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  238.382547][ T9764] Tainted: [L]=SOFTLOCKUP
[  238.382553][ T9764] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  238.382633][ T9764] Call Trace:
[  238.382702][ T9764]  <TASK>
[  238.382710][ T9764]  dump_stack_lvl+0x100/0x190
[  238.383389][ T9764]  should_fail_ex.cold+0x5/0xa
[  238.383953][ T9764]  ? tomoyo_realpath_from_path+0xb6/0x690
[  238.384602][ T9764]  should_failslab+0xc2/0x120
[  238.384936][ T9764]  __kmalloc_noprof+0xe0/0x850
[  238.385019][ T9764]  ? kfree+0x1dd/0x6c0
[  238.385041][ T9764]  tomoyo_realpath_from_path+0xb6/0x690
[  238.385065][ T9764]  tomoyo_path_number_perm+0x23c/0x580
[  238.385084][ T9764]  ? tomoyo_path_number_perm+0x22e/0x580
[  238.385130][ T9764]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  238.385174][ T9764]  ? find_held_lock+0x2b/0x80
[  238.385336][ T9764]  ? __fget_files+0x215/0x3d0
[  238.385441][ T9764]  ? hook_file_ioctl_common+0x149/0x410
[  238.385465][ T9764]  ? __fget_files+0x215/0x3d0
[  238.385497][ T9764]  ? __fget_files+0x21f/0x3d0
[  238.385524][ T9764]  security_file_ioctl+0xd3/0x230
[  238.385545][ T9764]  __x64_sys_ioctl+0xb7/0x210
[  238.385564][ T9764]  do_syscall_64+0x10b/0xf80
[  238.386173][ T9764]  ? clear_bhb_loop+0x40/0x90
[  238.386194][ T9764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.386211][ T9764] RIP: 0033:0x7fe90b59c819
[  238.386315][ T9764] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  238.386332][ T9764] RSP: 002b:00007fe90c440028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  238.386396][ T9764] RAX: ffffffffffffffda RBX: 00007fe90b816090 RCX: 00007fe90b59c819
[  238.386407][ T9764] RDX: 0000200000000140 RSI: 000000004040aea0 RDI: 0000000000000006
[  238.386416][ T9764] RBP: 00007fe90c440090 R08: 0000000000000000 R09: 0000000000000000
[  238.386425][ T9764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  238.386433][ T9764] R13: 00007fe90b816128 R14: 00007fe90b816090 R15: 00007fff186c2f78
[  238.386456][ T9764]  </TASK>
[  238.386534][ T9764] ERROR: Out of memory at tomoyo_realpath_from_path.
[  238.719223][ T9774] netlink: 232 bytes leftover after parsing attributes in process `syz.4.1195'.
[  238.946240][ T9774] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1195'.
[  239.080228][ T6049] usb 7-1: new low-speed USB device number 10 using dummy_hcd
[  239.181842][ T9783] syzkaller1: entered promiscuous mode
[  239.184966][ T9783] syzkaller1: entered allmulticast mode
[  239.246396][ T6049] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  239.252586][ T6049] usb 7-1: config 0 has no interface number 0
[  239.254698][ T6049] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  239.259119][ T6049] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  239.263069][ T6049] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  239.265825][ T9785] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  239.266346][ T6049] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.271560][ T9785] syzkaller0: entered promiscuous mode
[  239.275382][ T9785] syzkaller0: entered allmulticast mode
[  239.276241][ T6049] usb 7-1: config 0 descriptor??
[  239.281442][ T9770] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  239.291294][ T6049] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[  239.304154][ T9785] tipc: Resetting bearer <eth:syzkaller0>
[  239.316785][ T9784] tipc: Resetting bearer <eth:syzkaller0>
[  239.336651][ T9784] tipc: Disabling bearer <eth:syzkaller0>
[  239.489096][ T6049] usb 7-1: USB disconnect, device number 10
[  239.577770][   T60] usb 8-1: USB disconnect, device number 12
[  239.578229][ T5967] Bluetooth: hci5: sending frame failed (-49)
[  239.599196][ T5965] Bluetooth: hci5: Entering manufacturer mode failed (-49)
[  239.665221][ T9804] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1206'.
[  239.669189][ T9801] syzkaller1: entered promiscuous mode
[  239.670466][ T9804] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  239.671813][ T9801] syzkaller1: entered allmulticast mode
[  239.856324][   T40] audit: type=1400 audit(1776798215.687:820): avc:  denied  { setattr } for  pid=9812 comm="syz.3.1209" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  239.874729][ T9813] netlink: 'syz.3.1209': attribute type 1 has an invalid length.
[  239.878521][ T9813] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1209'.
[  240.029976][ T3446] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  240.180010][ T3446] usb 6-1: Using ep0 maxpacket: 32
[  240.188123][ T3446] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  240.193395][ T3446] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  240.196482][ T3446] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  240.200830][ T3446] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  240.205224][ T3446] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  240.209301][ T3446] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  240.212714][ T3446] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  240.215965][ T3446] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  240.220726][ T3446] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  240.224907][ T3446] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.231566][ T3446] usb 6-1: config 0 descriptor??
[  240.292930][ T9824] syzkaller0: entered promiscuous mode
[  240.494140][ T3446] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 10 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  240.508320][ T9838] fuse: Bad value for 'group_id'
[  240.512141][ T9838] fuse: Bad value for 'group_id'
[  240.736387][   T60] usb 6-1: USB disconnect, device number 10
[  240.750243][   T60] usblp0: removed
[  241.053870][ T9867] binder: 9866:9867 ioctl c0306201 200000000080 returned -14
[  241.058710][ T9867] binder: 9866:9867 ioctl c0306201 2000000003c0 returned -14
[  241.395015][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  241.395036][   T40] audit: type=1400 audit(1776798217.227:823): avc:  denied  { ioctl } for  pid=9875 comm="syz.3.1232" path="socket:[36506]" dev="sockfs" ino=36506 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  241.495674][ T9883] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  241.499183][ T9883] binder: 9882:9883 ioctl c00c6211 0 returned -14
[  241.503776][ T9883] syzkaller0: MTU too low for tipc bearer
[  241.506166][ T9883] tipc: Disabling bearer <eth:syzkaller0>
[  241.535937][ T9885] syzkaller0: entered promiscuous mode
[  241.538955][ T9885] syzkaller0: entered allmulticast mode
[  241.738327][ T9894] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1239'.
[  241.791218][ T9894] syzkaller0: entered promiscuous mode
[  241.793396][ T9894] syzkaller0: entered allmulticast mode
[  241.997045][ T9900] fuse: Unknown parameter 'η<0x0000000000000006'
[  242.834767][   T40] audit: type=1400 audit(1776798218.667:824): avc:  denied  { write } for  pid=9921 comm="syz.2.1245" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  243.066167][   T40] audit: type=1400 audit(1776798218.897:825): avc:  denied  { setopt } for  pid=9926 comm="syz.2.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  243.066423][   T40] audit: type=1400 audit(1776798218.897:826): avc:  denied  { write } for  pid=9926 comm="syz.2.1248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  243.127402][    C1] hpet: Lost 1 RTC interrupts
[  243.279620][ T9933] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  244.067100][   T40] audit: type=1326 audit(1776798219.897:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9944 comm="syz.4.1254" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe90b59c819 code=0x0
[  244.468837][ T9959] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1259'.
[  244.472980][ T9959] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1259'.
[  244.547154][   T40] audit: type=1400 audit(1776798220.377:828): avc:  denied  { write } for  pid=9958 comm="syz.3.1259" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  244.548607][ T9961] program syz.2.1260 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  244.601424][ T9964] FAULT_INJECTION: forcing a failure.
[  244.601424][ T9964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  244.605711][ T9964] CPU: 1 UID: 0 PID: 9964 Comm: syz.2.1261 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  244.605730][ T9964] Tainted: [L]=SOFTLOCKUP
[  244.605734][ T9964] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  244.605741][ T9964] Call Trace:
[  244.605747][ T9964]  <TASK>
[  244.605753][ T9964]  dump_stack_lvl+0x100/0x190
[  244.605774][ T9964]  should_fail_ex.cold+0x5/0xa
[  244.605791][ T9964]  _copy_from_user+0x2e/0xd0
[  244.605882][ T9964]  copy_from_sockptr_offset.constprop.0+0x12c/0x150
[  244.606243][ T9964]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  244.606259][ T9964]  do_sock_getsockopt+0x530/0x6e0
[  244.606269][ T9964]  ? __lock_acquire+0x4a5/0x2630
[  244.606286][ T9964]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  244.606296][ T9964]  ? find_held_lock+0x2b/0x80
[  244.606305][ T9964]  ? ksys_write+0x190/0x250
[  244.606368][ T9964]  ? find_held_lock+0x2b/0x80
[  244.606381][ T9964]  ? __fget_files+0x21f/0x3d0
[  244.606398][ T9964]  __sys_getsockopt+0x148/0x260
[  244.606417][ T9964]  ? __x64_sys_getsockopt+0xbd/0x160
[  244.606431][ T9964]  __x64_sys_getsockopt+0xbd/0x160
[  244.606445][ T9964]  ? do_syscall_64+0x90/0xf80
[  244.606460][ T9964]  ? lockdep_hardirqs_on+0x78/0x100
[  244.606539][ T9964]  do_syscall_64+0x10b/0xf80
[  244.606552][ T9964]  ? clear_bhb_loop+0x40/0x90
[  244.606566][ T9964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.606577][ T9964] RIP: 0033:0x7efce099c819
[  244.606588][ T9964] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  244.606598][ T9964] RSP: 002b:00007efce189d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  244.606610][ T9964] RAX: ffffffffffffffda RBX: 00007efce0c15fa0 RCX: 00007efce099c819
[  244.606617][ T9964] RDX: 0000000000000018 RSI: 0000000000000084 RDI: 0000000000000004
[  244.606622][ T9964] RBP: 00007efce189d090 R08: 0000200000000300 R09: 0000000000000000
[  244.606628][ T9964] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  244.606634][ T9964] R13: 00007efce0c16038 R14: 00007efce0c15fa0 R15: 00007ffccbed3af8
[  244.606648][ T9964]  </TASK>
[  244.684494][    C1] hpet: Lost 4 RTC interrupts
[  244.729579][ T9966] Invalid logical block size (-1)
[  244.807600][   T40] audit: type=1326 audit(1776798220.637:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9969 comm="syz.2.1264" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efce099c819 code=0x0
[  244.830368][ T9972] /dev/nullb0: Can't open blockdev
[  244.834461][ T9972] /dev/nullb0: Can't open blockdev
[  244.922621][   T40] audit: type=1326 audit(1776798220.757:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9969 comm="syz.2.1264" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efce099c819 code=0x7ffc0000
[  244.999741][ T9985] binder: 9984:9985 ioctl c0306201 200000000080 returned -14
[  245.040718][ T9985] binder: 9984:9985 ioctl c0306201 2000000003c0 returned -14
[  245.043976][ T9985] FAULT_INJECTION: forcing a failure.
[  245.043976][ T9985] name failslab, interval 1, probability 0, space 0, times 0
[  245.052858][ T9985] CPU: 0 UID: 0 PID: 9985 Comm: syz.1.1270 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  245.052887][ T9985] Tainted: [L]=SOFTLOCKUP
[  245.052893][ T9985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  245.052901][ T9985] Call Trace:
[  245.052905][ T9985]  <TASK>
[  245.052910][ T9985]  dump_stack_lvl+0x100/0x190
[  245.052939][ T9985]  should_fail_ex.cold+0x5/0xa
[  245.052965][ T9985]  should_failslab+0xc2/0x120
[  245.052986][ T9985]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  245.053008][ T9985]  ? ptlock_alloc+0x1f/0x70
[  245.053037][ T9985]  ptlock_alloc+0x1f/0x70
[  245.053059][ T9985]  pte_alloc_one+0x82/0x3d0
[  245.075811][ T9985]  __pte_alloc+0x6d/0x3e0
[  245.075825][ T9985]  ? __pfx___pte_alloc+0x10/0x10
[  245.075838][ T9985]  ? walk_to_pmd+0x302/0x4c0
[  245.075853][ T9985]  get_locked_pte+0xa1/0xc0
[  245.075867][ T9985]  insert_page+0xcc/0x220
[  245.075882][ T9985]  ? __pfx_insert_page+0x10/0x10
[  245.075904][ T9985]  vm_insert_page+0x2c0/0x400
[  245.075924][ T9985]  binder_alloc_new_buf+0x21dd/0x30b0
[  245.076093][ T9985]  ? __pfx_binder_alloc_new_buf+0x10/0x10
[  245.076113][ T9985]  binder_transaction+0x1f70/0x9e50
[  245.076131][ T9985]  ? __lock_acquire+0x4a5/0x2630
[  245.076151][ T9985]  ? __lock_acquire+0x4a5/0x2630
[  245.076167][ T9985]  ? __pfx_binder_transaction+0x10/0x10
[  245.076182][ T9985]  ? __lock_acquire+0x4a5/0x2630
[  245.076199][ T9985]  ? __lock_acquire+0x4a5/0x2630
[  245.076220][ T9985]  ? find_held_lock+0x2b/0x80
[  245.076232][ T9985]  ? __lock_acquire+0x4a5/0x2630
[  245.076246][ T9985]  ? __lock_acquire+0x4a5/0x2630
[  245.076260][ T9985]  ? kernel_text_address+0x8d/0x100
[  245.076361][ T9985]  ? __pfx_widen_string+0x10/0x10
[  245.076373][ T9985]  ? __kernel_text_address+0xd/0x30
[  245.076391][ T9985]  ? find_held_lock+0x2b/0x80
[  245.076401][ T9985]  ? __might_fault+0xc5/0x140
[  245.076418][ T9985]  ? __might_fault+0xc5/0x140
[  245.076440][ T9985]  binder_thread_write+0x1303/0x4db0
[  245.076453][ T9985]  ? __kasan_slab_free+0x5f/0x80
[  245.076463][ T9985]  ? kfree+0x223/0x6c0
[  245.076480][ T9985]  ? __lock_acquire+0x4a5/0x2630
[  245.076498][ T9985]  ? __pfx_binder_thread_write+0x10/0x10
[  245.076514][ T9985]  ? binder_debug+0xe0/0x190
[  245.076530][ T9985]  ? __pfx_binder_debug+0x10/0x10
[  245.076546][ T9985]  ? binder_debug+0xe0/0x190
[  245.076561][ T9985]  ? __pfx_binder_debug+0x10/0x10
[  245.076586][ T9985]  binder_ioctl+0x28f8/0x7550
[  245.076602][ T9985]  ? tomoyo_path_number_perm+0x188/0x580
[  245.076620][ T9985]  ? __pfx_binder_ioctl+0x10/0x10
[  245.076633][ T9985]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  245.076716][ T9985]  ? do_vfs_ioctl+0x226/0x13e0
[  245.076728][ T9985]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  245.076740][ T9985]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  245.076758][ T9985]  ? hook_file_ioctl_common+0x149/0x410
[  245.076778][ T9985]  ? selinux_file_ioctl+0x13b/0x290
[  245.076790][ T9985]  ? selinux_file_ioctl+0xb6/0x290
[  245.076804][ T9985]  ? __pfx_binder_ioctl+0x10/0x10
[  245.076815][ T9985]  __x64_sys_ioctl+0x18e/0x210
[  245.076827][ T9985]  do_syscall_64+0x10b/0xf80
[  245.076842][ T9985]  ? clear_bhb_loop+0x40/0x90
[  245.076857][ T9985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  245.076869][ T9985] RIP: 0033:0x7f45a6d9c819
[  245.076881][ T9985] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  245.076893][ T9985] RSP: 002b:00007f45a7b6e028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  245.076905][ T9985] RAX: ffffffffffffffda RBX: 00007f45a7015fa0 RCX: 00007f45a6d9c819
[  245.076912][ T9985] RDX: 0000200000000000 RSI: 00000000c0306201 RDI: 0000000000000003
[  245.076919][ T9985] RBP: 00007f45a7b6e090 R08: 0000000000000000 R09: 0000000000000000
[  245.076925][ T9985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  245.076931][ T9985] R13: 00007f45a7016038 R14: 00007f45a7015fa0 R15: 00007ffe9ecb9518
[  245.076946][ T9985]  </TASK>
[  245.181498][   T39] ------------[ cut here ]------------
[  245.183957][ T9985] binder_alloc: 9984: binder_install_single_page failed to insert page at offset 0 with -12
[  245.186958][   T39] [CRTC:39:crtc-0] vblank wait timed out
[  245.253023][   T39] WARNING: drivers/gpu/drm/drm_atomic_helper.c:1921 at drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0, CPU#2: kworker/2:1/39
[  245.259655][   T39] Modules linked in:
[  245.262337][   T39] CPU: 2 UID: 0 PID: 39 Comm: kworker/2:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  245.267407][   T39] Tainted: [L]=SOFTLOCKUP
[  245.269301][   T39] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  245.273872][   T39] Workqueue: events drm_fb_helper_damage_work
[  245.276471][   T39] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  245.279825][   T39] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d e8 de 3e 0b 8b b3 d0 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 f3 20 61 fc e9 7c fe ff ff e8 d9
[  245.288482][   T39] RSP: 0018:ffffc900007376e8 EFLAGS: 00010246
[  245.291882][   T39] RAX: 0000000000000000 RBX: ffff8880275a0040 RCX: 1ffff11004eb4022
[  245.295587][   T39] RDX: ffff888026989520 RSI: 0000000000000027 RDI: ffffffff90e738c0
[  245.299024][   T39] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  245.302516][   T39] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  245.305922][   T39] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880293d9400
[  245.309574][   T39] FS:  0000000000000000(0000) GS:ffff8880d64de000(0000) knlGS:0000000000000000
[  245.313497][   T39] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  245.316408][   T39] CR2: 00007fe90c43fff8 CR3: 000000005d283000 CR4: 0000000000352ef0
[  245.319827][   T39] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000002
[  245.323377][   T39] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  245.326763][   T39] Call Trace:
[  245.328163][   T39]  <TASK>
[  245.329425][   T39]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  245.333213][   T39]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  245.336081][   T39]  ? lockdep_hardirqs_on+0x78/0x100
[  245.338333][   T39]  ? __pfx_autoremove_wake_function+0x10/0x10
[  245.341136][   T39]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  245.343900][   T39]  drm_atomic_helper_commit_tail+0xff/0x130
[  245.346589][   T39]  commit_tail+0x338/0x430
[  245.348782][   T39]  drm_atomic_helper_commit+0x303/0x380
[  245.351366][   T39]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  245.353946][   T39]  drm_atomic_commit+0x230/0x300
[  245.356032][   T39]  ? __pfx_drm_atomic_commit+0x10/0x10
[  245.358440][   T39]  ? __pfx___drm_printfn_info+0x10/0x10
[  245.361546][   T39]  ? modeset_lock+0x114/0x6d0
[  245.364310][   T39]  drm_atomic_helper_dirtyfb+0x603/0x790
[  245.366916][   T39]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  245.369556][   T39]  ? do_raw_spin_lock+0x128/0x260
[  245.372176][   T39]  ? find_held_lock+0x2b/0x80
[  245.374409][   T39]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  245.377404][   T39]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  245.380233][   T39]  drm_fb_helper_damage_work+0x348/0x640
[  245.382574][   T39]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  245.385199][   T39]  ? rcu_is_watching+0x12/0xc0
[  245.387565][   T39]  process_one_work+0xa0e/0x1980
[  245.390393][   T39]  ? __pfx_process_one_work+0x10/0x10
[  245.392748][   T39]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  245.395347][   T39]  worker_thread+0x5ef/0xe50
[  245.397424][   T39]  ? kthread+0x13a/0x450
[  245.399328][   T39]  ? __pfx_worker_thread+0x10/0x10
[  245.401726][   T39]  kthread+0x370/0x450
[  245.403671][   T39]  ? __pfx_kthread+0x10/0x10
[  245.405834][   T39]  ret_from_fork+0x72b/0xd50
[  245.407881][   T39]  ? __pfx_ret_from_fork+0x10/0x10
[  245.409993][   T39]  ? __switch_to+0x800/0x1100
[  245.412029][   T39]  ? __pfx_kthread+0x10/0x10
[  245.414070][   T39]  ret_from_fork_asm+0x1a/0x30
[  245.416456][   T39]  </TASK>
[  245.418363][   T39] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  245.421841][   T39] CPU: 2 UID: 0 PID: 39 Comm: kworker/2:1 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  245.426122][   T39] Tainted: [L]=SOFTLOCKUP
[  245.427953][   T39] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  245.432109][   T39] Workqueue: events drm_fb_helper_damage_work
[  245.434973][   T39] Call Trace:
[  245.436658][   T39]  <TASK>
[  245.438220][   T39]  dump_stack_lvl+0x100/0x190
[  245.440449][   T39]  vpanic+0x552/0x970
[  245.442135][   T39]  ? __pfx_vpanic+0x10/0x10
[  245.444108][   T39]  panic+0xd1/0xe0
[  245.445672][   T39]  ? __pfx_panic+0x10/0x10
[  245.447524][   T39]  ? check_panic_on_warn+0x1f/0x90
[  245.449880][   T39]  check_panic_on_warn.cold+0x19/0x34
[  245.452292][   T39]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  245.455799][   T39]  __warn.cold+0x191/0x328
[  245.457798][   T39]  __report_bug+0x296/0x3d0
[  245.459753][   T39]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x738/0x8a0
[  245.462755][   T39]  ? __pfx___report_bug+0x10/0x10
[  245.464941][   T39]  ? lockdep_hardirqs_on+0x78/0x100
[  245.467405][   T39]  report_bug_entry+0xe1/0x290
[  245.469717][   T39]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  245.472781][   T39]  handle_bug+0x1cd/0x2a0
[  245.474620][   T39]  exc_invalid_op+0x17/0x50
[  245.476481][   T39]  asm_exc_invalid_op+0x1a/0x20
[  245.478455][   T39] RIP: 0010:drm_atomic_helper_wait_for_vblanks.part.0+0x73e/0x8a0
[  245.481970][   T39] Code: 00 00 00 fc ff df 48 89 f9 48 c1 e9 03 0f b6 04 01 84 c0 74 08 3c 03 0f 8e 44 01 00 00 48 8d 3d e8 de 3e 0b 8b b3 d0 00 00 00 <67> 48 0f b9 3a e9 e1 fc ff ff e8 f3 20 61 fc e9 7c fe ff ff e8 d9
[  245.489905][   T39] RSP: 0018:ffffc900007376e8 EFLAGS: 00010246
[  245.492116][   T39] RAX: 0000000000000000 RBX: ffff8880275a0040 RCX: 1ffff11004eb4022
[  245.495004][   T39] RDX: ffff888026989520 RSI: 0000000000000027 RDI: ffffffff90e738c0
[  245.498278][   T39] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000000
[  245.502200][   T39] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  245.505729][   T39] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880293d9400
[  245.508962][   T39]  ? drm_atomic_helper_wait_for_vblanks.part.0+0x6e6/0x8a0
[  245.511933][   T39]  ? __pfx_drm_atomic_helper_wait_for_vblanks.part.0+0x10/0x10
[  245.515357][   T39]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  245.518182][   T39]  ? lockdep_hardirqs_on+0x78/0x100
[  245.520384][   T39]  ? __pfx_autoremove_wake_function+0x10/0x10
[  245.522951][   T39]  ? drm_atomic_helper_commit_hw_done+0x36d/0x490
[  245.525610][   T39]  drm_atomic_helper_commit_tail+0xff/0x130
[  245.528155][   T39]  commit_tail+0x338/0x430
[  245.530447][   T39]  drm_atomic_helper_commit+0x303/0x380
[  245.533047][   T39]  ? __pfx_drm_atomic_helper_commit+0x10/0x10
[  245.535629][   T39]  drm_atomic_commit+0x230/0x300
[  245.537719][   T39]  ? __pfx_drm_atomic_commit+0x10/0x10
[  245.539997][   T39]  ? __pfx___drm_printfn_info+0x10/0x10
[  245.542440][   T39]  ? modeset_lock+0x114/0x6d0
[  245.544516][   T39]  drm_atomic_helper_dirtyfb+0x603/0x790
[  245.547006][   T39]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  245.549777][   T39]  ? do_raw_spin_lock+0x128/0x260
[  245.551919][   T39]  ? find_held_lock+0x2b/0x80
[  245.553986][   T39]  ? __pfx_drm_atomic_helper_dirtyfb+0x10/0x10
[  245.556666][   T39]  drm_fbdev_shmem_helper_fb_dirty+0x1cc/0x310
[  245.559483][   T39]  drm_fb_helper_damage_work+0x348/0x640
[  245.562033][   T39]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  245.564595][   T39]  ? rcu_is_watching+0x12/0xc0
[  245.566664][   T39]  process_one_work+0xa0e/0x1980
[  245.568986][   T39]  ? __pfx_process_one_work+0x10/0x10
[  245.571385][   T39]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[  245.574532][   T39]  worker_thread+0x5ef/0xe50
[  245.576864][   T39]  ? kthread+0x13a/0x450
[  245.578823][   T39]  ? __pfx_worker_thread+0x10/0x10
[  245.581038][   T39]  kthread+0x370/0x450
[  245.582923][   T39]  ? __pfx_kthread+0x10/0x10
[  245.584934][   T39]  ret_from_fork+0x72b/0xd50
[  245.586903][   T39]  ? __pfx_ret_from_fork+0x10/0x10
[  245.589098][   T39]  ? __switch_to+0x800/0x1100
[  245.591206][   T39]  ? __pfx_kthread+0x10/0x10
[  245.593385][   T39]  ret_from_fork_asm+0x1a/0x30
[  245.595656][   T39]  </TASK>
[  245.597934][   T39] Kernel Offset: disabled
[  245.599771][   T39] Rebooting in 86400 seconds..