last executing test programs:

2.378332431s ago: executing program 3 (id=262):
syz_extract_tcp_res$synack(0x0, 0x1, 0x0)
syz_emit_ethernet(0x7c, &(0x7f0000000080)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @gre_packet={0x7, 0x6, "1000", 0x46, 0x2f, 0xe78c6d029ffc7582, @local, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x3, [0x1ff]}, {0x0, 0x0, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}, {0x6488, 0x88be, 0x4, {{0x5, 0x1, 0x3, 0x3, 0x1, 0x0, 0x0, 0x35}, 0x1, {0x4c289}}}, {0x8, 0x22eb, 0x1, {{0xe, 0x2, 0x0, 0x1, 0x0, 0x3, 0x1, 0x4}, 0x2, {0x200004, 0x2, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1}}}, {0x8, 0x6558, 0x4}}}}}}}, 0x0)

2.078678797s ago: executing program 0 (id=266):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mount$overlay(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x8000, &(0x7f0000000100)={[{@redirect_dir_off}]})
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0xaf80f3c4d90e6445, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x56ab, &(0x7f0000000040)={0x0, 0xcb6a, 0xc000, 0xc, 0xa0002f1})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)='0', 0x1}], 0x1, 0x0, 0x3)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bind$inet(r2, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
r3 = socket$inet(0x2, 0x4, 0x0)
setsockopt$sock_int(r1, 0x1, 0x26, &(0x7f0000000040)=0x3, 0x4)
bind$inet(r3, &(0x7f0000e15000)={0x2, 0x4e20, @multicast2}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)
r4 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000140)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep2(r4, 0x83, 0x12, &(0x7f00000001c0)=@conn_svc_rsp={0x0, 0x0, 0xa, "596a0e4d", {0x3, 0x107, 0x0, 0x9, 0xffff, 0x7, 0x27}})
syz_clone(0x22023500, 0x0, 0xff4e, 0x0, 0x0, 0x0)

2.077435722s ago: executing program 3 (id=268):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newtaction={0x6c, 0x30, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [{0x58, 0x1, [@m_vlan={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x9a7}, @TCA_VLAN_PARMS={0x1c, 0x2, {{0x200, 0x1, 0xffffffffffffffff, 0xeeb, 0x5}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000044}, 0x10)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000004b00000085000000ae00000095000000000000009b2385b6535c06484387dcb943db73007710758089009d280c405cb19e701a7a9d2f"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r2}, 0xc)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f00000004c0)=[{0x20, 0x0, 0x0, 0x8002}, {0x6}]}, 0x10)

1.980642931s ago: executing program 3 (id=269):
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1, 0x1, {0x2, 0xf0}, 0x2}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=@getchain={0x24, 0x66, 0x400, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0xffff, 0x3}, {0xfff1, 0x56e7de01af07971a}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004845}, 0x480c5)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
r3 = syz_open_dev$evdev(&(0x7f0000002000), 0x0, 0x20441)
syz_usb_disconnect(r3)
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f0000002040)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r3, 0x5501, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f000011e000/0x1000)=nil, 0x1000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)

1.308674484s ago: executing program 2 (id=284):
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x500, 0x100)
fcntl$notify(r0, 0x402, 0x34)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x40400, 0x8)
fcntl$notify(r1, 0x402, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
r2 = syz_io_uring_setup(0x5c24, &(0x7f00000000c0)={0x0, 0x4d1e, 0x10000, 0x2, 0x37b}, &(0x7f0000000140), &(0x7f0000000180))
ioctl$BTRFS_IOC_SPACE_INFO(r2, 0xc0109414, &(0x7f0000000540)={0xf89, 0x1, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000080)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f00000001c0), 0x12)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x10, &(0x7f0000000240)={[{@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x36, 0x39, 0x36, 0x65]}}]})

1.244927476s ago: executing program 2 (id=286):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mount$9p_virtio(&(0x7f0000000040), &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x4, &(0x7f0000000200)={'trans=virtio,', {[{@nodevmap}]}})
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
read$FUSE(r1, &(0x7f0000003480)={0x2020}, 0x2020)
r2 = socket(0x400000000010, 0x3, 0x0)
bind$l2tp(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @loopback, 0x4}, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0x4, 0xc52d}}}}]}, 0x44}}, 0x4c850)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x70, 0x2c, 0xf3f, 0x30bd29, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0xfff3, 0xfff3}, {0x0, 0xfff3}, {0xd, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_BASECLASS={0x8, 0x3, {0x6, 0xffff}}, @TCA_FLOW_ADDEND={0x8, 0x5, 0x8}]}}, @filter_kind_options=@f_flower={{0xb}, {0x20, 0x2, [@TCA_FLOWER_KEY_ICMPV4_CODE={0x5}, @TCA_FLOWER_INDEV={0x14, 0x2, 'bond0\x00'}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x20041004}, 0x0)
ioctl$XFS_IOC_FSBULKSTAT(r2, 0xc0205865, &(0x7f0000000180)={&(0x7f0000000080)=0x9, 0xceb, &(0x7f00000005c0)=[{}], &(0x7f00000000c0)})
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0xa4}}, 0x0)

1.138074603s ago: executing program 1 (id=288):
r0 = syz_open_dev$video4linux(&(0x7f0000000400), 0x7, 0x0)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r0, 0xc0085666, &(0x7f0000000080)={0x2, 0x4})
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r0, 0xc0305616, &(0x7f0000000180)={0x0, {0x4, 0x4}})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='environ\x00')
read$FUSE(r1, 0x0, 0xa00)

1.137350663s ago: executing program 2 (id=289):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
fsetxattr$security_capability(r1, &(0x7f0000000080), &(0x7f00000000c0)=@v2={0x2000000, [{0xe7, 0x10001}, {0x7, 0xafe}]}, 0x14, 0x0)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r1, 0x4020565b, &(0x7f0000000040)={0x2, 0xa3d})
r2 = syz_open_dev$video4linux(&(0x7f0000000400), 0x7, 0x0)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r2, 0xc0085666, &(0x7f0000000080)={0x2, 0x4})
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f00000003c0)={'veth0_to_hsr\x00', 0x2dbd854266873d48})
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f00000000c0)={'hsr0\x00', 0x600})
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$tipc(0x1e, 0x5, 0x0)
recvmmsg(r4, &(0x7f0000008c80)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)=""/83, 0x53}], 0x1}, 0x80}], 0x1, 0x40002102, 0x0)
ioctl$PPPIOCATTACH(r1, 0x4004743d, &(0x7f0000000100)=0x1)
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000000)=0x800001)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848100000005e140602000000000e000a001000000002800000121f", 0x2e}], 0x1}, 0x840)
close(0x3)

1.136720785s ago: executing program 1 (id=290):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@delchain={0x24, 0x65, 0x400, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x509d884560ba1ba6, 0x3}, {}, {0x8, 0x10}}}, 0x24}}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)=ANY=[@ANYBLOB="60b80000", @ANYRES16, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x4040084)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x1, 0x80000000, 0x4, {0x0, 0x0, 0x0, 0x0, {0x8, 0x3}, {0xa, 0xffe0}, {0xfff1, 0x9}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_LIMIT={0x8, 0x1, 0xf4b6}, @TCA_FQ_PIE_FLOWS={0x8, 0x2, 0xff2a}]}}]}, 0x44}}, 0x20004055)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x3}, 0x8)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
io_setup(0x20, &(0x7f0000001140)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000040)=[&(0x7f0000000080)={0xf, 0x400000000000, 0x25, 0x7, 0x8, r2, 0x0, 0x0, 0x40000000000e7, 0x0, 0x2, r2}])
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
set_mempolicy(0x3, &(0x7f0000000040)=0xfff, 0x5)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

907.507274ms ago: executing program 1 (id=291):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'s526\x00', [0x8001, 0x46, 0x1, 0xee, 0x1, 0xcc7, 0x8, 0x7, 0x100a, 0x100, 0x1002, 0x8, 0xd, 0x4, 0x6, 0xffffffff, 0x1, 0x1a449, 0x3, 0x40000003, 0x86, 0x5, 0xf27, 0x6, 0x7, 0x8, 0x5, 0x3, 0x6, 0xfffe, 0xfffffff8, 0x8040]})

906.90444ms ago: executing program 1 (id=292):
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r1, 0xc0b45545, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x7, 0x4, &(0x7f0000000080)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xae}]}, &(0x7f0000000040)='GPL\x00', 0x5}, 0x90)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000080)=0x8, 0x4)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0xe22, 0x3, @empty, 0xffffffff}, 0x1c)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4) (async)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0xe22, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x6}, 0x1c) (async)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0xe22, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x6}, 0x1c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x80}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008800}, 0x0)

838.619796ms ago: executing program 2 (id=293):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x800)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000140)={0x9, 0x3, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000080)={0x7, 0x9f, 0x0, 'queue1\x00', 0x4})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x58, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0}}, 0x10)
setsockopt$inet_mreqn(r1, 0x0, 0x4, &(0x7f00000002c0)={@local={0xac, 0x2, 0x44, 0xa}, @private=0xa010102, r2}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000300)={0x800009, {{0x2, 0x4e21, @local}}}, 0x88)

838.120038ms ago: executing program 1 (id=294):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r1, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xe)
mknod(&(0x7f0000000140)='./file0\x00', 0x20, 0x10001)
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='gfs2\x00', 0x10003, &(0x7f00000000c0)='norecovery')
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r3 = dup(r2)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r7, 0x18000000000002a0, 0x2f9, 0xffffca88, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe100004000632f77fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x0, 0xfeb9, &(0x7f0000000400)="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"}, 0x28)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000000)=@x86={0x5, 0x5, 0x17, 0x0, 0x3, 0xf9, 0x2, 0x79, 0xff, 0x8, 0x1, 0x1, 0x0, 0x8, 0x5, 0x8, 0x72, 0x7, 0xba, '\x00', 0x3})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
write$UHID_INPUT(r3, &(0x7f0000000080)={0x8, {"b0476b76ba5d044f65271519727e4ff1ff0d12c0e6bdf3ea1f52e24f60ca698457b32832b83d7e96694c1feb5809bd67002f71e0b97c0d5270c04ffa64f63b2e18ee4b7b572fe2f4d03cad38bcd106ff12f53b443ac6fc81da518f54b9004a44859529c07a2b1b8feddc0180a0f37b13babba1dd0813b7ea56dac4b7ffe9a2ef54221439ecc55223ef2d40f4ba8108c10387ddffbaed25d41e7692bf26ddfa747a666caff49843e38c86cac7323f784a17df6beaa49c3f4a98fb4013f4e573e2ef77b0965d4bfbdf7d5eada69406ca93f422495e00addfca1518085a40f10284ff59388ecf476a12ef1a540163922098d600519ae8cf3ef544344e9d968f341af618503b455f3976b76975270e94d714302382c63de5b7c1fad1fa373b369916cb3b4d583a9ebbaeb262884d25a0e1d9fb141de60df7e64cb38b6f7167991f8fba06bffe2d49133bbb462cd8a9493177eee5f03875b15c7a92c3cd6a3fdfc64f236e14fa05a0e8d3c45f13eecd22e13528c74186dc50e0e2af44177e26bded1161e5533375508dadb83db5126cc810f4e30d4e24ec12c3b99e5220aacf42c58f2960bd43c337dbd318aeeb5c9a6cd5ffd3bf1497bb48ab7bcb32c9c33c9f5b9bc4645b96f23f9e0d826b780030444ffb925f55df587ef5ca5ea74ccd66afc7981da496d6f037efbb0b08f3f5078c60ffb4db18d1b59996bd9b1513442785bf4ece8587b39d8176dc9c735d5ea25133b2053bba227b81faab7220326f8814a9df4eba4ecc6acdd82f70b653b56a18cc9dfa4deb0a112c797ab89a51a103c3a9085d828523370c4d79d9484f4dc910735a2c9b5b85197cd9c073df7a54b40df8e1bf595bab957900c2a1a7dc40e88ed0c55c362ffbb7f88a0725a6ae73b936a639e951faf9c45ae74a2ece2f6f88e425ee41d2c60cb083a2fd6d07381908a7f629e32f89a553cf0794f54b8bdc7bd541d88464a4f80ac0b8b625a803a55de4b05a95fc7f8fc3d6d79858ccb269b7b8b21657654164a9aa29f4e8462377e9d234a41ea69841a4aaa1e5f89f9b074f6f71cb1ffaa450c3160b0e319ec81ad30101db66218b0c69f97c234465dc45849fcfd62d396f2b50ddcc0ed7dd8651431534232ab6d1186d7760770a1fc6c77553a79d0297194f794997ee47781094a76d9dccf632dcbb527b3e68950d9bb534245c7f08ae1d6ef2750292ae28e5e6dcfe2a69737dd7a1e453f3902ae90789e98c212905422099904d3bfb949bde187682a59c01aa8e6a9972a63d6aaef4d4139b10a24e063707f1aba79bd59e3f9709a873dff401d1f356c4be5e449ae0e2633a1fe50ed367fe56b0499957c3b6cabb42256547995ea998f3937d153897d1c83f1ad922d6835bdfa3b986dc6f4bd927a4ca13fbaa99b7b43758e2329d588f40fac718b16cca855468643f3818496b4915fe9a2bdd3e68889fea24bc1dfa6287a801d49a7bb84654147448550d2919e4df3a943a88cf616befea4e7a4fddb7969311c6837f9529966241be1e57ed2d773debc542986d09866905a3f63b6e1820086d52a70f039154e839da7ea852c33bf3722a048f61bbf068519e050b8788370fb130a42e9f5322dfff65b15d588f9e926b70e4530e8b66697cabb1e8514831431fa0eaecb49f9613ed5fd7bc50f897bda36d24d4296e143e2480e325ec09a77c03a07b4f86eb703085313ebeee94ef5b1cde3f6a7efd785772eb4034039f598c07819b769416a223fab824c4ac50086e78042a1ccf47b6c7ede8540cded4bd4c920ce6c2b7493a5634c5e96bb761373623ab473b121d555bfd5a8bc3f5c5418bed83ffd0d6492840550fccc0c35746370396d0190b7b1d2cadcc150877e0d197f692f97cec790c95e3d3959dc7c68aca37306c1bc13ad33848395dba5e3c9ce8090bc0e7e8312091773641be56411921e3d473321c6d8bd10b7d3f5aedd6620bcaa06474bbb298bc77297b8b5dcb9e6b33dbe676460cca825609857724cee245306d07fda287d5fe57c424c27cf9b6cf0f16d2c6a8071bd57c826d7371841cf43dab1b42421ce416d0d3a9c80bc807d2e6761e53f06b3e63c0af1b4548d820118421205f040f4ab35307871e4c7a21ff28082c29e02e89486064661898c0eb1811c70a6124c1f25d62c38794a3e87c312c870db7b60d0df8b57860c94d1a9c561b327fae3a68ce9ff4551e418eb00766f0341c5e796e3cbbbe6b4864928b966110256d5475eb1fd7b2893b60e19e859baaf23c9233a1b064771671ee2d07c151e2e99c37a116a338788052a726a8519b8335e9ff4f71d00ab634543c20ddea1bf57d4f2b797182ff19618b6974d2b69d9f052934d527a1830bf2785842f35eaf32b65b7c9fdd6f0c41756072a59c0cce0b7305740729f1daa14e0092da9d022321b726d658fcef55affa2bbf36ad788f1f423b7dfd328435b4d5df315143d8b8028ba4bea6134a3dc9720c73d5e66b8b8168752eea6b78c75f04efd9677dbe419f13f5e1c9764276a83821b710307d8f85359b34d038ff17de45e8739d4b647fd1a8d794a3273d922af3374f5d3c75b8345b9dfdabb2c0418a358921e0e73d0fe88caab1741b913673e22ff4b59afa0f653a423d9b2bb20cbf07951a349eea18a891b4f4dc6df8e42a6181284f643de5fd2924ae54f672a1920343476c67333e1e8205bf4877b1251a83f417936714edb1c6975ba7969d2fcc2e69024a4669ac2f998116ade1bd8456a18f3f1fccbe95df9ed21db77315b7469f30bfae418415d9cb5aeea627ba6811e30d56d4f4bfe5f794ea4243e3cdfad3ef55199699b8433083b6f72f95effc5f2f613cfcefaf0b94e801ebcb7095a1474ee93142b82c9bf9886617b6bf69d08c83c76cd21d4cce5872d99de8e54bbff915ab923b2d24bb3aa178dd50b44fd0eb880ef33ca51d4bf5f0fbc8ffe18afe4245397f277e4efad955baa10cf56613481253d69c02e7661714b68be0fd64f29bdafbc8b4a0b30bd6709c67fe8e8915d0479b3902b1d0169fb5486b02e966ad5d8a2bcf42ecba59177cd85e17239667f6b045d1f873ce24733ae17e2d8432709062e786a32ac925121f1b0d46c66d4fb9088f4aa0cfe2149f6c2cb5b75d45349bc88fbd47e01ea07e7cd573335aab8d389846566800dd084bc3caa95f7632719c651f2d33be0fb56347c063b3c6e3e75c5e58caeb4c37574859b78c1ed018fbeed788a4305a9ee1c1ef65a0c83a7cd717a8c08ecd4e86370ffffd6d40a89a0b1e8c15a10ad5406e867e49319ad83bfbb925d5e240b4bd44fd751e7510d5ea03a6cab95f37155d1fd69aaea1db4a1f53714eb90e669209cf634f84a50c85bdc51838ebbb545b4387790df67f0122740c2abc910cf83230394172a56c9ffda6675bb8bb39846730a1bf764aeb92407c90a194da880cb8a4efb5b57a8311d864209c7fd226b93582b6b11eec559abfbba653c0569c219d3a2e60555cb739f9d32d564f23c4e98be78aa553610822af426f961df0df2185c61ccaa22b2a6aa6fb3e917bdfb2be9c3ffb8a50821321119c4cf4917db39548abc17bfba267fa50f6af15c560a21055f967f1ca6f656ddb556f9c7e17a771eeef7e80940d1c14ddf2c27647686fd0526460036aeea395fb10abef2be2ea96c9bb380370c08d1568d30eea0f3e6b7cf8f7edc7b36d4d0affd249330707b54ee620f208d885791171eb67a25a80fcc6922e0258c9673b6576564949dfa5bed9a0299bf952aade654de16e22d54fcd391ded6adab94ff621efcd91ef69acf8dfa1b22692ba3e49cd1d3fbed6db1402065ab37e457056877977ebac33ef566f28a19b9acb67a9cc53feb156814e880b3dd5a9119ffdbc5a45c20ea375f2882575b9a28740eebf63f2895d9ffac1ec33cbdcdede98a201424d000df1efd64dd7268cc1b2366ccfb09754822dafdb1821de5e6ebee09608e82e679fafb7a5100172f26998d31d7f27c2b310f0372c3b5e888f8e6efb56074177bf6a2a5bbd9ed070ad5aaf23ce144d1ac86cad110e5916a8a57e1e7fc3d37353f84f2f6d43d92ab8b35040467f3f8b1d23fac021bbac3710edc8e2e26d794db38e48020f63e94d4b4dca3e015537a8e3008274d55f81af931a0faf1a438444b6a0489b93f7b88f81f761eae0f82e60cb0cf2745ca8c9e30d3cc189c1405b1994ed71b00d90ea7a94102916cdc915620c363d04e51eabaaca6c2814a7c1e7aaeec80bdc13135b813e6d0eea83446a5c57ec29695c302c0d8da65b61fe8ada51a36e1aff34d449f9eb70cb94931226121ab121a971c2fc070ca84272d122c1696f52fbd5ed06783abe188dcf133c4d41e10295f6ffda69fa8c5a7c0fec3425a2d60523a60d280b5ce34eac5911268172e772fefba63a6f5c6dafa9e500a5e1355fb614613f8fc1ef5e5466fa19212bcdc349a865f4cee6ea80b11a410bb6e4ad677393973e38621d25ff6c4876ef8a8d2ba651be4a78d2ba9fafadcea8eff9cca3f4ab71a0b84917794e521220dad099ac8aaf32abd162348879e4299e4d46395f9d55267b635e18ca2e2fc96146b96c8a8055130b8d8cb10cc31382df34057bd8637f86e48adc854af408226752a04df8d0362db263e0959f2bd7e8a4d33a8c4b257e19d308280baf40cced1b3cd3a86ee22df0da49d750539eee1104e99a9f8a065e5499c73125a8a8430eda7aee156821a97c237611b50f682a2cccd0969304f0a50ae98800dfb32ee1bcfeab98182c34a51e67fa5bd738c22c44fc1269ce73f464edd2f31296e92e62df51cf55798ae2e3c33c57b09f4ecd13469122095a3563f95f0a04cf58dcea4aed5e8bdda7617863cbc37a97ebadb46d679f7e30014d96d0ac7ce9484368fa5fd19cbc3d139410a2bd7ffacef1bdf76dd1d5f34d2392fcb91c7585fc1ae7d8ba2aa8ded9645d5a5e76e2279b6e0692101137da946dfbd3836476f5dad7fed70115d716dce87b5ad755e5653a709f5aa42265ec9657ed406cc9256af3628c0116b8e1d23306983e9adbc19dec354870c98e2e76566895df933a80c4c36b617db4bbda1a4ca7d6c80a43734471fc92d0bdeacfc125dddd73febd8f7ef84f221d52ae71372cee802d59013a15958e850f8fdf46d8fd3b874633daf3b1f346470456c05722258480959dd6afcffa1f3f2ca033011339c5cb85b7d1c9b5916fb8dc9c2783df64eb5cca5af83a74fe5bb259f93722842eb4ac851e71f3cfd67a39590e7f8e20f018744b9277e6eb46b5f211df5f767ef29dc9a972e14c40ea2d4624f187f301c1116d3a61adeb5c6f7ccc021ac5e18d8b40d7f1f19daf4445c06e72db8701c267c0144c92cddd49af7a87aca5aa05d0e380dd27cc780d2f7db3bef26cc4fd358543e19d73179b879f7bdc702ab405270c93a3ed64153e20b5b663773a2ad4e8e3e1e8eaf39ec80d75d02f74ff94f0e095240a564eeece4fc9bcf19bf2243c700e1dae14a1b0217013977bfa05f681abc37714fe462d0a632044ce52fdaa1c1a806b1eb4370e23ca0247e536165aa9f1c2af8adfea369ee1f4a2c7823a7baef028a1e77501db48db6aa0d7e30969f7197368db02d443803b53b2899315f7e2ba9c5ae952a3866b4ea60f3d669e0a91f7ef640cd938646bf8822fe455f0302fccf87c7fad6daf38fde038fa596b83a9fd5bf675669a6cb2bab44c6617f07950bf34edb93bbcb4174630f275dbda7a0631c4b456e5f80eb6258c1874e77d426743e478917fe44b73dc203baa2cc442b84b5818409abae99d97a28754969bd393df", 0x102b}}, 0x2000)
r8 = syz_open_procfs(0x0, &(0x7f0000000200)='net/vlan/config\x00')
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000102c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRES32=r8, @ANYRESHEX=r9, @ANYRESDEC], 0x3c}}, 0x5c789125d06df415)
syz_usb_connect(0x4, 0x3f7, &(0x7f00000010c0)={{0x12, 0x1, 0x200, 0x2a, 0x8e, 0xab, 0x97f56950272d7f5f, 0x1286, 0x204e, 0x69b3, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3e5, 0x2, 0x0, 0xfd, 0x90, 0x2, "", [{{0x9, 0x4, 0x9d, 0x4, 0xb, 0xff, 0xff, 0xff, 0x3, [@hid_hid={0x9, 0x21, 0xd, 0x81, 0x1, {0x22, 0xad7}}], [{{0x9, 0x5, 0xf, 0x3, 0x3ff, 0x1, 0xc, 0x7}}, {{0x9, 0x5, 0x9, 0x4, 0x400, 0x6, 0x6}}, {{0x9, 0x5, 0xf, 0xb6dc890f1ce02c26, 0x40, 0x9, 0x2, 0x6, [@generic={0x35, 0x7, "16353a8593cccfd11dc8008a650a40c3508781d9f1e9c639aa06ba0cbf692d5ca2a0b263497410c0e61c5d15e039c41c55fd45"}]}}, {{0x9, 0x5, 0xd, 0x0, 0x8, 0x7, 0x3, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0xc, 0x85, 0x5}, @generic={0x73, 0x7, "5afc096cf9f2975d5e1945a643139485c668b207c80a88d8e1ffc5572f366023831f70bc3984d9098928162e3e481cbba72b14d4d8c535886d48da485d814917ba3c451b147e77ce9caeb8a46e8a179715d10e673cc30f765728c353ad1e976a806cb1e6dbdf8e2b825e4b5bbec8f56eca"}]}}, {{0x9, 0x5, 0x7, 0x1, 0x400, 0x0, 0x4, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0xc, 0xdb, 0x3}]}}, {{0x9, 0x5, 0x80, 0x10, 0x10, 0x9, 0x2, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0xc, 0x9, 0x2}]}}, {{0x9, 0x5, 0x6, 0x0, 0x10, 0x81, 0x24, 0x79, [@generic={0x43, 0xf, "71a8463dc961ba5d8a2d3bd86667dbb4ec3775d727ebbe60df8e4332a769676934a73c7cab2bd99d4ddcb07f6838f4a3713b6d9b5d0ef1ff2ca589f8b8e0f80836"}]}}, {{0x9, 0x5, 0x8, 0xc, 0x8, 0x0, 0x1, 0xf9}}, {{0x9, 0x5, 0xb, 0x2, 0x40, 0x7, 0x5, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0xc, 0x8, 0x2}, @generic={0xaf, 0xe, "9389a36dbef4d2a449738c1a846e1ed287ecf3213b615049c73560c0bfbef6bbc4aad81c7830fbd5e1382dc34ed85b4bd3c671c07978730bbfbc95fe63f013f2fab8f72f2f293b0bf306c37ac83890dc1e06727115394d1224521ea2f04a2eda13587d689d658765db70f9fa1aec7198d70a4aed7ec9f50d3c0ef83805ea109441b425da9f0574160ee62abbe8ef377b9bb7ee5c8edd213b11d1f1786d9ff7718f49091acd7e1c4d3c914736b3"}]}}, {{0x9, 0x5, 0xd, 0x4, 0x200, 0xeb, 0x2, 0xe, [@uac_iso={0x7, 0x25, 0x1, 0x8, 0x8, 0x1}]}}, {{0x9, 0x5, 0xb, 0x1, 0x3ff, 0x8, 0x3, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x4, 0x1, 0x6}, @generic={0x1e, 0x22, "f9d1eb705aa131d0eb05dba55f15ea09a77d0ea81487cd4866300835"}]}}]}}, {{0x9, 0x4, 0xa6, 0x5, 0x6, 0x3e, 0x10, 0x94, 0x4, [@generic={0x17, 0x23, "12a547a41b779caef8f25ddb40e5295ae69f4bc181"}], [{{0x9, 0x5, 0x7, 0x0, 0x20, 0x40, 0x1, 0x3}}, {{0x9, 0x5, 0xc, 0x10, 0x3ff, 0xfb, 0x3b, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0xc, 0x1c, 0xf}]}}, {{0x9, 0x5, 0x3, 0x8, 0x8, 0x5b, 0xe, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x8, 0x20, 0x3597}, @uac_iso={0x7, 0x25, 0x1, 0x4c986ea358e2cf, 0x3, 0x9f1d}]}}, {{0x9, 0x5, 0x8, 0x10, 0x3ff, 0x7, 0x1b, 0xf8, [@generic={0xb5, 0x1, "694bfc27e5536ddef5a89c5cb006d2831692d40da7dfed98b8289d04f098a417a4d024a5acd87ae0121ed451316105e79c3cd03435dfa9636df383bd2a27ab19b71a01001944ce80ab0d1dc57928f17d7e8ff037b6557b3e89cff753306c5accc101ec91ffc7ae15dccff49722665e487ae9b0eb7b5ede80d001a94897700b6b2899eaba4b3d1411f83f9c5ebba1d320bf0ebee42ae09e5a5da035bcf7a049513bf262dad772af370561fa47e5d9726dd9706e"}, @generic={0x57, 0xd, "4f2621e01a2da8d54f1aa3bf3a337ef5ac2e4ea100abb59a2e5ff27acb5884dace120e40cbded9d0e0c81a6c67096b7417b58c7f89fdb0e73c9406db488237b09d699468220de041eb2dd976267369e61b7060338f"}]}}, {{0x9, 0x5, 0x7, 0x3, 0x20, 0x8, 0x5, 0x80}}, {{0x9, 0x5, 0x0, 0x0, 0x3ff, 0x0, 0xfe, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x8, 0x9, 0x401}, @uac_iso={0x7, 0x25, 0x1, 0x8, 0xa8, 0x8}]}}]}}]}}]}}, &(0x7f00000018c0)={0xa, &(0x7f00000014c0)={0xa, 0x6, 0x250, 0x80, 0xb6, 0x2, 0x10, 0x2}, 0x8, &(0x7f0000001500)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x7, [{0xa1, &(0x7f0000001540)=@string={0xa1, 0x3, "09a6aba2dbc90d63e321f0bd01cb40d7a419cd7cf73fa9632544dd0a95e8642b0dd78f35729fbc5a9c2a957598ccba31c38ad0502a10207a1d07da03ef01fae117dca75d20481d4b4bee293e4027f6357a576f44af5cdede3851d453cba5961316280677a79455f53418fb5c35876201cabdf6741e11d4aab7f27bfeac1bfab1244aac2c9e1a41c76ca161fb5edd8e7899424088a601828e6ef59dffffa7c2"}}, {0x3f, &(0x7f0000001600)=@string={0x3f, 0x3, "f7a19d484375b6762cb802b1ea167780f991f6e6b4ef2bdb5ee50314e67b364c3767d96b66f488082a0a4c5d223f7fef3f74c7939b36575dfb3399e3bc"}}, {0x4, &(0x7f0000001640)=@lang_id={0x4, 0x3, 0x2009}}, {0x9a, &(0x7f0000001680)=@string={0x9a, 0x3, "7b42850d653cc43c3a489eb87c9264e37364cf3c58762ce75fbeddb7ac222c7a048d6ade645e21ea2cabc06193507cbd7e03b7d2d66bc8e359c63440858ba326847e984fa76cb60f06734904f10d36009e32b7747c009fe1496aac7f36bedbfbc3fec0df0cf77a01bac17ed942eb377b79328ad00ced07a649105725c411c4412d3c134d18365ea7c38639a41c56f9168ade5cb11c6e7c30"}}, {0xd9, &(0x7f0000001740)=@string={0xd9, 0x3, "06937ba961b6281017c5778523f50fda7ae12cda38ad6e40b4aea89111769a43fa7527fdb08efeb0a79a000f2f513bb1d7ddd8840df9eddec48d9ef3637811571523bba0e71dbe054dd72ae4c6653f7599887ce19471116d1d16c34975e51ac8d996e9d4fc3c1b4b36bc5b72a091dc0ebf14b24435065275e7692e4deacb9e8e4887feea6065f704c6b8eb246e74cb6e3136a4f25508ca70bce56c15bb565e14d9a8df31bd134c785d00bf5f669e5fe3846aa9db5daef66a80390b2a01c5b5bdbbc981ced971e8d2e4b550a13a9ca6b93344d97569acc9"}}, {0x4, &(0x7f0000001840)=@lang_id={0x4, 0x3, 0x405}}, {0x4, &(0x7f0000001880)=@lang_id={0x4, 0x3, 0xd48a}}]})
read$FUSE(r8, &(0x7f0000002240)={0x2020}, 0xffffffffffffffad)
sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="510300009bee5d"], 0x34c}}, 0x0)

836.217905ms ago: executing program 2 (id=295):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r1 = geteuid()
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
r5 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_ENUMSTD(r5, 0xc0485619, &(0x7f0000000040)={0xa, 0x8, "a867dc159d50dfabd78a3e1af7591b97f0758b9a8583fb00", {0x4, 0x7}, 0xffffffff})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r4, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000380), &(0x7f00000003c0)=0xc)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e20, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x2000, 0x0, 0x12d5c, 0x12d5c}}, 0x44)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
utime(&(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0xc201})
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @multicast})
write$tun(r7, &(0x7f00000004c0)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001982f00fc000018c6ba35000000000000000700ff02000000000000000000000000000180"], 0xfdef)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
stat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
mount$9p_rdma(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x200000, &(0x7f0000000440)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72743d3078303030303030303030303030346532342c74696d656f75743d307830302c63616368653d6d6d61702c73713d307830303030090000003030020b000030312c63616368653d6c6f6f73652c7221573078303030303030303030303030303030372c74696d656f75743d3078300000000000000003303030303030303030303030342c72713d3078303030303030303030303030303033652c73713d3078303030303030303066666666666666662c73f69154be7e0f00d79c57ad3b7c713d3078303030303030303030303030383966332c706f7357fa616300"/248, @ANYRESDEC=r1, @ANYBLOB=',fowner>', @ANYRESDEC=0x0, @ANYBLOB=',fowner=', @ANYRESDEC=r9, @ANYBLOB=',fscontext=unconfined_u,hash,smackfsroot=\x00,dont_hash,smackfsfloor=\x00,\x00'])
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
r10 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r10, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bind$inet(r10, &(0x7f0000001c00)={0x2, 0x4e20, @empty}, 0x10)
r11 = syz_open_dev$ndb(&(0x7f0000000300), 0x0, 0x80040)
sendmsg$unix(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000200)="d31b42ebef6abe3df5a12aebc93bcf796290117ccd4277849614945ad811e523e4789e3c9d38752d4f27a9fb58b66e5e5fefb5c46b09a88ee8e8d6a9537a322638e9730de3c7a433a40caea2c0eb0433ae73f72e6ac84fbe593f12ae5712f13e440e8a4df4b2d5aaf662d3b0da2f49a9d273d1c564a1fb", 0x77}], 0x1, &(0x7f0000000340)=[@rights={{0x28, 0x1, 0x1, [r2, 0xffffffffffffffff, r4, r10, r11, r8]}}, @rights={{0x14, 0x1, 0x1, [r5]}}], 0x40}, 0x24042000)

475.386879ms ago: executing program 0 (id=296):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000346000/0x2000)=nil, 0x2000, 0x1000000, 0x5d032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='minix\x00', 0x200000, 0x0)
userfaultfd(0x801) (async)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) (async)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000346000/0x2000)=nil, 0x2000, 0x1000000, 0x5d032, 0xffffffffffffffff, 0x0) (async)
userfaultfd(0x80801) (async)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100)) (async)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5}) (async)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000}) (async)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='minix\x00', 0x200000, 0x0) (async)

472.201361ms ago: executing program 2 (id=297):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@RTM_NEWNSID={0x14, 0x58, 0x1, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x2000c801}, 0x8040) (async)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@RTM_NEWNSID={0x14, 0x58, 0x1, 0x70bd29, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x2000c801}, 0x8040)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f00000008c0)=@newtaction={0x84, 0x30, 0x12f, 0x0, 0x0, {}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x6}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x84}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f00000008c0)=@newtaction={0x84, 0x30, 0x12f, 0x0, 0x0, {}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x6}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x84}}, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000003480)=0x2, 0x4)
r3 = syz_open_dev$vcsu(&(0x7f0000000040), 0x6, 0x40081)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e24, @empty}, 0x10) (async)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e24, @empty}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000180)) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000180))
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000780), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x54, r5, 0x4b35c65e9956e69f, 0x0, 0x0, {0x25}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc, 0x9b}, {0xc}}]}, 0x54}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) (async)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x60, 0x24, 0xd0d, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x38, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x70, 0xfb, 0xbeb7, 0xaad, 0x2, 0xc, 0x6, 0x9}}, {0x16, 0x2, [0x3, 0x5, 0x6, 0xc70, 0xcbc0, 0x7, 0x100, 0xff80, 0x200]}}]}, @TCA_STAB={0x4}]}, 0x60}, 0x1, 0x0, 0x0, 0x4040014}, 0x20005804)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r3) (async)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000400)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_LEAVE_OCB(r4, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x28, r9, 0x400, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r10}, @val={0xc, 0x99, {0x2, 0x62}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x8000000)

411.359209ms ago: executing program 0 (id=298):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x98, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x68, 0x2, {{}, [@TCA_NETEM_LOSS={0x2c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x0, 0x0, 0x8f}}, @NETEM_LOSS_GE={0x14, 0x2, {0x2, 0x7fff, 0x7, 0x1}}]}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xc}]}}}]}, 0x98}, 0x1, 0x0, 0x0, 0x40080}, 0x0)

411.033481ms ago: executing program 0 (id=299):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x5, &(0x7f00000007c0)=@framed={{0x18, 0x2}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xa}]}, &(0x7f00000005c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r1, &(0x7f0000000440), &(0x7f0000000040)=@udp=r0}, 0x20)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x21)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0x101, 0x1}}}}}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f0000000580)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2030}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)={0x78, 0x1, 0x1, 0x201, 0x0, 0x0, {0x2, 0x0, 0x1}, [@CTA_TUPLE_REPLY={0x64, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xc37f0ed9e5d84d67}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x20008010}, 0x100)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000800)=""/4096, 0x1000}], 0x1}, 0xb}], 0x12, 0x40000021, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000073013f000000000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb30f}, 0x90)

315.180492ms ago: executing program 3 (id=300):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'s526\x00', [0x8001, 0x46, 0x1, 0xee, 0x1, 0xcc7, 0x8, 0x7, 0x100a, 0x100, 0x1002, 0x8, 0xd, 0x4, 0x6, 0xffffffff, 0x1, 0x1a449, 0x3, 0x40000003, 0x86, 0x5, 0xf27, 0x6, 0x7, 0x8, 0x5, 0x3, 0x6, 0xfffe, 0xfffffff8, 0x1800000]})

313.547497ms ago: executing program 3 (id=301):
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) (async)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'}) (async)
fallocate(r0, 0x0, 0x0, 0x1001f0) (async)
lseek(r0, 0x0, 0x4) (async)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000380)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}]})
umount2(&(0x7f0000000000)='./cgroup\x00', 0x0)

218.509065ms ago: executing program 3 (id=302):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
ioctl$RTC_PIE_ON(0xffffffffffffffff, 0x7005)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3000001, 0x11, r0, 0x6ce91000)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0x3)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

5.102966ms ago: executing program 0 (id=303):
socket$nl_route(0x10, 0x3, 0x0)

1.55554ms ago: executing program 1 (id=304):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000720000/0x4000)=nil, 0x4000, 0x3000007, 0x38011, r0, 0x0)
r1 = fsopen(&(0x7f0000000180)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_CONTINUE(r2, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
mincore(&(0x7f0000bfe000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/133)
r3 = fsmount(r1, 0x0, 0x0)
fchdir(r3)
getsockopt$XDP_STATISTICS(r3, 0x11b, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x30)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff2000/0xc000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x82000, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r7, 0xc008ae88, &(0x7f0000000240)={0x2, 0x0, [{0x80a, 0x0, 0x10001}, {0x584, 0x0, 0x9c}]})
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r4, 0xc0bc5351, &(0x7f0000000d40)={0x52, 0x0, 'client1\x00', 0x0, "2cd367818b4014ff", "859e92f118c4484604734b1d43209426c1bd711b936fc2c4d28f902e94f8e647"})
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0xc0686611, &(0x7f0000000040)={0x2, 0x1, 0x17, 0x1000, &(0x7f00008e4000/0x1000)=nil})

0s ago: executing program 0 (id=305):
prctl$PR_SET_IO_FLUSHER(0x41, 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

kernel console output (not intermixed with test programs):

[   44.025386][   T40] audit: type=1400 audit(1774594596.377:61): avc:  denied  { siginh } for  pid=5835 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '[localhost]:27787' (ED25519) to the list of known hosts.
[   45.976768][   T40] audit: type=1400 audit(1774594598.337:62): avc:  denied  { name_bind } for  pid=5842 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   46.006373][   T40] audit: type=1400 audit(1774594598.367:63): avc:  denied  { execute } for  pid=5843 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   46.014140][   T40] audit: type=1400 audit(1774594598.367:64): avc:  denied  { execute_no_trans } for  pid=5843 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   48.196093][   T40] audit: type=1400 audit(1774594600.557:65): avc:  denied  { getattr } for  pid=5883 comm="rm" path="/run/dhcpcd/hook-state/resolv.conf.lapb5.ipv4ll" dev="tmpfs" ino=1959 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   48.207002][   T40] audit: type=1400 audit(1774594600.567:66): avc:  denied  { mounton } for  pid=5843 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   48.208347][ T5843] cgroup: Unknown subsys name 'net'
[   48.349964][ T5843] cgroup: Unknown subsys name 'cpuset'
[   48.354450][ T5843] cgroup: Unknown subsys name 'rlimit'
[   48.553167][ T5903] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   49.294488][ T5843] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   52.395971][   T40] kauditd_printk_skb: 18 callbacks suppressed
[   52.395983][   T40] audit: type=1400 audit(1774594604.757:85): avc:  denied  { execmem } for  pid=5925 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   52.543025][   T40] audit: type=1400 audit(1774594604.907:86): avc:  denied  { create } for  pid=5929 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   52.555323][   T40] audit: type=1400 audit(1774594604.907:87): avc:  denied  { read write } for  pid=5929 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   52.565270][   T40] audit: type=1400 audit(1774594604.907:88): avc:  denied  { open } for  pid=5929 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   52.571216][ T5936] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   52.575132][   T40] audit: type=1400 audit(1774594604.917:89): avc:  denied  { ioctl } for  pid=5930 comm="syz-executor" path="socket:[5911]" dev="sockfs" ino=5911 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   52.580278][ T5935] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   52.585698][ T5943] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   52.586161][ T5943] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   52.586766][ T5943] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   52.587304][ T5943] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   52.588205][ T5943] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   52.591603][ T5935] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   52.594499][ T5943] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   52.595875][ T5935] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   52.599273][ T5943] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   52.601258][ T5935] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   52.604553][ T5943] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   52.606034][ T5935] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   52.609062][   T40] audit: type=1400 audit(1774594604.977:90): avc:  denied  { read } for  pid=5930 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   52.609541][ T5943] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   52.610268][ T5943] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   52.610701][ T5943] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   52.612331][ T5935] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   52.613171][ T5943] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   52.613814][ T5943] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   52.614594][   T40] audit: type=1400 audit(1774594604.977:91): avc:  denied  { open } for  pid=5930 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   52.667397][   T40] audit: type=1400 audit(1774594604.977:92): avc:  denied  { mounton } for  pid=5930 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   52.819333][   T40] audit: type=1400 audit(1774594605.187:93): avc:  denied  { module_request } for  pid=5937 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   52.854297][ T5937] chnl_net:caif_netlink_parms(): no params data found
[   52.938857][ T5930] chnl_net:caif_netlink_parms(): no params data found
[   52.963131][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.966737][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.969446][ T5937] bridge_slave_0: entered allmulticast mode
[   52.972282][ T5937] bridge_slave_0: entered promiscuous mode
[   52.980203][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.982491][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.984745][ T5937] bridge_slave_1: entered allmulticast mode
[   52.988174][ T5937] bridge_slave_1: entered promiscuous mode
[   52.997481][ T5929] chnl_net:caif_netlink_parms(): no params data found
[   53.026034][ T5932] chnl_net:caif_netlink_parms(): no params data found
[   53.045116][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.054828][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.145777][ T5937] team0: Port device team_slave_0 added
[   53.149244][ T5937] team0: Port device team_slave_1 added
[   53.169364][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.172443][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.181404][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.192588][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.195266][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.203946][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.218314][ T5930] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.221385][ T5930] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.223849][ T5930] bridge_slave_0: entered allmulticast mode
[   53.226648][ T5930] bridge_slave_0: entered promiscuous mode
[   53.230761][ T5930] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.233091][ T5930] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.235642][ T5930] bridge_slave_1: entered allmulticast mode
[   53.238741][ T5930] bridge_slave_1: entered promiscuous mode
[   53.259234][ T5929] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.261656][ T5929] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.264103][ T5929] bridge_slave_0: entered allmulticast mode
[   53.267033][ T5929] bridge_slave_0: entered promiscuous mode
[   53.270853][ T5929] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.273101][ T5929] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.275443][ T5929] bridge_slave_1: entered allmulticast mode
[   53.278240][ T5929] bridge_slave_1: entered promiscuous mode
[   53.298596][ T5932] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.301480][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.303815][ T5932] bridge_slave_0: entered allmulticast mode
[   53.307319][ T5932] bridge_slave_0: entered promiscuous mode
[   53.316862][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.319473][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.321774][ T5932] bridge_slave_1: entered allmulticast mode
[   53.324486][ T5932] bridge_slave_1: entered promiscuous mode
[   53.335839][ T5937] hsr_slave_0: entered promiscuous mode
[   53.338366][ T5937] hsr_slave_1: entered promiscuous mode
[   53.354389][ T5929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.359110][ T5930] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.369700][ T5929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.373780][ T5930] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.385275][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   53.402717][ T5929] team0: Port device team_slave_0 added
[   53.411401][ T5929] team0: Port device team_slave_1 added
[   53.414367][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   53.434130][ T5930] team0: Port device team_slave_0 added
[   53.455819][ T5930] team0: Port device team_slave_1 added
[   53.479621][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.481878][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.490807][ T5929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.495564][ T5932] team0: Port device team_slave_0 added
[   53.502244][ T5932] team0: Port device team_slave_1 added
[   53.504526][ T5930] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.506888][ T5930] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.515360][ T5930] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.520187][ T5930] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.522496][ T5930] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.530962][ T5930] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.535322][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.537924][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.546552][ T5929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.592777][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.595040][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.603674][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.608731][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.610952][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   53.619204][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.663158][ T5930] hsr_slave_0: entered promiscuous mode
[   53.665400][ T5930] hsr_slave_1: entered promiscuous mode
[   53.668018][ T5930] debugfs: 'hsr0' already exists in 'hsr'
[   53.669918][ T5930] Cannot create hsr debugfs directory
[   53.689566][ T5929] hsr_slave_0: entered promiscuous mode
[   53.691787][ T5929] hsr_slave_1: entered promiscuous mode
[   53.693883][ T5929] debugfs: 'hsr0' already exists in 'hsr'
[   53.695680][ T5929] Cannot create hsr debugfs directory
[   53.721301][ T5932] hsr_slave_0: entered promiscuous mode
[   53.723578][ T5932] hsr_slave_1: entered promiscuous mode
[   53.725642][ T5932] debugfs: 'hsr0' already exists in 'hsr'
[   53.727595][ T5932] Cannot create hsr debugfs directory
[   53.805713][ T5937] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   53.826377][ T5937] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   53.835700][ T5937] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   53.842712][ T5937] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   54.004278][ T5930] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   54.010264][ T5930] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   54.014586][ T5930] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   54.019608][ T5930] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   54.062440][ T5929] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   54.070678][ T5929] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   54.075780][ T5929] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   54.080411][ T5929] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   54.129631][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.135320][ T5932] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   54.140401][ T5932] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   54.145117][ T5932] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   54.149827][ T5932] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   54.169342][ T5937] 8021q: adding VLAN 0 to HW filter on device team0
[   54.181755][  T159] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.184595][  T159] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.198425][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.200700][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.235556][ T5930] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.267662][ T5930] 8021q: adding VLAN 0 to HW filter on device team0
[   54.274505][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.286490][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.288874][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.292331][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.294585][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.300006][ T5929] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.311487][ T5932] 8021q: adding VLAN 0 to HW filter on device team0
[   54.320713][   T92] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.323030][   T92] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.328655][ T5929] 8021q: adding VLAN 0 to HW filter on device team0
[   54.329017][   T40] audit: type=1400 audit(1774594606.697:94): avc:  denied  { sys_module } for  pid=5937 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   54.338533][   T92] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.341095][   T92] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.352908][   T92] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.355206][   T92] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.366624][  T159] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.369552][  T159] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.398009][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.451630][ T5937] veth0_vlan: entered promiscuous mode
[   54.457339][ T5937] veth1_vlan: entered promiscuous mode
[   54.473963][ T5937] veth0_macvtap: entered promiscuous mode
[   54.478998][ T5937] veth1_macvtap: entered promiscuous mode
[   54.494527][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.500878][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.519911][  T159] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.523599][  T159] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.534613][  T159] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.540566][  T159] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.551018][ T5930] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.561891][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.584070][ T5929] 8021q: adding VLAN 0 to HW filter on device batadv0
[   54.611213][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.614423][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.637926][   T63] Bluetooth: hci1: command tx timeout
[   54.640629][ T5943] Bluetooth: hci3: command tx timeout
[   54.647357][ T5943] Bluetooth: hci2: command tx timeout
[   54.656662][ T5930] veth0_vlan: entered promiscuous mode
[   54.660178][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.660948][ T5932] veth0_vlan: entered promiscuous mode
[   54.663400][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.685295][ T5932] veth1_vlan: entered promiscuous mode
[   54.692012][ T5930] veth1_vlan: entered promiscuous mode
[   54.700137][ T5929] veth0_vlan: entered promiscuous mode
[   54.716833][ T5937] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   54.721848][ T5932] veth0_macvtap: entered promiscuous mode
[   54.723841][ T5932] veth1_macvtap: entered promiscuous mode
[   54.727312][ T5943] Bluetooth: hci0: command tx timeout
[   54.729861][ T5929] veth1_vlan: entered promiscuous mode
[   54.764160][ T5929] veth0_macvtap: entered promiscuous mode
[   54.769459][ T5930] veth0_macvtap: entered promiscuous mode
[   54.774073][ T5929] veth1_macvtap: entered promiscuous mode
[   54.778356][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.785092][ T5930] veth1_macvtap: entered promiscuous mode
[   54.801722][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.809311][ T1148] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.813415][ T1148] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.820465][ T1148] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.823290][ T1148] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.829675][ T5930] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.836080][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_0
[   54.842463][ T5930] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.859133][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_1
[   54.871880][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.874862][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.892182][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.895093][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.903790][   T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.913729][   T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.916540][   T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.920644][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.923145][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.931677][   T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.965454][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.970478][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.985122][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.997058][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.030746][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.041844][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.066780][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.070230][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.098126][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.100635][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.234851][ T6040] netlink: 'syz.1.7': attribute type 10 has an invalid length.
[   55.241964][ T6040] veth0_macvtap: left promiscuous mode
[   55.244378][ T6042] usb usb8: usbfs: interface 0 claimed by hub while 'syz.0.1' resets device
[   55.248181][ T6034] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   55.250300][ T6034] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   55.252068][    T9] IPVS: starting estimator thread 0...
[   55.262666][ T6043] trusted_key: syz.3.8 sent an empty control message without MSG_MORE.
[   55.289054][ T6049] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   55.298649][ T6034] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   55.305541][ T6034] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   55.313872][ T6034] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   55.323563][ T6034] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   55.332353][ T6034] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   55.336560][ T6054] binder: 6052:6054 unknown command 0
[   55.339098][ T6054] binder: 6052:6054 ioctl c0306201 200000000080 returned -22
[   55.340217][ T6034] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   55.346411][ T6051] warning: `syz.3.10' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   55.347134][ T6045] IPVS: using max 42 ests per chain, 100800 per kthread
[   55.359384][ T6034] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   55.396549][ T6034] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   55.399878][ T6034] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   55.403336][ T6034] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   55.429921][ T6060] Zero length message leads to an empty skb
[   55.487905][ T6071] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17'.
[   55.579784][ T6079] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   55.600022][ T6081] exFAT-fs (nullb0): invalid boot record signature
[   55.602123][ T6081] exFAT-fs (nullb0): failed to read boot sector
[   55.604823][ T6081] exFAT-fs (nullb0): failed to recognize exfat type
[   56.029489][ T6088] netlink: 36 bytes leftover after parsing attributes in process `syz.2.23'.
[   56.039627][ T6088] netlink: 60 bytes leftover after parsing attributes in process `syz.2.23'.
[   56.168955][ T6121] binder_alloc: 6120: binder_alloc_buf, no vma
[   56.173756][ T6121] netlink: 'syz.3.32': attribute type 4 has an invalid length.
[   56.217904][ T6123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.33'.
[   56.222642][ T6123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.33'.
[   56.510582][ T6138] e1000e 0000:00:02.0 eth1: NIC Link is Down
[   56.560567][ T6160] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   56.646530][ T6169] Illegal XDP return value 268435456 on prog  (id 3) dev syz_tun, expect packet loss!
[   56.704889][ T6177] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   56.837168][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[   56.840046][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[   56.843023][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[   56.851800][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[   56.853436][ T6196] IPVS: set_ctl: invalid protocol: 59 255.255.255.255:20001
[   56.855448][ T6193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'.
[   56.869993][ T6192] delete_channel: no stack
[   56.871778][ T6192] delete_channel: no stack
[   56.873282][ T6192] delete_channel: no stack
[   56.874936][ T6192] delete_channel: no stack
[   56.876422][ T6192] delete_channel: no stack
[   56.880847][ T6192] delete_channel: no stack
[   56.882430][ T6192] delete_channel: no stack
[   56.884018][ T6192] delete_channel: no stack
[   56.885728][ T6192] delete_channel: no stack
[   56.887375][ T6192] delete_channel: no stack
[   56.888884][ T6192] delete_channel: no stack
[   56.890436][ T6192] delete_channel: no stack
[   56.891916][ T6192] delete_channel: no stack
[   56.893436][ T6192] delete_channel: no stack
[   56.894940][ T6192] delete_channel: no stack
[   56.896424][ T6192] delete_channel: no stack
[   56.898898][ T6192] delete_channel: no stack
[   56.900388][ T6192] delete_channel: no stack
[   56.902128][ T6192] delete_channel: no stack
[   56.903592][ T6192] delete_channel: no stack
[   56.905067][ T6192] delete_channel: no stack
[   56.906609][ T6192] delete_channel: no stack
[   56.908555][ T6192] delete_channel: no stack
[   56.910067][ T6192] delete_channel: no stack
[   56.911533][ T6192] delete_channel: no stack
[   56.912994][ T6192] delete_channel: no stack
[   56.922421][ T6192] delete_channel: no stack
[   56.923931][ T6192] delete_channel: no stack
[   56.925413][ T6192] delete_channel: no stack
[   56.927168][ T6192] delete_channel: no stack
[   56.928698][ T6192] delete_channel: no stack
[   56.930189][ T6192] delete_channel: no stack
[   56.931677][ T6192] delete_channel: no stack
[   56.933252][ T6192] delete_channel: no stack
[   56.934747][ T6192] delete_channel: no stack
[   56.936237][ T6192] delete_channel: no stack
[   56.938209][ T6192] delete_channel: no stack
[   56.939904][ T6192] delete_channel: no stack
[   56.941652][ T6192] delete_channel: no stack
[   56.943243][ T6192] delete_channel: no stack
[   56.944749][ T6192] delete_channel: no stack
[   56.946339][ T6192] delete_channel: no stack
[   56.948420][ T6192] delete_channel: no stack
[   56.949906][ T6192] delete_channel: no stack
[   56.951398][ T6192] delete_channel: no stack
[   56.952880][ T6192] delete_channel: no stack
[   56.954963][ T6192] delete_channel: no stack
[   56.956472][ T6192] delete_channel: no stack
[   56.958744][ T6192] delete_channel: no stack
[   56.960289][ T6192] delete_channel: no stack
[   56.960387][ T6198] openvswitch: netlink: Missing key (keys=40, expected=2000)
[   56.961812][ T6192] delete_channel: no stack
[   56.965607][ T6192] delete_channel: no stack
[   56.967595][ T6192] delete_channel: no stack
[   56.971009][ T6192] delete_channel: no stack
[   56.979367][ T6192] delete_channel: no stack
[   56.980869][ T6192] delete_channel: no stack
[   56.982376][ T6192] delete_channel: no stack
[   56.983846][ T6192] delete_channel: no stack
[   56.985548][ T6192] delete_channel: no stack
[   56.991024][ T6212] syzkaller0: entered promiscuous mode
[   56.992787][ T6212] syzkaller0: entered allmulticast mode
[   56.996086][ T6212] openvswitch: netlink: Flow key attr not present in new flow.
[   57.003188][ T6192] delete_channel: no stack
[   57.004832][ T6192] delete_channel: no stack
[   57.006345][ T6192] delete_channel: no stack
[   57.008383][ T6192] delete_channel: no stack
[   57.010027][ T6192] delete_channel: no stack
[   57.011762][ T6192] delete_channel: no stack
[   57.044243][ T6222] syz.1.58: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   57.049683][ T6222] CPU: 0 UID: 0 PID: 6222 Comm: syz.1.58 Not tainted syzkaller #0 PREEMPT(full) 
[   57.049710][ T6222] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   57.049718][ T6222] Call Trace:
[   57.049723][ T6222]  <TASK>
[   57.049728][ T6222]  dump_stack_lvl+0x100/0x190
[   57.049752][ T6222]  warn_alloc.cold+0x95/0x1c1
[   57.049789][ T6222]  ? __pfx_warn_alloc+0x10/0x10
[   57.049807][ T6222]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   57.049823][ T6222]  ? lockdep_hardirqs_on+0x78/0x100
[   57.049841][ T6222]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   57.049860][ T6222]  ? kasan_save_stack+0x3f/0x50
[   57.049877][ T6222]  ? kasan_save_stack+0x30/0x50
[   57.049894][ T6222]  ? kasan_save_track+0x14/0x30
[   57.049912][ T6222]  ? xskq_create+0xfb/0x1d0
[   57.049926][ T6222]  __vmalloc_node_range_noprof+0x1252/0x1530
[   57.049943][ T6222]  ? xskq_create+0xfb/0x1d0
[   57.049959][ T6222]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   57.049979][ T6222]  ? xskq_create+0xfb/0x1d0
[   57.049991][ T6222]  vmalloc_user_noprof+0x9e/0xe0
[   57.050004][ T6222]  ? xskq_create+0xfb/0x1d0
[   57.050016][ T6222]  xskq_create+0xfb/0x1d0
[   57.050030][ T6222]  xsk_setsockopt+0x743/0xab0
[   57.050043][ T6222]  ? __pfx_xsk_setsockopt+0x10/0x10
[   57.050060][ T6222]  ? find_held_lock+0x2b/0x80
[   57.050076][ T6222]  ? __fget_files+0x215/0x3d0
[   57.050091][ T6222]  ? selinux_socket_setsockopt+0x6a/0x80
[   57.050107][ T6222]  ? __pfx_xsk_setsockopt+0x10/0x10
[   57.050121][ T6222]  do_sock_setsockopt+0xf3/0x1d0
[   57.050140][ T6222]  __sys_setsockopt+0x195/0x220
[   57.050157][ T6222]  __x64_sys_setsockopt+0xbd/0x160
[   57.050170][ T6222]  ? do_syscall_64+0x95/0xf80
[   57.050186][ T6222]  ? lockdep_hardirqs_on+0x78/0x100
[   57.050203][ T6222]  do_syscall_64+0x106/0xf80
[   57.050219][ T6222]  ? clear_bhb_loop+0x40/0x90
[   57.050234][ T6222]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.050247][ T6222] RIP: 0033:0x7fc20499c799
[   57.050256][ T6222] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   57.050266][ T6222] RSP: 002b:00007fc205786028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   57.050277][ T6222] RAX: ffffffffffffffda RBX: 00007fc204c15fa0 RCX: 00007fc20499c799
[   57.050284][ T6222] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[   57.050290][ T6222] RBP: 00007fc204a32c99 R08: 0000000000000004 R09: 0000000000000000
[   57.050296][ T6222] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[   57.050302][ T6222] R13: 00007fc204c16038 R14: 00007fc204c15fa0 R15: 00007fff5095d128
[   57.050316][ T6222]  </TASK>
[   57.051894][ T6222] Mem-Info:
[   57.140634][ T6222] active_anon:8832 inactive_anon:0 isolated_anon:0
[   57.140634][ T6222]  active_file:20484 inactive_file:40684 isolated_file:0
[   57.140634][ T6222]  unevictable:1768 dirty:1756 writeback:0
[   57.140634][ T6222]  slab_reclaimable:12022 slab_unreclaimable:65822
[   57.140634][ T6222]  mapped:24235 shmem:2371 pagetables:1270
[   57.140634][ T6222]  sec_pagetables:294 bounce:0
[   57.140634][ T6222]  kernel_misc_reclaimable:0
[   57.140634][ T6222]  free:452245 free_pcp:19758 free_cma:0
[   57.157657][ T6222] Node 0 active_anon:35328kB inactive_anon:0kB active_file:81936kB inactive_file:162544kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:96940kB dirty:6988kB writeback:0kB shmem:5948kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12704kB pagetables:4896kB sec_pagetables:1176kB all_unreclaimable? no Balloon:0kB
[   57.167868][ T6222] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:192kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:36kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:128kB pagetables:184kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   57.178866][ T6222] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   57.188486][ T6222] lowmem_reserve[]: 0 1231 1231 1231 1231
[   57.190470][ T6222] Node 0 DMA32 free:144480kB boost:0kB min:27476kB low:34344kB high:41212kB reserved_highatomic:0KB free_highatomic:0KB active_anon:35452kB inactive_anon:0kB active_file:81936kB inactive_file:162544kB unevictable:3536kB writepending:6988kB zspages:0kB present:2080628kB managed:1260832kB mlocked:0kB bounce:0kB free_pcp:72836kB local_pcp:11916kB free_cma:0kB
[   57.205383][ T6222] lowmem_reserve[]: 0 0 0 0 0
[   57.207096][ T6222] Node 1 Normal free:1649268kB boost:0kB min:39760kB low:49700kB high:59640kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:192kB unevictable:3536kB writepending:36kB zspages:0kB present:2097152kB managed:1781884kB mlocked:0kB bounce:0kB free_pcp:6216kB local_pcp:2644kB free_cma:0kB
[   57.217110][ T6222] lowmem_reserve[]: 0 0 0 0 0
[   57.218683][ T6222] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   57.222674][ T6222] Node 0 DMA32: 16*4kB (UME) 8*8kB (UME) 146*16kB (UME) 6*32kB (UME) 16*64kB (UM) 20*128kB (UME) 18*256kB (M) 16*512kB (ME) 10*1024kB (UM) 6*2048kB (UME) 25*4096kB (M) = 143968kB
[   57.231180][ T6222] Node 1 Normal: 3*4kB (UM) 1*8kB (U) 2*16kB (UM) 4*32kB (UM) 3*64kB (UM) 4*128kB (UM) 1*256kB (U) 3*512kB (M) 0*1024kB 2*2048kB (UM) 401*4096kB (M) = 1649268kB
[   57.236482][ T6222] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   57.239692][ T6222] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   57.242713][ T6222] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   57.245777][ T6222] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   57.249173][ T6222] 63535 total pagecache pages
[   57.250920][ T6222] 0 pages in swap cache
[   57.252888][ T6222] Free swap  = 124996kB
[   57.254399][ T6222] Total swap = 124996kB
[   57.255742][ T6222] 1048443 pages RAM
[   57.257102][ T6222] 0 pages HighMem/MovableOnly
[   57.258690][ T6222] 283924 pages reserved
[   57.260044][ T6222] 0 pages cma reserved
[   57.277135][ T5943] Bluetooth: hci0: command 0x040f tx timeout
[   57.328432][ T6254] syz.1.66 uses obsolete (PF_INET,SOCK_PACKET)
[   57.367238][ T6025] IPVS: starting estimator thread 0...
[   57.367350][ T5943] Bluetooth: hci2: command 0x040f tx timeout
[   57.371437][   T63] Bluetooth: hci1: command 0x040f tx timeout
[   57.437884][ T5943] Bluetooth: hci3: command 0x040f tx timeout
[   57.467582][ T6259] IPVS: using max 40 ests per chain, 96000 per kthread
[   57.578379][   T40] kauditd_printk_skb: 145 callbacks suppressed
[   57.578389][   T40] audit: type=1400 audit(1774594609.947:240): avc:  denied  { create } for  pid=6265 comm="syz.2.69" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   57.587448][   T40] audit: type=1400 audit(1774594609.957:241): avc:  denied  { read } for  pid=6265 comm="syz.2.69" path="socket:[7817]" dev="sockfs" ino=7817 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   57.651376][   T40] audit: type=1400 audit(1774594610.017:242): avc:  denied  { create } for  pid=6269 comm="syz.1.70" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   57.657866][   T40] audit: type=1400 audit(1774594610.017:243): avc:  denied  { accept } for  pid=6269 comm="syz.1.70" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   57.667854][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[   57.673102][ T6270] Bluetooth: hci4: Frame reassembly failed (-90)
[   58.141339][   T40] audit: type=1400 audit(1774594610.507:244): avc:  denied  { append } for  pid=6277 comm="syz.0.73" name="video8" dev="devtmpfs" ino=976 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[   58.247675][ T6262] Bluetooth: hci0: Opcode 0x0c20 failed: -4
[   58.280445][   T40] audit: type=1400 audit(1774594610.647:245): avc:  denied  { write } for  pid=6288 comm="syz.3.77" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   58.331786][   T40] audit: type=1400 audit(1774594610.697:246): avc:  denied  { write } for  pid=6292 comm="syz.3.78" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   58.384017][   T40] audit: type=1400 audit(1774594610.747:247): avc:  denied  { append } for  pid=6292 comm="syz.3.78" name="renderD128" dev="devtmpfs" ino=634 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   58.685009][   T40] audit: type=1400 audit(1774594611.047:248): avc:  denied  { watch } for  pid=6299 comm="syz.2.80" path="/20" dev="tmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   58.810800][   T40] audit: type=1400 audit(1774594611.177:249): avc:  denied  { read write } for  pid=6304 comm="syz.2.82" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   58.941817][ T6312] FAULT_INJECTION: forcing a failure.
[   58.941817][ T6312] name failslab, interval 1, probability 0, space 0, times 1
[   58.945864][ T6312] CPU: 0 UID: 0 PID: 6312 Comm: syz.2.85 Not tainted syzkaller #0 PREEMPT(full) 
[   58.945879][ T6312] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   58.945885][ T6312] Call Trace:
[   58.945890][ T6312]  <TASK>
[   58.945894][ T6312]  dump_stack_lvl+0x100/0x190
[   58.945929][ T6312]  should_fail_ex.cold+0x5/0xa
[   58.945945][ T6312]  ? tomoyo_realpath_from_path+0xb6/0x690
[   58.945962][ T6312]  should_failslab+0xc2/0x120
[   58.945974][ T6312]  __kmalloc_noprof+0xe0/0x850
[   58.945993][ T6312]  tomoyo_realpath_from_path+0xb6/0x690
[   58.946013][ T6312]  tomoyo_path_number_perm+0x23c/0x580
[   58.946026][ T6312]  ? tomoyo_path_number_perm+0x22e/0x580
[   58.946041][ T6312]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   58.946069][ T6312]  ? find_held_lock+0x2b/0x80
[   58.946084][ T6312]  ? __fget_files+0x215/0x3d0
[   58.946095][ T6312]  ? hook_file_ioctl_common+0x146/0x410
[   58.946109][ T6312]  ? __fget_files+0x21f/0x3d0
[   58.946123][ T6312]  security_file_ioctl+0xd3/0x230
[   58.946140][ T6312]  __x64_sys_ioctl+0xb7/0x210
[   58.946158][ T6312]  do_syscall_64+0x106/0xf80
[   58.946175][ T6312]  ? clear_bhb_loop+0x40/0x90
[   58.946189][ T6312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.946204][ T6312] RIP: 0033:0x7f4422b9c799
[   58.946214][ T6312] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   58.946224][ T6312] RSP: 002b:00007f44239b4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   58.946235][ T6312] RAX: ffffffffffffffda RBX: 00007f4422e15fa0 RCX: 00007f4422b9c799
[   58.946241][ T6312] RDX: 00002000000000c0 RSI: 0000000040946400 RDI: 0000000000000003
[   58.946248][ T6312] RBP: 00007f44239b4090 R08: 0000000000000000 R09: 0000000000000000
[   58.946254][ T6312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.946260][ T6312] R13: 00007f4422e16038 R14: 00007f4422e15fa0 R15: 00007ffc51e33bc8
[   58.946274][ T6312]  </TASK>
[   58.946293][ T6312] ERROR: Out of memory at tomoyo_realpath_from_path.
[   59.371641][   T63] Bluetooth: hci0: command 0x040f tx timeout
[   59.447088][   T63] Bluetooth: hci2: command 0x040f tx timeout
[   59.447111][ T5935] Bluetooth: hci1: command 0x040f tx timeout
[   59.478268][ T6329] netlink: 'syz.2.90': attribute type 1 has an invalid length.
[   59.480738][ T6329] netlink: 'syz.2.90': attribute type 1 has an invalid length.
[   59.527079][ T5935] Bluetooth: hci3: command 0x040f tx timeout
[   59.677688][ T5935] Bluetooth: hci4: command 0x1003 tx timeout
[   59.677698][ T5943] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   59.685953][ T6338] FAULT_INJECTION: forcing a failure.
[   59.685953][ T6338] name failslab, interval 1, probability 0, space 0, times 0
[   59.691290][ T6338] CPU: 3 UID: 0 PID: 6338 Comm: syz.3.94 Not tainted syzkaller #0 PREEMPT(full) 
[   59.691306][ T6338] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   59.691313][ T6338] Call Trace:
[   59.691316][ T6338]  <TASK>
[   59.691321][ T6338]  dump_stack_lvl+0x100/0x190
[   59.691343][ T6338]  should_fail_ex.cold+0x5/0xa
[   59.691358][ T6338]  ? tomoyo_encode2+0xfb/0x3c0
[   59.691374][ T6338]  should_failslab+0xc2/0x120
[   59.691386][ T6338]  __kmalloc_noprof+0xe0/0x850
[   59.691404][ T6338]  ? d_absolute_path+0x136/0x1b0
[   59.691423][ T6338]  tomoyo_encode2+0xfb/0x3c0
[   59.691441][ T6338]  tomoyo_encode+0x29/0x50
[   59.691456][ T6338]  tomoyo_realpath_from_path+0x18c/0x690
[   59.691489][ T6338]  tomoyo_path_number_perm+0x23c/0x580
[   59.691504][ T6338]  ? tomoyo_path_number_perm+0x22e/0x580
[   59.691519][ T6338]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   59.691547][ T6338]  ? find_held_lock+0x2b/0x80
[   59.691562][ T6338]  ? __fget_files+0x215/0x3d0
[   59.691573][ T6338]  ? hook_file_ioctl_common+0x146/0x410
[   59.691587][ T6338]  ? __fget_files+0x21f/0x3d0
[   59.691601][ T6338]  security_file_ioctl+0xd3/0x230
[   59.691618][ T6338]  __x64_sys_ioctl+0xb7/0x210
[   59.691636][ T6338]  do_syscall_64+0x106/0xf80
[   59.691653][ T6338]  ? clear_bhb_loop+0x40/0x90
[   59.691666][ T6338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.691678][ T6338] RIP: 0033:0x7fa626b9c799
[   59.691687][ T6338] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   59.691697][ T6338] RSP: 002b:00007fa6279dc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.691708][ T6338] RAX: ffffffffffffffda RBX: 00007fa626e15fa0 RCX: 00007fa626b9c799
[   59.691715][ T6338] RDX: 00002000000000c0 RSI: 0000000040946400 RDI: 0000000000000003
[   59.691721][ T6338] RBP: 00007fa6279dc090 R08: 0000000000000000 R09: 0000000000000000
[   59.691727][ T6338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.691733][ T6338] R13: 00007fa626e16038 R14: 00007fa626e15fa0 R15: 00007ffc2aab6ca8
[   59.691747][ T6338]  </TASK>
[   59.692120][ T6338] ERROR: Out of memory at tomoyo_realpath_from_path.
[   59.846697][ T6355] mmap: syz.2.99 (6355) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   59.847084][ T6351] process 'syz.3.97' launched '/dev/fd/6' with NULL argv: empty string added
[   59.946739][ T6363] vxfs: unable to read disk superblock at 1
[   59.949788][ T6363] vxfs: unable to read disk superblock at 8
[   59.951786][ T6363] vxfs: can't find superblock.
[   59.964358][ T6370] : entered promiscuous mode
[   59.970757][ T6370] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.973154][ T6370] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.977155][ T6370] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.979588][ T6370] batman_adv: batadv0: Removing interface: batadv_slave_1
[   60.001071][ T6373] FAULT_INJECTION: forcing a failure.
[   60.001071][ T6373] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   60.006618][ T6373] CPU: 2 UID: 0 PID: 6373 Comm: syz.1.106 Not tainted syzkaller #0 PREEMPT(full) 
[   60.006641][ T6373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   60.006651][ T6373] Call Trace:
[   60.006658][ T6373]  <TASK>
[   60.006665][ T6373]  dump_stack_lvl+0x100/0x190
[   60.006703][ T6373]  should_fail_ex.cold+0x5/0xa
[   60.006727][ T6373]  _copy_from_user+0x2e/0xd0
[   60.006746][ T6373]  do_devconfig_ioctl+0x11e/0x6d0
[   60.006764][ T6373]  ? comedi_unlocked_ioctl+0x180/0x3310
[   60.006785][ T6373]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[   60.006816][ T6373]  ? find_held_lock+0x2b/0x80
[   60.006844][ T6373]  comedi_unlocked_ioctl+0x860/0x3310
[   60.006864][ T6373]  ? tomoyo_path_number_perm+0x188/0x580
[   60.006892][ T6373]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   60.006935][ T6373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   60.006961][ T6373]  ? do_vfs_ioctl+0x226/0x13e0
[   60.006993][ T6373]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   60.007019][ T6373]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   60.007051][ T6373]  ? __fget_files+0x215/0x3d0
[   60.007069][ T6373]  ? hook_file_ioctl_common+0x146/0x410
[   60.007093][ T6373]  ? selinux_file_ioctl+0x139/0x290
[   60.007116][ T6373]  ? selinux_file_ioctl+0xb4/0x290
[   60.007141][ T6373]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   60.007162][ T6373]  __x64_sys_ioctl+0x18e/0x210
[   60.007190][ T6373]  do_syscall_64+0x106/0xf80
[   60.007214][ T6373]  ? clear_bhb_loop+0x40/0x90
[   60.007235][ T6373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.007252][ T6373] RIP: 0033:0x7fc20499c799
[   60.007267][ T6373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   60.007283][ T6373] RSP: 002b:00007fc205786028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   60.007300][ T6373] RAX: ffffffffffffffda RBX: 00007fc204c15fa0 RCX: 00007fc20499c799
[   60.007312][ T6373] RDX: 00002000000000c0 RSI: 0000000040946400 RDI: 0000000000000003
[   60.007322][ T6373] RBP: 00007fc205786090 R08: 0000000000000000 R09: 0000000000000000
[   60.007331][ T6373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.007341][ T6373] R13: 00007fc204c16038 R14: 00007fc204c15fa0 R15: 00007fff5095d128
[   60.007365][ T6373]  </TASK>
[   60.488788][ T6412] comedi comedi3: s526: I/O port conflict (0xcf7,64)
[   60.515550][ T6415] FAULT_INJECTION: forcing a failure.
[   60.515550][ T6415] name failslab, interval 1, probability 0, space 0, times 0
[   60.519997][ T6415] CPU: 1 UID: 0 PID: 6415 Comm: syz.0.118 Not tainted syzkaller #0 PREEMPT(full) 
[   60.520013][ T6415] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   60.520020][ T6415] Call Trace:
[   60.520024][ T6415]  <TASK>
[   60.520028][ T6415]  dump_stack_lvl+0x100/0x190
[   60.520051][ T6415]  should_fail_ex.cold+0x5/0xa
[   60.520066][ T6415]  should_failslab+0xc2/0x120
[   60.520078][ T6415]  __kmalloc_cache_noprof+0x7a/0x6f0
[   60.520093][ T6415]  ? __request_region+0x5c/0xf0
[   60.520110][ T6415]  ? cred_has_capability.isra.0+0x186/0x300
[   60.520129][ T6415]  __request_region+0x5c/0xf0
[   60.520147][ T6415]  comedi_request_region+0x6d/0x100
[   60.520163][ T6415]  s526_attach+0x54/0x800
[   60.520179][ T6415]  comedi_device_attach+0x3d2/0x660
[   60.520197][ T6415]  do_devconfig_ioctl+0x1b3/0x6d0
[   60.520207][ T6415]  ? comedi_unlocked_ioctl+0x180/0x3310
[   60.520221][ T6415]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[   60.520239][ T6415]  ? find_held_lock+0x2b/0x80
[   60.520260][ T6415]  comedi_unlocked_ioctl+0x860/0x3310
[   60.520273][ T6415]  ? tomoyo_path_number_perm+0x188/0x580
[   60.520290][ T6415]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   60.520306][ T6415]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   60.520323][ T6415]  ? do_vfs_ioctl+0x226/0x13e0
[   60.520341][ T6415]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   60.520358][ T6415]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   60.520378][ T6415]  ? __fget_files+0x215/0x3d0
[   60.520390][ T6415]  ? hook_file_ioctl_common+0x146/0x410
[   60.520404][ T6415]  ? selinux_file_ioctl+0x139/0x290
[   60.520419][ T6415]  ? selinux_file_ioctl+0xb4/0x290
[   60.520436][ T6415]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   60.520449][ T6415]  __x64_sys_ioctl+0x18e/0x210
[   60.520467][ T6415]  do_syscall_64+0x106/0xf80
[   60.520484][ T6415]  ? clear_bhb_loop+0x40/0x90
[   60.520499][ T6415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.520510][ T6415] RIP: 0033:0x7fee0059c799
[   60.520519][ T6415] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   60.520530][ T6415] RSP: 002b:00007fee0144c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   60.520541][ T6415] RAX: ffffffffffffffda RBX: 00007fee00815fa0 RCX: 00007fee0059c799
[   60.520548][ T6415] RDX: 00002000000000c0 RSI: 0000000040946400 RDI: 0000000000000003
[   60.520554][ T6415] RBP: 00007fee0144c090 R08: 0000000000000000 R09: 0000000000000000
[   60.520560][ T6415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.520566][ T6415] R13: 00007fee00816038 R14: 00007fee00815fa0 R15: 00007ffec400af78
[   60.520580][ T6415]  </TASK>
[   60.520587][ T6415] comedi comedi3: s526: I/O port conflict (0x8001,64)
[   60.567003][ T6025] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   60.779675][ T6429] comedi comedi3: 8255: I/O port conflict (0x5,4)
[   60.801578][ T6025] usb 7-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[   60.804447][ T6025] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   60.807146][ T6025] usb 7-1: Product: syz
[   60.808582][ T6025] usb 7-1: Manufacturer: syz
[   60.810199][ T6025] usb 7-1: SerialNumber: syz
[   60.917771][ T6431] netlink: 'syz.0.123': attribute type 1 has an invalid length.
[   60.942233][ T6431] bond1 (unregistering): Released all slaves
[   61.031556][ T6431] __nla_validate_parse: 133 callbacks suppressed
[   61.031572][ T6431] netlink: 28 bytes leftover after parsing attributes in process `syz.0.123'.
[   61.032288][ T6428] syz.1.122 (6428): drop_caches: 2
[   61.199515][ T5935] Bluetooth: hci3: unexpected event for opcode 0x0c47
[   61.348781][ T6449] comedi comedi3: s526: I/O port conflict (0xcff,64)
[   61.423176][ T6395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.429352][ T6395] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.437123][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[   61.447940][ T6395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.450919][ T6395] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.456102][ T6395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.459525][ T6395] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.500326][ T6025] rtl8150 7-1:1.0: couldn't reset the device
[   61.503327][ T6025] rtl8150 7-1:1.0: probe with driver rtl8150 failed with error -5
[   61.518637][ T5935] Bluetooth: hci1: command 0x040f tx timeout
[   61.520673][ T6025] usb 7-1: USB disconnect, device number 2
[   61.527038][ T5935] Bluetooth: hci2: command 0x040f tx timeout
[   61.987509][ T6454] FAULT_INJECTION: forcing a failure.
[   61.987509][ T6454] name failslab, interval 1, probability 0, space 0, times 0
[   61.992845][ T6454] CPU: 0 UID: 0 PID: 6454 Comm: syz.3.130 Not tainted syzkaller #0 PREEMPT(full) 
[   61.992867][ T6454] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   61.992876][ T6454] Call Trace:
[   61.992882][ T6454]  <TASK>
[   61.992888][ T6454]  dump_stack_lvl+0x100/0x190
[   61.992919][ T6454]  should_fail_ex.cold+0x5/0xa
[   61.992941][ T6454]  ? comedi_alloc_devpriv+0x22/0x60
[   61.992961][ T6454]  should_failslab+0xc2/0x120
[   61.992985][ T6454]  __kmalloc_noprof+0xe0/0x850
[   61.993008][ T6454]  ? __request_region+0xb0/0xf0
[   61.993036][ T6454]  comedi_alloc_devpriv+0x22/0x60
[   61.993057][ T6454]  s526_attach+0x87/0x800
[   61.993080][ T6454]  comedi_device_attach+0x3d2/0x660
[   61.993107][ T6454]  do_devconfig_ioctl+0x1b3/0x6d0
[   61.993122][ T6454]  ? comedi_unlocked_ioctl+0x180/0x3310
[   61.993141][ T6454]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[   61.993171][ T6454]  ? find_held_lock+0x2b/0x80
[   61.993197][ T6454]  comedi_unlocked_ioctl+0x860/0x3310
[   61.993216][ T6454]  ? tomoyo_path_number_perm+0x188/0x580
[   61.993242][ T6454]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   61.993265][ T6454]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   61.993290][ T6454]  ? do_vfs_ioctl+0x226/0x13e0
[   61.993315][ T6454]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   61.993339][ T6454]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   61.993370][ T6454]  ? __fget_files+0x215/0x3d0
[   61.993386][ T6454]  ? hook_file_ioctl_common+0x146/0x410
[   61.993408][ T6454]  ? selinux_file_ioctl+0x139/0x290
[   61.993429][ T6454]  ? selinux_file_ioctl+0xb4/0x290
[   61.993453][ T6454]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   61.993472][ T6454]  __x64_sys_ioctl+0x18e/0x210
[   61.993498][ T6454]  do_syscall_64+0x106/0xf80
[   61.993520][ T6454]  ? clear_bhb_loop+0x40/0x90
[   61.993540][ T6454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.993556][ T6454] RIP: 0033:0x7fa626b9c799
[   61.993571][ T6454] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   61.993586][ T6454] RSP: 002b:00007fa6279dc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   61.993602][ T6454] RAX: ffffffffffffffda RBX: 00007fa626e15fa0 RCX: 00007fa626b9c799
[   61.993613][ T6454] RDX: 00002000000000c0 RSI: 0000000040946400 RDI: 0000000000000003
[   61.993623][ T6454] RBP: 00007fa6279dc090 R08: 0000000000000000 R09: 0000000000000000
[   61.993632][ T6454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.993641][ T6454] R13: 00007fa626e16038 R14: 00007fa626e15fa0 R15: 00007ffc2aab6ca8
[   61.993664][ T6454]  </TASK>
[   62.051345][ T6459] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.132088][ T6463] Bluetooth: MGMT ver 1.23
[   62.157246][ T6465] netlink: 460 bytes leftover after parsing attributes in process `syz.3.136'.
[   62.178834][ T6469] comedi: valid board names for 8255 driver are:
[   62.181424][ T6469]  8255
[   62.182589][ T6469] comedi: valid board names for vmk80xx driver are:
[   62.185449][ T6469]  vmk80xx
[   62.185548][ T6465] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[   62.186741][ T6469] comedi: valid board names for usbduxsigma driver are:
[   62.192549][ T6469]  usbduxsigma
[   62.194190][ T6469] comedi: valid board names for usbduxfast driver are:
[   62.197188][ T6469]  usbduxfast
[   62.198590][ T6469] comedi: valid board names for usbdux driver are:
[   62.201394][ T6469]  usbdux
[   62.202593][ T6469] comedi: valid board names for ni6501 driver are:
[   62.205040][ T6469]  ni6501
[   62.206257][ T6469] comedi: valid board names for dt9812 driver are:
[   62.217072][ T6469]  dt9812
[   62.218469][ T6469] comedi: valid board names for ni_labpc_cs driver are:
[   62.227085][ T6469]  ni_labpc_cs
[   62.228526][ T6469] comedi: valid board names for ni_daq_700 driver are:
[   62.237100][ T6469]  ni_daq_700
[   62.238588][ T6469] comedi: valid board names for labpc_pci driver are:
[   62.243737][ T6469]  labpc_pci
[   62.245177][ T6469] comedi: valid board names for adl_pci9118 driver are:
[   62.248293][ T6469]  pci9118dg
[   62.249833][ T6469]  pci9118hg
[   62.251334][ T6469]  pci9118hr
[   62.252770][ T6469] comedi: valid board names for 8255_pci driver are:
[   62.255563][ T6469]  8255_pci
[   62.256994][ T6469] comedi: valid board names for s526 driver are:
[   62.259704][ T6469]  s526
[   62.260950][ T6469] comedi: valid board names for multiq3 driver are:
[   62.263845][ T6469]  multiq3
[   62.265345][ T6469] comedi: valid board names for pcmuio driver are:
[   62.270832][ T6469]  pcmuio48
[   62.274272][ T6469]  pcmuio96
[   62.275781][ T6469] comedi: valid board names for pcmmio driver are:
[   62.278739][ T6469]  pcmmio
[   62.279733][ T6469] comedi: valid board names for pcmda12 driver are:
[   62.282010][ T6469]  pcmda12
[   62.283112][ T6469] comedi: valid board names for pcmad driver are:
[   62.285321][ T6469]  pcmad12
[   62.286576][ T6469]  pcmad16
[   62.287997][ T6469] comedi: valid board names for ni_labpc driver are:
[   62.290832][ T6469]  lab-pc-1200
[   62.292453][ T6469]  lab-pc-1200ai
[   62.294089][ T6469]  lab-pc+
[   62.295574][ T6469] comedi: valid board names for atmio16 driver are:
[   62.299249][ T6469]  atmio16
[   62.300633][ T6469]  atmio16d
[   62.302336][ T6469] comedi: valid board names for ni_at_ao driver are:
[   62.305194][ T6469]  at-ao-6
[   62.306611][ T6469]  at-ao-10
[   62.308586][ T6469] comedi: valid board names for ni_at_a2150 driver are:
[   62.311367][ T6469]  ni_at_a2150
[   62.312791][ T6469] comedi: valid board names for adq12b driver are:
[   62.316417][ T6469]  adq12b
[   62.320084][ T6469] comedi: valid board names for mpc624 driver are:
[   62.322797][ T6469]  mpc624
[   62.324059][ T6469] comedi: valid board names for c6xdigio driver are:
[   62.327215][ T6469]  c6xdigio
[   62.329222][ T6469] comedi: valid board names for aio_iiro_16 driver are:
[   62.331917][ T6469]  aio_iiro_16
[   62.333369][ T6469] comedi: valid board names for aio_aio12_8 driver are:
[   62.336257][ T6469]  aio_aio12_8
[   62.338243][ T6469]  aio_ai12_8
[   62.339639][ T6469]  aio_ao12_4
[   62.341069][ T6469] comedi: valid board names for fl512 driver are:
[   62.343491][ T6469]  fl512
[   62.344691][ T6469] comedi: valid board names for dmm32at driver are:
[   62.348104][ T6469]  dmm32at
[   62.349463][ T6469] comedi: valid board names for dt282x driver are:
[   62.352204][ T6469]  dt2821
[   62.353725][ T6469]  dt2821-f
[   62.355045][ T6469]  dt2821-g
[   62.356367][ T6469]  dt2823
[   62.357829][ T6469]  dt2824-pgh
[   62.359407][ T6469]  dt2824-pgl
[   62.360926][ T6469]  dt2825
[   62.362436][ T6469]  dt2827
[   62.363849][ T6469]  dt2828
[   62.365464][ T6469]  dt2829
[   62.366816][ T6469]  dt21-ez
[   62.368478][ T6469]  dt23-ez
[   62.369886][ T6469]  dt24-ez
[   62.371460][ T6469]  dt24-ez-pgl
[   62.373054][ T6469] comedi: valid board names for dt2817 driver are:
[   62.376008][ T6469]  dt2817
[   62.377427][ T6469] comedi: valid board names for dt2815 driver are:
[   62.380471][ T6469]  dt2815
[   62.382072][ T6469] comedi: valid board names for dt2814 driver are:
[   62.385004][ T6469]  dt2814
[   62.386519][ T6469] comedi: valid board names for dt2811 driver are:
[   62.389848][ T6469]  dt2811-pgh
[   62.391478][ T6469]  dt2811-pgl
[   62.393072][ T6469] comedi: valid board names for dt2801 driver are:
[   62.395974][ T6469]  dt2801
[   62.397400][ T6469] comedi: valid board names for das6402 driver are:
[   62.400273][ T6469]  das6402-12
[   62.401825][ T6469]  das6402-16
[   62.403358][ T6469] comedi: valid board names for das1800 driver are:
[   62.407915][ T6469]  das-1701st
[   62.409472][ T6469]  das-1701st-da
[   62.410987][ T6469]  das-1702st
[   62.412387][ T6469]  das-1702st-da
[   62.413823][ T6469]  das-1702hr
[   62.415314][ T6469]  das-1702hr-da
[   62.416987][ T6469]  das-1701ao
[   62.418752][ T6469]  das-1702ao
[   62.420346][ T6469]  das-1801st
[   62.421902][ T6469]  das-1801st-da
[   62.423579][ T6469]  das-1802st
[   62.425174][ T6469]  das-1802st-da
[   62.426862][ T6469]  das-1802hr
[   62.428413][ T6469]  das-1802hr-da
[   62.430055][ T6469]  das-1801hc
[   62.431553][ T6469]  das-1802hc
[   62.433104][ T6469]  das-1801ao
[   62.435800][ T6469]  das-1802ao
[   62.440211][ T6469] comedi: valid board names for das800 driver are:
[   62.443882][ T6469]  das-800
[   62.445228][ T6469]  cio-das800
[   62.446826][ T6469]  das-801
[   62.448522][ T6469]  cio-das801
[   62.449982][ T6469]  das-802
[   62.451272][ T6469]  cio-das802
[   62.452666][ T6469]  cio-das802/16
[   62.454278][ T6469] comedi: valid board names for isa-das08 driver are:
[   62.457110][ T6469]  isa-das08
[   62.458532][ T6469]  das08-pgm
[   62.459922][ T6469]  das08-pgh
[   62.461324][ T6469]  das08-pgl
[   62.462741][ T6469]  das08-aoh
[   62.464147][ T6469]  das08-aol
[   62.465603][ T6469]  das08-aom
[   62.467824][ T6469]  das08/jr-ao
[   62.469467][ T6469]  das08jr-16-ao
[   62.471794][ T6469]  pc104-das08
[   62.473339][ T6469]  das08jr/16
[   62.474876][ T6469] comedi: valid board names for das16m1 driver are:
[   62.477831][ T6469]  das16m1
[   62.479196][ T6469] comedi: valid board names for dac02 driver are:
[   62.481856][ T6469]  dac02
[   62.483122][ T6469] comedi: valid board names for rti802 driver are:
[   62.485782][ T6469]  rti802
[   62.487126][ T6469] comedi: valid board names for rti800 driver are:
[   62.489861][ T6469]  rti800
[   62.491156][ T6469]  rti815
[   62.492448][ T6469] comedi: valid board names for pcm3724 driver are:
[   62.495154][ T6469]  pcm3724
[   62.496480][ T6469] comedi: valid board names for pcl818 driver are:
[   62.499242][ T6469]  pcl818l
[   62.500648][ T6469]  pcl818h
[   62.502107][ T6469]  pcl818hd
[   62.503606][ T6469]  pcl818hg
[   62.505126][ T6469]  pcl818
[   62.506659][ T6469]  pcl718
[   62.507985][ T6469]  pcm3718
[   62.509257][ T6469] comedi: valid board names for pcl816 driver are:
[   62.511945][ T6469]  pcl816
[   62.513157][ T6469]  pcl814b
[   62.514434][ T6469] comedi: valid board names for pcl812 driver are:
[   62.517151][ T6469]  pcl812
[   62.518385][ T6469]  pcl812pg
[   62.519679][ T6469]  acl8112pg
[   62.521026][ T6469]  acl8112dg
[   62.522473][ T6469]  acl8112hg
[   62.523800][ T6469]  a821pgl
[   62.525065][ T6469]  a821pglnda
[   62.526411][ T6469]  a821pgh
[   62.527749][ T6469]  a822pgl
[   62.529028][ T6469]  a822pgh
[   62.530304][ T6469]  a823pgl
[   62.531613][ T6469]  a823pgh
[   62.533034][ T6469]  pcl813
[   62.534304][ T6469]  pcl813b
[   62.535611][ T6469]  acl8113
[   62.536890][ T6469]  iso813
[   62.538227][ T6469]  acl8216
[   62.539485][ T6469]  a826pg
[   62.540686][ T6469] comedi: valid board names for pcl730 driver are:
[   62.543382][ T6469]  pcl730
[   62.544596][ T6469]  iso730
[   62.545811][ T6469]  acl7130
[   62.547228][ T6469]  pcm3730
[   62.548585][ T6469]  pcl725
[   62.549817][ T6469]  p8r8dio
[   62.551095][ T6469]  acl7225b
[   62.552406][ T6469]  p16r16dio
[   62.553847][ T6469]  pcl733
[   62.555064][ T6469]  pcl734
[   62.556309][ T6469]  opmm-1616-xt
[   62.558093][ T6469]  pearl-mm-p
[   62.559504][ T6469]  ir104-pbf
[   62.560856][ T6469] comedi: valid board names for pcl726 driver are:
[   62.563488][ T6469]  pcl726
[   62.564850][ T6469]  pcl727
[   62.566006][ T6469]  pcl728
[   62.567389][ T6469]  acl6126
[   62.568667][ T6469]  acl6128
[   62.569963][ T6469] comedi: valid board names for pcl724 driver are:
[   62.572463][ T6469]  pcl724
[   62.573669][ T6469]  pcl722
[   62.575009][ T6469]  pcl731
[   62.576223][ T6469]  acl7122
[   62.577540][ T6469]  acl7124
[   62.578811][ T6469]  pet48dio
[   62.580104][ T6469]  pcmio48
[   62.581387][ T6469]  onyx-mm-dio
[   62.582845][ T6469] comedi: valid board names for pcl711 driver are:
[   62.585669][ T6469]  pcl711
[   62.587009][ T6469]  pcl711b
[   62.588296][ T6469]  acl8112hg
[   62.589628][ T6469]  acl8112dg
[   62.590961][ T6469] comedi: valid board names for amplc_pc263 driver are:
[   62.593693][ T6469]  pc263
[   62.594882][ T6469] comedi: valid board names for amplc_pc236 driver are:
[   62.597813][ T6469]  pc36at
[   62.599057][ T6469] comedi: valid board names for amplc_dio200 driver are:
[   62.602481][ T6469]  pc212e
[   62.603752][ T6469]  pc214e
[   62.604935][ T6469]  pc215e
[   62.606139][ T6469]  pc218e
[   62.607433][ T6469]  pc272e
[   62.608949][ T6469] comedi: valid board names for comedi_parport driver are:
[   62.611814][ T6469]  comedi_parport
[   62.613335][ T6469] comedi: valid board names for comedi_test driver are:
[   62.616146][ T6469]  comedi_test
[   62.617750][ T6469] comedi: valid board names for comedi_bond driver are:
[   62.620685][ T6469]  comedi_bond
[   62.665430][ T6483] FAULT_INJECTION: forcing a failure.
[   62.665430][ T6483] name failslab, interval 1, probability 0, space 0, times 0
[   62.670190][ T6483] CPU: 3 UID: 0 PID: 6483 Comm: syz.2.142 Not tainted syzkaller #0 PREEMPT(full) 
[   62.670205][ T6483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   62.670212][ T6483] Call Trace:
[   62.670215][ T6483]  <TASK>
[   62.670220][ T6483]  dump_stack_lvl+0x100/0x190
[   62.670242][ T6483]  should_fail_ex.cold+0x5/0xa
[   62.670257][ T6483]  ? comedi_alloc_subdevices+0x4a/0x240
[   62.670272][ T6483]  should_failslab+0xc2/0x120
[   62.670283][ T6483]  __kmalloc_noprof+0xe0/0x850
[   62.670303][ T6483]  comedi_alloc_subdevices+0x4a/0x240
[   62.670319][ T6483]  s526_attach+0xa2/0x800
[   62.670335][ T6483]  comedi_device_attach+0x3d2/0x660
[   62.670353][ T6483]  do_devconfig_ioctl+0x1b3/0x6d0
[   62.670363][ T6483]  ? comedi_unlocked_ioctl+0x180/0x3310
[   62.670377][ T6483]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[   62.670395][ T6483]  ? find_held_lock+0x2b/0x80
[   62.670413][ T6483]  comedi_unlocked_ioctl+0x860/0x3310
[   62.670426][ T6483]  ? tomoyo_path_number_perm+0x188/0x580
[   62.670443][ T6483]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   62.670459][ T6483]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   62.670476][ T6483]  ? do_vfs_ioctl+0x226/0x13e0
[   62.670493][ T6483]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   62.670510][ T6483]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   62.670531][ T6483]  ? __fget_files+0x215/0x3d0
[   62.670542][ T6483]  ? hook_file_ioctl_common+0x146/0x410
[   62.670557][ T6483]  ? selinux_file_ioctl+0x139/0x290
[   62.670572][ T6483]  ? selinux_file_ioctl+0xb4/0x290
[   62.670589][ T6483]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   62.670602][ T6483]  __x64_sys_ioctl+0x18e/0x210
[   62.670620][ T6483]  do_syscall_64+0x106/0xf80
[   62.670636][ T6483]  ? clear_bhb_loop+0x40/0x90
[   62.670650][ T6483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.670661][ T6483] RIP: 0033:0x7f4422b9c799
[   62.670670][ T6483] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   62.670680][ T6483] RSP: 002b:00007f44239b4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.670692][ T6483] RAX: ffffffffffffffda RBX: 00007f4422e15fa0 RCX: 00007f4422b9c799
[   62.670698][ T6483] RDX: 00002000000000c0 RSI: 0000000040946400 RDI: 0000000000000003
[   62.670705][ T6483] RBP: 00007f44239b4090 R08: 0000000000000000 R09: 0000000000000000
[   62.670711][ T6483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.670717][ T6483] R13: 00007f4422e16038 R14: 00007f4422e15fa0 R15: 00007ffc51e33bc8
[   62.670731][ T6483]  </TASK>
[   62.791777][   T40] kauditd_printk_skb: 42 callbacks suppressed
[   62.791788][   T40] audit: type=1400 audit(1774594615.157:292): avc:  denied  { create } for  pid=6496 comm="syz.2.145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   62.810226][   T40] audit: type=1400 audit(1774594615.177:293): avc:  denied  { view } for  pid=6494 comm="syz.1.144" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   62.817569][   T40] audit: type=1400 audit(1774594615.187:294): avc:  denied  { bind } for  pid=6494 comm="syz.1.144" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   62.824332][   T40] audit: type=1400 audit(1774594615.187:295): avc:  denied  { name_bind } for  pid=6494 comm="syz.1.144" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   62.832234][   T40] audit: type=1400 audit(1774594615.197:296): avc:  denied  { node_bind } for  pid=6494 comm="syz.1.144" saddr=224.0.0.2 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   62.844623][   T40] audit: type=1400 audit(1774594615.207:297): avc:  denied  { watch } for  pid=6498 comm="syz.2.146" path=2F6D656D66643A202864656C6574656429 dev="tmpfs" ino=2049 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   62.879337][   T40] audit: type=1400 audit(1774594615.247:298): avc:  denied  { bind } for  pid=6500 comm="syz.3.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.912280][ T6508] comedi comedi3: s526: I/O port conflict (0x1fff,64)
[   62.944923][   T40] audit: type=1400 audit(1774594615.307:299): avc:  denied  { ioctl } for  pid=6512 comm="syz.1.150" path="socket:[8099]" dev="sockfs" ino=8099 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   62.961795][   T40] audit: type=1400 audit(1774594615.317:300): avc:  denied  { mounton } for  pid=6511 comm="syz.2.152" path="/46/file0" dev="tmpfs" ino=260 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   62.983386][ T6522] FAULT_INJECTION: forcing a failure.
[   62.983386][ T6522] name failslab, interval 1, probability 0, space 0, times 0
[   62.984358][   T40] audit: type=1400 audit(1774594615.347:301): avc:  denied  { bind } for  pid=6523 comm="syz.0.155" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   62.988423][ T6522] CPU: 1 UID: 0 PID: 6522 Comm: syz.1.154 Not tainted syzkaller #0 PREEMPT(full) 
[   62.988455][ T6522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   62.988465][ T6522] Call Trace:
[   62.988471][ T6522]  <TASK>
[   62.988477][ T6522]  dump_stack_lvl+0x100/0x190
[   62.988507][ T6522]  should_fail_ex.cold+0x5/0xa
[   62.988529][ T6522]  ? comedi_alloc_subdev_readback+0x8c/0x180
[   62.988549][ T6522]  should_failslab+0xc2/0x120
[   62.988563][ T6522]  __kmalloc_noprof+0xe0/0x850
[   62.988587][ T6522]  ? __raw_spin_lock_init+0x3a/0x110
[   62.988610][ T6522]  comedi_alloc_subdev_readback+0x8c/0x180
[   62.988632][ T6522]  s526_attach+0x500/0x800
[   62.988652][ T6522]  comedi_device_attach+0x3d2/0x660
[   62.988680][ T6522]  do_devconfig_ioctl+0x1b3/0x6d0
[   62.988694][ T6522]  ? comedi_unlocked_ioctl+0x180/0x3310
[   62.988713][ T6522]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[   62.988736][ T6522]  ? find_held_lock+0x2b/0x80
[   62.988761][ T6522]  comedi_unlocked_ioctl+0x860/0x3310
[   62.988780][ T6522]  ? tomoyo_path_number_perm+0x188/0x580
[   62.988805][ T6522]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   62.988825][ T6522]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   62.988849][ T6522]  ? do_vfs_ioctl+0x226/0x13e0
[   62.988873][ T6522]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   62.988897][ T6522]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[   62.988925][ T6522]  ? __fget_files+0x215/0x3d0
[   62.988941][ T6522]  ? hook_file_ioctl_common+0x146/0x410
[   62.988964][ T6522]  ? selinux_file_ioctl+0x139/0x290
[   62.988985][ T6522]  ? selinux_file_ioctl+0xb4/0x290
[   62.989005][ T6522]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[   62.989024][ T6522]  __x64_sys_ioctl+0x18e/0x210
[   62.989050][ T6522]  do_syscall_64+0x106/0xf80
[   62.989072][ T6522]  ? clear_bhb_loop+0x40/0x90
[   62.989089][ T6522]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.989105][ T6522] RIP: 0033:0x7fc20499c799
[   62.989119][ T6522] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   62.989133][ T6522] RSP: 002b:00007fc205786028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.989149][ T6522] RAX: ffffffffffffffda RBX: 00007fc204c15fa0 RCX: 00007fc20499c799
[   62.989159][ T6522] RDX: 00002000000000c0 RSI: 0000000040946400 RDI: 0000000000000003
[   62.989169][ T6522] RBP: 00007fc205786090 R08: 0000000000000000 R09: 0000000000000000
[   62.989178][ T6522] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.989187][ T6522] R13: 00007fc204c16038 R14: 00007fc204c15fa0 R15: 00007fff5095d128
[   62.989210][ T6522]  </TASK>
[   63.003919][ T6524] capability: warning: `syz.0.155' uses 32-bit capabilities (legacy support in use)
[   63.035777][ T6530] comedi comedi3: no devices specified
[   63.517024][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[   63.597213][   T63] Bluetooth: hci1: command 0x040f tx timeout
[   63.599918][ T5935] Bluetooth: hci2: command 0x040f tx timeout
[   63.843378][ T6543] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1
[   63.847682][ T6543] netlink: 16 bytes leftover after parsing attributes in process `syz.2.159'.
[   63.905059][ T6547] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=6547 comm=syz.3.162
[   63.913060][ T6547] netlink: 112 bytes leftover after parsing attributes in process `syz.3.162'.
[   64.019051][ T6553] netlink: 12 bytes leftover after parsing attributes in process `syz.1.164'.
[   64.112727][ T6562] FAULT_INJECTION: forcing a failure.
[   64.112727][ T6562] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.119667][ T6562] CPU: 0 UID: 0 PID: 6562 Comm: syz.0.166 Not tainted syzkaller #0 PREEMPT(full) 
[   64.119690][ T6562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   64.119700][ T6562] Call Trace:
[   64.119707][ T6562]  <TASK>
[   64.119714][ T6562]  dump_stack_lvl+0x100/0x190
[   64.119750][ T6562]  should_fail_ex.cold+0x5/0xa
[   64.119776][ T6562]  _copy_to_user+0x32/0xd0
[   64.119798][ T6562]  simple_read_from_buffer+0xcb/0x170
[   64.119820][ T6562]  proc_fail_nth_read+0x1af/0x230
[   64.119849][ T6562]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   64.119877][ T6562]  ? rw_verify_area+0xce/0x6d0
[   64.119903][ T6562]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   64.119929][ T6562]  vfs_read+0x1e4/0xb30
[   64.119968][ T6562]  ? __pfx_vfs_read+0x10/0x10
[   64.119995][ T6562]  ? __fget_files+0x215/0x3d0
[   64.120021][ T6562]  ? __fget_files+0x21f/0x3d0
[   64.120049][ T6562]  ksys_read+0x12a/0x250
[   64.120066][ T6562]  ? __pfx_ksys_read+0x10/0x10
[   64.120091][ T6562]  do_syscall_64+0x106/0xf80
[   64.120117][ T6562]  ? clear_bhb_loop+0x40/0x90
[   64.120140][ T6562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.120159][ T6562] RIP: 0033:0x7fee0055cfce
[   64.120175][ T6562] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   64.120191][ T6562] RSP: 002b:00007fee0144bfe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   64.120210][ T6562] RAX: ffffffffffffffda RBX: 00007fee0144c6c0 RCX: 00007fee0055cfce
[   64.120222][ T6562] RDX: 000000000000000f RSI: 00007fee0144c0a0 RDI: 0000000000000004
[   64.120233][ T6562] RBP: 00007fee0144c090 R08: 0000000000000000 R09: 0000000000000000
[   64.120244][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.120255][ T6562] R13: 00007fee00816038 R14: 00007fee00815fa0 R15: 00007ffec400af78
[   64.120282][ T6562]  </TASK>
[   64.200355][ T6556] tmpfs: Bad value for 'mpol'
[   64.219940][ T6571] netlink: 56 bytes leftover after parsing attributes in process `syz.0.168'.
[   64.237701][ T5935] Bluetooth: hci3: command 0x040f tx timeout
[   64.274661][ T6577] netlink: 8 bytes leftover after parsing attributes in process `syz.0.170'.
[   64.278346][ T6577] netlink: 20 bytes leftover after parsing attributes in process `syz.0.170'.
[   64.288532][ T5935] Bluetooth: hci1: unexpected event for opcode 0x200c
[   64.290828][ T5935] Bluetooth: hci1: unexpected event for opcode 0x200c
[   64.349141][ T6590] capability: warning: `syz.2.176' uses deprecated v2 capabilities in a way that may be insecure
[   64.394951][ T6599] binder: 6597:6599 ioctl c0306201 200000000080 returned -14
[   64.400647][ T6599] binder: 6597:6599 ioctl c020aa00 200000000040 returned -22
[   64.402010][ T6595] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[   64.410728][ T6595] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.413274][ T6595] batadv_slave_0: entered promiscuous mode
[   64.415161][ T6595] batadv_slave_0: entered allmulticast mode
[   64.447090][ T6596] sctp: [Deprecated]: syz.1.173 (pid 6596) Use of struct sctp_assoc_value in delayed_ack socket option.
[   64.447090][ T6596] Use struct sctp_sack_info instead
[   64.453954][ T6596] netlink: 'syz.1.173': attribute type 10 has an invalid length.
[   64.554432][ T6596] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   64.562553][ T6605] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[   64.695368][ T6619] comedi comedi0: ni_at_a2150: I/O port conflict (0x7fff,28)
[   64.790874][ T6627] tmpfs: Unknown parameter '������H�R4HA+�'
[   65.151632][ T6669] Can't find ip_set type hash�
[   65.333532][ T6691] netlink: 8 bytes leftover after parsing attributes in process `syz.1.209'.
[   65.387058][  T841] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   65.552157][  T841] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   65.555214][  T841] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   65.558048][  T841] usb 5-1: Product: syz
[   65.559361][  T841] usb 5-1: Manufacturer: syz
[   65.560841][  T841] usb 5-1: SerialNumber: syz
[   65.566887][  T841] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   65.597021][ T5935] Bluetooth: hci0: command 0x040f tx timeout
[   65.605809][ T6024] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   65.677130][ T5935] Bluetooth: hci2: command 0x040f tx timeout
[   66.249003][   T50] usb 5-1: USB disconnect, device number 2
[   66.317099][ T5935] Bluetooth: hci3: command 0x040f tx timeout
[   66.375864][ T6723] IPVS: sync thread started: state = MASTER, mcast_ifn = batadv0, syncid = 0, id = 0
[   66.441816][ T6729] vivid-001: disconnect
[   66.450353][ T6729] vivid-001: reconnect
[   66.462909][ T6730] netlink: 'syz.2.221': attribute type 1 has an invalid length.
[   66.479198][ T6730] 8021q: adding VLAN 0 to HW filter on device bond1
[   66.483880][ T6730] netlink: 64 bytes leftover after parsing attributes in process `syz.2.221'.
[   66.641551][ T6737] netlink: 236 bytes leftover after parsing attributes in process `syz.3.224'.
[   66.644583][ T6737] netlink: 236 bytes leftover after parsing attributes in process `syz.3.224'.
[   66.877077][ T6024] usb 5-1: Service connection timeout for: 256
[   66.880353][ T6024] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services
[   66.889025][ T6024] ath9k_htc: Failed to initialize the device
[   66.893103][   T50] usb 5-1: ath9k_htc: USB layer deinitialized
[   66.894710][ T6744] kvm: kvm [6743]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[   66.903482][ T6744] kvm: kvm [6743]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[   67.469953][ T6798] netlink: 4 bytes leftover after parsing attributes in process `syz.3.240'.
[   67.687074][ T5943] Bluetooth: hci0: command 0x040f tx timeout
[   68.226942][   T40] kauditd_printk_skb: 63 callbacks suppressed
[   68.226959][   T40] audit: type=1400 audit(1774594620.587:365): avc:  denied  { map_create } for  pid=6801 comm="syz.0.244" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   68.234966][   T40] audit: type=1400 audit(1774594620.587:366): avc:  denied  { map_read map_write } for  pid=6801 comm="syz.0.244" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   68.275373][   T40] audit: type=1400 audit(1774594620.637:367): avc:  denied  { name_connect } for  pid=6799 comm="syz.1.243" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   68.303276][   T40] audit: type=1400 audit(1774594620.667:368): avc:  denied  { name_connect } for  pid=6799 comm="syz.1.243" dest=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1
[   68.329727][   T40] audit: type=1400 audit(1774594620.697:369): avc:  denied  { prog_run } for  pid=6809 comm="syz.2.247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   68.379594][ T6805] netlink: 24 bytes leftover after parsing attributes in process `syz.0.246'.
[   68.397750][ T5943] Bluetooth: hci3: command 0x040f tx timeout
[   68.486634][ T6816] netlink: 16 bytes leftover after parsing attributes in process `syz.3.248'.
[   68.499289][   T40] audit: type=1400 audit(1774594620.867:370): avc:  denied  { write } for  pid=6815 comm="syz.3.248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   68.569992][ T6821] netlink: 8 bytes leftover after parsing attributes in process `syz.0.249'.
[   68.580124][ T6821] vlan2: entered allmulticast mode
[   68.581914][ T6821] vlan0: entered allmulticast mode
[   68.583724][ T6821] veth0_vlan: entered allmulticast mode
[   68.649070][ T6827] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   68.664995][ T6827] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   68.741430][   T40] audit: type=1400 audit(1774594621.107:371): avc:  denied  { setattr } for  pid=6831 comm="syz.0.254" name="/" dev="9p" ino=76546123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   68.762796][ T6836] SELinux:  Context system_u:object_r:clock_device_t:s0 is not valid (left unmapped).
[   68.772079][   T40] audit: type=1400 audit(1774594621.137:372): avc:  denied  { relabelto } for  pid=6835 comm="syz.3.256" name="77" dev="tmpfs" ino=424 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:clock_device_t:s0"
[   68.787518][   T40] audit: type=1400 audit(1774594621.137:373): avc:  denied  { associate } for  pid=6835 comm="syz.3.256" name="77" dev="tmpfs" ino=424 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:clock_device_t:s0"
[   68.816689][ T6849] 9pnet_virtio: no channels available for device syz
[   68.893249][   T40] audit: type=1400 audit(1774594621.257:374): avc:  denied  { unlink } for  pid=6868 comm="syz.3.260" name="#3" dev="tmpfs" ino=446 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[   68.893866][ T6870] overlayfs: statfs failed on './file0'
[   68.924187][ T6874] netlink: 'syz.2.261': attribute type 64 has an invalid length.
[   68.926580][ T6874] netlink: 'syz.2.261': attribute type 4 has an invalid length.
[   68.929561][ T6874] netlink: 152 bytes leftover after parsing attributes in process `syz.2.261'.
[   69.457363][ T6908] comedi comedi3: comedi_config --init_data is deprecated
[   69.610243][ T1337] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   69.774176][ T1337] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   69.776973][ T1337] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   69.780271][ T1337] usb 5-1: Product: syz
[   69.781724][ T1337] usb 5-1: Manufacturer: syz
[   69.783208][ T1337] usb 5-1: SerialNumber: syz
[   69.787530][ T1337] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   69.817112][ T6002] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   69.894579][ T6946] sctp: [Deprecated]: syz.2.278 (pid 6946) Use of struct sctp_assoc_value in delayed_ack socket option.
[   69.894579][ T6946] Use struct sctp_sack_info instead
[   69.991830][ T6960] comedi comedi3: comedi_config --init_data is deprecated
[   70.075665][ T6964] tmpfs: User quota inode hardlimit too large.
[   70.141844][ T6968] netlink: 12 bytes leftover after parsing attributes in process `syz.2.286'.
[   70.238075][ T6977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.290'.
[   70.247702][ T6839] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   70.251277][ T6839] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   70.257773][ T6839] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   70.261417][ T6839] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   70.294452][ T1337] usb 5-1: USB disconnect, device number 3
[   70.438318][ T6982] comedi comedi3: comedi_config --init_data is deprecated
[   70.523456][ T6989] gfs2: error -5 reading superblock
[   70.601438][ T5943] Bluetooth: hci3: command 0x040f tx timeout
[   70.699455][ T6991] syzkaller1: entered promiscuous mode
[   70.702108][ T6991] syzkaller1: entered allmulticast mode
[   70.898660][ T6997] /dev/nullb0: Can't open blockdev
[   70.925133][ T6002] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[   70.928222][ T6002] ath9k_htc: Failed to initialize the device
[   70.931370][ T1337] usb 5-1: ath9k_htc: USB layer deinitialized
[   71.037788][ T7006] comedi comedi3: comedi_config --init_data is deprecated
[   71.438335][    C3] ------------[ cut here ]------------
[   71.440255][    C3] sk->sk_forward_alloc
[   71.440263][    C3] WARNING: net/ipv4/af_inet.c:163 at inet_sock_destruct+0x653/0x800, CPU#3: syz.3.302/7014
[   71.444720][    C3] Modules linked in:
[   71.446285][    C3] CPU: 3 UID: 0 PID: 7014 Comm: syz.3.302 Not tainted syzkaller #0 PREEMPT(full) 
[   71.447066][ T7022] netlink: 'syz.0.306': attribute type 12 has an invalid length.
[   71.449212][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   71.449225][    C3] RIP: 0010:inet_sock_destruct+0x653/0x800
[   71.449241][    C3] Code: e3 4e ff e9 06 fd ff ff e8 ba 62 ff f7 90 0f 0b 90 e9 35 fe ff ff e8 ac 62 ff f7 90 0f 0b 90 e9 c5 fe ff ff e8 9e 62 ff f7 90 <0f> 0b 90 e9 04 ff ff ff e8 90 62 ff f7 90 0f 0b 90 e9 65 fe ff ff
[   71.449252][    C3] RSP: 0018:ffffc900006f8d98 EFLAGS: 00010246
[   71.465058][    C3] RAX: 0000000000000000 RBX: ffff888030c35500 RCX: ffffffff8a099427
[   71.467687][    C3] RDX: ffff88802d10c980 RSI: ffffffff8a099522 RDI: ffff88802d10c980
[   71.470287][    C3] RBP: 0000000000000f70 R08: 0000000000000005 R09: 0000000000000000
[   71.472773][    C3] R10: 0000000000000f70 R11: 0000000000000000 R12: ffff888030c35500
[   71.475296][    C3] R13: ffff888030c35590 R14: ffffffff81eebbdd R15: 0000000000000008
[   71.477842][    C3] FS:  00007fa6279dc6c0(0000) GS:ffff8880d663e000(0000) knlGS:0000000000000000
[   71.480650][    C3] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   71.483036][    C3] CR2: 00007fa627999ff8 CR3: 00000000399c5000 CR4: 0000000000352ef0
[   71.485669][    C3] Call Trace:
[   71.486780][    C3]  <IRQ>
[   71.487724][    C3]  ? __pfx_udp_destruct_sock+0x10/0x10
[   71.489505][    C3]  ? rcu_core+0x59d/0x10d0
[   71.490958][    C3]  __sk_destruct+0x85/0xbb0
[   71.492466][    C3]  ? rcu_core+0x59d/0x10d0
[   71.493902][    C3]  rcu_core+0x5a2/0x10d0
[   71.495265][    C3]  ? __pfx_rcu_core+0x10/0x10
[   71.496769][    C3]  ? ktime_get+0x1a7/0x300
[   71.498253][    C3]  ? rcu_is_watching+0x12/0xc0
[   71.499782][    C3]  handle_softirqs+0x1eb/0x9e0
[   71.501330][    C3]  ? __pfx_handle_softirqs+0x10/0x10
[   71.503087][    C3]  __irq_exit_rcu+0xef/0x150
[   71.504563][    C3]  irq_exit_rcu+0x9/0x30
[   71.505945][    C3]  sysvec_apic_timer_interrupt+0xa3/0xc0
[   71.507734][    C3]  </IRQ>
[   71.508728][    C3]  <TASK>
[   71.509697][    C3]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   71.511599][    C3] RIP: 0010:lock_release+0x19e/0x320
[   71.513315][    C3] Code: ff 65 0f c1 05 4b 57 29 12 83 f8 01 0f 85 3d 01 00 00 9c 58 f6 c4 02 0f 85 28 01 00 00 41 f7 c6 00 02 00 00 0f 85 de 00 00 00 <48> 8b 44 24 10 65 48 2b 05 9d 0f 29 12 0f 85 63 01 00 00 48 83 c4
[   71.519405][    C3] RSP: 0018:ffffc9000671ef30 EFLAGS: 00000206
[   71.521306][    C3] RAX: 0000000000000046 RBX: ffffffff8e7e7920 RCX: ffffc9000671ef3c
[   71.523844][    C3] RDX: 0000000000000000 RSI: ffffffff8de530be RDI: ffffffff8c1b14a0
[   71.526354][    C3] RBP: ffffffff81b822fe R08: 0000000000000001 R09: 0000000000000007
[   71.528853][    C3] R10: 0000000000000200 R11: 0000000000011d01 R12: ffff88802d10c980
[   71.531348][    C3] R13: ffffc9000671efe8 R14: 0000000000000202 R15: 0000000000000001
[   71.533871][    C3]  ? unwind_next_frame+0x3be/0x1ea0
[   71.535586][    C3]  unwind_next_frame+0x3c3/0x1ea0
[   71.537202][    C3]  ? __sys_bpf+0x2091/0x4b90
[   71.538720][    C3]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   71.540670][    C3]  arch_stack_walk+0x94/0xf0
[   71.542180][    C3]  ? __x64_sys_bpf+0x7b/0xc0
[   71.543657][    C3]  stack_trace_save+0x8e/0xc0
[   71.545206][    C3]  ? __pfx_stack_trace_save+0x10/0x10
[   71.546930][    C3]  save_stack+0x162/0x1e0
[   71.548330][    C3]  ? __pfx_save_stack+0x10/0x10
[   71.549902][    C3]  ? post_alloc_hook+0x153/0x170
[   71.551486][    C3]  ? get_page_from_freelist+0x111d/0x3140
[   71.553299][    C3]  ? __alloc_frozen_pages_noprof+0x27c/0x2ba0
[   71.555267][    C3]  ? alloc_pages_bulk_noprof+0x782/0x1490
[   71.557129][    C3]  ? __kasan_populate_vmalloc+0xf0/0x210
[   71.558958][    C3]  ? alloc_vmap_area+0x95d/0x2bd0
[   71.560558][    C3]  ? __get_vm_area_node+0x1ca/0x330
[   71.562234][    C3]  ? get_vm_area+0x73/0xa0
[   71.563667][    C3]  ? arena_map_alloc+0x29d/0x850
[   71.565249][    C3]  ? map_create+0x84e/0x2ba0
[   71.566775][    C3]  ? __sys_bpf+0x2091/0x4b90
[   71.568272][    C3]  ? __lock_acquire+0x4a5/0x2630
[   71.569877][    C3]  __set_page_owner+0x8c/0x540
[   71.571411][    C3]  ? __pfx___set_page_owner+0x10/0x10
[   71.573122][    C3]  ? bad_range+0x261/0x400
[   71.574561][    C3]  ? lockdep_hardirqs_on+0x78/0x100
[   71.576229][    C3]  post_alloc_hook+0x153/0x170
[   71.577815][    C3]  get_page_from_freelist+0x111d/0x3140
[   71.579489][    C3]  ? __pfx___might_resched+0x10/0x10
[   71.581174][    C3]  ? prepare_alloc_pages+0x16d/0x5f0
[   71.582864][    C3]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[   71.584740][    C3]  ? warn_bogus_irq_restore+0x1/0x20
[   71.586467][    C3]  ? finish_task_switch.isra.0+0x205/0xb80
[   71.588406][    C3]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   71.590436][    C3]  ? irqentry_exit+0x180/0x670
[   71.591971][    C3]  ? __page_table_check_ptes_set+0x1b5/0x4e0
[   71.593877][    C3]  ? find_held_lock+0x2b/0x80
[   71.595381][    C3]  ? kasan_populate_vmalloc_pte+0xe3/0x170
[   71.597240][    C3]  ? kasan_populate_vmalloc_pte+0xe3/0x170
[   71.599210][    C3]  alloc_pages_bulk_noprof+0x782/0x1490
[   71.600987][    C3]  ? kasan_populate_vmalloc_pte+0xe3/0x170
[   71.602859][    C3]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[   71.604836][    C3]  ? __apply_to_page_range+0x12b2/0x1520
[   71.606647][    C3]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[   71.608549][    C3]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[   71.610598][    C3]  ? __free_frozen_pages+0x884/0x10d0
[   71.612304][    C3]  __kasan_populate_vmalloc+0xf0/0x210
[   71.614069][    C3]  alloc_vmap_area+0x95d/0x2bd0
[   71.615635][    C3]  ? __pfx_alloc_vmap_area+0x10/0x10
[   71.617326][    C3]  __get_vm_area_node+0x1ca/0x330
[   71.618975][    C3]  ? arena_map_alloc+0x29d/0x850
[   71.620589][    C3]  get_vm_area+0x73/0xa0
[   71.621969][    C3]  ? arena_map_alloc+0x29d/0x850
[   71.623540][    C3]  arena_map_alloc+0x29d/0x850
[   71.625176][    C3]  ? __pfx_arena_map_mem_usage+0x10/0x10
[   71.627004][    C3]  map_create+0x84e/0x2ba0
[   71.628476][    C3]  ? avc_has_perm_noaudit+0x145/0x3b0
[   71.630267][    C3]  ? __pfx_map_create+0x10/0x10
[   71.631900][    C3]  ? __might_fault+0xc5/0x140
[   71.633424][    C3]  ? __might_fault+0xc5/0x140
[   71.634944][    C3]  ? selinux_bpf+0xfb/0x150
[   71.636403][    C3]  __sys_bpf+0x2091/0x4b90
[   71.637884][    C3]  ? __pfx___sys_bpf+0x10/0x10
[   71.639416][    C3]  ? restore_sigcontext+0x4d3/0x6a0
[   71.641113][    C3]  ? __pfx_restore_sigcontext+0x10/0x10
[   71.642943][    C3]  ? restore_signal_shadow_stack+0x67/0x450
[   71.644808][    C3]  ? __do_sys_rt_sigreturn+0x1da/0x2c0
[   71.646542][    C3]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[   71.648418][    C3]  __x64_sys_bpf+0x7b/0xc0
[   71.649853][    C3]  ? lockdep_hardirqs_on+0x78/0x100
[   71.651536][    C3]  do_syscall_64+0x106/0xf80
[   71.653081][    C3]  ? clear_bhb_loop+0x40/0x90
[   71.654591][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.656461][    C3] RIP: 0033:0x7fa626b9c799
[   71.657932][    C3] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   71.664248][    C3] RSP: 002b:00007fa6279dc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   71.666984][    C3] RAX: ffffffffffffffda RBX: 00007fa626e15fa0 RCX: 00007fa626b9c799
[   71.669562][    C3] RDX: 0000000000000048 RSI: 0000200000003940 RDI: 0000000000000000
[   71.672407][    C3] RBP: 00007fa626c32c99 R08: 0000000000000000 R09: 0000000000000000
[   71.675107][    C3] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   71.677706][    C3] R13: 00007fa626e16038 R14: 00007fa626e15fa0 R15: 00007ffc2aab6ca8
[   71.680253][    C3]  </TASK>
[   71.681332][    C3] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   71.683696][    C3] CPU: 3 UID: 0 PID: 7014 Comm: syz.3.302 Not tainted syzkaller #0 PREEMPT(full) 
[   71.686723][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   71.690418][    C3] Call Trace:
[   71.691573][    C3]  <IRQ>
[   71.692757][    C3]  dump_stack_lvl+0x100/0x190
[   71.694435][    C3]  vpanic+0x552/0x970
[   71.695806][    C3]  ? __pfx_vpanic+0x10/0x10
[   71.697365][    C3]  panic+0xd1/0xe0
[   71.698819][    C3]  ? __pfx_panic+0x10/0x10
[   71.700434][    C3]  ? check_panic_on_warn+0x1f/0x90
[   71.702226][    C3]  check_panic_on_warn.cold+0x19/0x34
[   71.704190][    C3]  ? inet_sock_destruct+0x653/0x800
[   71.705935][    C3]  __warn.cold+0x191/0x348
[   71.707359][    C3]  __report_bug+0x296/0x3d0
[   71.708837][    C3]  ? inet_sock_destruct+0x653/0x800
[   71.710524][    C3]  ? __pfx___report_bug+0x10/0x10
[   71.712142][    C3]  ? __set_page_owner+0x8c/0x540
[   71.713735][    C3]  ? post_alloc_hook+0x153/0x170
[   71.715331][    C3]  ? get_page_from_freelist+0x111d/0x3140
[   71.717172][    C3]  ? __alloc_frozen_pages_noprof+0x27c/0x2ba0
[   71.719339][    C3]  ? alloc_pages_bulk_noprof+0x782/0x1490
[   71.721401][    C3]  ? __kasan_populate_vmalloc+0xf0/0x210
[   71.723327][    C3]  ? alloc_vmap_area+0x95d/0x2bd0
[   71.725037][    C3]  ? __get_vm_area_node+0x1ca/0x330
[   71.726721][    C3]  ? get_vm_area+0x73/0xa0
[   71.728199][    C3]  ? arena_map_alloc+0x29d/0x850
[   71.729788][    C3]  ? map_create+0x84e/0x2ba0
[   71.731214][    C3]  ? __sys_bpf+0x2091/0x4b90
[   71.732681][    C3]  ? __x64_sys_bpf+0x7b/0xc0
[   71.734164][    C3]  ? do_syscall_64+0x106/0xf80
[   71.735693][    C3]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.737853][    C3]  ? inet_sock_destruct+0x653/0x800
[   71.739641][    C3]  report_bug+0xb2/0x220
[   71.741151][    C3]  ? inet_sock_destruct+0x653/0x800
[   71.742982][    C3]  handle_bug+0x16a/0x2a0
[   71.744423][    C3]  exc_invalid_op+0x17/0x50
[   71.745903][    C3]  asm_exc_invalid_op+0x1a/0x20
[   71.747471][    C3] RIP: 0010:inet_sock_destruct+0x653/0x800
[   71.749348][    C3] Code: e3 4e ff e9 06 fd ff ff e8 ba 62 ff f7 90 0f 0b 90 e9 35 fe ff ff e8 ac 62 ff f7 90 0f 0b 90 e9 c5 fe ff ff e8 9e 62 ff f7 90 <0f> 0b 90 e9 04 ff ff ff e8 90 62 ff f7 90 0f 0b 90 e9 65 fe ff ff
[   71.755545][    C3] RSP: 0018:ffffc900006f8d98 EFLAGS: 00010246
[   71.757500][    C3] RAX: 0000000000000000 RBX: ffff888030c35500 RCX: ffffffff8a099427
[   71.760163][    C3] RDX: ffff88802d10c980 RSI: ffffffff8a099522 RDI: ffff88802d10c980
[   71.762911][    C3] RBP: 0000000000000f70 R08: 0000000000000005 R09: 0000000000000000
[   71.765508][    C3] R10: 0000000000000f70 R11: 0000000000000000 R12: ffff888030c35500
[   71.768155][    C3] R13: ffff888030c35590 R14: ffffffff81eebbdd R15: 0000000000000008
[   71.770631][    C3]  ? rcu_core+0x59d/0x10d0
[   71.772041][    C3]  ? inet_sock_destruct+0x557/0x800
[   71.773764][    C3]  ? inet_sock_destruct+0x652/0x800
[   71.775458][    C3]  ? inet_sock_destruct+0x652/0x800
[   71.777182][    C3]  ? __pfx_udp_destruct_sock+0x10/0x10
[   71.779331][    C3]  ? rcu_core+0x59d/0x10d0
[   71.780767][    C3]  __sk_destruct+0x85/0xbb0
[   71.782266][    C3]  ? rcu_core+0x59d/0x10d0
[   71.783702][    C3]  rcu_core+0x5a2/0x10d0
[   71.785075][    C3]  ? __pfx_rcu_core+0x10/0x10
[   71.786618][    C3]  ? ktime_get+0x1a7/0x300
[   71.788162][    C3]  ? rcu_is_watching+0x12/0xc0
[   71.789865][    C3]  handle_softirqs+0x1eb/0x9e0
[   71.791824][    C3]  ? __pfx_handle_softirqs+0x10/0x10
[   71.793843][    C3]  __irq_exit_rcu+0xef/0x150
[   71.795567][    C3]  irq_exit_rcu+0x9/0x30
[   71.797110][    C3]  sysvec_apic_timer_interrupt+0xa3/0xc0
[   71.799023][    C3]  </IRQ>
[   71.800071][    C3]  <TASK>
[   71.801030][    C3]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   71.802970][    C3] RIP: 0010:lock_release+0x19e/0x320
[   71.804655][    C3] Code: ff 65 0f c1 05 4b 57 29 12 83 f8 01 0f 85 3d 01 00 00 9c 58 f6 c4 02 0f 85 28 01 00 00 41 f7 c6 00 02 00 00 0f 85 de 00 00 00 <48> 8b 44 24 10 65 48 2b 05 9d 0f 29 12 0f 85 63 01 00 00 48 83 c4
[   71.810735][    C3] RSP: 0018:ffffc9000671ef30 EFLAGS: 00000206
[   71.812658][    C3] RAX: 0000000000000046 RBX: ffffffff8e7e7920 RCX: ffffc9000671ef3c
[   71.815155][    C3] RDX: 0000000000000000 RSI: ffffffff8de530be RDI: ffffffff8c1b14a0
[   71.817646][    C3] RBP: ffffffff81b822fe R08: 0000000000000001 R09: 0000000000000007
[   71.820165][    C3] R10: 0000000000000200 R11: 0000000000011d01 R12: ffff88802d10c980
[   71.822833][    C3] R13: ffffc9000671efe8 R14: 0000000000000202 R15: 0000000000000001
[   71.825670][    C3]  ? unwind_next_frame+0x3be/0x1ea0
[   71.827699][    C3]  unwind_next_frame+0x3c3/0x1ea0
[   71.829521][    C3]  ? __sys_bpf+0x2091/0x4b90
[   71.831125][    C3]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   71.833005][    C3]  arch_stack_walk+0x94/0xf0
[   71.834528][    C3]  ? __x64_sys_bpf+0x7b/0xc0
[   71.836007][    C3]  stack_trace_save+0x8e/0xc0
[   71.837521][    C3]  ? __pfx_stack_trace_save+0x10/0x10
[   71.839308][    C3]  save_stack+0x162/0x1e0
[   71.840706][    C3]  ? __pfx_save_stack+0x10/0x10
[   71.842305][    C3]  ? post_alloc_hook+0x153/0x170
[   71.843892][    C3]  ? get_page_from_freelist+0x111d/0x3140
[   71.845729][    C3]  ? __alloc_frozen_pages_noprof+0x27c/0x2ba0
[   71.847661][    C3]  ? alloc_pages_bulk_noprof+0x782/0x1490
[   71.849575][    C3]  ? __kasan_populate_vmalloc+0xf0/0x210
[   71.851391][    C3]  ? alloc_vmap_area+0x95d/0x2bd0
[   71.853342][    C3]  ? __get_vm_area_node+0x1ca/0x330
[   71.855580][    C3]  ? get_vm_area+0x73/0xa0
[   71.857519][    C3]  ? arena_map_alloc+0x29d/0x850
[   71.859463][    C3]  ? map_create+0x84e/0x2ba0
[   71.861214][    C3]  ? __sys_bpf+0x2091/0x4b90
[   71.863028][    C3]  ? __lock_acquire+0x4a5/0x2630
[   71.864951][    C3]  __set_page_owner+0x8c/0x540
[   71.866898][    C3]  ? __pfx___set_page_owner+0x10/0x10
[   71.869078][    C3]  ? bad_range+0x261/0x400
[   71.870938][    C3]  ? lockdep_hardirqs_on+0x78/0x100
[   71.873100][    C3]  post_alloc_hook+0x153/0x170
[   71.875087][    C3]  get_page_from_freelist+0x111d/0x3140
[   71.877313][    C3]  ? __pfx___might_resched+0x10/0x10
[   71.879652][    C3]  ? prepare_alloc_pages+0x16d/0x5f0
[   71.881716][    C3]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[   71.883981][    C3]  ? warn_bogus_irq_restore+0x1/0x20
[   71.886059][    C3]  ? finish_task_switch.isra.0+0x205/0xb80
[   71.888603][    C3]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   71.891505][    C3]  ? irqentry_exit+0x180/0x670
[   71.893642][    C3]  ? __page_table_check_ptes_set+0x1b5/0x4e0
[   71.896204][    C3]  ? find_held_lock+0x2b/0x80
[   71.898158][    C3]  ? kasan_populate_vmalloc_pte+0xe3/0x170
[   71.900417][    C3]  ? kasan_populate_vmalloc_pte+0xe3/0x170
[   71.902720][    C3]  alloc_pages_bulk_noprof+0x782/0x1490
[   71.904862][    C3]  ? kasan_populate_vmalloc_pte+0xe3/0x170
[   71.907131][    C3]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[   71.909568][    C3]  ? __apply_to_page_range+0x12b2/0x1520
[   71.911876][    C3]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[   71.914636][    C3]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[   71.917206][    C3]  ? __free_frozen_pages+0x884/0x10d0
[   71.919413][    C3]  __kasan_populate_vmalloc+0xf0/0x210
[   71.921552][    C3]  alloc_vmap_area+0x95d/0x2bd0
[   71.923466][    C3]  ? __pfx_alloc_vmap_area+0x10/0x10
[   71.925519][    C3]  __get_vm_area_node+0x1ca/0x330
[   71.927489][    C3]  ? arena_map_alloc+0x29d/0x850
[   71.929504][    C3]  get_vm_area+0x73/0xa0
[   71.931226][    C3]  ? arena_map_alloc+0x29d/0x850
[   71.933251][    C3]  arena_map_alloc+0x29d/0x850
[   71.935218][    C3]  ? __pfx_arena_map_mem_usage+0x10/0x10
[   71.937536][    C3]  map_create+0x84e/0x2ba0
[   71.939394][    C3]  ? avc_has_perm_noaudit+0x145/0x3b0
[   71.941476][    C3]  ? __pfx_map_create+0x10/0x10
[   71.943157][    C3]  ? __might_fault+0xc5/0x140
[   71.944690][    C3]  ? __might_fault+0xc5/0x140
[   71.946245][    C3]  ? selinux_bpf+0xfb/0x150
[   71.947743][    C3]  __sys_bpf+0x2091/0x4b90
[   71.949205][    C3]  ? __pfx___sys_bpf+0x10/0x10
[   71.950811][    C3]  ? restore_sigcontext+0x4d3/0x6a0
[   71.952497][    C3]  ? __pfx_restore_sigcontext+0x10/0x10
[   71.954290][    C3]  ? restore_signal_shadow_stack+0x67/0x450
[   71.956300][    C3]  ? __do_sys_rt_sigreturn+0x1da/0x2c0
[   71.958314][    C3]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[   71.960525][    C3]  __x64_sys_bpf+0x7b/0xc0
[   71.962181][    C3]  ? lockdep_hardirqs_on+0x78/0x100
[   71.964002][    C3]  do_syscall_64+0x106/0xf80
[   71.965492][    C3]  ? clear_bhb_loop+0x40/0x90
[   71.967029][    C3]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.968937][    C3] RIP: 0033:0x7fa626b9c799
[   71.970365][    C3] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   71.976532][    C3] RSP: 002b:00007fa6279dc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   71.979447][    C3] RAX: ffffffffffffffda RBX: 00007fa626e15fa0 RCX: 00007fa626b9c799
[   71.982367][    C3] RDX: 0000000000000048 RSI: 0000200000003940 RDI: 0000000000000000
[   71.985250][    C3] RBP: 00007fa626c32c99 R08: 0000000000000000 R09: 0000000000000000
[   71.987926][    C3] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   71.990578][    C3] R13: 00007fa626e16038 R14: 00007fa626e15fa0 R15: 00007ffc2aab6ca8
[   71.993169][    C3]  </TASK>
[   71.995152][    C3] Kernel Offset: disabled
[   71.996829][    C3] Rebooting in 86400 seconds..