last executing test programs:

4m12.198658264s ago: executing program 0 (id=1):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0x8, '\t\x00'}, @local=@item_4={0x3, 0x2, 0x0, "112000"}, @main=@item_4={0x3, 0x0, 0xb, "7488dffc"}]}}, 0x0}, 0x0)
ioctl$HIDIOCINITREPORT(0xffffffffffffffff, 0x4805, 0x0)
r1 = syz_usb_connect$cdc_ecm(0x5, 0xb1, &(0x7f0000000240)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x9f, 0x1, 0x1, 0x0, 0x70, 0x5, "", [{{0x9, 0x4, 0x0, 0x9, 0x3, 0x2, 0x6, 0x0, 0x8, {{0x7, 0x24, 0x6, 0x0, 0x0, '>N'}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x9, 0x67, 0x6}, [@mdlm={0x15, 0x24, 0x12, 0x1}, @dmm={0x7, 0x24, 0x14, 0xa, 0xd25d}, @mdlm={0x15}, @mdlm={0x15, 0x24, 0x12, 0x3ff}, @mbim={0xc, 0x24, 0x1b, 0x6, 0x8b01, 0xe7, 0x6, 0x6, 0x3}, @network_terminal={0x7, 0x24, 0xa, 0x9, 0x4, 0x37, 0x20}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x8, 0x9}}], {{0x9, 0x5, 0x82, 0x2, 0x10, 0xf3, 0xfc, 0xe}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x2, 0x5, 0x1}}}}}]}}]}}, &(0x7f0000000440)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x310, 0x5, 0x5a, 0x4, 0x40, 0x1}, 0xf, &(0x7f0000000340)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x8, 0x0, 0x1}]}, 0x1, [{0xa9, &(0x7f0000000380)=@string={0xa9, 0x3, "affb335ec620b18efc015af692ef140074b92815c6414d5d7664f0e98802733b6ad38578f4697b0829aa47850091189854731906fa328f047bc63d25900a2a3e00c7d4191fa47809d01a789395b88a5abf04313ad702d06a0875b10474844e038edbf3019d64959cddef304d98b9cccf5c9560429096e8e3fbb1636f7b983ab3a4e14877860357de7acf5627bc1f68202fd1bd1701ee1278265ca0921d50e736ad2a06d7fe18c1"}}]})
syz_usb_control_io$cdc_ecm(r1, &(0x7f0000000500)={0x14, &(0x7f0000000480)={0x20, 0x7, 0x2c, {0x2c, 0x3, "538b6e100807f123d1fab4ee28a9069b3e848f589d5a9672161d5248e40e48678f9c0ca8e2a64c77469e"}}, &(0x7f00000004c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000600)={0x1c, &(0x7f0000000540)={0x20, 0x5, 0xf, "0670eea9a7836a447187c24ed01c4d"}, &(0x7f0000000580)={0x0, 0xa, 0x1, 0x1}, &(0x7f00000005c0)={0x0, 0x8, 0x1}})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x800)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000140)={0x9, 0x3, 0x1, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r3, 0xc08c5336, &(0x7f0000000080)={0x7, 0x9f, 0x0, 'queue1\x00', 0x4})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000001c0)=@newlink={0x50, 0x10, 0x503, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21111, 0x8a33}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_MACSEC_CIPHER_SUITE={0xc, 0x4, 0x80c20001000004}, @IFLA_MACSEC_WINDOW={0x8, 0x5, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r5}]}, 0x50}, 0x1, 0x0, 0x0, 0x48890}, 0x0)

4m10.11256505s ago: executing program 0 (id=44):
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) (async, rerun: 32)
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x5, 0x0) (async, rerun: 32)
symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00') (async, rerun: 32)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x8) (rerun: 32)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000000340)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00') (async)
rename(&(0x7f00000020c0)='./file1\x00', &(0x7f0000000840)='./file1\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000)="180c4552", 0x4) (async)
write$binfmt_misc(r2, &(0x7f0000000040), 0xe09) (async)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000400)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x800000000000208, 0x0, 0x0, 0x2, 0xc, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100000000020000ffffffffff00", "2809e8dbe108598948224ad54afac11d875397bd3c5240f45f819e01177d2d458dd4992861ac00", "90be8b1c55080021000c547d03d8a0f4bd00", [0x0, 0x6]}})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/cgroup', 0x0, 0x0)
read$FUSE(r3, &(0x7f0000000040)={0x2020}, 0x2020) (async)
fchdir(r3) (async)
fchmodat(0xffffffffffffff9c, &(0x7f0000002080)='./file0\x00', 0xfffffed3)

4m10.006847788s ago: executing program 32 (id=44):
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) (async, rerun: 32)
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x5, 0x0) (async, rerun: 32)
symlink(&(0x7f0000000040)='.\x00', &(0x7f0000000100)='./file0\x00') (async, rerun: 32)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x8) (rerun: 32)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000000340)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00') (async)
rename(&(0x7f00000020c0)='./file1\x00', &(0x7f0000000840)='./file1\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r2, &(0x7f0000000000)="180c4552", 0x4) (async)
write$binfmt_misc(r2, &(0x7f0000000040), 0xe09) (async)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000400)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x800000000000208, 0x0, 0x0, 0x2, 0xc, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100000000020000ffffffffff00", "2809e8dbe108598948224ad54afac11d875397bd3c5240f45f819e01177d2d458dd4992861ac00", "90be8b1c55080021000c547d03d8a0f4bd00", [0x0, 0x6]}})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/cgroup', 0x0, 0x0)
read$FUSE(r3, &(0x7f0000000040)={0x2020}, 0x2020) (async)
fchdir(r3) (async)
fchmodat(0xffffffffffffff9c, &(0x7f0000002080)='./file0\x00', 0xfffffed3)

59.736626648s ago: executing program 4 (id=3830):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
ioctl$SIOCAX25OPTRT(r0, 0x89e7, &(0x7f0000000000)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x2, 0x20})
getsockname$packet(r0, &(0x7f0000000600)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f00000001c0)=0x4104, 0x4)
r2 = syz_io_uring_setup(0x6167, &(0x7f0000000400)={0x0, 0xfffffffe, 0x10100}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB='6'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2120, 0x1})
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000180)=[r2], 0x1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r5)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r6, &(0x7f00000004c0)={&(0x7f0000000380), 0xc, &(0x7f0000000480)={&(0x7f0000000640)={0x12e8, r7, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x12d4, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "c355328440c7047774a761b2f0c9000233c7c3537c011595bbc67cf126601dc14908a1bed7e1b25e27d9d3372fdcf21b6871d09b02395878defc1aa2834d456bcd2e95eae92d170c404aa36cfc2b38359417911926fa8c4ce9829f3c1a3c3a9c037a20946f6ad7c8992b8c6f8e9c51908ad8e7736203f86f163ed9faa848f8010c1dfff37c1a5b5127bb55061528b42405c3f623679912d4e82932a916e158ff8dcfe9d6d5d8adefff6cb82dc74811975cd9bc4df046125313923055520311322b02dc28deb39645f5a53ea40f5a6d030bd483720820defb4578418b286bc2e0e6418ad8e009eed67e634b226e9bcbe5a8092cf69a1fa96d64523766a19277945d96a6f9d0af3335a29c8c29fbec88d5823e80fb5e5afb2c342b5bd6ce98f264207d563ddcdf335a1e2330b846b909ac42af7385503218230e256efee6c35208a2733f355a873628e2ec0c95670f619d488d50cdd788c52590f78ee4dcf4c5d3575152caf86d0c4f81b592347e2d15c556a81df0abdeabd593d66e16bd6a0ff97e031e343fbb38b73bc6db40cda174c4d8fb14406f3c8b1c79e152e10ab291c5a735f4ed4a131a48a460c10f56853547629a91c4a862ae93bdd058ac8840ff9b1f3a8f2cc6012514d67e4492b2af67ccb84d54644da69aae82ed725ff40465445c45181e97ff8fea54f3f50fce47801a8029cd700560094db291ae9b031b812cda00c6479a148df7d826d126923fc710384891d2eee5d60d152a84aea2eb47f48c80356dfdbb4a97b88cc4b8bdb36e2da58d6fcd6860fb0022f13e2538e9fa9b0e182f060070a8dd2b95aa3cba661d44c3c8961c90205bc946a3538ef26b7725f37b129195dcff39cdf1a97faedcf6f99b1aa5cfcc0e03c816fda7b8949cef5fcef766f4d25d3dd3ae660e9ef2af86776b4e9f216d983316b355695e8d130d41f26ee6fe6e8649cb661d4e4f0d43e726dd384e1ae8d65f03cb439ddc4b902238c2822e002e802a48bf4a3fe749dad1897306aef12fbf713b52af78ecdaabb073eab740d17fa9f7c16ad8f48887a9296b08536880b7aad47814869d0bf027460dea69ffa349b25009b96abf76e315b2de06974db78ead68a089097b232aa371f31215707086842bcbb254cf94090fee53c90ff23d8ddcb78f10f917ec248094546f2f654fd757367a636e14adc103cea2a43b0eca26a9dd0d3063fb4bcf32fb7bdb6ac267cbc356fd66d3cd4e7a7a40f964737771ec9108346428c87718a1411777f25881aeff6821eb46b6ee719e49320e417db726eb814bf81d65f46145b728ebab83f9a8a4c01603c0ead16eefb156ce433cbd8634abd9c3f5012a43d3173e7830034687f426e0b95d771c09615678e0df73dadfda56bd1e2e61fd5258d44f8d923aedad6776ac022def468d4e6f896ffff8af0d0ac571a3bcb9fe3a196fd0a0fc40b293d2f378d9d696f391256ea9a87b2da805f8460dd9111747b6e3b0d11995c314b8b3c13e1fcd9b2ed391702a406779be172033adb824b3c3996e544b98e12d8a3d1dc60b830508e634a49b147e3ca06ab0e0a4e80b120917c84230a9a26a82a8deb3a1b63301898d8b964234c36d3cb04ca2d16c27ea827039c16fcc7999e0752c3628c0c029e1862b87cfe6a4e6c0c0e1aa008b132a6ceed76b39574a3e487e28cec8ade1a35a1f5b7f8a7af182c7131a036d07ba564edd3ce514a4d1e1d5d199866d78cb6c75b0073acdb2591dffcf548bbd3dde60150cb8f8c0247047d345371cad05242ccc54acd8d0409d2db3a785e17e2a026b8c7d599b9062f856fd673557d62c8ef10bc642213f4c08ee172889f2d5bebc76b2e184b35e312cd77c5c282f40055819f86022876d24d8c787f2d329ef14ee97ba76d984055be28038f8670fe29d85acad3b6dc2d95d9e0061e5351196da922010f90d7ab2857d7edfe91d00ea5d52ca88ed2c7b203640f022115547542bc0af25b331fd8a554933ddc234776d83c0f67f8b80281538dc6cd76d51e3c638bad8150506bfdb3e1609369717182464fa27d72df1a50ddd9258086e2706dcf810dcee295257fa65e4b3e993d77100d3da87a5c8577cdf78174952c162a2bad2a194e48d51485144a5b19faecfbdaca983944e86ab012bce66edfffa31b868a62289212d9a6301bceb20275b4c46f881ebec3cfa6c0af15fa63413849be1319a21901b4f995960b77d0c359e1db0d38e1b3492bb42da2b3f10a0b15b377eed5e33b9164ab9f6d6fab612b4345a4ad6f142dede48c4490d745adb3046032c8085593fabe754dc927959dfb3f5b7288a6fb02814a11f7c235b01ab27e5e1630ec36f6a123ed0dd4d39cb0404dac5178573f85bdef845a127cabdc2f1f5e2672525a874ba19f9d474ad1a0af6158a18ef493dc3be49a9a2d35a7ab773e678bb013076033ea06f214eb0481501e622c9bd0ffa9a6a7ac0958bbdd221643635a8dd28be5cf7df8ac6495912f7be7ff88b637bfb821a0f14202ff52a65718058cf49bfd3ef8325f2e459750cae6b28c9f96549497da97dad24def23eb234415eb94db2d739c978e081aec3407b05ad0a095afd0697402389660cb9d57cdb8929daedb2ef30404bb402ff9c87e4e5e978e584118b000ec2238936742869ba3a15d974d85dce5b37e355ac06ca5842659eda580f766505ed0994299b6870083de88de646e6620a98547dad50327d074f14216866dc67ca34c63d02250053f7d704b42b740bb3d2b87d4afc094af5bb5804c505abd255af27dbd33112ad7cf02b2620f281694ebccbc45c2851d95aa090e6621954fbfff16b1b90588fa06a27572d76f47dbf204e9b774aead4f1b0e498aea32b9e1e3de877079fff25c5e9651063bfc31d53118721cef05e46fe61fd89997d3443e7aa1c74cbffc1ecce141c932ea5f2762538a7fbd4a789c3a628460bb25f8d283a7c0221f5c0fac60c923d6850c5dcfb91ea24926bdaabb16a742bab47d68370463eb7ec4ddfd1658987de17a1e18ba69bad2da826244521944fc506810d5a5fc599c9c842d5b4523adedcdd47cf747aa092b49f46694ca6a79d0f25edbc1c027a791e4c7380bdbdf0e4d93fce02809c20f3b2832b9d38b838b5875121dba56d52eafc96018abf56e47b3cbf85854a5eea7d3c03036e4c8bf16172a753b190a3aa7eefdb48e8b729fc003f82f4f42688be0e3ec24969ca2493a545ec6fb3eaedd99d19933c9e15a897e2a5c700d3c9d312d856e24c7b4c1a2fbcfef028520801e0115b31c3a24bd9fd724775449aaeaa47254a8c961ab00a01d0fb3e5debb5ed108fb267905f645be40a5e7cb390874b85315b8de83f190cbdcb1236f3b340d87eacf939b39ad0d617dbf4837b90965760ca63a9d0a655de13f5afa810072ad524442adacc051684d4c99123c0cec032998f12a949f198f4ce3f8ce7e7a1cd7b11e1b53e065322212383273900db6e0b33bbc4d24f721c44a2d6cd522452130c9c2eb6d60d61116122f3f09c2a96b4033cad21dfecae9089af27e0da9ade95c1c4ef6b45982c0ab5fcf99e5a353af77606b4164459f538eaa7044f54a45d5b03f0884204004b8ecb778a7c4aa09a27f6a0ab5596dd38a8609e533ba98c057e9b29c10032b57e8efa971fe825111bd4724f9ddd1f8eebf324349d032ed75eeeaaa93891661defa95174282729b55168740d5e2a2ab27b33560bc8a30c1fdf2ea6896da9632ce764dff522dc75f5b7d094e905cec82a11e0cf3714658e01afd37d017d3f2fa9929223f33089dd4d037d500dcb40fe8256c8bcac1ad444834df7faaf9bb0086943b7a5870ca8dcadc39c5f6636732119b1058c954e2e6e10844cb549eaa711b221d8a6cb80ed6f33aff9afb9cad7dcfa5382a6b0e7fa71aa85f6799c057564b4a000cb688c0528aa0f593554788fb2aee4d3b2520c1f8c16513d72f0240189c516b328ce80431e5624f97cf6a30c6ea13903c781fedc9e25460879e09c4257219c8f8ddbda12c12fd664681965c504a1020a805c09c73cd6a1bf7ff03f7825084515ef247320f823fde7adb8e7fadacfe7133df6b91596dd9f3e411126f167c8c724cb38b18fa3e0e8b3417fe050f6df7902949cf41205c8feb8b1a54537916a75ebde427e89aa29af5a1aa34c0ad649599c94f3ee6ee6c902f08de0c033d05de7b1adc70b9788d40b987c2c0b299847834f757099429b8fed9c1a0b5f7027bce9871c688ad2aafea6dbac7fad9478b807ffec9c7a29fe765d851ef3e3a5a4e111d7576f410bba406ab78f09afafbf554d94cf0bf473ecc9778a6b170ab79605d105f63579451f67845d702db5f751fce15a55ff9bd267716a3196aaac7919cfb29a26bb729b0634d9494427027c2e05b2263fb4bcb4ada0c498285885ab5e31abb7067afb63fc76ce18c5340784d11b4030bcf474c8c4557e00d735fbecfb255eb38ac87203b5310596dfec67bdcfa07127c21e745b1ca95e84dc037f1305756d7499b4841a23209d71084e8365c57d5d991f7c46ac61081759035334b227c5f3aa10bd1b1823383177fdec0beae54c913dbd756a17b66803b122ead66e5580ac6245974d0f385360828520d9289b399db9be31cd18d359d223dc2abedc3d0a4a2af21c25587601f4ad92e933e127faa9ce847244868f083865662bbab818020df21cdbb3d021b066d6f1a28b2bd0470b5e9a4464e856a3b33aa75bd5c6a972d48826d6ec0b05176b1aea608288746c52584b0eb5e4468c2a53e64a9d6631ce067d8ecbb9e45fbcf9faeca1e8375a42045d0a1299877a4eb44108ea359049e7ce69fe3c37921fe94efaf77b42698d3429263489a51029fc3a7e767c2ebede6b30ff039c31368af20ec79d42c983b4087fedd0a27cc0f1c5e01c6247c7a86d0b924dbe939c3ed05eefc511eb4d0f820ed831a1cad2b2f5c377738824dd72b3ad705c766e050ef89f1b4530023acc4ecf8340fe3aaa52d8360b1228cb586b9211247bfb3dbb774182b3ecc62934942697a6de1ee18b0c2179f1828d531c043e0fac57958f09cc5b9aa1b491725452ff9c528263b61d4f600f4c81e25013b2e7bacf27c724160ee7fc7e60b955f04d7eb172c024a0ffea82639c890dcd06266a8544a9c78d197024b143ba5d96f95cbc7e63d588833fa6add6476411f7587e3d2b48fa928358b9effeab246fbde2878c2a4224689a0f9f048a1ae5a5a3f45b3840cf4fe1a625ac4503467ea678f95dc390916fb3bf51ded64f8b372023ed27b45fbf8668cb067937bfdda55069cc98c4ad3b4e42325c61934e5fc7fa0dd84934e0c163fa13ce88e4fa595760f0e1ac1224d5327bebc921b85623f748b0154041bb441cf58354ce7375a81361ab301de9f0ab44f741ea1c8059dcb73ffbdb5b591942b79b3af9af4553f0ef6e983d0251d04d69cdffa7c0355e4cc39f67e0aad3abfe971ab0c555a2c191d2a2bb79aeeb84738e59943dea68b9205b8a78312e57c9dc64dc4af976eb76112f7341ae2e211453c81b0c13a9785d16aae5174e125fc9707fb03c54605714ad38079d2329c64889e23ff76cae5da239538044848cfa61b368fa55a515b770a40445282c69c88b991a5e978a6b386f572dc844df2a2bc90e203b6da3b09acf4978d8085a486ab9bcc999015380c7eb01e69086fa158092173a8b79c57b4ae24956423d76667d5e06f6ed9f24f8841e79d0d38faec0184323d8cfac215314c61ec13a1133c948c1a915bf7143459353910a5b28549d297c3e69d7937fba7b701eeea38d0a5e6a324be381"}, @ETHTOOL_A_BITSET_VALUE={0xca, 0x4, "79144c0bf0afc22cc3d8d20e9f5f50a47cc6da332f7a57ecfdd1c4029e8caed3b99dfa270bbf0f006ecb140c7f6c1ba5e784be0c58c5fea8fa4567561aefddf89f828f46ed3dcd6be95724d96e431912a71c3a6a4daeb14bd435ce8bb46fa3958f891a4f0be396705007560653abdb03f2a87091033d6c21d709fa3f277854fab2d24c4e97ee0c3461a77707af1d7b29b4c3c2a19ba98e9e96a47a145187e1345b6f31879874b2b44f4df1ba427f731070a4720d8740c2b780d49b19ca0665c7effa3799afa6"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}, @ETHTOOL_A_BITSET_VALUE={0xf0, 0x4, "7250aab3d797208bf7a3a0fd3ee42839e828084711e1c5ea7a0571f9e27327c1184b64cb809b34f41209db3719fb7bd63f3e2c9645f750f6d1eacc132769f6f81e1585f5a8afa1f4c6f68348ec2ddb1b75eabe74e2802693761334c23464ce1811fc6a54f7b0b6308dd849d2e5e2601a667208b544353f169c6ee0cd6738c09197bd8a3738e9ffe50ecd8fddb10efde53df9ad496584fb232e750076384b02c83a8f5624c9e545406e0ccb378e6ada9ee9cd19d0fe2102702b9e8a846df4817a6fab42d5506dba21800c33260fcb11d400651a0e4fd3f8db6b65341a3bf8925b4ee0fd94f446baa018e5b8c6"}, @ETHTOOL_A_BITSET_BITS={0x6c, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ')+$!\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x15, 0x2, ']-&:&+-./-@/)),\xa5\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1613}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffa}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_BITSET_BITS={0x9c, 0x3, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, '\\}\xab\x87][/,/#\xb3w*:%[-!$%^%+\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7ff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xafe}]}, {0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x15, 0x2, 'net_prio.prioidx\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '\\s-\')^,\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}]}]}, 0x12e8}, 0x1, 0x0, 0x0, 0x800}, 0x4)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000500)={'ip6gre0\x00', &(0x7f0000001940)={'syztnl2\x00', <r8=>r1, 0x0, 0xd4, 0x5, 0x5, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0, 0x7800, 0x7, 0xe, 0x1}})
sendmsg$nl_route(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@mpls_getnetconf={0x1c, 0x52, 0x20, 0x70bd25, 0x25dfdbfb, {}, [@NETCONFA_IFINDEX={0x0, 0x1, r8}]}, 0xfd04}, 0x1, 0x0, 0x0, 0x800}, 0x8d4)
io_uring_enter(r2, 0x2d3e, 0xea37, 0x0, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c000000100003052abd70000007000000000000", @ANYRES32=0x0, @ANYBLOB="0000000006a80000140012c17eef2c9e3598a4eafb2bf4152780010001007663616eaced000004000280080079ef", @ANYRES32=r1, @ANYBLOB], 0x3c}}, 0x440b0)

59.656603746s ago: executing program 4 (id=3832):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x3}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000600)=""/128, 0x80}], 0x1, 0x113, 0x2) (fail_nth: 2)

59.497058738s ago: executing program 4 (id=3834):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0x3}}}, 0x108)
r1 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000600)=""/128, 0x80}], 0x1, 0x113, 0x2)

59.436639436s ago: executing program 4 (id=3837):
r0 = fsopen(&(0x7f00000000c0)='btrfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
unshare(0x2a020400)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000001c0)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x1}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0xc040}, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x66a840, 0x2)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0x41, 0x0)
ioctl$SNAPSHOT_UNFREEZE(r3, 0x3302)
r4 = openat2$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)={0x80}, 0x18)
move_mount(r2, &(0x7f0000000140)='./file0/file0\x00', r4, &(0x7f00000002c0)='./file0\x00', 0x1)

59.316975133s ago: executing program 4 (id=3841):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r1, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000040)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', <r5=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="680000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="5e2e0900000000003800128009000100766c616e00120000280002800600010004000000100003800c000100070000800100000009000000000000000300000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x68}, 0x1, 0x0, 0x0, 0x600}, 0x0)

59.196172553s ago: executing program 4 (id=3844):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r0, &(0x7f00000002c0)='./file1\x00', 0x10, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x2) (fail_nth: 8)

59.077535668s ago: executing program 33 (id=3844):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r0, &(0x7f00000002c0)='./file1\x00', 0x10, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x2) (fail_nth: 8)

2.069363421s ago: executing program 1 (id=4829):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
r2 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000040)={'syzkaller1\x00', &(0x7f0000000540)=@ethtool_gstrings={0x1b, 0x9}}) (async)
ioctl$DRM_IOCTL_MODE_ADDFB2(r1, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x7f, 0x20203143, 0x0, [0x2], [0x800]})
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) (async, rerun: 32)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@delchain={0x24, 0x65, 0x400, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x509d884560ba1ba6, 0xfff3}, {}, {0x8, 0x10}}}, 0x24}}, 0x10) (async, rerun: 32)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x10, 0x80000000, 0x4, {0x0, 0x0, 0x0, 0x0, {0xd}, {0xa, 0xfff2}, {0xfff1, 0x9}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x1a}, @TCA_FQ_PIE_ECN={0x8, 0xa, 0x40001}]}}]}, 0x44}}, 0x20004055) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x32, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x80854}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
madvise(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x16)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x6000001, 0x3032, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000f22ea394880ed30002006e657464657673696d3000000000000005000b00020000000000000000"], 0x34}}, 0x4044890)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r5, 0x6, 0x1d, &(0x7f0000000080)={0xffffffff, 0x5, 0x2, 0x8, 0x7}, 0x14)

2.007529543s ago: executing program 1 (id=4830):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000005c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000014000000080016000700020018000180140002006e657464657673696d3000000000000008001500000000020800130000000000080014"], 0x4c}, 0x1, 0x0, 0x200000000}, 0x0)

2.007182359s ago: executing program 1 (id=4832):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@redirect_dir_nofollow}]})
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000940)='./file0\x00', 0x51) (fail_nth: 21)

1.859476608s ago: executing program 1 (id=4836):
socket$inet_sctp(0x2, 0x1, 0x84)
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="120000000d0000"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, 0x0, 0x0}, 0x20)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="440000000101010100000000000000000200000004000180180002801400018008000100b04c94a708000200ac1414aa140019800800010004000000080002"], 0x44}}, 0x4000)

1.788420176s ago: executing program 1 (id=4837):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)=ANY=[@ANYBLOB="010003"])
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r3)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0xf0ffff}, 0x0)

1.417946519s ago: executing program 3 (id=4839):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz1\x00', 0x200002, 0x0)
write$cgroup_pid(r1, &(0x7f0000000240), 0x12)
pread64(0xffffffffffffffff, 0x0, 0x0, 0xa)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000047000000bfa3000000000000c003000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000103006a0a00fe000000008500000026000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a876d839240d29c035055b67db3e6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7e8dc34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bb44b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334583239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bf4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc508afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd360000000000000000ae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c97a088a22e8b15c3e233db00002e30d46a0024d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c29c5c0ed5bcdf510c3c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ced92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f68fa8d7c2dfb28e1f05e46b0933c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b19abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d588afd80e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda6900002a070886df42b27098773b45198b4a34ac97febd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f0000000000f8e10238d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d63521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07afef12ef060cd4403a099f32468f658000b4082d43e12186195cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea209b53b230ef0f2ab85cbdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bd3339403004b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab900000000000000000000d71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdbf24a0c5441ce046078492b53467cfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89cb349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb15f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c00c57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137df47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b558982016b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8b49e3d0168bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85a3009a5d30f479e293a3302e11350ea857b37e76ca3f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c8ffe0d508dcee3070e8b42ac38545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f98117919472b61b20026d7e646174b55d251f7f8ca5ccc22a5efb33b217eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4444e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24000000000000000000000000000000000000cd3211b3842b68a4eddca2eae28529e97a98d7ec3fd902df1ba8fc2ad2377e72d4e7aeacbbccef5614cd965511558f40720025c022bc9c213e407f6bc4b673c55aa8e729299a37fd6339acd906ac861ba56c9fa9b8b12b5e68a3cdadb906355e1f1d336a243172affe50d0fb36c3718a7498eed3d398f405a34d494414e87ef1ce1845510d43d00171d6b4b762f89564c22d542a119878709cd6822c3a3eb47a849b0737929fe9e1eecd1bff5a2b9880e2a6d8a3b3b7e88a673c96cda4455eff1c530db0e6598a2686aa09aeaf0f1aed95aeb8b0a2cc5ca31c0f56285cc05f7090a0e0583cf540d18cd8817e685c7b4ff176178ac1234f23e54445ec20b2689832d78409897a0307e89ebcd5f4ba042a3d10237a5a8a9a6eda36d2f337dc54537b80e8433341b135b4c5bb0173ffde46ccd260e1d4f2c51e8b07bb256f1317912cb1fc9e491e0bb9109e475cc795c23ad9f4f0042c5e9c655a4d865bc4a266e6a1d3d2b7ee53be9efb33a98933b5ba74ee3ac8d34b6af8c1fdbffade3abc80842b74354162f5b994ab5254cb068bc5e2ae242a1d37d0d49947c9317fa1a46c9e259ce0e1f9db992c53f7830a5e8f4fac6b187eb9f15ba61f730f86d7d7b63bbc7a1d9ff37e87a90a14e0655304da069f9009b62717649b6c6af94fcba713f8ee6fcce25aef44d009966614b61be9369ffc589a79051b0a0000000000000003ebd34c41afe268c33c9322c3a783772aec998f51a6e70fb932a8019e72ef5ab127bb30c79ebfd867441083546305fb39449c40a166ea389a6b77b7c87f66e8bf5806726b8fc50b943627314803a12c33312dce0a10f852da3e000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x8, 0x0, 0xee, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7}, 0x48)

1.35001212s ago: executing program 3 (id=4841):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a98010000060a0b0400000000000000000200000064010480600101800a0001006d61746368000000500102800800024000f5ff000b000100706f6c696379000038010300ebae551382395afa4d23edfcbe6d55b57cb15e63c15c46395916e2b388abc3d6ce2316334e8278ad51f6d123a616cf3eb44b275fe6bc6bf402a3f9335458bb7a92f23fc0aa88f2495ff70157ea6b29f7fab11ec362920cab3350208c749f342b38e0df9334cea6fe1e331d76beb7094102d5d409992dcd236e3fd7a8785f97ae9d01b0822c161a491bef0501f8e81ddd66d1b676e8c9f0b2159c2cc0b069669b5af546f644c39bedd627181d27d9c185aa87f084d7c5daf6776fec60302779b9e812403a2ff826781b4c761bd14eb7515ae224260c9534891afdd05d18b2ffe91f4052766a0b9fe3955bfb1866142e7c1caceb88de7d6e8a5c08ce052bb461f0c7ee914ca5c98c19442d0262a6d04a8e3e29360a9b5871812e08542d54775f5843d70b15871bc247e30d66b83560c014f50000000900010073797a30000000000900020073797a32"], 0x1c0}, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)

1.236148007s ago: executing program 3 (id=4843):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000080003851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000feffffff0000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50afdff00000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0xa}, 0x94)

1.235806491s ago: executing program 3 (id=4845):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000005c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000014000000080016000700020018000180140002006e657464657673696d3000000000000008001500000000020800130000000000080014"], 0x4c}, 0x1, 0x0, 0x3000000000000}, 0x0)

1.169653783s ago: executing program 5 (id=4847):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f000000f040)=[{{&(0x7f0000003700)={0xa, 0x4e22, 0xc, @mcast2, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000004b00)=[@flowinfo={{0x14, 0x29, 0xb, 0x3ff}}, @flowinfo={{0x14, 0x29, 0xb, 0x7}}], 0x30}}], 0x1, 0x4000084)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4001}, 0xfea3)
sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x16, 0x6b4e12c8a09f3155, 0x0, 0x0, {0x4a}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0x1, 0x0, 0x0, @ipv6=@mcast2}]}]}, 0x2c}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_PMKSA(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x60, r2, 0x800, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "02e5f93665ecce6c3acc48dc2b7f9ad2"}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x9}, @NL80211_ATTR_PMKID={0x14, 0x55, "bda32849e885434a86e692b9b59c8bad"}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x7}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x4}, @NL80211_ATTR_MAC={0xa}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
sendmmsg$inet6(r0, &(0x7f000000f040)=[{{&(0x7f0000003700)={0xa, 0x4e22, 0xc, @mcast2, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000004b00)=[@flowinfo={{0x14, 0x29, 0xb, 0x3ff}}, @flowinfo={{0x14, 0x29, 0xb, 0x7}}], 0x30}}], 0x1, 0x4000084) (async)
socket(0x10, 0x3, 0x0) (async)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x4001}, 0xfea3) (async)
sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x2c, 0x16, 0x6b4e12c8a09f3155, 0x0, 0x0, {0x4a}, [@nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0x1, 0x0, 0x0, @ipv6=@mcast2}]}]}, 0x2c}}, 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$NL80211_CMD_DEL_PMKSA(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x60, r2, 0x800, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "02e5f93665ecce6c3acc48dc2b7f9ad2"}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x9}, @NL80211_ATTR_PMKID={0x14, 0x55, "bda32849e885434a86e692b9b59c8bad"}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x7}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x4}, @NL80211_ATTR_MAC={0xa}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x0) (async)

1.169495288s ago: executing program 3 (id=4848):
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x190)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000800, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x2, 0x0, 0x0, 0x1700, 0x0, 0x4, 0xfffffffe, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

1.169301814s ago: executing program 5 (id=4849):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
openat$cgroup_int(r1, &(0x7f0000000100)='hugetlb.1GB.rsvd.failcnt\x00', 0x2, 0x0) (async)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000040)=@delsa={0x90, 0x11, 0x400, 0x70bd2c, 0x25dfdbfd, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4d3, 0xa, 0x32}, [@extra_flags={0x8, 0x18, 0x80000000}, @extra_flags={0x8, 0x18, 0x80}, @address_filter={0x28, 0x1a, {@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in=@private=0xa010101, 0xa, 0xd, 0x9}}, @XFRMA_IF_ID={0x8, 0x1f, 0x2}, @address_filter={0x28, 0x1a, {@in=@local, @in=@empty, 0xa, 0x6, 0xa9}}]}, 0x90}}, 0x4) (async)
sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=@migrate={0xa0, 0x21, 0x1, 0x0, 0xfffffffe, {{@in6=@private2, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0xfffc, 0x0, 0x2, 0x0, 0xa, 0xe0, 0x80}, 0x2}, [@migrate={0x50, 0x11, [{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@private0, @in6=@remote, @in=@broadcast, 0x6c, 0x1, 0x0, 0x0, 0x2, 0xa}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x800}, 0x0)

1.110260056s ago: executing program 5 (id=4850):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r1, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000040)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', <r5=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="680000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="5e2e0900000000003800128009000100766c616e00000000280002800600010004001200100003800c000100070000800100000009000000000000000300000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x68}, 0x1, 0x0, 0x0, 0x600}, 0x0)

1.049921255s ago: executing program 3 (id=4851):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f00000001c0)={0x0, 0x40000, &(0x7f0000000280)={&(0x7f0000000300)={0x34, r2, 0x1, 0x3, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x880)

1.049385168s ago: executing program 5 (id=4852):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x1a, 0x23, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000002000000000000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000a077b7030000000000008500000083000000bf09000000000000558ba600000000007f00000000000000b7080000000000007b8af8ff00000000b7080000040000007b8af0ff00000000bfa100000000004007010000f8ffffffbfa400000000000007040000f8ffffffb7020000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000085000000100000007d88feffffffffff85000000cd000000c529"], 0x0, 0x2, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r4 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r4, &(0x7f00000000c0)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x5}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000040)="2703022b590200c90000002f1eafbcf706e105000000894f000f1102ee1680ca82973d2bd4b8bf4a8291a14b8a34f90186cee844000000080000000019b0fb0bba", 0x41}, {&(0x7f0000000440)="63f805d7649496db72959832930469edc7b7d050139bf7ada32bc9e37eed1153ecb716cdb8981cd819af0b33254465cc904b7b31789d65c0e0d3333ce2ef36205dd154e363bcadf8f2ea93f45503c6d9fd8dfe5a638cfeb9f79c930a4d18260e5a08ffd35ed8371cff78119319b2b62c7cd9378c73ae90c801681f55ef26cb0000000000000000", 0x87}, {&(0x7f0000000280)="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", 0x1a1}, {&(0x7f0000000180)="6fe4dd9eeba3271dc700b581440284", 0xfe69}], 0x4}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r7, &(0x7f00000002c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x7)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0x8}, {0xfff1, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x2c, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r8, {0x9, 0x9}, {0xfff3, 0xffff}, {0x7, 0x1b}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffffb}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000100)={r11, &(0x7f0000000ac0)="f7", &(0x7f0000000080)=""/71}, 0x20)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=@newqdisc={0x3c, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r12, {}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0xc, 0x2, [@TCA_TAPRIO_ATTR_TXTIME_DELAY={0x8, 0xb, 0x5}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)
r13 = socket(0x400000000010, 0x3, 0x0)
r14 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r15=>0x0})
sendmsg$nl_route_sched(r13, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r15, {0xf000, 0xffff}, {}, {0x7}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0x0, 0xfff1}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)

859.725901ms ago: executing program 5 (id=4855):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="190000000400000008000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000003000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x3100, 0x3100, &(0x7f0000000000), 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

858.623112ms ago: executing program 5 (id=4856):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x2000000, &(0x7f00000000c0)=ANY=[@ANYRESDEC=0x0])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
ftruncate(r0, 0x3)

467.702501ms ago: executing program 2 (id=4860):
r0 = socket$kcm(0x23, 0x2, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f00000000c0)=r1, 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000940)={r1, r1}) (async)
fsmount(r1, 0x0, 0x80) (async)
ioctl$OCFS2_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000180)={0x2, 0x1, 0xf5, 0x0, 0x0, 0x80000000}) (async)
syz_genetlink_get_family_id$fou(&(0x7f0000000100), r1)
ioctl$XFS_IOC_GOINGDOWN(r1, 0x8004587d, &(0x7f0000000140)=0x77b1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x3, &(0x7f0000000000)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x5}, @exit], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13}, 0x94)

408.565208ms ago: executing program 2 (id=4861):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, 0x0}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000005700)=@vmx={0xc, 0x0, 0x2080, {}, {'\x00', "000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e7ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100"}})

280.251354ms ago: executing program 2 (id=4862):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x5c)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000001d00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000018c0)=[@rights={{0x14, 0x1, 0x1, [r2]}}], 0x18, 0x20008880}}], 0x1, 0x4c054)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
write$qrtrtun(r0, &(0x7f00000004c0)="66bb0b7a7b57a6c5b5572d", 0xb)
r5 = openat$cgroup_ro(r0, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r5, 0x0)
r6 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000140)={'full'}, 0xfffffdef)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

119.459077ms ago: executing program 2 (id=4863):
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000200)="390000001300034700bb5be1c3e4feff0600000016000000450000002500000019000400480000000d000000000000060400fdfffffff93132", 0x39}], 0x1)

119.298764ms ago: executing program 2 (id=4864):
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x190)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000800, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x2, 0x0, 0x0, 0x1800, 0x0, 0x4, 0xfffffffe, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

178.041µs ago: executing program 1 (id=4865):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r1, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000040)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', <r5=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="680000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="5e2e0900000000003800128009000100766c616e00000000280002800600010004ffc300100003800c000100070000800100000009000000000000000300000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x68}, 0x1, 0x0, 0x0, 0x600}, 0x0)

0s ago: executing program 2 (id=4866):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@redirect_dir_nofollow}]})
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000940)='./file0\x00', 0x51) (fail_nth: 23)

kernel console output (not intermixed with test programs):

] bond_slave_0: left promiscuous mode
[  275.385118][T17562] bond_slave_0: left allmulticast mode
[  275.386914][T17562] veth1_to_bond: left promiscuous mode
[  275.388754][T17562] veth1_to_bond: left allmulticast mode
[  275.390720][T17562] veth0_to_team: left promiscuous mode
[  275.393176][T17562] veth0_to_team: left allmulticast mode
[  275.395519][T17562] team_slave_0: left promiscuous mode
[  275.397537][T17562] team_slave_0: left allmulticast mode
[  275.399682][T17562] veth1_to_team: left promiscuous mode
[  275.401808][T17562] veth1_to_team: left allmulticast mode
[  275.403871][T17562] team_slave_1: left promiscuous mode
[  275.405801][T17562] team_slave_1: left allmulticast mode
[  275.408455][T17562] veth0_to_batadv: left promiscuous mode
[  275.410345][T17562] veth0_to_batadv: left allmulticast mode
[  275.412560][T17562] batadv_slave_0: left promiscuous mode
[  275.414772][T17562] batadv_slave_0: left allmulticast mode
[  275.416888][T17562] veth1_to_batadv: left promiscuous mode
[  275.418826][T17562] veth1_to_batadv: left allmulticast mode
[  275.420908][T17562] batadv_slave_1: left promiscuous mode
[  275.423257][T17562] batadv_slave_1: left allmulticast mode
[  275.426171][T17562] xfrm0: left promiscuous mode
[  275.428551][T17562] xfrm0: left allmulticast mode
[  275.430436][T17562] veth0_to_hsr: left promiscuous mode
[  275.432724][T17562] veth0_to_hsr: left allmulticast mode
[  275.434850][T17562] veth1_to_hsr: left promiscuous mode
[  275.436808][T17562] veth1_to_hsr: left allmulticast mode
[  275.438898][T17562] hsr0: left promiscuous mode
[  275.440513][T17562] hsr0: left allmulticast mode
[  275.442207][T17562] hsr_slave_0: left allmulticast mode
[  275.443995][T17562] hsr_slave_1: left allmulticast mode
[  275.446278][T17562] veth1_virt_wifi: left promiscuous mode
[  275.448131][T17562] veth1_virt_wifi: left allmulticast mode
[  275.450253][T17562] veth0_virt_wifi: left promiscuous mode
[  275.453385][T17562] veth0_virt_wifi: left allmulticast mode
[  275.457330][T17562] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[  275.460183][T17562] net veth1_virt_wifi virt_wifi0: left allmulticast mode
[  275.463002][T17562] veth1_vlan: left allmulticast mode
[  275.464953][T17562] vlan0: left promiscuous mode
[  275.466588][T17562] vlan0: left allmulticast mode
[  275.468392][T17562] vlan1: left promiscuous mode
[  275.470286][T17562] vlan1: left allmulticast mode
[  275.472059][T17562] macvlan0: left promiscuous mode
[  275.473749][T17562] macvlan1: left promiscuous mode
[  275.475454][T17562] macvlan1: left allmulticast mode
[  275.477344][T17562] ipvlan0: left promiscuous mode
[  275.479140][T17562] ipvlan0: left allmulticast mode
[  275.481140][T17562] ipvlan1: left promiscuous mode
[  275.482896][T17562] ipvlan1: left allmulticast mode
[  275.484555][T17562] veth0_vlan: left allmulticast mode
[  275.486337][T17562] veth1_macvtap: left allmulticast mode
[  275.488095][T17562] veth0_macvtap: left allmulticast mode
[  275.489987][T17562] macvtap0: left promiscuous mode
[  275.491913][T17562] macvtap0: left allmulticast mode
[  275.494298][T17562] macsec0: left promiscuous mode
[  275.496724][T17562] macsec0: left allmulticast mode
[  275.499434][T17562] geneve0: left promiscuous mode
[  275.502367][T17562] geneve0: left allmulticast mode
[  275.504678][T17562] geneve1: left promiscuous mode
[  275.506749][T17562] geneve1: left allmulticast mode
[  275.509073][T17562] mac80211_hwsim hwsim22 wlan0: left promiscuous mode
[  275.511945][T17562] mac80211_hwsim hwsim22 wlan0: left allmulticast mode
[  275.515141][T17562] netdevsim netdevsim1 eth0: left promiscuous mode
[  275.518101][T17562] netdevsim netdevsim1 eth0: left allmulticast mode
[  275.521153][T17562] netdevsim netdevsim1 eth1: left promiscuous mode
[  275.524135][T17562] netdevsim netdevsim1 eth1: left allmulticast mode
[  275.527105][T17562] netdevsim netdevsim1 eth2: left promiscuous mode
[  275.529657][T17562] netdevsim netdevsim1 eth2: left allmulticast mode
[  275.533296][T17562] netdevsim netdevsim1 eth3: left promiscuous mode
[  275.536440][T17562] netdevsim netdevsim1 eth3: left allmulticast mode
[  275.539424][T17562] vxlan0: left promiscuous mode
[  275.541706][T17562] vxlan0: left allmulticast mode
[  275.543980][T17562] xfrm1: left promiscuous mode
[  275.546039][T17562] xfrm1: left allmulticast mode
[  275.548292][T17562] bond1: left promiscuous mode
[  275.550312][T17562] bond1: left allmulticast mode
[  275.552708][T17562] ip6gre1: left promiscuous mode
[  275.554870][T17562] ip6gre1: left allmulticast mode
[  275.557335][T17562] bond2: left promiscuous mode
[  275.559506][T17562] bond2: left allmulticast mode
[  275.562182][T17562] bridge1: left promiscuous mode
[  275.564305][T17562] bridge1: left allmulticast mode
[  275.566631][T17562] geneve2: left promiscuous mode
[  275.568722][T17562] geneve2: left allmulticast mode
[  275.571033][T17562] bond3: left promiscuous mode
[  275.573456][T17562] bond3: left allmulticast mode
[  275.575994][T17562] bond4: left promiscuous mode
[  275.578340][T17562] bond4: left allmulticast mode
[  275.580624][T17562] bond_slave_1.00: left promiscuous mode
[  275.583132][T17562] bond_slave_1: left promiscuous mode
[  275.585548][T17562] bond_slave_1.00: left allmulticast mode
[  275.588016][T17562] bond_slave_1: left allmulticast mode
[  275.590584][T17562] veth2: left promiscuous mode
[  275.593233][T17562] veth2: left allmulticast mode
[  275.595872][T17562] veth3: left promiscuous mode
[  275.598218][T17562] veth3: left allmulticast mode
[  275.600408][T17562] bond5: left promiscuous mode
[  275.602648][T17562] bond5: left allmulticast mode
[  275.604796][T17562] bond6: left promiscuous mode
[  275.606728][T17562] bond6: left allmulticast mode
[  275.631883][T17564] 8021q: adding VLAN 0 to HW filter on device bond0
[  275.635101][T17564] 8021q: adding VLAN 0 to HW filter on device team0
[  275.662510][T17564] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  276.004086][T17585] syzkaller0: entered promiscuous mode
[  276.006353][T17585] syzkaller0: entered allmulticast mode
[  276.023101][T17585] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  276.027938][T17583] tipc: Resetting bearer <eth:syzkaller0>
[  276.040878][T17583] tipc: Disabling bearer <eth:syzkaller0>
[  276.178427][T17592] tipc: Resetting bearer <eth:gre0>
[  276.253551][T17598] 8021q: adding VLAN 0 to HW filter on device bond0
[  276.258156][T17598] 8021q: adding VLAN 0 to HW filter on device team0
[  276.302112][T17598] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  276.506649][T17614] overlayfs: failed to resolve './file0': -2
[  276.566653][T17620] syzkaller0: entered promiscuous mode
[  276.569068][T17620] syzkaller0: entered allmulticast mode
[  276.581986][T17620] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  276.601976][T17619] tipc: Resetting bearer <eth:syzkaller0>
[  276.622248][T17619] tipc: Disabling bearer <eth:syzkaller0>
[  277.014626][T17658] __nla_validate_parse: 11 callbacks suppressed
[  277.014643][T17658] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4136'.
[  277.647299][T17673] validate_nla: 6 callbacks suppressed
[  277.647318][T17673] netlink: 'syz.1.4141': attribute type 1 has an invalid length.
[  277.673593][T17673] 8021q: adding VLAN 0 to HW filter on device bond11
[  277.728381][T17673] vlan2: entered allmulticast mode
[  277.732778][T17673] bond11: (slave vlan2): Opening slave failed
[  277.889725][T17677] netlink: 2028 bytes leftover after parsing attributes in process `syz.1.4142'.
[  277.894188][T17677] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4142'.
[  278.022455][   T40] audit: type=1400 audit(2000000111.466:7595): avc:  denied  { mount } for  pid=17678 comm="syz.2.4143" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  278.079809][T17683] loop5: detected capacity change from 0 to 7
[  278.091326][T16642]  loop5:
[  278.092581][T16642] loop5: partition table partially beyond EOD, truncated
[  278.099045][T17683]  loop5:
[  278.100524][T17683] loop5: partition table partially beyond EOD, truncated
[  278.108471][ T5336]  loop5:
[  278.109578][ T5336] loop5: partition table partially beyond EOD, truncated
[  278.167604][T17687] overlayfs: failed to resolve './file0': -2
[  278.213178][T17690] netlink: 'syz.2.4148': attribute type 29 has an invalid length.
[  278.216757][T17690] netlink: 'syz.2.4148': attribute type 29 has an invalid length.
[  278.220828][T17690] netlink: 'syz.2.4148': attribute type 32 has an invalid length.
[  278.224170][T17690] netlink: 500 bytes leftover after parsing attributes in process `syz.2.4148'.
[  278.332425][T17696] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4151'.
[  278.533336][T17705] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4153'.
[  278.553408][T17707] netlink: 'syz.5.4154': attribute type 1 has an invalid length.
[  278.580806][T17707] 8021q: adding VLAN 0 to HW filter on device bond5
[  278.599608][T17707] vlan3: entered allmulticast mode
[  278.610187][T17707] bond5: (slave vlan3): Opening slave failed
[  278.692909][T17718] overlayfs: failed to resolve './file0': -2
[  278.739035][T17721] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4156'.
[  278.749220][T17724] loop5: detected capacity change from 0 to 7
[  278.760863][ T6358]  loop5:
[  278.762753][ T6358] loop5: partition table partially beyond EOD, truncated
[  278.823047][T17724]  loop5:
[  278.825341][T17724] loop5: partition table partially beyond EOD, truncated
[  278.947260][T17736] bond19: invalid ARP target 0.0.0.0 specified for addition
[  278.949800][T17736] bond19: option arp_ip_target: invalid value (0)
[  278.962173][T17736] bond19 (unregistering): Released all slaves
[  279.014228][T17744] 9p: Bad value for 'wfdno'
[  279.065929][T17747] netlink: 'syz.2.4167': attribute type 4 has an invalid length.
[  279.128974][T17752] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4168'.
[  279.277909][T17761] syzkaller0: entered promiscuous mode
[  279.280450][T17761] syzkaller0: entered allmulticast mode
[  279.313987][T17761] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  279.318570][T17760] tipc: Resetting bearer <eth:syzkaller0>
[  279.335259][T17760] tipc: Disabling bearer <eth:syzkaller0>
[  279.346955][T12961] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  279.350116][T12961] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  279.473061][   T40] audit: type=1400 audit(2000000112.926:7596): avc:  denied  { ioctl } for  pid=17774 comm="syz.2.4179" path="socket:[82181]" dev="sockfs" ino=82181 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sock_file permissive=1
[  279.625806][T17787] netlink: 'syz.2.4183': attribute type 4 has an invalid length.
[  279.691052][T17791] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4185'.
[  279.757099][T17794] FAULT_INJECTION: forcing a failure.
[  279.757099][T17794] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.763751][T17794] CPU: 0 UID: 0 PID: 17794 Comm: syz.2.4186 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  279.763779][T17794] Tainted: [L]=SOFTLOCKUP
[  279.763785][T17794] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  279.763796][T17794] Call Trace:
[  279.763802][T17794]  <TASK>
[  279.763809][T17794]  dump_stack_lvl+0x100/0x190
[  279.763849][T17794]  should_fail_ex.cold+0x5/0xa
[  279.763872][T17794]  __kvm_read_guest_page+0x186/0x250
[  279.763900][T17794]  kvm_fetch_guest_virt+0x128/0x1a0
[  279.763927][T17794]  __do_insn_fetch_bytes+0x5ef/0x7c0
[  279.763949][T17794]  ? __pfx___do_insn_fetch_bytes+0x10/0x10
[  279.763974][T17794]  ? find_held_lock+0x2b/0x80
[  279.763998][T17794]  x86_decode_insn+0x3ca/0x6d80
[  279.764022][T17794]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  279.764048][T17794]  ? kernel_text_address+0x8d/0x100
[  279.764075][T17794]  ? __pfx_x86_decode_insn+0x10/0x10
[  279.764097][T17794]  ? vmx_cache_reg+0x54f/0x7b0
[  279.764123][T17794]  ? init_decode_cache+0xd/0x2a0
[  279.764146][T17794]  ? init_emulate_ctxt+0x415/0x6d0
[  279.764170][T17794]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  279.764195][T17794]  ? rcu_qs+0x2a/0xe0
[  279.764246][T17794]  x86_emulate_instruction+0x7a3/0x1f80
[  279.764275][T17794]  ? __pfx_handle_io+0x10/0x10
[  279.764292][T17794]  handle_io+0x233/0x2d0
[  279.764311][T17794]  vmx_handle_exit+0x84d/0x1f40
[  279.764335][T17794]  vcpu_run+0x34cf/0x5ca0
[  279.764363][T17794]  ? __pfx_vcpu_run+0x10/0x10
[  279.764392][T17794]  ? rcu_is_watching+0x12/0xc0
[  279.764415][T17794]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  279.764435][T17794]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  279.764461][T17794]  kvm_vcpu_ioctl+0x730/0x1730
[  279.764487][T17794]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  279.764512][T17794]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  279.764539][T17794]  ? do_vfs_ioctl+0x226/0x13e0
[  279.764564][T17794]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  279.764589][T17794]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  279.764630][T17794]  ? __fget_files+0x215/0x3d0
[  279.764646][T17794]  ? hook_file_ioctl_common+0x146/0x410
[  279.764676][T17794]  ? selinux_file_ioctl+0x139/0x290
[  279.764700][T17794]  ? selinux_file_ioctl+0xb4/0x290
[  279.764725][T17794]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  279.764750][T17794]  __x64_sys_ioctl+0x18e/0x210
[  279.764776][T17794]  do_syscall_64+0x106/0xf80
[  279.764807][T17794]  ? clear_bhb_loop+0x40/0x90
[  279.764828][T17794]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.764845][T17794] RIP: 0033:0x7f8778f9c799
[  279.764860][T17794] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  279.764875][T17794] RSP: 002b:00007f8779eaa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  279.764892][T17794] RAX: ffffffffffffffda RBX: 00007f8779215fa0 RCX: 00007f8778f9c799
[  279.764904][T17794] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  279.764913][T17794] RBP: 00007f8779eaa090 R08: 0000000000000000 R09: 0000000000000000
[  279.764923][T17794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.764933][T17794] R13: 00007f8779216038 R14: 00007f8779215fa0 R15: 00007ffee25dda58
[  279.764957][T17794]  </TASK>
[  279.789855][T17797] syzkaller0: entered promiscuous mode
[  279.888889][T17797] syzkaller0: entered allmulticast mode
[  279.914990][T17797] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  279.922199][T17795] tipc: Resetting bearer <eth:syzkaller0>
[  279.949728][T17795] tipc: Disabling bearer <eth:syzkaller0>
[  279.967856][T17804] netlink: 'syz.2.4190': attribute type 1 has an invalid length.
[  279.991550][T17804] 8021q: adding VLAN 0 to HW filter on device bond6
[  280.007613][T17804] vlan2: entered allmulticast mode
[  280.010696][T17804] bond6: (slave vlan2): Opening slave failed
[  280.038567][T17808] syzkaller0: entered promiscuous mode
[  280.040851][T17808] syzkaller0: entered allmulticast mode
[  280.053776][T17808] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  280.057709][T17807] tipc: Resetting bearer <eth:syzkaller0>
[  280.072286][T17807] tipc: Disabling bearer <eth:syzkaller0>
[  280.205877][T17822] syzkaller0: entered promiscuous mode
[  280.208139][T17822] syzkaller0: entered allmulticast mode
[  280.224887][T17822] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  280.229624][T17821] tipc: Resetting bearer <eth:syzkaller0>
[  280.244744][T17821] tipc: Disabling bearer <eth:syzkaller0>
[  280.363112][T17836] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4200'.
[  280.478621][T17840] netlink: 'syz.3.4201': attribute type 27 has an invalid length.
[  280.486983][T17840] tipc: Resetting bearer <eth:gre0>
[  280.645023][T17841] 8021q: adding VLAN 0 to HW filter on device bond0
[  280.647828][T17841] 8021q: adding VLAN 0 to HW filter on device team0
[  280.681539][T17841] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  280.760100][T17843] FAULT_INJECTION: forcing a failure.
[  280.760100][T17843] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.766910][T17843] CPU: 0 UID: 0 PID: 17843 Comm: syz.3.4202 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  280.766940][T17843] Tainted: [L]=SOFTLOCKUP
[  280.766946][T17843] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  280.766958][T17843] Call Trace:
[  280.766964][T17843]  <TASK>
[  280.766972][T17843]  dump_stack_lvl+0x100/0x190
[  280.767008][T17843]  should_fail_ex.cold+0x5/0xa
[  280.767033][T17843]  __kvm_read_guest_page+0x186/0x250
[  280.767065][T17843]  kvm_vcpu_read_guest+0x69/0xe0
[  280.767088][T17843]  read_emulate+0x2b/0x50
[  280.767118][T17843]  emulator_read_write_onepage+0x2e2/0xb20
[  280.767153][T17843]  emulator_read_write+0x1d1/0x5c0
[  280.767186][T17843]  read_emulated+0x12c/0x290
[  280.767210][T17843]  x86_emulate_insn+0x7a4/0x4ad0
[  280.767242][T17843]  ? __pfx_x86_emulate_insn+0x10/0x10
[  280.767267][T17843]  ? init_emulate_ctxt+0x415/0x6d0
[  280.767291][T17843]  ? __pfx_init_emulate_ctxt+0x10/0x10
[  280.767318][T17843]  ? rcu_qs+0x2a/0xe0
[  280.767344][T17843]  ? rcu_is_watching+0x12/0xc0
[  280.767367][T17843]  x86_emulate_instruction+0xb1c/0x1f80
[  280.767399][T17843]  ? __pfx_handle_io+0x10/0x10
[  280.767421][T17843]  handle_io+0x233/0x2d0
[  280.767442][T17843]  vmx_handle_exit+0x84d/0x1f40
[  280.767469][T17843]  vcpu_run+0x34cf/0x5ca0
[  280.767500][T17843]  ? __pfx_vcpu_run+0x10/0x10
[  280.767532][T17843]  ? rcu_is_watching+0x12/0xc0
[  280.767557][T17843]  ? kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  280.767579][T17843]  kvm_arch_vcpu_ioctl_run+0x565/0x1830
[  280.767608][T17843]  kvm_vcpu_ioctl+0x730/0x1730
[  280.767637][T17843]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  280.767665][T17843]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  280.767699][T17843]  ? do_vfs_ioctl+0x226/0x13e0
[  280.767728][T17843]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  280.767758][T17843]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  280.767793][T17843]  ? __fget_files+0x215/0x3d0
[  280.767813][T17843]  ? hook_file_ioctl_common+0x146/0x410
[  280.767838][T17843]  ? selinux_file_ioctl+0x139/0x290
[  280.767862][T17843]  ? selinux_file_ioctl+0xb4/0x290
[  280.767883][T17843]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  280.767909][T17843]  __x64_sys_ioctl+0x18e/0x210
[  280.767938][T17843]  do_syscall_64+0x106/0xf80
[  280.767961][T17843]  ? clear_bhb_loop+0x40/0x90
[  280.767986][T17843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.768002][T17843] RIP: 0033:0x7f678559c799
[  280.768022][T17843] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  280.768039][T17843] RSP: 002b:00007f67863f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  280.768058][T17843] RAX: ffffffffffffffda RBX: 00007f6785815fa0 RCX: 00007f678559c799
[  280.768070][T17843] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  280.768080][T17843] RBP: 00007f67863f7090 R08: 0000000000000000 R09: 0000000000000000
[  280.768091][T17843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.768101][T17843] R13: 00007f6785816038 R14: 00007f6785815fa0 R15: 00007ffd3d7c37d8
[  280.768125][T17843]  </TASK>
[  280.975899][T17846] netlink: 'syz.2.4203': attribute type 12 has an invalid length.
[  281.323480][T17869] syzkaller0: entered promiscuous mode
[  281.325912][T17869] syzkaller0: entered allmulticast mode
[  281.340706][T17869] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  281.350617][T17868] tipc: Resetting bearer <eth:syzkaller0>
[  281.368019][T17868] tipc: Disabling bearer <eth:syzkaller0>
[  281.578225][T17874] syzkaller0: entered promiscuous mode
[  281.580044][T17874] syzkaller0: entered allmulticast mode
[  281.611703][T17874] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  281.620313][T17873] tipc: Resetting bearer <eth:syzkaller0>
[  281.638151][T17873] tipc: Disabling bearer <eth:syzkaller0>
[  281.881427][T17879] SELinux:  truncated policydb string identifier
[  281.883812][T17879] SELinux: failed to load policy
[  281.925253][T17883] syzkaller0: entered promiscuous mode
[  281.927226][T17883] syzkaller0: entered allmulticast mode
[  281.945606][T17883] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  281.948958][T17882] tipc: Resetting bearer <eth:syzkaller0>
[  281.965574][T17882] tipc: Disabling bearer <eth:syzkaller0>
[  282.368577][T17904] syzkaller0: entered promiscuous mode
[  282.370399][T17904] syzkaller0: entered allmulticast mode
[  282.390109][T17904] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  282.394659][T17903] tipc: Resetting bearer <eth:syzkaller0>
[  282.413911][T17903] tipc: Disabling bearer <eth:syzkaller0>
[  282.583752][T17917] loop5: detected capacity change from 0 to 7
[  282.586821][T17917]  loop5:
[  282.588125][T17917] loop5: partition table partially beyond EOD, truncated
[  282.588469][T17913] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4228'.
[  282.707869][T17928] syzkaller0: entered promiscuous mode
[  282.709654][T17928] syzkaller0: entered allmulticast mode
[  282.729992][T17928] tipc: Enabled bearer <eth:syzkaller0>, priority 8
[  282.733754][T17927] tipc: Resetting bearer <eth:syzkaller0>
[  282.745961][T17927] tipc: Disabling bearer <eth:syzkaller0>
[  282.809318][T17934] netlink: 'syz.2.4235': attribute type 4 has an invalid length.
[  282.893730][T17940] loop5: detected capacity change from 0 to 7
[  282.896831][ T6358]  loop5:
[  282.897823][ T6358] loop5: partition table partially beyond EOD, truncated
[  282.909155][T17940]  loop5:
[  282.910169][T17940] loop5: partition table partially beyond EOD, truncated
[  282.946644][T17944] overlayfs: failed to resolve './file1': -2
[  283.029890][T17946] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4241'.
[  283.135988][T17959] syzkaller0: entered promiscuous mode
[  283.138448][T17959] syzkaller0: entered allmulticast mode
[  283.143839][T17959] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  283.147488][T17958] tipc: Resetting bearer <eth:syzkaller0>
[  283.162048][T17958] tipc: Disabling bearer <eth:syzkaller0>
[  283.217779][T17965] syzkaller0: entered promiscuous mode
[  283.220558][T17965] syzkaller0: entered allmulticast mode
[  283.239086][T17965] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  283.246783][T17969] netlink: 'syz.2.4248': attribute type 17 has an invalid length.
[  283.250106][T17969] netlink: 5 bytes leftover after parsing attributes in process `syz.2.4248'.
[  283.251110][T17964] tipc: Resetting bearer <eth:syzkaller0>
[  283.273463][T17964] tipc: Disabling bearer <eth:syzkaller0>
[  283.278012][T17969] macvtap0: entered allmulticast mode
[  283.280332][T17969] veth0_macvtap: entered allmulticast mode
[  283.280636][T17971] loop5: detected capacity change from 0 to 7
[  283.286559][ T6358]  loop5:
[  283.287177][T17969] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check.
[  283.287526][ T6358] loop5: partition table partially beyond EOD, truncated
[  283.298999][T17971]  loop5:
[  283.300013][T17971] loop5: partition table partially beyond EOD, truncated
[  283.368489][T17978] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4253'.
[  283.371757][T17978] netlink: 332 bytes leftover after parsing attributes in process `syz.1.4253'.
[  283.468080][T17986] netlink: 'syz.1.4255': attribute type 27 has an invalid length.
[  283.521522][T17986] 8021q: adding VLAN 0 to HW filter on device bond0
[  283.527847][T17986] 8021q: adding VLAN 0 to HW filter on device team0
[  283.561203][T17986] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  283.601432][T17987] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  283.703312][   T40] audit: type=1800 audit(2000000117.156:7597): pid=17996 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.1.4258" name="/newroot/486/file0" dev="tmpfs" ino=2664 res=0 errno=0
[  283.710865][T17996] program syz.1.4258 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  283.717297][   T40] audit: type=1400 audit(2000000117.166:7598): avc:  denied  { ioctl } for  pid=17994 comm="syz.1.4258" path="socket:[79741]" dev="sockfs" ino=79741 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  283.851228][T18006] loop5: detected capacity change from 0 to 7
[  283.854334][T18006]  loop5:
[  283.855478][T18006] loop5: partition table partially beyond EOD, truncated
[  283.996860][T18015] netlink: 'syz.2.4264': attribute type 1 has an invalid length.
[  284.014692][T18015] 8021q: adding VLAN 0 to HW filter on device bond7
[  284.017923][T18017] syzkaller0: entered promiscuous mode
[  284.020049][T18017] syzkaller0: entered allmulticast mode
[  284.029681][T18015] vlan2: entered allmulticast mode
[  284.037125][T18015] bond7: (slave vlan2): Opening slave failed
[  284.057773][T18017] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  284.061156][T18016] tipc: Resetting bearer <eth:syzkaller0>
[  284.071358][T18016] tipc: Disabling bearer <eth:syzkaller0>
[  284.180374][   T40] audit: type=1400 audit(2000000117.626:7599): avc:  denied  { listen } for  pid=18024 comm="syz.2.4266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  284.192008][T18025] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4266'.
[  284.196527][T18025] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4266'.
[  284.201059][T18025] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4266'.
[  284.364009][T18034] netlink: 'syz.3.4271': attribute type 4 has an invalid length.
[  284.403458][T18040] netlink: 'syz.3.4272': attribute type 27 has an invalid length.
[  284.423233][T18040] tipc: Resetting bearer <eth:gre0>
[  284.504730][T18047] 8021q: adding VLAN 0 to HW filter on device bond0
[  284.508365][T18047] 8021q: adding VLAN 0 to HW filter on device team0
[  284.542636][T18047] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  284.619461][T18058] loop5: detected capacity change from 0 to 7
[  284.622510][T18058]  loop5:
[  284.623628][T18058] loop5: partition table partially beyond EOD, truncated
[  284.668842][T18061] bridge3: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  284.673644][T18061] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=18061 comm=syz.2.4280
[  284.747258][T18068] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4282'.
[  284.855303][T18072] vxfs: unable to read disk superblock at 1
[  284.858878][T18072] vxfs: unable to read disk superblock at 8
[  284.861186][T18072] vxfs: can't find superblock.
[  284.869239][T18073] vxfs: unable to read disk superblock at 1
[  284.871846][T18073] vxfs: unable to read disk superblock at 8
[  284.873958][T18073] vxfs: can't find superblock.
[  284.880230][T18074] ntfs3(loop3): try to read out of volume at offset 0x0
[  285.035515][T18078] netlink: 'syz.2.4286': attribute type 27 has an invalid length.
[  285.041535][T18078] tipc: Resetting bearer <ib:gre0>
[  285.079945][T18078] batadv_slave_0: left promiscuous mode
[  285.083418][T18078] batadv_slave_0: left allmulticast mode
[  285.085971][T18078] veth0_macvtap: left allmulticast mode
[  285.111043][T18078] macvtap0: left allmulticast mode
[  285.148592][T18079] 8021q: adding VLAN 0 to HW filter on device bond0
[  285.151473][T18079] 8021q: adding VLAN 0 to HW filter on device team0
[  285.191329][T18079] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  285.365438][T18089] loop5: detected capacity change from 0 to 7
[  285.368099][T18089]  loop5:
[  285.369177][T18089] loop5: partition table partially beyond EOD, truncated
[  285.434186][T18091] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  285.585668][T18105] syzkaller0: entered promiscuous mode
[  285.587529][T18105] syzkaller0: entered allmulticast mode
[  285.602669][T18105] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  285.608703][T18104] tipc: Resetting bearer <eth:syzkaller0>
[  285.609673][T18109] netlink: 632 bytes leftover after parsing attributes in process `syz.1.4298'.
[  285.644020][T18104] tipc: Disabling bearer <eth:syzkaller0>
[  285.702565][T18112] loop5: detected capacity change from 0 to 7
[  285.708051][T18112]  loop5:
[  285.709211][T18112] loop5: partition table partially beyond EOD, truncated
[  285.796470][T18116] syzkaller0: entered promiscuous mode
[  285.798232][T18116] syzkaller0: entered allmulticast mode
[  285.813085][T18116] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  285.818616][T18115] tipc: Resetting bearer <eth:syzkaller0>
[  285.838480][T18115] tipc: Disabling bearer <eth:syzkaller0>
[  286.129864][T18126] netlink: 'syz.1.4307': attribute type 1 has an invalid length.
[  286.170250][T18126] netlink: 'syz.1.4307': attribute type 4 has an invalid length.
[  286.175533][T18126] .`: renamed from bond0 (while UP)
[  286.179917][T18126] netlink: 'syz.1.4307': attribute type 1 has an invalid length.
[  286.332614][T18134] tmpfs: Unknown parameter 'usrquota'
[  286.378287][T18140] syzkaller0: entered promiscuous mode
[  286.380028][T18140] syzkaller0: entered allmulticast mode
[  286.384353][T18140] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  286.387016][T18139] tipc: Resetting bearer <eth:syzkaller0>
[  286.395860][T18139] tipc: Disabling bearer <eth:syzkaller0>
[  286.705112][T18162] overlayfs: missing 'lowerdir'
[  286.993679][T18181] JFS: charset not found
[  287.080861][T18189] syzkaller0: entered promiscuous mode
[  287.083237][T18189] syzkaller0: entered allmulticast mode
[  287.099483][T18189] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  287.110592][T18188] tipc: Resetting bearer <eth:syzkaller0>
[  287.123699][T18188] tipc: Disabling bearer <eth:syzkaller0>
[  287.157894][T18198] bridge0: port 1(syz_tun) entered blocking state
[  287.160929][T18198] bridge0: port 1(syz_tun) entered disabled state
[  287.163881][T18198] syz_tun: entered allmulticast mode
[  287.167655][T18198] syz_tun: entered promiscuous mode
[  287.233227][   T40] audit: type=1400 audit(2000000120.686:7600): avc:  denied  { connect } for  pid=18201 comm="syz.1.4337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  287.744281][T18216] __nla_validate_parse: 6 callbacks suppressed
[  287.744300][T18216] netlink: 16166 bytes leftover after parsing attributes in process `syz.1.4344'.
[  287.864099][T18220] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4346'.
[  287.867971][T18220] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4346'.
[  287.872005][T18220] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4346'.
[  287.875713][T18220] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4346'.
[  287.879370][T18220] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4346'.
[  288.179975][T18244] validate_nla: 2 callbacks suppressed
[  288.179991][T18244] netlink: 'syz.5.4355': attribute type 15 has an invalid length.
[  288.190722][T18244] netlink: 'syz.5.4355': attribute type 7 has an invalid length.
[  288.224435][ T1144] Bluetooth: (null): Invalid header checksum
[  288.249328][T18247] Bluetooth: (null): Too short H5 packet
[  288.254262][   T40] audit: type=1400 audit(2000000121.706:7601): avc:  denied  { mounton } for  pid=18243 comm="syz.5.4355" path="/117/file0" dev="tmpfs" ino=651 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  288.261275][T18247] Invalid source name
[  288.263456][T18247] UBIFS error (pid: 18247): cannot open "./file0", error -22
[  288.341177][T12962] Bluetooth: (null): Invalid header checksum
[  288.370426][T18251] netlink: 'syz.3.4358': attribute type 4 has an invalid length.
[  288.452067][T12971] Bluetooth: (null): Invalid header checksum
[  288.572006][T12974] Bluetooth: (null): Invalid header checksum
[  288.692331][ T1144] Bluetooth: (null): Invalid header checksum
[  288.812951][ T1144] Bluetooth: (null): Invalid header checksum
[  288.928524][T18261] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  288.931150][ T1144] Bluetooth: (null): Invalid header checksum
[  289.052319][T18244] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  289.054535][T18244] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  289.056964][T18244] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  289.059305][T18244] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  289.061752][T18244] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  289.065265][T18244] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  289.139274][T18269] syzkaller0: entered promiscuous mode
[  289.142360][T18269] syzkaller0: entered allmulticast mode
[  289.155044][T18269] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  289.158330][T18267] tipc: Resetting bearer <eth:syzkaller0>
[  289.173188][T18267] tipc: Disabling bearer <eth:syzkaller0>
[  289.202137][T18282] netlink: 'syz.3.4366': attribute type 27 has an invalid length.
[  289.208056][T18282] tipc: Resetting bearer <eth:gre0>
[  289.273890][T18279] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4365'.
[  289.304402][T18286] 8021q: adding VLAN 0 to HW filter on device bond0
[  289.312415][T18286] 8021q: adding VLAN 0 to HW filter on device team0
[  289.338720][   T40] audit: type=1400 audit(2000000122.786:7602): avc:  denied  { mount } for  pid=18292 comm="syz.2.4369" name="/" dev="securityfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[  289.347658][T18286] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  289.418696][   T40] audit: type=1400 audit(2000000122.866:7603): avc:  denied  { name_bind } for  pid=18298 comm="syz.2.4370" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  289.451677][T18306] loop5: detected capacity change from 0 to 7
[  289.453948][T18304] syzkaller0: entered promiscuous mode
[  289.454892][T18306]  loop5:
[  289.456524][T18304] syzkaller0: entered allmulticast mode
[  289.457820][T18306] loop5: partition table partially beyond EOD, truncated
[  289.477817][T18304] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  289.489605][T18303] tipc: Resetting bearer <eth:syzkaller0>
[  289.508532][T18303] tipc: Disabling bearer <eth:syzkaller0>
[  289.690854][  T830] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  289.841019][  T830] usb 10-1: Using ep0 maxpacket: 8
[  289.844996][  T830] usb 10-1: config index 0 descriptor too short (expected 301, got 45)
[  289.848539][  T830] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  289.853179][  T830] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  289.857298][  T830] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  289.861157][  T830] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  289.865303][  T830] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  289.869124][  T830] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.291692][ T5931] Bluetooth: hci0: command 0x0c1a tx timeout
[  290.388305][T18314] syzkaller0: entered promiscuous mode
[  290.390082][T18314] syzkaller0: entered allmulticast mode
[  290.393686][T18314] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  290.396500][T18313] tipc: Resetting bearer <eth:syzkaller0>
[  290.407426][T18313] tipc: Disabling bearer <eth:syzkaller0>
[  290.488878][T18318] netlink: 328 bytes leftover after parsing attributes in process `syz.2.4379'.
[  290.579387][T18326] netlink: 'syz.2.4381': attribute type 27 has an invalid length.
[  290.583762][T18326] tipc: Resetting bearer <ib:gre0>
[  290.615159][T18322] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4382'.
[  290.636914][T18330] usbtmc 10-1:16.0: simple usb_control_msg returned 0
[  290.643105][T18326] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.647238][T18326] 8021q: adding VLAN 0 to HW filter on device team0
[  290.648934][   T39] usb 10-1: USB disconnect, device number 2
[  290.680983][T18326] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  290.763185][   T40] audit: type=1400 audit(2000000124.216:7604): avc:  denied  { listen } for  pid=18338 comm="syz.2.4384" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  291.090707][ T5288] Bluetooth: hci1: command 0x0419 tx timeout
[  291.090821][   T63] Bluetooth: hci3: command 0x0c1a tx timeout
[  291.093329][ T5931] Bluetooth: hci2: command 0x0c1a tx timeout
[  291.177986][T18360] loop2: detected capacity change from 0 to 7
[  291.185567][T18360] Dev loop2: unable to read RDB block 7
[  291.187476][T18360]  loop2: AHDI p2
[  291.188816][T18360] loop2: partition table partially beyond EOD, truncated
[  291.205308][T18365] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4393'.
[  291.207541][ T5336] Dev loop2: unable to read RDB block 7
[  291.211323][ T5336]  loop2: AHDI p2
[  291.212578][ T5336] loop2: partition table partially beyond EOD, truncated
[  291.222837][T18368] netlink: 'syz.2.4394': attribute type 27 has an invalid length.
[  291.245830][T18368] tipc: Resetting bearer <ib:gre0>
[  291.299861][T18368] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.304815][T18368] 8021q: adding VLAN 0 to HW filter on device team0
[  291.340775][T18368] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  291.389098][ T5336] Dev loop2: unable to read RDB block 7
[  291.391659][ T5336]  loop2: AHDI p2
[  291.393318][ T5336] loop2: partition table partially beyond EOD, truncated
[  291.436465][T18385] overlayfs: missing 'workdir'
[  291.462236][ T5336] Dev loop2: unable to read RDB block 7
[  291.464063][ T5336]  loop2: AHDI p2
[  291.465266][ T5336] loop2: partition table partially beyond EOD, truncated
[  291.474225][T18388] loop5: detected capacity change from 0 to 7
[  291.476987][T18388]  loop5:
[  291.478017][T18388] loop5: partition table partially beyond EOD, truncated
[  291.554555][T18395] netlink: 'syz.1.4402': attribute type 4 has an invalid length.
[  291.698389][T18407] netlink: 'syz.3.4406': attribute type 27 has an invalid length.
[  291.733509][T18407] tipc: Resetting bearer <eth:gre0>
[  291.787424][T18410] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.791108][T18410] 8021q: adding VLAN 0 to HW filter on device team0
[  291.830785][T18410] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  291.901911][T18420] netlink: 'syz.3.4410': attribute type 2 has an invalid length.
[  291.939876][T18422] syzkaller0: entered promiscuous mode
[  291.942380][T18422] syzkaller0: entered allmulticast mode
[  291.956845][T18422] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  291.960055][T18421] tipc: Resetting bearer <eth:syzkaller0>
[  291.974388][T18421] tipc: Disabling bearer <eth:syzkaller0>
[  292.354112][T18442] syzkaller0: entered promiscuous mode
[  292.356409][T18442] syzkaller0: entered allmulticast mode
[  292.369334][T18442] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  292.372768][T18441] tipc: Resetting bearer <eth:syzkaller0>
[  292.390703][T18441] tipc: Disabling bearer <eth:syzkaller0>
[  292.665183][T18448] syzkaller0: entered promiscuous mode
[  292.667461][T18448] syzkaller0: entered allmulticast mode
[  292.675140][T18448] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  292.678482][T18447] tipc: Resetting bearer <eth:syzkaller0>
[  292.693156][T18447] tipc: Disabling bearer <eth:syzkaller0>
[  292.807336][T18452] netlink: 'syz.1.4424': attribute type 4 has an invalid length.
[  292.877877][T18454] bond0: Error: Cannot enslave bond to itself.
[  293.109083][T18468] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  293.116207][T18468] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  293.170062][T18471] syzkaller0: entered promiscuous mode
[  293.172700][ T5931] Bluetooth: hci2: command 0x0c1a tx timeout
[  293.175580][T18471] syzkaller0: entered allmulticast mode
[  293.181322][T18471] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  293.185130][T18469] tipc: Resetting bearer <eth:syzkaller0>
[  293.211442][T18469] tipc: Disabling bearer <eth:syzkaller0>
[  293.275049][T18480] netlink: 'syz.1.4435': attribute type 1 has an invalid length.
[  293.296825][T18480] 8021q: adding VLAN 0 to HW filter on device bond0
[  293.302777][T18480] __nla_validate_parse: 3 callbacks suppressed
[  293.302789][T18480] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4435'.
[  293.316617][T18483] xt_l2tp: v2 sid > 0xffff: 4294967294
[  293.320880][T18483] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  293.366578][T18489] loop5: detected capacity change from 0 to 7
[  293.370090][T18489]  loop5:
[  293.371661][T18489] loop5: partition table partially beyond EOD, truncated
[  293.403836][T18493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4441'.
[  293.551782][T18501] syzkaller0: entered promiscuous mode
[  293.553569][T18501] syzkaller0: entered allmulticast mode
[  293.558114][T18501] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  293.570757][T18500] tipc: Resetting bearer <eth:syzkaller0>
[  293.590525][T18500] tipc: Disabling bearer <eth:syzkaller0>
[  293.634002][T18509] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4447'.
[  293.637050][T18509] netlink: 6 bytes leftover after parsing attributes in process `syz.5.4447'.
[  293.654042][T18513] syzkaller0: entered promiscuous mode
[  293.655849][T18513] syzkaller0: entered allmulticast mode
[  293.698494][T18513] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  293.701596][T18512] tipc: Resetting bearer <eth:syzkaller0>
[  293.712909][T18512] tipc: Disabling bearer <eth:syzkaller0>
[  293.780040][T18522] loop5: detected capacity change from 0 to 7
[  293.785469][ T6358] Dev loop5: unable to read RDB block 7
[  293.787860][ T6358]  loop5: AHDI p1
[  293.789527][ T6358] loop5: partition table partially beyond EOD, truncated
[  293.795284][T18522] Dev loop5: unable to read RDB block 7
[  293.797771][T18522]  loop5: AHDI p1
[  293.799389][T18522] loop5: partition table partially beyond EOD, truncated
[  293.847797][T18525] syzkaller0: entered promiscuous mode
[  293.851431][T18525] syzkaller0: entered allmulticast mode
[  293.871686][T18522] debugfs: '1��^!' already exists in 'ieee80211'
[  293.909738][T18525] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  293.922026][T18524] tipc: Resetting bearer <eth:syzkaller0>
[  293.946292][T18524] tipc: Disabling bearer <eth:syzkaller0>
[  294.013869][T18530] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4455'.
[  294.162895][T18537] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  294.165869][T18537] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  294.168710][T18537] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  294.171685][T18537] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  294.208832][T18548] ufs: You didn't specify the type of your ufs filesystem
[  294.208832][T18548] 
[  294.208832][T18548] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  294.208832][T18548] 
[  294.208832][T18548] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  294.222643][T18548] ufs: ufstype=old is supported read-only
[  294.227103][T18548] ufs: ufs_fill_super(): bad magic number
[  294.249622][T18552] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  294.351371][T18557] netlink: 'syz.1.4464': attribute type 1 has an invalid length.
[  294.375937][T18557] 8021q: adding VLAN 0 to HW filter on device bond12
[  294.482710][T18572] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4466'.
[  294.484968][T18570] netlink: 'syz.3.4468': attribute type 2 has an invalid length.
[  294.491514][T18570] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4468'.
[  294.567630][T18584] netlink: 'syz.2.4470': attribute type 27 has an invalid length.
[  294.586985][T18584] tipc: Resetting bearer <ib:gre0>
[  294.630228][T18584] 8021q: adding VLAN 0 to HW filter on device bond0
[  294.634860][T18584] 8021q: adding VLAN 0 to HW filter on device team0
[  294.660516][T18584] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  294.762296][T18593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4474'.
[  294.777830][T18600] netlink: 'syz.2.4476': attribute type 1 has an invalid length.
[  294.824694][T18600] 8021q: adding VLAN 0 to HW filter on device bond8
[  294.830851][T18600] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4476'.
[  294.831351][T18596] syzkaller0: entered promiscuous mode
[  294.835468][T18596] syzkaller0: entered allmulticast mode
[  294.843799][T18596] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  294.855480][T18595] tipc: Resetting bearer <eth:syzkaller0>
[  294.866472][T18595] tipc: Disabling bearer <eth:syzkaller0>
[  294.874541][T18605] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4477'.
[  294.892515][T18608] netlink: 'syz.3.4475': attribute type 3 has an invalid length.
[  295.012611][T18617] netlink: 'syz.5.4480': attribute type 27 has an invalid length.
[  295.027373][T18620] binder: BC_ATTEMPT_ACQUIRE not supported
[  295.029497][T18620] binder: 18619:18620 ioctl c0306201 200000000480 returned -22
[  295.036293][T18620] ip6t_REJECT: ECHOREPLY is not supported
[  295.094880][T18617] 8021q: adding VLAN 0 to HW filter on device bond0
[  295.098543][T18617] 8021q: adding VLAN 0 to HW filter on device team0
[  295.130640][T18617] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  295.155793][T18627] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  295.353213][T18635] netlink: 'syz.3.4487': attribute type 1 has an invalid length.
[  295.379678][T18635] 8021q: adding VLAN 0 to HW filter on device bond19
[  295.507584][T18648] syzkaller0: entered promiscuous mode
[  295.509602][T18648] syzkaller0: entered allmulticast mode
[  295.529434][T18650] syzkaller0: entered promiscuous mode
[  295.531681][T18650] syzkaller0: entered allmulticast mode
[  295.537025][T18648] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  295.540175][T18647] tipc: Resetting bearer <eth:syzkaller0>
[  295.550987][T18647] tipc: Disabling bearer <eth:syzkaller0>
[  295.570385][T18650] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  295.573488][T18649] tipc: Resetting bearer <eth:syzkaller0>
[  295.592866][T18649] tipc: Disabling bearer <eth:syzkaller0>
[  295.696854][T18655] efs: device does not support 512 byte blocks
[  295.703012][T18655] device does not support 512 byte blocks
[  295.703012][T18655] 
[  295.758708][T18660] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  296.023203][T18678] SELinux: ebitmap: start bit 256 comes after start bit 768
[  296.028802][T18678] SELinux: failed to load policy
[  296.060864][T18680] netlink: 'syz.3.4503': attribute type 27 has an invalid length.
[  296.066242][T18680] tipc: Resetting bearer <eth:gre0>
[  296.097219][T18680] 8021q: adding VLAN 0 to HW filter on device bond0
[  296.100084][T18680] 8021q: adding VLAN 0 to HW filter on device team0
[  296.142512][T18680] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  296.184355][T18686] FAULT_INJECTION: forcing a failure.
[  296.184355][T18686] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  296.189442][T18686] CPU: 0 UID: 0 PID: 18686 Comm: syz.1.4505 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  296.189468][T18686] Tainted: [L]=SOFTLOCKUP
[  296.189473][T18686] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  296.189483][T18686] Call Trace:
[  296.189489][T18686]  <TASK>
[  296.189495][T18686]  dump_stack_lvl+0x100/0x190
[  296.189549][T18686]  should_fail_ex.cold+0x5/0xa
[  296.189574][T18686]  _copy_from_user+0x2e/0xd0
[  296.189599][T18686]  copy_msghdr_from_user+0x9f/0x4f0
[  296.189625][T18686]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  296.189657][T18686]  ___sys_sendmsg+0x106/0x1e0
[  296.189674][T18686]  ? __pfx____sys_sendmsg+0x10/0x10
[  296.189715][T18686]  __sys_sendmsg+0x170/0x220
[  296.189736][T18686]  ? __pfx___sys_sendmsg+0x10/0x10
[  296.189769][T18686]  do_syscall_64+0x106/0xf80
[  296.189791][T18686]  ? clear_bhb_loop+0x40/0x90
[  296.189811][T18686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.189827][T18686] RIP: 0033:0x7f9f4799c799
[  296.189841][T18686] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  296.189856][T18686] RSP: 002b:00007f9f48810028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  296.189872][T18686] RAX: ffffffffffffffda RBX: 00007f9f47c15fa0 RCX: 00007f9f4799c799
[  296.189882][T18686] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: 0000000000000003
[  296.189890][T18686] RBP: 00007f9f48810090 R08: 0000000000000000 R09: 0000000000000000
[  296.189899][T18686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.189909][T18686] R13: 00007f9f47c16038 R14: 00007f9f47c15fa0 R15: 00007ffcdfc39d68
[  296.189931][T18686]  </TASK>
[  296.210410][   T63] Bluetooth: hci1: command 0x0419 tx timeout
[  296.210526][ T5939] Bluetooth: hci0: command 0x0c1a tx timeout
[  296.210559][ T5288] Bluetooth: hci3: command 0x0c1a tx timeout
[  296.214450][ T5931] Bluetooth: hci2: command 0x0c1a tx timeout
[  296.332924][   T40] audit: type=1400 audit(2000000129.777:7605): avc:  denied  { bind } for  pid=18693 comm="syz.3.4508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  296.490613][T18700] syzkaller0: entered promiscuous mode
[  296.493554][T18700] syzkaller0: entered allmulticast mode
[  296.513665][T18700] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  296.517647][T18699] tipc: Resetting bearer <eth:syzkaller0>
[  296.536256][T18699] tipc: Disabling bearer <eth:syzkaller0>
[  296.692726][   T40] audit: type=1400 audit(2000000130.147:7606): avc:  denied  { map } for  pid=18703 comm="syz.1.4513" path="/proc/1479/numa_maps" dev="proc" ino=88183 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  296.974172][T18710] FAULT_INJECTION: forcing a failure.
[  296.974172][T18710] name failslab, interval 1, probability 0, space 0, times 0
[  296.979795][T18710] CPU: 0 UID: 0 PID: 18710 Comm: syz.1.4515 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  296.979826][T18710] Tainted: [L]=SOFTLOCKUP
[  296.979833][T18710] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  296.979845][T18710] Call Trace:
[  296.979852][T18710]  <TASK>
[  296.979861][T18710]  dump_stack_lvl+0x100/0x190
[  296.979897][T18710]  should_fail_ex.cold+0x5/0xa
[  296.979923][T18710]  should_failslab+0xc2/0x120
[  296.979945][T18710]  kmem_cache_alloc_node_noprof+0x81/0x6f0
[  296.979974][T18710]  ? __alloc_skb+0x140/0x710
[  296.980003][T18710]  __alloc_skb+0x140/0x710
[  296.980024][T18710]  ? __alloc_skb+0x5b7/0x710
[  296.980046][T18710]  ? __pfx___alloc_skb+0x10/0x10
[  296.980077][T18710]  netlink_alloc_large_skb+0x69/0x150
[  296.980133][T18710]  netlink_sendmsg+0x680/0xda0
[  296.980182][T18710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  296.980209][T18710]  ? __might_fault+0x20/0x140
[  296.980245][T18710]  ____sys_sendmsg+0x9e1/0xb70
[  296.980273][T18710]  ? __pfx_netlink_sendmsg+0x10/0x10
[  296.980302][T18710]  ? __pfx_____sys_sendmsg+0x10/0x10
[  296.980344][T18710]  ___sys_sendmsg+0x190/0x1e0
[  296.980363][T18710]  ? __pfx____sys_sendmsg+0x10/0x10
[  296.980414][T18710]  __sys_sendmsg+0x170/0x220
[  296.980438][T18710]  ? __pfx___sys_sendmsg+0x10/0x10
[  296.980479][T18710]  do_syscall_64+0x106/0xf80
[  296.980504][T18710]  ? clear_bhb_loop+0x40/0x90
[  296.980527][T18710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.980546][T18710] RIP: 0033:0x7f9f4799c799
[  296.980563][T18710] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  296.980582][T18710] RSP: 002b:00007f9f48810028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  296.980600][T18710] RAX: ffffffffffffffda RBX: 00007f9f47c15fa0 RCX: 00007f9f4799c799
[  296.980618][T18710] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: 0000000000000003
[  296.980629][T18710] RBP: 00007f9f48810090 R08: 0000000000000000 R09: 0000000000000000
[  296.980640][T18710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.980650][T18710] R13: 00007f9f47c16038 R14: 00007f9f47c15fa0 R15: 00007ffcdfc39d68
[  296.980676][T18710]  </TASK>
[  297.256870][T18718] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  297.262388][T18716] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  297.268511][T18718] FAULT_INJECTION: forcing a failure.
[  297.268511][T18718] name failslab, interval 1, probability 0, space 0, times 0
[  297.280276][T18718] CPU: 0 UID: 0 PID: 18718 Comm: syz.5.4518 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.280297][T18718] Tainted: [L]=SOFTLOCKUP
[  297.280302][T18718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  297.280309][T18718] Call Trace:
[  297.280314][T18718]  <TASK>
[  297.280319][T18718]  dump_stack_lvl+0x100/0x190
[  297.280343][T18718]  should_fail_ex.cold+0x5/0xa
[  297.280359][T18718]  should_failslab+0xc2/0x120
[  297.280371][T18718]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  297.280387][T18718]  ? do_getname+0x35/0x390
[  297.280401][T18718]  ? fput+0x79/0x100
[  297.280417][T18718]  do_getname+0x35/0x390
[  297.280433][T18718]  __x64_sys_mkdir+0x57/0x90
[  297.280446][T18718]  do_syscall_64+0x106/0xf80
[  297.280462][T18718]  ? clear_bhb_loop+0x40/0x90
[  297.280476][T18718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.280488][T18718] RIP: 0033:0x7fae75f9c799
[  297.280498][T18718] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  297.280509][T18718] RSP: 002b:00007fae76e67028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  297.280521][T18718] RAX: ffffffffffffffda RBX: 00007fae76215fa0 RCX: 00007fae75f9c799
[  297.280528][T18718] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  297.280535][T18718] RBP: 00007fae76e67090 R08: 0000000000000000 R09: 0000000000000000
[  297.280545][T18718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.280551][T18718] R13: 00007fae76216038 R14: 00007fae76215fa0 R15: 00007ffe2a052ab8
[  297.280565][T18718]  </TASK>
[  297.335965][T18720] netlink: 'syz.1.4520': attribute type 4 has an invalid length.
[  297.573147][T18733] FAULT_INJECTION: forcing a failure.
[  297.573147][T18733] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.578702][T18733] CPU: 1 UID: 0 PID: 18733 Comm: syz.1.4526 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  297.578731][T18733] Tainted: [L]=SOFTLOCKUP
[  297.578738][T18733] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  297.578748][T18733] Call Trace:
[  297.578757][T18733]  <TASK>
[  297.578764][T18733]  dump_stack_lvl+0x100/0x190
[  297.578798][T18733]  should_fail_ex.cold+0x5/0xa
[  297.578823][T18733]  _copy_from_iter+0x1f4/0x1690
[  297.578846][T18733]  ? __asan_memset+0x23/0x50
[  297.578871][T18733]  ? __pfx__copy_from_iter+0x10/0x10
[  297.578890][T18733]  ? __pfx___alloc_skb+0x10/0x10
[  297.578923][T18733]  netlink_sendmsg+0x808/0xda0
[  297.578955][T18733]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.578979][T18733]  ? __might_fault+0x20/0x140
[  297.579012][T18733]  ____sys_sendmsg+0x9e1/0xb70
[  297.579039][T18733]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.579067][T18733]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.579105][T18733]  ___sys_sendmsg+0x190/0x1e0
[  297.579126][T18733]  ? __pfx____sys_sendmsg+0x10/0x10
[  297.579173][T18733]  __sys_sendmsg+0x170/0x220
[  297.579196][T18733]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.579234][T18733]  do_syscall_64+0x106/0xf80
[  297.579259][T18733]  ? clear_bhb_loop+0x40/0x90
[  297.579281][T18733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.579300][T18733] RIP: 0033:0x7f9f4799c799
[  297.579316][T18733] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  297.579332][T18733] RSP: 002b:00007f9f48810028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.579350][T18733] RAX: ffffffffffffffda RBX: 00007f9f47c15fa0 RCX: 00007f9f4799c799
[  297.579362][T18733] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: 0000000000000003
[  297.579373][T18733] RBP: 00007f9f48810090 R08: 0000000000000000 R09: 0000000000000000
[  297.579384][T18733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.579394][T18733] R13: 00007f9f47c16038 R14: 00007f9f47c15fa0 R15: 00007ffcdfc39d68
[  297.579418][T18733]  </TASK>
[  297.665905][    C1] hpet: Lost 5 RTC interrupts
[  297.823186][T18749] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  297.825997][T18749] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  297.829329][T18749] vhci_hcd vhci_hcd.0: Device attached
[  297.933112][   T63] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  297.938251][   T63] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  297.941862][   T63] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  297.944654][   T63] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  297.947698][   T63] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  297.956285][   T40] audit: type=1400 audit(2000000131.407:7607): avc:  denied  { write } for  pid=18754 comm="syz.5.4534" name="/" dev="9p" ino=76546161 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  298.060606][  T830] usb 8-1: new full-speed USB device number 14 using dummy_hcd
[  298.070189][T10437] usb 43-1: new high-speed USB device number 2 using vhci_hcd
[  298.211768][  T830] usb 8-1: config 0 has no interfaces?
[  298.213594][  T830] usb 8-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  298.216424][  T830] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.230691][  T830] usb 8-1: config 0 descriptor??
[  298.253739][T18756] chnl_net:caif_netlink_parms(): no params data found
[  298.332371][T18756] bridge0: port 1(bridge_slave_0) entered blocking state
[  298.334745][T18756] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.337379][T18756] bridge_slave_0: entered allmulticast mode
[  298.340577][T18756] bridge_slave_0: entered promiscuous mode
[  298.343846][T18756] bridge0: port 2(bridge_slave_1) entered blocking state
[  298.346159][T18756] bridge0: port 2(bridge_slave_1) entered disabled state
[  298.348503][T18756] bridge_slave_1: entered allmulticast mode
[  298.351599][T18756] bridge_slave_1: entered promiscuous mode
[  298.366854][T18756] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  298.372147][T18756] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  298.390061][T18756] team0: Port device team_slave_0 added
[  298.393379][T18756] team0: Port device team_slave_1 added
[  298.407355][T18756] batman_adv: batadv0: Adding interface: batadv_slave_0
[  298.409611][T18756] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  298.417948][T18756] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  298.422495][T18756] batman_adv: batadv0: Adding interface: batadv_slave_1
[  298.424641][T18756] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  298.432648][T18756] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  298.440226][T18751] vhci_hcd: cannot find a urb of seqnum 2881382208 max seqnum 1
[  298.446483][ T6016] usb 8-1: USB disconnect, device number 14
[  298.452746][T12961] vhci_hcd vhci_hcd.3: stop threads
[  298.455006][T12961] vhci_hcd vhci_hcd.3: release socket
[  298.461850][T12961] vhci_hcd vhci_hcd.3: disconnect device
[  298.488573][T18756] hsr_slave_0: entered promiscuous mode
[  298.491840][T18756] hsr_slave_1: entered promiscuous mode
[  298.494652][T18756] debugfs: 'hsr0' already exists in 'hsr'
[  298.496595][T18756] Cannot create hsr debugfs directory
[  298.553611][T18769] __nla_validate_parse: 5 callbacks suppressed
[  298.553625][T18769] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4537'.
[  298.643494][T18779] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4538'.
[  299.011510][T18800] netlink: 'syz.2.4543': attribute type 4 has an invalid length.
[  299.043680][T18804] loop5: detected capacity change from 0 to 7
[  299.047540][ T6358]  loop5:
[  299.048831][ T6358] loop5: partition table partially beyond EOD, truncated
[  299.056192][T18804]  loop5:
[  299.057485][T18804] loop5: partition table partially beyond EOD, truncated
[  299.118242][T18812] FAULT_INJECTION: forcing a failure.
[  299.118242][T18812] name failslab, interval 1, probability 0, space 0, times 0
[  299.123052][T18812] CPU: 0 UID: 0 PID: 18812 Comm: syz.5.4547 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  299.123077][T18812] Tainted: [L]=SOFTLOCKUP
[  299.123083][T18812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  299.123093][T18812] Call Trace:
[  299.123099][T18812]  <TASK>
[  299.123105][T18812]  dump_stack_lvl+0x100/0x190
[  299.123135][T18812]  should_fail_ex.cold+0x5/0xa
[  299.123157][T18812]  should_failslab+0xc2/0x120
[  299.123174][T18812]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  299.123196][T18812]  ? skb_clone+0x190/0x400
[  299.123221][T18812]  skb_clone+0x190/0x400
[  299.123243][T18812]  netlink_deliver_tap+0xaed/0xcc0
[  299.123271][T18812]  netlink_unicast+0x650/0x870
[  299.123297][T18812]  ? __pfx_netlink_unicast+0x10/0x10
[  299.123329][T18812]  netlink_sendmsg+0x8b0/0xda0
[  299.123362][T18812]  ? __pfx_netlink_sendmsg+0x10/0x10
[  299.123383][T18812]  ? __might_fault+0x20/0x140
[  299.123413][T18812]  ____sys_sendmsg+0x9e1/0xb70
[  299.123437][T18812]  ? __pfx_netlink_sendmsg+0x10/0x10
[  299.123461][T18812]  ? __pfx_____sys_sendmsg+0x10/0x10
[  299.123497][T18812]  ___sys_sendmsg+0x190/0x1e0
[  299.123515][T18812]  ? __pfx____sys_sendmsg+0x10/0x10
[  299.123559][T18812]  __sys_sendmsg+0x170/0x220
[  299.123581][T18812]  ? __pfx___sys_sendmsg+0x10/0x10
[  299.123616][T18812]  do_syscall_64+0x106/0xf80
[  299.123639][T18812]  ? clear_bhb_loop+0x40/0x90
[  299.123659][T18812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.123676][T18812] RIP: 0033:0x7fae75f9c799
[  299.123689][T18812] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  299.123705][T18812] RSP: 002b:00007fae76e67028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  299.123722][T18812] RAX: ffffffffffffffda RBX: 00007fae76215fa0 RCX: 00007fae75f9c799
[  299.123733][T18812] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: 0000000000000003
[  299.123743][T18812] RBP: 00007fae76e67090 R08: 0000000000000000 R09: 0000000000000000
[  299.123752][T18812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  299.123762][T18812] R13: 00007fae76216038 R14: 00007fae76215fa0 R15: 00007ffe2a052ab8
[  299.123785][T18812]  </TASK>
[  299.155504][T18756] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  299.174635][   T40] audit: type=1400 audit(2000000132.627:7608): avc:  denied  { map } for  pid=18805 comm="syz.3.4546" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  299.190782][T18816] binder: 18805:18816 ioctl c0306201 2000000003c0 returned -22
[  299.229718][T18756] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  299.234947][T18756] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  299.240677][T18756] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  299.364236][T18756] 8021q: adding VLAN 0 to HW filter on device bond0
[  299.368298][T18827] syzkaller0: entered promiscuous mode
[  299.371763][T18827] syzkaller0: entered allmulticast mode
[  299.393434][T18827] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  299.396605][T18826] tipc: Resetting bearer <eth:syzkaller0>
[  299.409732][T18826] tipc: Disabling bearer <eth:syzkaller0>
[  299.422907][T18756] 8021q: adding VLAN 0 to HW filter on device team0
[  299.428859][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[  299.431359][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[  299.438880][ T8733] bridge0: port 2(bridge_slave_1) entered blocking state
[  299.441284][ T8733] bridge0: port 2(bridge_slave_1) entered forwarding state
[  299.561272][T18756] 8021q: adding VLAN 0 to HW filter on device batadv0
[  299.597126][T18756] veth0_vlan: entered promiscuous mode
[  299.611018][T18756] veth1_vlan: entered promiscuous mode
[  299.637674][T18756] veth0_macvtap: entered promiscuous mode
[  299.642132][T18756] veth1_macvtap: entered promiscuous mode
[  299.652159][T18756] batman_adv: batadv0: Interface activated: batadv_slave_0
[  299.658094][T18756] batman_adv: batadv0: Interface activated: batadv_slave_1
[  299.666397][T12962] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  299.676825][T12962] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  299.680255][T12962] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  299.686728][T12962] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  299.718168][T18833] syzkaller0: entered promiscuous mode
[  299.721761][T18833] syzkaller0: entered allmulticast mode
[  299.729544][T12962] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.732697][T12962] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.752265][T18833] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  299.758441][T18832] tipc: Resetting bearer <eth:syzkaller0>
[  299.772351][T18832] tipc: Disabling bearer <eth:syzkaller0>
[  299.779794][T12961] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.782854][T12961] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.874131][T18835] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  299.878631][T18835] FAULT_INJECTION: forcing a failure.
[  299.878631][T18835] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  299.883500][T18835] CPU: 1 UID: 0 PID: 18835 Comm: syz.1.4533 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  299.883518][T18835] Tainted: [L]=SOFTLOCKUP
[  299.883522][T18835] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  299.883529][T18835] Call Trace:
[  299.883533][T18835]  <TASK>
[  299.883538][T18835]  dump_stack_lvl+0x100/0x190
[  299.883566][T18835]  should_fail_ex.cold+0x5/0xa
[  299.883581][T18835]  strncpy_from_user+0x3b/0x2d0
[  299.883602][T18835]  do_getname+0x78/0x390
[  299.883618][T18835]  __x64_sys_mkdir+0x57/0x90
[  299.883632][T18835]  do_syscall_64+0x106/0xf80
[  299.883648][T18835]  ? clear_bhb_loop+0x40/0x90
[  299.883662][T18835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.883674][T18835] RIP: 0033:0x7fa158d9c799
[  299.883684][T18835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  299.883695][T18835] RSP: 002b:00007fa159bbc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  299.883706][T18835] RAX: ffffffffffffffda RBX: 00007fa159015fa0 RCX: 00007fa158d9c799
[  299.883713][T18835] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  299.883720][T18835] RBP: 00007fa159bbc090 R08: 0000000000000000 R09: 0000000000000000
[  299.883726][T18835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  299.883733][T18835] R13: 00007fa159016038 R14: 00007fa159015fa0 R15: 00007ffeea85dfa8
[  299.883747][T18835]  </TASK>
[  299.936277][    C1] hpet: Lost 2 RTC interrupts
[  299.970253][ T5931] Bluetooth: hci4: command tx timeout
[  300.009230][T18841] autofs4:pid:18841:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(0.0), cmd(0xc018937e)
[  300.016638][T18841] autofs4:pid:18841:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e)
[  300.075438][T18848] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4556'.
[  300.332583][T18875] netlink: 'syz.1.4565': attribute type 27 has an invalid length.
[  300.334616][T18876] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  300.339198][T18876] FAULT_INJECTION: forcing a failure.
[  300.339198][T18876] name failslab, interval 1, probability 0, space 0, times 0
[  300.344347][T18876] CPU: 3 UID: 0 PID: 18876 Comm: syz.2.4566 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  300.344373][T18876] Tainted: [L]=SOFTLOCKUP
[  300.344379][T18876] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  300.344389][T18876] Call Trace:
[  300.344395][T18876]  <TASK>
[  300.344400][T18876]  dump_stack_lvl+0x100/0x190
[  300.344423][T18876]  should_fail_ex.cold+0x5/0xa
[  300.344439][T18876]  should_failslab+0xc2/0x120
[  300.344451][T18876]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  300.344468][T18876]  ? __d_alloc+0x34/0xa80
[  300.344486][T18876]  __d_alloc+0x34/0xa80
[  300.344502][T18876]  d_alloc+0x4a/0x1e0
[  300.344517][T18876]  lookup_one_qstr_excl+0x175/0x250
[  300.344533][T18876]  ? mnt_want_write+0x161/0x450
[  300.344544][T18876]  filename_create+0x1cf/0x400
[  300.344562][T18876]  ? __pfx_filename_create+0x10/0x10
[  300.344583][T18876]  ? find_held_lock+0x2b/0x80
[  300.344601][T18876]  filename_mkdirat+0xb9/0x5e0
[  300.344616][T18876]  ? __pfx_filename_mkdirat+0x10/0x10
[  300.344629][T18876]  ? strncpy_from_user+0x19d/0x2d0
[  300.344649][T18876]  ? do_getname+0x191/0x390
[  300.344665][T18876]  __x64_sys_mkdir+0x6b/0x90
[  300.344679][T18876]  do_syscall_64+0x106/0xf80
[  300.344694][T18876]  ? clear_bhb_loop+0x40/0x90
[  300.344708][T18876]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.344719][T18876] RIP: 0033:0x7f8778f9c799
[  300.344730][T18876] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  300.344740][T18876] RSP: 002b:00007f8779eaa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  300.344751][T18876] RAX: ffffffffffffffda RBX: 00007f8779215fa0 RCX: 00007f8778f9c799
[  300.344758][T18876] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  300.344765][T18876] RBP: 00007f8779eaa090 R08: 0000000000000000 R09: 0000000000000000
[  300.344771][T18876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  300.344778][T18876] R13: 00007f8779216038 R14: 00007f8779215fa0 R15: 00007ffee25dda58
[  300.344793][T18876]  </TASK>
[  300.464453][T18875] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.467080][T18875] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.784660][T18875] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  300.798464][T18875] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  301.187849][T18877] 8021q: adding VLAN 0 to HW filter on device bond0
[  301.191085][T18877] 8021q: adding VLAN 0 to HW filter on device team0
[  301.220404][T18877] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  301.234006][T18881] syzkaller0: entered promiscuous mode
[  301.235802][T18881] syzkaller0: entered allmulticast mode
[  301.238660][T18888] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  301.241508][T12968] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  301.247384][T12968] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  301.264839][T18878] tipc: Resetting bearer <eth:syzkaller0>
[  301.277917][T18878] tipc: Disabling bearer <eth:syzkaller0>
[  301.284610][T12968] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  301.287966][T12968] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  301.404067][T18895] IPVS: sh: FWM 3 0x00000003 - no destination available
[  301.449002][T18898] syzkaller0: entered promiscuous mode
[  301.451866][T18898] syzkaller0: entered allmulticast mode
[  301.472233][T18900] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  301.475033][T18898] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  301.479200][T18897] tipc: Resetting bearer <eth:syzkaller0>
[  301.505979][T18897] tipc: Disabling bearer <eth:syzkaller0>
[  301.602622][T18908] loop5: detected capacity change from 0 to 7
[  301.607457][ T6358]  loop5:
[  301.608876][ T6358] loop5: partition table partially beyond EOD, truncated
[  301.617827][T18908]  loop5:
[  301.619142][T18908] loop5: partition table partially beyond EOD, truncated
[  301.711430][T18917] syzkaller0: entered promiscuous mode
[  301.713770][T18917] syzkaller0: entered allmulticast mode
[  301.740600][T18917] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  301.746790][T18916] tipc: Resetting bearer <eth:syzkaller0>
[  301.748687][T18919] netlink: 'syz.2.4580': attribute type 4 has an invalid length.
[  301.761919][T18916] tipc: Disabling bearer <eth:syzkaller0>
[  301.774461][T18921] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4581'.
[  301.885928][T18923] netlink: 68 bytes leftover after parsing attributes in process `syz.2.4582'.
[  301.902479][T18930] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4583'.
[  302.012926][T18935] exFAT-fs (nbd5): unable to read boot sector
[  302.014913][T18935] exFAT-fs (nbd5): failed to read boot sector
[  302.016825][T18935] exFAT-fs (nbd5): failed to recognize exfat type
[  302.050277][ T5931] Bluetooth: hci4: command tx timeout
[  302.119026][T18940] syzkaller0: entered promiscuous mode
[  302.127933][T18940] syzkaller0: entered allmulticast mode
[  302.144127][T18940] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  302.147174][T18939] tipc: Resetting bearer <eth:syzkaller0>
[  302.191006][T18939] tipc: Disabling bearer <eth:syzkaller0>
[  302.204257][T18935] netlink: 'syz.5.4585': attribute type 10 has an invalid length.
[  302.207763][T18935] team0: Device vxcan1 is of different type
[  302.215862][T18935] netlink: 'syz.5.4585': attribute type 10 has an invalid length.
[  302.311378][T18944] loop5: detected capacity change from 0 to 7
[  302.314029][T18944]  loop5:
[  302.315024][T18944] loop5: partition table partially beyond EOD, truncated
[  302.359014][T18950] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pid=18950 comm=syz.5.4591
[  302.368796][T18938] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4586'.
[  302.373156][   T40] audit: type=1400 audit(2000000135.817:7609): avc:  denied  { map } for  pid=18936 comm="syz.1.4586" path="/13/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  302.383563][T18950] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pid=18950 comm=syz.5.4591
[  302.500652][T18967] netlink: 'syz.2.4595': attribute type 1 has an invalid length.
[  302.519632][T18967] 8021q: adding VLAN 0 to HW filter on device bond9
[  302.540721][T18970] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4596'.
[  302.636137][T18977] /dev/sg0: Can't lookup blockdev
[  302.677925][ T5931] Bluetooth: hci2: unexpected event for opcode 0x0c03
[  302.754197][T18987] loop5: detected capacity change from 0 to 7
[  302.757745][ T6358]  loop5:
[  302.759112][ T6358] loop5: partition table partially beyond EOD, truncated
[  302.763923][T18987]  loop5:
[  302.765083][T18987] loop5: partition table partially beyond EOD, truncated
[  302.830101][T18991] bond10: invalid ARP target 0.0.0.0 specified for addition
[  302.832872][T18991] bond10: option arp_ip_target: invalid value (0)
[  302.843672][T18991] bond10 (unregistering): Released all slaves
[  303.060748][T19000] FAULT_INJECTION: forcing a failure.
[  303.060748][T19000] name failslab, interval 1, probability 0, space 0, times 0
[  303.065047][T19000] CPU: 1 UID: 0 PID: 19000 Comm: syz.5.4607 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  303.065065][T19000] Tainted: [L]=SOFTLOCKUP
[  303.065070][T19000] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  303.065077][T19000] Call Trace:
[  303.065081][T19000]  <TASK>
[  303.065086][T19000]  dump_stack_lvl+0x100/0x190
[  303.065109][T19000]  should_fail_ex.cold+0x5/0xa
[  303.065124][T19000]  ? unregister_netdevice_many_notify+0x903/0x2580
[  303.065141][T19000]  should_failslab+0xc2/0x120
[  303.065154][T19000]  __kmalloc_noprof+0xe0/0x850
[  303.065174][T19000]  unregister_netdevice_many_notify+0x903/0x2580
[  303.065192][T19000]  ? trace_contention_end+0x140/0x180
[  303.065205][T19000]  ? __mutex_lock+0x26a/0x1b90
[  303.065224][T19000]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  303.065240][T19000]  ? __kfree_rcu_sheaf+0x195/0x720
[  303.065261][T19000]  ? __pfx___mutex_lock+0x10/0x10
[  303.065282][T19000]  ? __kfree_rcu_sheaf+0x19a/0x720
[  303.065303][T19000]  unregister_netdevice_queue+0x30b/0x3c0
[  303.065320][T19000]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  303.065341][T19000]  nsim_destroy+0x1a0/0x830
[  303.065357][T19000]  __nsim_dev_port_del+0x189/0x240
[  303.065372][T19000]  nsim_dev_reload_destroy+0x10a/0x4a0
[  303.065390][T19000]  nsim_dev_reload_down+0x66/0xd0
[  303.065405][T19000]  devlink_reload+0x173/0x790
[  303.065421][T19000]  ? __pfx_devlink_reload+0x10/0x10
[  303.065440][T19000]  devlink_nl_reload_doit+0xd84/0x1280
[  303.065455][T19000]  ? __pfx_devlink_nl_reload_doit+0x10/0x10
[  303.065469][T19000]  ? __pfx_devlink_get_from_attrs_lock+0x10/0x10
[  303.065482][T19000]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  303.065498][T19000]  genl_family_rcv_msg_doit+0x214/0x300
[  303.065511][T19000]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  303.065528][T19000]  ? bpf_lsm_capable+0x9/0x10
[  303.065539][T19000]  ? security_capable+0x80/0x260
[  303.065556][T19000]  genl_rcv_msg+0x560/0x800
[  303.065568][T19000]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.065580][T19000]  ? __pfx_devlink_nl_pre_doit_dev_lock+0x10/0x10
[  303.065591][T19000]  ? __pfx_devlink_nl_reload_doit+0x10/0x10
[  303.065604][T19000]  ? __pfx_devlink_nl_post_doit_dev_lock+0x10/0x10
[  303.065621][T19000]  netlink_rcv_skb+0x159/0x420
[  303.065638][T19000]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.065650][T19000]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  303.065673][T19000]  ? netlink_deliver_tap+0x1ae/0xcc0
[  303.065691][T19000]  genl_rcv+0x28/0x40
[  303.065708][T19000]  netlink_unicast+0x5aa/0x870
[  303.065727][T19000]  ? __pfx_netlink_unicast+0x10/0x10
[  303.065749][T19000]  netlink_sendmsg+0x8b0/0xda0
[  303.065768][T19000]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.065784][T19000]  ? __might_fault+0x20/0x140
[  303.065818][T19000]  ____sys_sendmsg+0x9e1/0xb70
[  303.065837][T19000]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.065855][T19000]  ? __pfx_____sys_sendmsg+0x10/0x10
[  303.065880][T19000]  ___sys_sendmsg+0x190/0x1e0
[  303.065893][T19000]  ? __pfx____sys_sendmsg+0x10/0x10
[  303.065922][T19000]  __sys_sendmsg+0x170/0x220
[  303.065938][T19000]  ? __pfx___sys_sendmsg+0x10/0x10
[  303.065962][T19000]  do_syscall_64+0x106/0xf80
[  303.065977][T19000]  ? clear_bhb_loop+0x40/0x90
[  303.065992][T19000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.066003][T19000] RIP: 0033:0x7fae75f9c799
[  303.066014][T19000] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  303.066025][T19000] RSP: 002b:00007fae76e67028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  303.066036][T19000] RAX: ffffffffffffffda RBX: 00007fae76215fa0 RCX: 00007fae75f9c799
[  303.066043][T19000] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: 0000000000000003
[  303.066050][T19000] RBP: 00007fae76e67090 R08: 0000000000000000 R09: 0000000000000000
[  303.066057][T19000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.066063][T19000] R13: 00007fae76216038 R14: 00007fae76215fa0 R15: 00007ffe2a052ab8
[  303.066079][T19000]  </TASK>
[  303.159952][T10437] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  303.161044][    C1] hpet: Lost 5 RTC interrupts
[  303.193646][T19004] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  303.194289][    C1] hpet: Lost 1 RTC interrupts
[  303.196172][T19004] FAULT_INJECTION: forcing a failure.
[  303.196172][T19004] name failslab, interval 1, probability 0, space 0, times 0
[  303.206125][T19004] CPU: 0 UID: 0 PID: 19004 Comm: syz.2.4609 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  303.206145][T19004] Tainted: [L]=SOFTLOCKUP
[  303.206149][T19004] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  303.206156][T19004] Call Trace:
[  303.206160][T19004]  <TASK>
[  303.206165][T19004]  dump_stack_lvl+0x100/0x190
[  303.206188][T19004]  should_fail_ex.cold+0x5/0xa
[  303.206204][T19004]  ? tomoyo_realpath_from_path+0xb6/0x690
[  303.206221][T19004]  should_failslab+0xc2/0x120
[  303.206233][T19004]  __kmalloc_noprof+0xe0/0x850
[  303.206259][T19004]  tomoyo_realpath_from_path+0xb6/0x690
[  303.206280][T19004]  tomoyo_path_number_perm+0x23c/0x580
[  303.206294][T19004]  ? tomoyo_path_number_perm+0x22e/0x580
[  303.206309][T19004]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  303.206325][T19004]  ? rcu_read_unlock+0x17/0x60
[  303.206350][T19004]  ? current_check_access_path+0x281/0x460
[  303.206364][T19004]  ? __pfx_current_check_access_path+0x10/0x10
[  303.206376][T19004]  ? _raw_spin_unlock+0x28/0x50
[  303.206393][T19004]  ? lookup_one_qstr_excl+0xb3/0x250
[  303.206411][T19004]  tomoyo_path_mkdir+0x9b/0xe0
[  303.206422][T19004]  ? __pfx_tomoyo_path_mkdir+0x10/0x10
[  303.206438][T19004]  security_path_mkdir+0x154/0x2e0
[  303.206450][T19004]  filename_mkdirat+0x168/0x5e0
[  303.206466][T19004]  ? __pfx_filename_mkdirat+0x10/0x10
[  303.206480][T19004]  ? strncpy_from_user+0x19d/0x2d0
[  303.206500][T19004]  ? do_getname+0x191/0x390
[  303.206516][T19004]  __x64_sys_mkdir+0x6b/0x90
[  303.206530][T19004]  do_syscall_64+0x106/0xf80
[  303.206545][T19004]  ? clear_bhb_loop+0x40/0x90
[  303.206559][T19004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.206571][T19004] RIP: 0033:0x7f8778f9c799
[  303.206581][T19004] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  303.206592][T19004] RSP: 002b:00007f8779eaa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  303.206603][T19004] RAX: ffffffffffffffda RBX: 00007f8779215fa0 RCX: 00007f8778f9c799
[  303.206611][T19004] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  303.206617][T19004] RBP: 00007f8779eaa090 R08: 0000000000000000 R09: 0000000000000000
[  303.206624][T19004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.206630][T19004] R13: 00007f8779216038 R14: 00007f8779215fa0 R15: 00007ffee25dda58
[  303.206645][T19004]  </TASK>
[  303.206651][T19004] ERROR: Out of memory at tomoyo_realpath_from_path.
[  303.370840][T19007] overlayfs: missing 'lowerdir'
[  303.513174][T19012] loop5: detected capacity change from 0 to 7
[  303.515722][T19012]  loop5:
[  303.516788][T19012] loop5: partition table partially beyond EOD, truncated
[  303.708573][T19021] netlink: 'syz.2.4616': attribute type 39 has an invalid length.
[  303.709976][T19024] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4617'.
[  303.715776][T19024] netlink: 'syz.3.4617': attribute type 30 has an invalid length.
[  303.718921][T19024] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4617'.
[  303.801786][T19027] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4618'.
[  303.916165][T19033] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  303.922238][T19033] overlayfs: overlapping lowerdir path
[  303.956050][T19036] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  303.978351][T19040] syzkaller0: entered promiscuous mode
[  303.982266][T19040] syzkaller0: entered allmulticast mode
[  304.008118][T19040] tipc: Started in network mode
[  304.010756][T19040] tipc: Node identity 6a9466b18e1f, cluster identity 4711
[  304.014044][T19040] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[  304.017901][T19039] tipc: Resetting bearer <eth:syzkaller0>
[  304.028520][T19039] tipc: Disabling bearer <eth:syzkaller0>
[  304.033161][   T40] audit: type=1400 audit(2000000137.487:7610): avc:  denied  { name_bind } for  pid=19041 comm="syz.3.4623" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=udp_socket permissive=1
[  304.045676][T19043] netlink: 'syz.3.4623': attribute type 4 has an invalid length.
[  304.130171][ T5931] Bluetooth: hci4: command tx timeout
[  304.401778][T19060] FAULT_INJECTION: forcing a failure.
[  304.401778][T19060] name failslab, interval 1, probability 0, space 0, times 0
[  304.408103][T19060] CPU: 3 UID: 0 PID: 19060 Comm: syz.2.4630 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  304.408130][T19060] Tainted: [L]=SOFTLOCKUP
[  304.408137][T19060] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  304.408147][T19060] Call Trace:
[  304.408153][T19060]  <TASK>
[  304.408160][T19060]  dump_stack_lvl+0x100/0x190
[  304.408192][T19060]  should_fail_ex.cold+0x5/0xa
[  304.408214][T19060]  should_failslab+0xc2/0x120
[  304.408231][T19060]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  304.408254][T19060]  ? skb_clone+0x190/0x400
[  304.408280][T19060]  skb_clone+0x190/0x400
[  304.408301][T19060]  netlink_deliver_tap+0xaed/0xcc0
[  304.408335][T19060]  netlink_broadcast_filtered+0xa2b/0xf50
[  304.408367][T19060]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  304.408388][T19060]  ? __pfx_psp_nl_dev_fill+0x10/0x10
[  304.408414][T19060]  psp_nl_notify_dev+0x389/0x460
[  304.408435][T19060]  ? __pfx_psp_nl_notify_dev+0x10/0x10
[  304.408465][T19060]  ? __pfx_net_passive_dec+0x10/0x10
[  304.408487][T19060]  ? __pfx_call_netdevice_unregister_notifiers+0x10/0x10
[  304.408511][T19060]  psp_dev_unregister+0x4e/0x630
[  304.408533][T19060]  nsim_psp_uninit+0x56/0xd0
[  304.408554][T19060]  nsim_destroy+0x103/0x830
[  304.408576][T19060]  __nsim_dev_port_del+0x189/0x240
[  304.408597][T19060]  nsim_dev_reload_destroy+0x10a/0x4a0
[  304.408622][T19060]  nsim_dev_reload_down+0x66/0xd0
[  304.408643][T19060]  devlink_reload+0x173/0x790
[  304.408664][T19060]  ? __pfx_devlink_reload+0x10/0x10
[  304.408692][T19060]  devlink_nl_reload_doit+0xd84/0x1280
[  304.408714][T19060]  ? __pfx_devlink_nl_reload_doit+0x10/0x10
[  304.408732][T19060]  ? __pfx_devlink_get_from_attrs_lock+0x10/0x10
[  304.408752][T19060]  ? genl_family_rcv_msg_attrs_parse.isra.0+0x1a0/0x280
[  304.408775][T19060]  genl_family_rcv_msg_doit+0x214/0x300
[  304.408794][T19060]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  304.408819][T19060]  ? bpf_lsm_capable+0x9/0x10
[  304.408836][T19060]  ? security_capable+0x80/0x260
[  304.408860][T19060]  genl_rcv_msg+0x560/0x800
[  304.408878][T19060]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.408894][T19060]  ? __pfx_devlink_nl_pre_doit_dev_lock+0x10/0x10
[  304.408910][T19060]  ? __pfx_devlink_nl_reload_doit+0x10/0x10
[  304.408929][T19060]  ? __pfx_devlink_nl_post_doit_dev_lock+0x10/0x10
[  304.408954][T19060]  netlink_rcv_skb+0x159/0x420
[  304.408977][T19060]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.408995][T19060]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  304.409028][T19060]  ? netlink_deliver_tap+0x1ae/0xcc0
[  304.409069][T19060]  genl_rcv+0x28/0x40
[  304.409094][T19060]  netlink_unicast+0x5aa/0x870
[  304.409120][T19060]  ? __pfx_netlink_unicast+0x10/0x10
[  304.409152][T19060]  netlink_sendmsg+0x8b0/0xda0
[  304.409179][T19060]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.409200][T19060]  ? __might_fault+0x20/0x140
[  304.409231][T19060]  ____sys_sendmsg+0x9e1/0xb70
[  304.409254][T19060]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.409278][T19060]  ? __pfx_____sys_sendmsg+0x10/0x10
[  304.409318][T19060]  ___sys_sendmsg+0x190/0x1e0
[  304.409336][T19060]  ? __pfx____sys_sendmsg+0x10/0x10
[  304.409383][T19060]  __sys_sendmsg+0x170/0x220
[  304.409404][T19060]  ? __pfx___sys_sendmsg+0x10/0x10
[  304.409440][T19060]  do_syscall_64+0x106/0xf80
[  304.409462][T19060]  ? clear_bhb_loop+0x40/0x90
[  304.409482][T19060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.409500][T19060] RIP: 0033:0x7f8778f9c799
[  304.409516][T19060] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  304.409530][T19060] RSP: 002b:00007f8779eaa028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  304.409547][T19060] RAX: ffffffffffffffda RBX: 00007f8779215fa0 RCX: 00007f8778f9c799
[  304.409558][T19060] RDX: 0000000000000880 RSI: 00002000000001c0 RDI: 0000000000000003
[  304.409567][T19060] RBP: 00007f8779eaa090 R08: 0000000000000000 R09: 0000000000000000
[  304.409577][T19060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  304.409586][T19060] R13: 00007f8779216038 R14: 00007f8779215fa0 R15: 00007ffee25dda58
[  304.409609][T19060]  </TASK>
[  304.706422][T19067] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  304.711374][T19067] FAULT_INJECTION: forcing a failure.
[  304.711374][T19067] name failslab, interval 1, probability 0, space 0, times 0
[  304.715837][T19067] CPU: 0 UID: 0 PID: 19067 Comm: syz.3.4633 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  304.715855][T19067] Tainted: [L]=SOFTLOCKUP
[  304.715859][T19067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  304.715866][T19067] Call Trace:
[  304.715870][T19067]  <TASK>
[  304.715875][T19067]  dump_stack_lvl+0x100/0x190
[  304.715898][T19067]  should_fail_ex.cold+0x5/0xa
[  304.715914][T19067]  should_failslab+0xc2/0x120
[  304.715926][T19067]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  304.715943][T19067]  ? ovl_alloc_inode+0x25/0x190
[  304.715959][T19067]  ? find_held_lock+0x2b/0x80
[  304.715975][T19067]  ? __pfx_ovl_alloc_inode+0x10/0x10
[  304.715991][T19067]  ovl_alloc_inode+0x25/0x190
[  304.716005][T19067]  alloc_inode+0x68/0x250
[  304.716022][T19067]  new_inode+0x22/0x1c0
[  304.716040][T19067]  ovl_new_inode+0x1d/0x50
[  304.716079][T19067]  ovl_create_object+0x17a/0x3b0
[  304.716095][T19067]  ? __pfx_ovl_create_object+0x10/0x10
[  304.716108][T19067]  ? inode_permission+0x374/0x620
[  304.716128][T19067]  ovl_mkdir+0x2a/0x40
[  304.716140][T19067]  vfs_mkdir+0x361/0x850
[  304.716158][T19067]  filename_mkdirat+0x48b/0x5e0
[  304.716173][T19067]  ? __pfx_filename_mkdirat+0x10/0x10
[  304.716186][T19067]  ? strncpy_from_user+0x19d/0x2d0
[  304.716207][T19067]  ? do_getname+0x191/0x390
[  304.716223][T19067]  __x64_sys_mkdir+0x6b/0x90
[  304.716237][T19067]  do_syscall_64+0x106/0xf80
[  304.716252][T19067]  ? clear_bhb_loop+0x40/0x90
[  304.716266][T19067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.716278][T19067] RIP: 0033:0x7f678559c799
[  304.716288][T19067] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  304.716299][T19067] RSP: 002b:00007f67863f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  304.716310][T19067] RAX: ffffffffffffffda RBX: 00007f6785815fa0 RCX: 00007f678559c799
[  304.716317][T19067] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  304.716326][T19067] RBP: 00007f67863f7090 R08: 0000000000000000 R09: 0000000000000000
[  304.716332][T19067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.716338][T19067] R13: 00007f6785816038 R14: 00007f6785815fa0 R15: 00007ffd3d7c37d8
[  304.716353][T19067]  </TASK>
[  304.835848][   T40] audit: type=1400 audit(2000000138.287:7611): avc:  denied  { create } for  pid=19071 comm="syz.3.4634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  304.847796][   T40] audit: type=1400 audit(2000000138.287:7612): avc:  denied  { bind } for  pid=19071 comm="syz.3.4634" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  304.928841][T19084] netlink: 'syz.1.4638': attribute type 1 has an invalid length.
[  305.008774][   T40] audit: type=1400 audit(2000000138.457:7613): avc:  denied  { mounton } for  pid=19086 comm="syz.1.4639" path="/25/file0/file0" dev="9p" ino=76546195 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=blk_file permissive=1
[  305.025958][T19090] netlink: 'syz.5.4640': attribute type 27 has an invalid length.
[  305.073413][T19090] 8021q: adding VLAN 0 to HW filter on device bond0
[  305.076398][T19090] 8021q: adding VLAN 0 to HW filter on device team0
[  305.110486][T19090] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  305.184428][   T40] audit: type=1400 audit(2000000138.637:7614): avc:  denied  { watch } for  pid=19091 comm="syz.5.4642" path="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  305.366436][   T40] audit: type=1400 audit(2000000138.817:7615): avc:  denied  { setattr } for  pid=19098 comm="syz.5.4645" name="ROSE" dev="sockfs" ino=92365 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  305.393194][T19106] loop5: detected capacity change from 0 to 7
[  305.397307][ T6358]  loop5:
[  305.398596][ T6358] loop5: partition table partially beyond EOD, truncated
[  305.408111][T19106]  loop5:
[  305.409119][T19106] loop5: partition table partially beyond EOD, truncated
[  305.546501][T19116] program syz.5.4651 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  305.549789][T19116] ata1.00: non-matching transfer count (32/0)
[  305.602668][T19119] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4652'.
[  305.607194][T19119] netlink: 6 bytes leftover after parsing attributes in process `syz.5.4652'.
[  305.750319][T19123] netlink: 'syz.5.4653': attribute type 4 has an invalid length.
[  305.766015][   T40] audit: type=1400 audit(2000000139.217:7616): avc:  denied  { bind } for  pid=19124 comm="syz.1.4654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  305.954093][T19148] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4664'.
[  305.996845][T19152] tmpfs: Bad value for 'mpol'
[  306.210163][ T5931] Bluetooth: hci4: command tx timeout
[  306.244235][T19167] loop5: detected capacity change from 0 to 7
[  306.248278][ T6358]  loop5:
[  306.250036][ T6358] loop5: partition table partially beyond EOD, truncated
[  306.254323][T19167]  loop5:
[  306.255701][T19167] loop5: partition table partially beyond EOD, truncated
[  306.330083][ T6017] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  306.359781][   T39] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  306.496342][ T6017] usb 6-1: config 0 interface 0 altsetting 251 bulk endpoint 0x9 has invalid maxpacket 99
[  306.500903][ T6017] usb 6-1: config 0 interface 0 has no altsetting 0
[  306.506348][ T6017] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  306.511465][ T6017] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  306.515198][ T6017] usb 6-1: Product: syz
[  306.517085][ T6017] usb 6-1: Manufacturer: syz
[  306.519047][ T6017] usb 6-1: SerialNumber: syz
[  306.526642][   T39] usb 8-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  306.531248][   T39] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  306.535448][ T6017] usb 6-1: config 0 descriptor??
[  306.537761][   T39] usb 8-1: Product: syz
[  306.539614][   T39] usb 8-1: Manufacturer: syz
[  306.541971][   T39] usb 8-1: SerialNumber: syz
[  306.545979][T19160] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  306.552644][ T6017] usb 6-1: selecting invalid altsetting 0
[  306.560713][   T39] usb 8-1: config 0 descriptor??
[  306.663736][T19185] netlink: 76 bytes leftover after parsing attributes in process `syz.5.4679'.
[  306.755316][T10437] usb 6-1: USB disconnect, device number 13
[  306.766969][ T6017] usb 8-1: USB disconnect, device number 15
[  306.767552][T19160] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4669'.
[  306.870980][T19189] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4680'.
[  306.949260][T19191] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4681'.
[  307.377099][T19208] syzkaller0: entered promiscuous mode
[  307.379692][T19208] syzkaller0: entered allmulticast mode
[  307.404527][T19208] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  307.412798][T19207] tipc: Resetting bearer <eth:syzkaller0>
[  307.434612][T19207] tipc: Disabling bearer <eth:syzkaller0>
qemu-system-x86_64: warning: 9p: degraded performance: a reasonable high msize should be chosen on client/guest side (chosen msize is <= 8192). See https://wiki.qemu.org/Documentation/9psetup#msize for details.
[  307.475326][T19214] 9pnet_virtio: no channels available for device syz
[  307.715011][T19223] syzkaller0: entered promiscuous mode
[  307.717400][T19223] syzkaller0: entered allmulticast mode
[  307.752091][T19223] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  307.757378][T19222] tipc: Resetting bearer <eth:syzkaller0>
[  307.760773][T19225] netlink: 'syz.1.4691': attribute type 4 has an invalid length.
[  307.773379][T19222] tipc: Disabling bearer <eth:syzkaller0>
[  307.868971][T19233] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  307.894660][T19227] bond20: Removing last arp target with arp_interval on
[  307.940369][T19238] netlink: 'syz.5.4696': attribute type 1 has an invalid length.
[  307.962288][T19238] bond6: entered promiscuous mode
[  307.964764][T19238] 8021q: adding VLAN 0 to HW filter on device bond6
[  308.030513][T19252] VFS: Mount too revealing
[  308.062723][T19257] netlink: 'syz.5.4702': attribute type 1 has an invalid length.
[  308.091498][T19257] 8021q: adding VLAN 0 to HW filter on device bond7
[  308.105231][T19257] vlan3: entered allmulticast mode
[  308.108026][T19257] bond7: (slave vlan3): Opening slave failed
[  308.236170][T19267] netlink: 'syz.5.4704': attribute type 4 has an invalid length.
[  308.290476][ T5931] Bluetooth: hci4: command tx timeout
[  308.339160][T19274] syzkaller0: entered promiscuous mode
[  308.341328][T19274] syzkaller0: entered allmulticast mode
[  308.345632][T19274] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  308.348588][T19273] tipc: Resetting bearer <eth:syzkaller0>
[  308.380055][T19273] tipc: Disabling bearer <eth:syzkaller0>
[  308.541660][T19276] i2c i2c-1: Invalid block write size 34
[  308.601754][T19278] netlink: 'syz.1.4709': attribute type 27 has an invalid length.
[  308.687716][T19278] 8021q: adding VLAN 0 to HW filter on device bond0
[  308.692794][T19278] 8021q: adding VLAN 0 to HW filter on device team0
[  308.729687][T19278] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  308.765798][T19280] __nla_validate_parse: 6 callbacks suppressed
[  308.765810][T19280] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4710'.
[  308.789574][T19282] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  308.796885][   T40] audit: type=1400 audit(2000000142.247:7617): avc:  denied  { read write } for  pid=19281 comm="syz.2.4711" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  308.798198][T19282] netlink: 172 bytes leftover after parsing attributes in process `syz.2.4711'.
[  308.805269][   T40] audit: type=1400 audit(2000000142.247:7618): avc:  denied  { open } for  pid=19281 comm="syz.2.4711" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  308.888023][T19285] netlink: 'syz.1.4712': attribute type 1 has an invalid length.
[  308.903141][T19285] 8021q: adding VLAN 0 to HW filter on device bond1
[  309.028726][T19293] tmpfs: Unknown parameter '͈'��.%���GQ����麶���q��3"�P'
[  309.082575][T19295] netlink: 'syz.1.4715': attribute type 4 has an invalid length.
[  309.149170][   T40] audit: type=1400 audit(2000000142.597:7619): avc:  denied  { setattr } for  pid=19298 comm="syz.1.4717" name="[io_uring]" dev="anon_inodefs" ino=93467 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  309.189018][T19304] syzkaller0: entered promiscuous mode
[  309.190998][T19306] loop5: detected capacity change from 0 to 7
[  309.194198][ T6358]  loop5:
[  309.195160][ T6358] loop5: partition table partially beyond EOD, truncated
[  309.199248][T19304] syzkaller0: entered allmulticast mode
[  309.200466][T19306]  loop5:
[  309.202053][T19306] loop5: partition table partially beyond EOD, truncated
[  309.210316][T19304] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  309.214965][T19303] tipc: Resetting bearer <eth:syzkaller0>
[  309.260897][T19303] tipc: Disabling bearer <eth:syzkaller0>
[  309.336921][T19310] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4721'.
[  309.341495][T19310] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4721'.
[  309.345311][T19310] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4721'.
[  309.458168][T19321] overlayfs: failed to resolve './file1': -2
[  309.550332][T19323] syzkaller0: entered promiscuous mode
[  309.552549][T19323] syzkaller0: entered allmulticast mode
[  309.563709][T19323] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  309.566937][T19322] tipc: Resetting bearer <eth:syzkaller0>
[  309.606979][T19328] gfs2: error -5 reading superblock
[  309.620568][T19322] tipc: Disabling bearer <eth:syzkaller0>
[  309.653157][T19332] netlink: 'syz.1.4729': attribute type 4 has an invalid length.
[  309.748868][T19334] can: request_module (can-proto-0) failed.
[  309.750372][T19338] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  309.814759][T19341] Falling back ldisc for ttyS3.
[  310.181120][T19356] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4737'.
[  310.545926][T19367] netlink: 'syz.2.4742': attribute type 1 has an invalid length.
[  310.560676][T19367] 8021q: adding VLAN 0 to HW filter on device bond10
[  310.571127][T19367] vlan2: entered allmulticast mode
[  310.573672][T19367] bond10: (slave vlan2): Opening slave failed
[  310.674970][   T40] audit: type=1400 audit(2000000144.128:7620): avc:  denied  { accept } for  pid=19372 comm="syz.3.4744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  310.746257][T19381] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  310.769080][T19378] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4746'.
[  310.769667][T19381] FAULT_INJECTION: forcing a failure.
[  310.769667][T19381] name failslab, interval 1, probability 0, space 0, times 0
[  310.777010][T19379] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4746'.
[  310.782846][T19381] CPU: 0 UID: 0 PID: 19381 Comm: syz.5.4747 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  310.782876][T19381] Tainted: [L]=SOFTLOCKUP
[  310.782883][T19381] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  310.782894][T19381] Call Trace:
[  310.782901][T19381]  <TASK>
[  310.782908][T19381]  dump_stack_lvl+0x100/0x190
[  310.782958][T19381]  should_fail_ex.cold+0x5/0xa
[  310.782985][T19381]  should_failslab+0xc2/0x120
[  310.783005][T19381]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  310.783032][T19381]  ? shmem_alloc_inode+0x25/0x50
[  310.783056][T19381]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  310.783077][T19381]  shmem_alloc_inode+0x25/0x50
[  310.783097][T19381]  alloc_inode+0x68/0x250
[  310.783125][T19381]  new_inode+0x22/0x1c0
[  310.783155][T19381]  shmem_get_inode+0x212/0x1040
[  310.783183][T19381]  ? __pfx_shmem_get_inode+0x10/0x10
[  310.783205][T19381]  ? peak_open+0x47/0x50
[  310.783225][T19381]  ? selinux_determine_inode_label+0x1ab/0x400
[  310.783269][T19381]  shmem_mknod+0x20c/0x470
[  310.783296][T19381]  ? __pfx_shmem_mknod+0x10/0x10
[  310.783320][T19381]  ? inode_permission+0x374/0x620
[  310.783350][T19381]  shmem_mkdir+0x31/0x80
[  310.783373][T19381]  vfs_mkdir+0x361/0x850
[  310.783400][T19381]  ovl_create_real+0x5d6/0xb80
[  310.783424][T19381]  ovl_create_upper+0x1e5/0x5b0
[  310.783447][T19381]  ovl_create_or_link+0x321/0x390
[  310.783470][T19381]  ovl_create_object+0x2bf/0x3b0
[  310.783491][T19381]  ? __pfx_ovl_create_object+0x10/0x10
[  310.783520][T19381]  ? inode_permission+0x374/0x620
[  310.783552][T19381]  ovl_mkdir+0x2a/0x40
[  310.783572][T19381]  vfs_mkdir+0x361/0x850
[  310.783603][T19381]  filename_mkdirat+0x48b/0x5e0
[  310.783629][T19381]  ? __pfx_filename_mkdirat+0x10/0x10
[  310.783650][T19381]  ? strncpy_from_user+0x19d/0x2d0
[  310.783664][T19378] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4746'.
[  310.783685][T19381]  ? do_getname+0x191/0x390
[  310.783713][T19381]  __x64_sys_mkdir+0x6b/0x90
[  310.783736][T19381]  do_syscall_64+0x106/0xf80
[  310.783769][T19381]  ? clear_bhb_loop+0x40/0x90
[  310.783794][T19381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.783814][T19381] RIP: 0033:0x7fae75f9c799
[  310.783831][T19381] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  310.783848][T19381] RSP: 002b:00007fae76e67028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  310.783867][T19381] RAX: ffffffffffffffda RBX: 00007fae76215fa0 RCX: 00007fae75f9c799
[  310.783879][T19381] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  310.783890][T19381] RBP: 00007fae76e67090 R08: 0000000000000000 R09: 0000000000000000
[  310.783902][T19381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  310.783913][T19381] R13: 00007fae76216038 R14: 00007fae76215fa0 R15: 00007ffe2a052ab8
[  310.783940][T19381]  </TASK>
[  310.802359][T19379] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4746'.
[  310.940721][T19383] netlink: 'syz.5.4748': attribute type 1 has an invalid length.
[  310.954858][T19383] 8021q: adding VLAN 0 to HW filter on device bond8
[  310.991082][T19383] bond8: (slave veth0_to_bond): Enslaving as an active interface with a down link
[  311.475226][T19411] netlink: 'syz.3.4756': attribute type 1 has an invalid length.
[  311.493387][T19411] 8021q: adding VLAN 0 to HW filter on device bond21
[  311.529965][T19417] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  311.534654][T19417] FAULT_INJECTION: forcing a failure.
[  311.534654][T19417] name failslab, interval 1, probability 0, space 0, times 0
[  311.538936][T19417] CPU: 0 UID: 0 PID: 19417 Comm: syz.3.4758 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  311.538958][T19417] Tainted: [L]=SOFTLOCKUP
[  311.538963][T19417] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  311.538970][T19417] Call Trace:
[  311.538974][T19417]  <TASK>
[  311.538979][T19417]  dump_stack_lvl+0x100/0x190
[  311.539002][T19417]  should_fail_ex.cold+0x5/0xa
[  311.539017][T19417]  ? security_inode_init_security+0x113/0x370
[  311.539030][T19417]  should_failslab+0xc2/0x120
[  311.539042][T19417]  __kmalloc_noprof+0xe0/0x850
[  311.539061][T19417]  security_inode_init_security+0x113/0x370
[  311.539075][T19417]  ? __pfx_shmem_initxattrs+0x10/0x10
[  311.539088][T19417]  ? __pfx_security_inode_init_security+0x10/0x10
[  311.539100][T19417]  ? selinux_determine_inode_label+0x1ab/0x400
[  311.539122][T19417]  shmem_mknod+0x2bf/0x470
[  311.539138][T19417]  ? __pfx_shmem_mknod+0x10/0x10
[  311.539153][T19417]  ? inode_permission+0x374/0x620
[  311.539171][T19417]  shmem_mkdir+0x31/0x80
[  311.539186][T19417]  vfs_mkdir+0x361/0x850
[  311.539204][T19417]  ovl_create_real+0x5d6/0xb80
[  311.539219][T19417]  ovl_create_upper+0x1e5/0x5b0
[  311.539239][T19417]  ovl_create_or_link+0x321/0x390
[  311.539253][T19417]  ovl_create_object+0x2bf/0x3b0
[  311.539265][T19417]  ? __pfx_ovl_create_object+0x10/0x10
[  311.539279][T19417]  ? inode_permission+0x374/0x620
[  311.539298][T19417]  ovl_mkdir+0x2a/0x40
[  311.539309][T19417]  vfs_mkdir+0x361/0x850
[  311.539327][T19417]  filename_mkdirat+0x48b/0x5e0
[  311.539357][T19417]  ? __pfx_filename_mkdirat+0x10/0x10
[  311.539371][T19417]  ? strncpy_from_user+0x19d/0x2d0
[  311.539392][T19417]  ? do_getname+0x191/0x390
[  311.539408][T19417]  __x64_sys_mkdir+0x6b/0x90
[  311.539422][T19417]  do_syscall_64+0x106/0xf80
[  311.539437][T19417]  ? clear_bhb_loop+0x40/0x90
[  311.539452][T19417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.539463][T19417] RIP: 0033:0x7f678559c799
[  311.539474][T19417] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  311.539486][T19417] RSP: 002b:00007f67863f7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  311.539498][T19417] RAX: ffffffffffffffda RBX: 00007f6785815fa0 RCX: 00007f678559c799
[  311.539505][T19417] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  311.539512][T19417] RBP: 00007f67863f7090 R08: 0000000000000000 R09: 0000000000000000
[  311.539519][T19417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  311.539525][T19417] R13: 00007f6785816038 R14: 00007f6785815fa0 R15: 00007ffd3d7c37d8
[  311.539540][T19417]  </TASK>
[  311.746020][T19426] netlink: 'syz.3.4760': attribute type 11 has an invalid length.
[  311.830799][T19435] netlink: 'syz.1.4765': attribute type 4 has an invalid length.
[  312.031136][T19446] macvtap0: entered allmulticast mode
[  312.033378][T19446] veth0_macvtap: entered allmulticast mode
[  312.044597][T19446] devpts: Bad value for 'max'
[  312.092187][T19449] netlink: 'syz.3.4771': attribute type 1 has an invalid length.
[  312.329164][T19449] 8021q: adding VLAN 0 to HW filter on device bond22
[  312.367922][T19455] macvlan2: entered promiscuous mode
[  312.562025][T19468] netlink: 'syz.1.4775': attribute type 27 has an invalid length.
[  312.644854][T19468] veth0_macvtap: left allmulticast mode
[  312.684110][T19468] macvtap0: left allmulticast mode
[  312.705738][T19468] macvlan2: left promiscuous mode
[  312.769415][T19469] 8021q: adding VLAN 0 to HW filter on device bond0
[  312.773580][T19469] 8021q: adding VLAN 0 to HW filter on device team0
[  312.839548][T19469] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  312.863713][T19485] syzkaller0: entered promiscuous mode
[  312.865495][T19485] syzkaller0: entered allmulticast mode
[  312.880145][T19485] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  312.885577][T19484] tipc: Resetting bearer <eth:syzkaller0>
[  312.896119][T19484] tipc: Disabling bearer <eth:syzkaller0>
[  312.975972][T19495] loop5: detected capacity change from 0 to 7
[  312.978578][T19495]  loop5:
[  312.980096][T19495] loop5: partition table partially beyond EOD, truncated
[  313.202411][T19513] syzkaller0: entered promiscuous mode
[  313.204407][T19513] syzkaller0: entered allmulticast mode
[  313.216182][T19513] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  313.222911][T19512] tipc: Resetting bearer <eth:syzkaller0>
[  313.235800][T19512] tipc: Disabling bearer <eth:syzkaller0>
[  313.422646][T19524] netlink: 'syz.3.4796': attribute type 4 has an invalid length.
[  313.711016][   T40] audit: type=1400 audit(2000000147.168:7621): avc:  denied  { connect } for  pid=19541 comm="syz.5.4804" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  313.758746][T19544] netlink: 'syz.3.4805': attribute type 27 has an invalid length.
[  313.763651][T19544] tipc: Resetting bearer <eth:gre0>
[  313.808092][T19544] 8021q: adding VLAN 0 to HW filter on device bond0
[  313.811562][T19544] 8021q: adding VLAN 0 to HW filter on device team0
[  313.813827][T19546] __nla_validate_parse: 133 callbacks suppressed
[  313.813844][T19546] netlink: 92 bytes leftover after parsing attributes in process `syz.5.4804'.
[  313.859554][T19544] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  313.953319][T19548] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4806'.
[  314.208960][T19551] syzkaller0: entered promiscuous mode
[  314.212124][T19551] syzkaller0: entered allmulticast mode
[  314.229832][T19551] tipc: Enabled bearer <eth:syzkaller0>, priority 3
[  314.233867][T19550] tipc: Resetting bearer <eth:syzkaller0>
[  314.246610][T19550] tipc: Disabling bearer <eth:syzkaller0>
[  314.643349][T19560] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  314.649986][T19560] FAULT_INJECTION: forcing a failure.
[  314.649986][T19560] name failslab, interval 1, probability 0, space 0, times 0
[  314.655286][T19560] CPU: 2 UID: 0 PID: 19560 Comm: syz.5.4810 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  314.655314][T19560] Tainted: [L]=SOFTLOCKUP
[  314.655320][T19560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  314.655330][T19560] Call Trace:
[  314.655336][T19560]  <TASK>
[  314.655346][T19560]  dump_stack_lvl+0x100/0x190
[  314.655378][T19560]  should_fail_ex.cold+0x5/0xa
[  314.655401][T19560]  ? shmem_initxattrs+0x122/0x570
[  314.655420][T19560]  should_failslab+0xc2/0x120
[  314.655439][T19560]  __kmalloc_noprof+0xe0/0x850
[  314.655464][T19560]  ? __asan_memcpy+0x3c/0x60
[  314.655490][T19560]  shmem_initxattrs+0x122/0x570
[  314.655513][T19560]  security_inode_init_security+0x242/0x370
[  314.655540][T19560]  ? __pfx_shmem_initxattrs+0x10/0x10
[  314.655561][T19560]  ? __pfx_security_inode_init_security+0x10/0x10
[  314.655578][T19560]  ? selinux_determine_inode_label+0x1ab/0x400
[  314.655613][T19560]  shmem_mknod+0x2bf/0x470
[  314.655636][T19560]  ? __pfx_shmem_mknod+0x10/0x10
[  314.655660][T19560]  ? inode_permission+0x374/0x620
[  314.655688][T19560]  shmem_mkdir+0x31/0x80
[  314.655709][T19560]  vfs_mkdir+0x361/0x850
[  314.655738][T19560]  ovl_create_real+0x5d6/0xb80
[  314.655763][T19560]  ovl_create_upper+0x1e5/0x5b0
[  314.655786][T19560]  ovl_create_or_link+0x321/0x390
[  314.655807][T19560]  ovl_create_object+0x2bf/0x3b0
[  314.655827][T19560]  ? __pfx_ovl_create_object+0x10/0x10
[  314.655849][T19560]  ? inode_permission+0x374/0x620
[  314.655878][T19560]  ovl_mkdir+0x2a/0x40
[  314.655897][T19560]  vfs_mkdir+0x361/0x850
[  314.655924][T19560]  filename_mkdirat+0x48b/0x5e0
[  314.655948][T19560]  ? __pfx_filename_mkdirat+0x10/0x10
[  314.655967][T19560]  ? strncpy_from_user+0x19d/0x2d0
[  314.656020][T19560]  ? do_getname+0x191/0x390
[  314.656044][T19560]  __x64_sys_mkdir+0x6b/0x90
[  314.656068][T19560]  do_syscall_64+0x106/0xf80
[  314.656090][T19560]  ? clear_bhb_loop+0x40/0x90
[  314.656113][T19560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.656132][T19560] RIP: 0033:0x7fae75f9c799
[  314.656146][T19560] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  314.656163][T19560] RSP: 002b:00007fae76e67028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  314.656180][T19560] RAX: ffffffffffffffda RBX: 00007fae76215fa0 RCX: 00007fae75f9c799
[  314.656192][T19560] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  314.656201][T19560] RBP: 00007fae76e67090 R08: 0000000000000000 R09: 0000000000000000
[  314.656211][T19560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  314.656222][T19560] R13: 00007fae76216038 R14: 00007fae76215fa0 R15: 00007ffe2a052ab8
[  314.656246][T19560]  </TASK>
[  314.780485][T19564] validate_nla: 1 callbacks suppressed
[  314.780498][T19564] netlink: 'syz.5.4812': attribute type 4 has an invalid length.
[  314.821324][T19568] syzkaller0: entered promiscuous mode
[  314.823768][T19568] syzkaller0: entered allmulticast mode
[  314.837516][T19568] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  314.841804][T19567] tipc: Resetting bearer <eth:syzkaller0>
[  314.855022][T19567] tipc: Disabling bearer <eth:syzkaller0>
[  315.035332][T19576] xt_CT: No such helper "snmp_trap"
[  315.079724][T19583] syzkaller0: entered promiscuous mode
[  315.082135][T19583] syzkaller0: entered allmulticast mode
[  315.087361][T19583] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  315.093385][T19582] tipc: Resetting bearer <eth:syzkaller0>
[  315.106758][T19582] tipc: Disabling bearer <eth:syzkaller0>
[  315.107780][T19585] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  315.204125][T19593] loop5: detected capacity change from 0 to 7
[  315.207269][ T6358]  loop5:
[  315.208677][ T6358] loop5: partition table partially beyond EOD, truncated
[  315.213598][T19593]  loop5:
[  315.214619][T19593] loop5: partition table partially beyond EOD, truncated
[  315.252100][T19599] syzkaller0: entered promiscuous mode
[  315.254214][T19599] syzkaller0: entered allmulticast mode
[  315.270019][T19599] tipc: Enabled bearer <eth:syzkaller0>, priority 10
[  315.273302][T19598] tipc: Resetting bearer <eth:syzkaller0>
[  315.290537][T19598] tipc: Disabling bearer <eth:syzkaller0>
[  315.297261][T19605] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4827'.
[  315.337548][T19611] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  315.343860][T19611] FAULT_INJECTION: forcing a failure.
[  315.343860][T19611] name failslab, interval 1, probability 0, space 0, times 0
[  315.348080][T19611] CPU: 2 UID: 0 PID: 19611 Comm: syz.1.4832 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  315.348099][T19611] Tainted: [L]=SOFTLOCKUP
[  315.348103][T19611] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  315.348110][T19611] Call Trace:
[  315.348115][T19611]  <TASK>
[  315.348120][T19611]  dump_stack_lvl+0x100/0x190
[  315.348143][T19611]  should_fail_ex.cold+0x5/0xa
[  315.348158][T19611]  should_failslab+0xc2/0x120
[  315.348171][T19611]  __kmalloc_cache_noprof+0x7a/0x6f0
[  315.348185][T19611]  ? inode_doinit_use_xattr+0x54/0x330
[  315.348205][T19611]  ? find_held_lock+0x2b/0x80
[  315.348222][T19611]  inode_doinit_use_xattr+0x54/0x330
[  315.348238][T19611]  inode_doinit_with_dentry+0xb60/0x1320
[  315.348258][T19611]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  315.348276][T19611]  ? __pfx_ovl_get_inode+0x10/0x10
[  315.348295][T19611]  selinux_d_instantiate+0x26/0x40
[  315.348311][T19611]  security_d_instantiate+0x14c/0x1b0
[  315.348324][T19611]  d_instantiate+0x5e/0xb0
[  315.348339][T19611]  ovl_instantiate+0x1be/0x2a0
[  315.348350][T19611]  ? ovl_copyattr+0x44a/0x590
[  315.348365][T19611]  ? __pfx_ovl_instantiate+0x10/0x10
[  315.348376][T19611]  ? __pfx_ovl_copyattr+0x10/0x10
[  315.348390][T19611]  ? dput.part.0+0xce/0x570
[  315.348411][T19611]  ovl_create_upper+0x2d4/0x5b0
[  315.348426][T19611]  ovl_create_or_link+0x321/0x390
[  315.348440][T19611]  ovl_create_object+0x2bf/0x3b0
[  315.348453][T19611]  ? __pfx_ovl_create_object+0x10/0x10
[  315.348467][T19611]  ? inode_permission+0x374/0x620
[  315.348486][T19611]  ovl_mkdir+0x2a/0x40
[  315.348497][T19611]  vfs_mkdir+0x361/0x850
[  315.348515][T19611]  filename_mkdirat+0x48b/0x5e0
[  315.348531][T19611]  ? __pfx_filename_mkdirat+0x10/0x10
[  315.348544][T19611]  ? strncpy_from_user+0x19d/0x2d0
[  315.348564][T19611]  ? do_getname+0x191/0x390
[  315.348580][T19611]  __x64_sys_mkdir+0x6b/0x90
[  315.348594][T19611]  do_syscall_64+0x106/0xf80
[  315.348609][T19611]  ? clear_bhb_loop+0x40/0x90
[  315.348623][T19611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.348634][T19611] RIP: 0033:0x7fa158d9c799
[  315.348645][T19611] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  315.348656][T19611] RSP: 002b:00007fa159bbc028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  315.348667][T19611] RAX: ffffffffffffffda RBX: 00007fa159015fa0 RCX: 00007fa158d9c799
[  315.348674][T19611] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  315.348681][T19611] RBP: 00007fa159bbc090 R08: 0000000000000000 R09: 0000000000000000
[  315.348688][T19611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  315.348694][T19611] R13: 00007fa159016038 R14: 00007fa159015fa0 R15: 00007ffeea85dfa8
[  315.348709][T19611]  </TASK>
[  315.465114][T19616] Cannot find set identified by id 65534 to match
[  315.528787][T19622] syzkaller0: entered promiscuous mode
[  315.535525][T19622] syzkaller0: entered allmulticast mode
[  315.541688][T19622] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  315.545670][T19621] tipc: Resetting bearer <eth:syzkaller0>
[  315.558883][T19621] tipc: Disabling bearer <eth:syzkaller0>
[  315.742900][T19624] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=19624 comm=syz.2.4838
[  315.978720][T19637] syzkaller0: entered promiscuous mode
[  315.979797][T19639] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4841'.
[  315.980714][T19637] syzkaller0: entered allmulticast mode
[  315.996697][T19637] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  316.000143][T19636] tipc: Resetting bearer <eth:syzkaller0>
[  316.008979][T19636] tipc: Disabling bearer <eth:syzkaller0>
[  316.146241][T19651] netlink: 'syz.5.4847': attribute type 1 has an invalid length.
[  316.153268][T19653] netlink: 'syz.5.4847': attribute type 1 has an invalid length.
[  316.154185][T19654] netlink: 'syz.3.4848': attribute type 27 has an invalid length.
[  316.161153][T19654] tipc: Resetting bearer <eth:gre0>
[  316.211640][T19663] netlink: 'syz.5.4850': attribute type 1 has an invalid length.
[  316.213318][T19654] 8021q: adding VLAN 0 to HW filter on device bond0
[  316.217041][T19654] 8021q: adding VLAN 0 to HW filter on device team0
[  316.230513][T19654] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  316.247966][T19663] 8021q: adding VLAN 0 to HW filter on device bond9
[  316.263219][T19663] vlan3: entered allmulticast mode
[  316.268315][T19663] bond9: (slave vlan3): Enslaving as an active interface with a down link
[  316.305327][T19668] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4852'.
[  316.400706][T19672] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4854'.
[  316.513088][   T40] audit: type=1400 audit(2000000149.968:7622): avc:  denied  { create } for  pid=19681 comm="syz.5.4856" name="cpuset.memory_pressure_enabled" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  316.551926][T19682] netfs: Couldn't get user pages (rc=-14)
[  316.655486][T19688] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4858'.
[  316.658616][T19688] netlink: 292 bytes leftover after parsing attributes in process `syz.2.4858'.
[  316.751015][T19690] syzkaller0: entered promiscuous mode
[  316.752859][T19690] syzkaller0: entered allmulticast mode
[  316.765646][T19690] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  316.768690][T19689] tipc: Resetting bearer <eth:syzkaller0>
[  316.777970][T19689] tipc: Disabling bearer <eth:syzkaller0>
[  317.194838][T19701] netlink: 'syz.2.4863': attribute type 4 has an invalid length.
[  317.221845][T19703] netlink: 'syz.2.4864': attribute type 27 has an invalid length.
[  317.227692][T19703] tipc: Resetting bearer <ib:gre0>
[  317.276989][T19703] 8021q: adding VLAN 0 to HW filter on device bond0
[  317.281689][T19703] 8021q: adding VLAN 0 to HW filter on device team0
[  317.309192][T19703] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  317.313613][T19705] netlink: 'syz.1.4865': attribute type 1 has an invalid length.
[  317.327763][T19705] 8021q: adding VLAN 0 to HW filter on device bond2
[  317.358752][T19708] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  317.361224][T19682] BUG: kernel NULL pointer dereference, address: 0000000000000000
[  317.365534][T19682] #PF: supervisor instruction fetch in kernel mode
[  317.369700][T19682] #PF: error_code(0x0010) - not-present page
[  317.370899][   T40] audit: type=1400 audit(2000000150.828:7623): avc:  denied  { read } for  pid=5318 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  317.372538][T19682] PGD 13750067 P4D 13750067 PUD 0 
[  317.379418][   T40] audit: type=1400 audit(2000000150.828:7624): avc:  denied  { search } for  pid=5318 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  317.381574][T19682] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[  317.381599][T19682] CPU: 2 UID: 0 PID: 19682 Comm: syz.5.4856 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  317.388137][   T40] audit: type=1400 audit(2000000150.828:7625): avc:  denied  { search } for  pid=5318 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  317.389596][T19708] FAULT_INJECTION: forcing a failure.
[  317.389596][T19708] name failslab, interval 1, probability 0, space 0, times 0
[  317.389615][T19708] CPU: 3 UID: 0 PID: 19708 Comm: syz.2.4866 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  317.389631][T19708] Tainted: [L]=SOFTLOCKUP
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  317.389635][T19708] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  317.389642][T19708] Call Trace:
[  317.389646][T19708]  <TASK>
[  317.389650][T19708]  dump_stack_lvl+0x100/0x190
[  317.389670][T19708]  should_fail_ex.cold+0x5/0xa
[  317.389683][T19708]  ? fs_reclaim_acquire+0x70/0x100
[  317.389696][T19708]  should_failslab+0xc2/0x120
[  317.389708][T19708]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  317.389725][T19708]  ? security_context_to_sid_core+0xc5/0x870
[  317.389743][T19708]  kmemdup_nul+0x49/0xd0
[  317.389760][T19708]  security_context_to_sid_core+0xc5/0x870
[  317.389777][T19708]  ? __pfx_security_context_to_sid_core+0x10/0x10
[  317.389797][T19708]  inode_doinit_use_xattr+0x105/0x330
[  317.389811][T19708]  inode_doinit_with_dentry+0xb60/0x1320
[  317.389827][T19708]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[  317.389844][T19708]  ? __pfx_ovl_get_inode+0x10/0x10
[  317.389861][T19708]  selinux_d_instantiate+0x26/0x40
[  317.389876][T19708]  security_d_instantiate+0x14c/0x1b0
[  317.389887][T19708]  d_instantiate+0x5e/0xb0
[  317.389902][T19708]  ovl_instantiate+0x1be/0x2a0
[  317.389912][T19708]  ? ovl_copyattr+0x44a/0x590
[  317.389926][T19708]  ? __pfx_ovl_instantiate+0x10/0x10
[  317.389936][T19708]  ? __pfx_ovl_copyattr+0x10/0x10
[  317.389952][T19708]  ovl_create_upper+0x2d4/0x5b0
[  317.389964][T19708]  ovl_create_or_link+0x321/0x390
[  317.389976][T19708]  ovl_create_object+0x2bf/0x3b0
[  317.389988][T19708]  ? __pfx_ovl_create_object+0x10/0x10
[  317.390000][T19708]  ? inode_permission+0x374/0x620
[  317.390016][T19708]  ovl_mkdir+0x2a/0x40
[  317.390027][T19708]  vfs_mkdir+0x361/0x850
[  317.390043][T19708]  filename_mkdirat+0x48b/0x5e0
[  317.390056][T19708]  ? __pfx_filename_mkdirat+0x10/0x10
[  317.390069][T19708]  ? strncpy_from_user+0x19d/0x2d0
[  317.390087][T19708]  ? do_getname+0x191/0x390
[  317.390101][T19708]  __x64_sys_mkdir+0x6b/0x90
[  317.390114][T19708]  do_syscall_64+0x106/0xf80
[  317.390129][T19708]  ? clear_bhb_loop+0x40/0x90
[  317.390141][T19708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.390152][T19708] RIP: 0033:0x7f8778f9c799
[  317.390161][T19708] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  317.390172][T19708] RSP: 002b:00007f8779eaa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  317.390183][T19708] RAX: ffffffffffffffda RBX: 00007f8779215fa0 RCX: 00007f8778f9c799
[  317.390190][T19708] RDX: 0000000000000000 RSI: 0000000000000051 RDI: 0000200000000940
[  317.390197][T19708] RBP: 00007f8779eaa090 R08: 0000000000000000 R09: 0000000000000000
[  317.390203][T19708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  317.390210][T19708] R13: 00007f8779216038 R14: 00007f8779215fa0 R15: 00007ffee25dda58
[  317.390220][T19708]  </TASK>
[  317.390225][T19708] SELinux: inode_doinit_use_xattr:  context_to_sid(root:object_r:user_tmpfs_t) returned 12 for dev=overlay ino=3
[  317.390433][T19682] Tainted: [L]=SOFTLOCKUP
[  317.390442][T19682] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  317.390454][T19682] RIP: 0010:0x0
[  317.390479][T19682] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  317.390489][T19682] RSP: 0018:ffffc90004effb90 EFLAGS: 00010246
[  317.394173][   T40] audit: type=1400 audit(2000000150.828:7626): avc:  denied  { add_name } for  pid=5318 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  317.402761][T19682] RAX: 0000000000000000 RBX: ffff8880591d1eb0 RCX: ffffc900255c1000
[  317.402781][T19682] RDX: 0000000000080000 RSI: ffffffff82c4de2c RDI: ffff8880591d1e00
[  317.402793][T19682] RBP: 000000000031ffc0 R08: 0000000000000001 R09: 0000000000000000
[  317.402804][T19682] R10: 0000000000000001 R11: 0000000000000000 R12: ffff8880591d1e98
[  317.402817][T19682] R13: dffffc0000000000 R14: ffff8880591d1e00 R15: ffff88803cebc780
[  317.402829][T19682] FS:  00007fae76e676c0(0000) GS:ffff8880d653f000(0000) knlGS:0000000000000000
[  317.408363][   T40] audit: type=1400 audit(2000000150.828:7627): avc:  denied  { create } for  pid=5318 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  317.411264][T19682] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  317.411282][T19682] CR2: ffffffffffffffd6 CR3: 0000000023b1d000 CR4: 0000000000352ef0
[  317.411294][T19682] Call Trace:
[  317.411300][T19682]  <TASK>
[  317.412855][   T40] audit: type=1400 audit(2000000150.828:7628): avc:  denied  { append open } for  pid=5318 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  317.416986][T19682]  netfs_unbuffered_write+0xae5/0x2080
[  317.418135][   T40] audit: type=1400 audit(2000000150.828:7629): avc:  denied  { getattr } for  pid=5318 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  317.419391][T19682]  netfs_unbuffered_write_iter_locked+0x801/0xab0
[  317.470737][T19710] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4867'.
[  317.471513][T19682]  netfs_unbuffered_write_iter+0x40c/0x710
[  317.472915][T19710] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4867'.
[  317.474516][T19682]  v9fs_file_write_iter+0xbf/0x100
[  317.585804][T19682]  vfs_write+0x6ac/0x1070
[  317.587243][T19682]  ? __pfx_v9fs_file_write_iter+0x10/0x10
[  317.589068][T19682]  ? __pfx_vfs_write+0x10/0x10
[  317.590694][T19682]  ksys_write+0x12a/0x250
[  317.592122][T19682]  ? __pfx_ksys_write+0x10/0x10
[  317.593696][T19682]  do_syscall_64+0x106/0xf80
[  317.595188][T19682]  ? clear_bhb_loop+0x40/0x90
[  317.596712][T19682]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.598693][T19682] RIP: 0033:0x7fae75f9c799
[  317.600147][T19682] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  317.606260][T19682] RSP: 002b:00007fae76e67028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  317.608906][T19682] RAX: ffffffffffffffda RBX: 00007fae76215fa0 RCX: 00007fae75f9c799
[  317.611434][T19682] RDX: 000000000208e24b RSI: 0000200000000040 RDI: 0000000000000003
[  317.613905][T19682] RBP: 00007fae76032c99 R08: 0000000000000000 R09: 0000000000000000
[  317.616390][T19682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  317.618787][T19682] R13: 00007fae76216038 R14: 00007fae76215fa0 R15: 00007ffe2a052ab8
[  317.621284][T19682]  </TASK>
[  317.622309][T19682] Modules linked in:
[  317.623664][T19682] CR2: 0000000000000000
[  317.625023][T19682] ---[ end trace 0000000000000000 ]---
[  317.626754][T19682] RIP: 0010:0x0
[  317.627907][T19682] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  317.630243][T19682] RSP: 0018:ffffc90004effb90 EFLAGS: 00010246
[  317.632190][T19682] RAX: 0000000000000000 RBX: ffff8880591d1eb0 RCX: ffffc900255c1000
[  317.634679][T19682] RDX: 0000000000080000 RSI: ffffffff82c4de2c RDI: ffff8880591d1e00
[  317.637174][T19682] RBP: 000000000031ffc0 R08: 0000000000000001 R09: 0000000000000000
[  317.639609][T19682] R10: 0000000000000001 R11: 0000000000000000 R12: ffff8880591d1e98
[  317.642109][T19682] R13: dffffc0000000000 R14: ffff8880591d1e00 R15: ffff88803cebc780
[  317.644604][T19682] FS:  00007fae76e676c0(0000) GS:ffff8880d653f000(0000) knlGS:0000000000000000
[  317.647439][T19682] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  317.649566][T19682] CR2: ffffffffffffffd6 CR3: 0000000023b1d000 CR4: 0000000000352ef0
[  317.652096][T19682] Kernel panic - not syncing: Fatal exception
[  317.654855][T19682] Kernel Offset: disabled
[  317.656262][T19682] Rebooting in 86400 seconds..

VM DIAGNOSIS:
01:31:20  Registers:
info registers vcpu 0

CPU#0
RAX=000000c1730e5edc RBX=ffff88806a423f80 RCX=00000000000006e0 RDX=00000000000000c1
RSI=ffff88806a423f80 RDI=0000000000063f31 RBP=0000000000063f31 RSP=ffffc90000007ed0
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=ffffc90000007ff8
R12=0000000000000000 R13=0000000000000000 R14=0000000000000019 R15=ffff88806a4284c0
RIP=ffffffff81b563a5 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d633f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa158e4eddd CR3=000000004cd1a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000010001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a6b6361747320 6461657268747020
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeea85e496
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeea85e496 00007ffeea85e49c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e3327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e33420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 657a6973203c2065 7a69736565726600 632e6b6361747365 7461636f6c6c6100
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 405f4c5605190540 5f4c564040574300 460b4e4644515640 5144464a49494400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158fec5f8 00007fa158fec5c8 00007fa158fec600 00007fa158fec5e0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000080000001 RBX=ffffea00017870c0 RCX=ffffffff82478769 RDX=0000000000000000
RSI=0000000000000000 RDI=ffff8880258ec980 RBP=ffff88801def5b08 RSP=ffffc90003d37300
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffffea00017870c8 R13=0000000000000000 R14=0000000000000000 R15=ffff88807ffd7400
RIP=ffffffff8208da48 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d643f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f1068947e20 CR3=0000000034786000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff61b096d0 00007fff61b096d0
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1067dec823 00007f1067dec823
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1067dece80
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1067dece80
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555562ed6d68
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffd5 0811e00358020011 de037375622f2e01 ffffffffffffffff
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 128c03580200128a 03776f6c6c6f666f 6e3d7269645f7463 65726964657201ff
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0101a21000258004 040143ba00002e07 0030656c69662f2e 01ffffffffffffff
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffef082580030f80 04020103c2007375 622f2e01ffffffff fffffffff3080f80
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0311800400100002 8004038004001000 0a0144e400020012 8c03580200128a03
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 776f6c6c6f666f6e 3d7269645f746365 726964657201ffff ffffffffffffd508
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff857a4770 RDI=ffffffff9b4a6b40 RBP=ffffffff9b4a6b00 RSP=ffffc90004eff380
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=707573203a465023
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff3694dba R15=dffffc0000000000
RIP=ffffffff857a4797 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fae76e676c0 ffffffff 00c00000
GS =0000 ffff8880d653f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000023b1d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 776f6c6c6f666f6e 3d7269645f746365
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee25ddf46
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee25ddf46 00007ffee25ddf4c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f877903327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f87790332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8779033420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f87790332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f87791ec600 00007f87791ec5e0 00007f87791ec5e8 00007f87791ec618
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f87791ec5f8 00007f87791ec5c8 00007f87791ec600 00007f87791ec5e0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000f 0000000000000000 0000000000000000 0000000000000454
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000001dfe0c RBX=ffff88801eafa4c0 RCX=ffffffff8b909c75 RDX=0000000000000001
RSI=ffffffff8c1b11a0 RDI=ffffffff81dea654 RBP=0000000000000000 RSP=ffffc90000197df0
R8 =0000000000000000 R9 =ffffed100d4e679d R10=ffff88806a733ceb R11=0000000000000003
R12=0000000000000003 R13=ffffed1003d5f498 R14=0000000000000003 R15=ffffffff90d9ae10
RIP=ffffffff8b9085df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d663f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000004cd1a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000010001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 203a6b6361747320 6461657268747020
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeea85e496
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeea85e496 00007ffeea85e49c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e3327c
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e332bc
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e33420
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158e332ae
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 657a6973203c2065 7a69736565726600 632e6b6361747365 7461636f6c6c6100
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 405f4c5605190540 5f4c564040574300 460b4e4644515640 5144464a49494400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa158fec5f8 00007fa158fec5c8 00007fa158fec600 00007fa158fec5e0
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000